cancel
Showing results for 
Search instead for 
Did you mean: 
Create a Post
sd
Ivory

How do you log HTTPS headers and body ?

Hello,

 

We're using 80.20 and we have setup a HTTPS outbound filtering solution to secure our app in the cloud.

We're able to see in the logs : the URL, the User-Agent and X-Forwarded-For header. But not more !
We would like to see the full body and all headers.
Is-this possible ?

 

0 Kudos
4 Replies
Admin
Admin

Re: How do you log HTTPS headers and body ?

Rules that match the relevant traffic must be set to log Extended (as opposed to Detailed or just Log).
0 Kudos
sd
Ivory

Re: How do you log HTTPS headers and body ?

The rules matching are set to Extended. I'm viewing logs as an admin, is there a trick ?

0 Kudos
Admin
Admin

Re: How do you log HTTPS headers and body ?

We certainly do not log the full body of the request.
We do log certain headers for sure, but possibly not all of them.
Can you provide some context as to why the information is needed/relevant?
0 Kudos
Highlighted

Re: How do you log HTTPS headers and body ?

I don't think its possible to see all headers/body, even with the log set to "Extended". To quote the help page:
"Extended - Equivalent to the Detailed option, but also shows a full list of URLs and files in the connection or the session. The URLs and files show in the lower pane of the Logs view."

Thread Prevention has the option to capture packets. You could try to write an IoC for this application and then set the appropriate log options for this protection.

0 Kudos