https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/193809#M54506 <P><A href="https://support.checkpoint.com/results/sk/sk103051" target="_blank">https://support.checkpoint.com/results/sk/sk103051</A></P> Thu, 28 Sep 2023 19:43:51 GMT PhoneBoy 2023-09-28T19:43:51Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/193700#M54505 <P>We are trying to block access to specific URLs except cases where the request includes some specific HTTP Request header.</P><P>Example a: Allow the request if <STRONG>User-Agent</STRONG> includes <EM>*ABC*</EM></P><P>Example b: Allow the request if <STRONG>Content-Type</STRONG> includes <EM>*application/json*</EM></P><P>Example c: Allow the request if <STRONG>Some-Custom-Header </STRONG>equals <EM>123123</EM></P><P>&nbsp;</P><P>How this can be achieved?</P> Wed, 27 Sep 2023 18:15:14 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/193700#M54505 yanirclsr 2023-09-27T18:15:14Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/193809#M54506 <P><A href="https://support.checkpoint.com/results/sk/sk103051" target="_blank">https://support.checkpoint.com/results/sk/sk103051</A></P> Thu, 28 Sep 2023 19:43:51 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/193809#M54506 PhoneBoy 2023-09-28T19:43:51Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/194069#M54507 <P>Thanks&nbsp;<a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/7">@PhoneBoy</a>&nbsp;. This looks like the right solution.</P><P>Did you manage to actually make it work?</P><P>When trying to export the custom signature - the tool crashes, and I get the error message:</P><P><STRONG><EM>An error has occurred and ACST was not able to complete the operation.</EM></STRONG></P><P>Any idea how to fix this?</P> Mon, 02 Oct 2023 18:37:42 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/194069#M54507 yanirclsr 2023-10-02T18:37:42Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/194141#M54508 <P>This would need to be addressed via TAC: <A href="https://help.checkpoint.com" target="_blank">https://help.checkpoint.com</A>.</P> Tue, 03 Oct 2023 14:37:04 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/194141#M54508 PhoneBoy 2023-10-03T14:37:04Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/194915#M54509 <P>Hi I have succeed without any error on the ACST app side.</P><P>I tryed the cnn sports from the support sk and change it to my specific header and when I import the xml to the smart console I get failed. can you help with the header itself?</P><P>Thanks</P> Thu, 12 Oct 2023 07:40:28 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/194915#M54509 yanivatia 2023-10-12T07:40:28Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/194961#M54510 <P>Again, please consult with the TAC.&nbsp;</P> Thu, 12 Oct 2023 15:53:33 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Blocking-traffic-based-on-HTTP-Request-Header/m-p/194961#M54510 PhoneBoy 2023-10-12T15:53:33Z