Forum Discussion
Lorn
Apr 29, 2013Nimbostratus
Yes, the issue was trying to collect more payload data than existed when a content length wasn't specified. I changed the irule to only collect data when a content length header was present, however that brings up the potential DDoS attack where an attacker could arbitrarily set a content length header causing the session to stay open until the idle timeout expires. The link you provided to prevent this looks promising.
Thank you.