http_max_header length

Anita · #1 (**permalink**) 2007-05-29

Dear All,

We got an error the below error while accessing hotmail.com

"Web security : Header exceeded 'max_header_length'. The length of one of the header (2299) in the request exceeded the maximum allowed length (2100). To allow, in SmartDefense, under the 'HTTP Protocol Inspection' branch, increase the value of 'maximum HTTP header length'. For more details refer sk17454 "
We have changed the value in the Web Intelligence -> HTTP Protocol Inspection -> max_header_length to 2500 and reinstalled the policy.

but still we are getting the same error.
Can anyone help me in this regard. thanks in advance.

regards,

dantro · #2 (**permalink**) 2007-05-29

I suggest turning it off until Web Intelligence got fixed by Check Point. Web Intelligence is not yet a stable software you may rely on..

RayPesek · #3 (**permalink**) 2007-05-29

Go to about 4,500 and see what happens. That's where I ended up putting mine.

Ray

Anita · #4 (**permalink**) 2007-05-29

thanks Ray,

am able to access the website after increasing it to 4500

Regards,
Anita

RayPesek · #5 (**permalink**) 2007-05-30

Odd, isn't it? Apparently 1 != 1 here.

Glad it's working,

Ray

hotice_ · #6 (**permalink**) 2007-09-24

Guys

I have the EXACT same problem but when I set the value up to 4500, it didn't fix it...still says that the limit is 2100.

Using NGX R65 on ResOS platform..

any ideas?

RayPesek · #7 (**permalink**) 2007-09-24

Did you install the policy?

Ray

hotice_ · #8 (**permalink**) 2007-09-25

of course...

I've disabled:
-That specific protection
- The whole Smart Defense module

and it was still being blocked in the tracker with that specific message about the header going over the 2100 limit.

The ONLY course of action that made it work was to disable the SurfControl security rule ...

I'm out of options...

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode