ignore nested Content-Type inside multipart/form-data

Question

Hi,&nbsp;i am trying to "Do nothing" for example on Content-Type: application/octet-stream which is nested inside a Content-Type: multipart/form-data.It seems that the exceptions i can made at url level are only checking the headers (somehow to expect that) but does not check for Content-Types inside the multipart/form-data.&nbsp;Anyone knows a solution for this?

irre_levant · Answer

Hi Yvonne,&nbsp;thanks for reply. Unfortunately i didnt understood this part:your server to treat application/octet-stream as a default or non-actionable content typeWhat do you mean by "your sever"? The webserver behind the Big-IP or the VS? If you mean the VS, where to configure that?

zamroni777 · Answer

multipart/form-data uses key-value format in the http request body
example: key1=value1&key2=value2&key3=value3

you can use irules to check that pattern in request body but in this case the ideal solution is filtering by webserver.
they can use "try catch" mechanism or check of "undefined" in the server application code.
basically, make the server application code to be foolproof.

liefzimmerman · Answer

Hey Irre_Levant - that previous poster was a GPT Spammer. I've removed their content and banned the member.

Forum Discussion

ignore nested Content-Type inside multipart/form-data

Recent Discussions

Upgrade F5 BIGIP

DNS HM Probe issue

Is XFF a must for ASM WAF DoS

Switch ssl profile based on weak cipher detection via IRULE

F5 Switches in 'Changes Pending' Status

Related Content

x-content-type-options

Content type tracking

change content type for specific uri in http response

exclude HTTP::header value Content-Type] equals "text/xml; charset=utf-8" from SSL redirect

ASM : Multipart/form-data parameter value violation

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS