[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [FW1] Filtering HTTP
Title: RE: [FW1] Filtering HTTP
You can disable request checking by doing the following:
Fwstop
Edit objects.C and add :http_check_request (false) into the props section.
Fwstart and push the current policy.
You can also disable response checking by adding :http_check_response (false) in the same way.
One website that you can use for testing this is www.register.com because they use a | character in their requests...
If you just want to change the error page, then enter a replacement URL in your http resource object. This will replace the standard error page.
Enjoy,
Craig
-----Original Message-----
From: Patrick Lotti [mailto:[email protected]]
Sent: Friday, August 24, 2001 5:40 AM
To: Juppunov, George
Cc: 'Joe Keegan'; [email protected]; [email protected]
Subject: Re: [FW1] Filtering HTTP
Hi George,
hi everybody who's dealing with the same problem
I tried the cp solution to block CR, but while it works I have now
another problem. Invalid or incomplete http requests to the firewall
reveal it's type. The answer is simple:
<TITLE>Error</TITLE>
<BODY>
<H1>Error</H1>
FW-1 at firewall_name: Sorry, simple requests (HTTP/0.9) are not supported.
</BODY>
How can I disable this?
I'd like to pass such requests to my web server. Is this possible?
Best Regards,
Patrick Lotti
"Juppunov, George" wrote:
>
> You can apply such filters in any direction that CheckPoint can inspect.
> I don't think you have increased your DoS exposure. One thing you might want
> to
> do is disable the banner of the http security server, in order to make the
> recon
> more difficult.
>
> George
>
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================