Forum Discussion

Mohanad_313515's avatar
Mohanad_313515
Icon for Nimbostratus rankNimbostratus
Apr 11, 2018

Request Content-Length differs from actual request body length

I'm monitoring and checking event logs for security policy for a new virtual server, I found:   I tried a tool called fiddler to calculate request body length it gave me (Content-Length: 4009...
ASM Advanced WAF
security
youssef1's avatar
youssef1
Icon for Cumulonimbus rankCumulonimbus
Apr 11, 2018

hello,

 

The BIG-IP ASM system checks HTTP requests for unparsable content as part of HTTP compliance enforcement. When the HTTP parser cannot parse any part of an HTTP request, the system triggers a violation. This article lists the subviolation checks for HTTP protocol compliance that the system applies to HTTP content requests.

 

https://support.f5.com/csp/article/K44162352

 

increase this limit in the ASM instead of accepting(disabling) this violation in this menu: Security ›› Options : Application Security : Advanced Configuration : System Variables : ecard_max_http_req_uri_len.

 

Then restart asm service: tmsh restart sys service asm

 

Regards