Configure ETags

tag: server

Entity tags (ETags) are a mechanism that web servers and browsers use to determine whether the component in the browser's cache matches the one on the origin server. (An "entity" is another word a "component": images, scripts, stylesheets, etc.) ETags were added to provide a mechanism for validating entities that is more flexible than the last-modified date. An ETag is a string that uniquely identifies a specific version of a component. The only format constraints are that the string be quoted. The origin server specifies the component's ETag using the ETag response header.

      HTTP/1.1 200 OK

      Last-Modified: Tue, 12 Dec 2006 03:03:59 GMT

      ETag: "10c24bc-4ab-457e1c1f"

      Content-Length: 12195

Later, if the browser has to validate a component, it uses the If-None-Match
header to pass the ETag back to the origin server. If the ETags match, a
304 status code is returned reducing the response by 12195 bytes for
this example.

      GET /i/yahoo.gif HTTP/1.1

      Host: us.yimg.com

      If-Modified-Since: Tue, 12 Dec 2006 03:03:59 GMT

      If-None-Match: "10c24bc-4ab-457e1c1f"

      HTTP/1.1 304 Not Modified

The problem with ETags is that they typically are constructed using
attributes that make them unique to a specific server hosting a site.
ETags won't match when a browser gets the original component from one
server and later tries to validate that component on a different server,
a situation that is all too common on Web sites that use a cluster of
servers to handle requests. By default, both Apache and IIS embed data
in the ETag that dramatically reduces the odds of the validity test
succeeding on web sites with multiple servers.

The ETag format for Apache 1.3 and 2.x is inode-size-timestamp.
Although a given file may reside in the same directory across multiple
servers, and have the same file size, permissions, timestamp, etc., its
inode is different from one server to the next.

IIS 5.0 and 6.0 have a similar issue with ETags. The format for ETags on IIS is Filetimestamp:ChangeNumber. A ChangeNumber is a counter used to track configuration changes to IIS. It's unlikely that the ChangeNumber is the same across all IIS servers behind a web site.

The end result is ETags generated by Apache and IIS for the exact
same component won't match from one server to another. If the ETags
don't match, the user doesn't receive the small, fast 304 response that
ETags were designed for; instead, they'll get a normal 200 response
along with all the data for the component. If you host your web site on
just one server, this isn't a problem. But if you have multiple servers
hosting your web site, and you're using Apache or IIS with the default
ETag configuration, your users are getting slower pages, your servers
have a higher load, you're consuming greater bandwidth, and proxies
aren't caching your content efficiently. Even if your components have a
far future Expires header, a conditional GET request is still made whenever the user hits Reload or Refresh.

If you're not taking advantage of the flexible validation model
that ETags provide, it's better to just remove the ETag altogether. The Last-Modified
header validates based on the component's timestamp. And removing the
ETag reduces the size of the HTTP headers in both the response and
subsequent requests. This Microsoft Support article describes how to remove ETags. In Apache, this is done by simply adding the following line to your Apache configuration file:

      FileETag none

If you prefer to not send the ETag HTTP header for files served from IIS 7 or 7.5, it is a bit problematic. To the best of my knowledge, IIS does not provide a straight forward way to remove this header. This post shows a way to do it using Microsoft's URL Rewrite Module 2.0.

I'm not going to go into the what and why of the ETag. Suffice it to say, many web developers and web masters would prefer not to send it.

The ETag can be removed using an outbound URL rewrite rule. You can read more about it at the URL Rewrite Module 2.0 Configuration Reference.

The rewrite rule that can be put in your web.config follows:

This graphic shows the settings for the ETag removal rewrite rule in IIS Manager. In fact, if you look at the headers for the image, you'll see there is no ETag :-)

If you happen to be using Helicon's Ape, then this is very simple as well. You can use a mod_headers rule like:

I hope this helps :-)