Re: Blocking traffic based on HTTP Request Header

yanirclsr · ‎2023-09-27

We are trying to block access to specific URLs except cases where the request includes some specific HTTP Request header.

Example a: Allow the request if User-Agent includes *ABC*

Example b: Allow the request if Content-Type includes *application/json*

Example c: Allow the request if Some-Custom-Header equals 123123

How this can be achieved?

PhoneBoy · ‎2023-09-28

https://support.checkpoint.com/results/sk/sk103051

yanirclsr · ‎2023-10-02

Thanks @PhoneBoy . This looks like the right solution.

Did you manage to actually make it work?

When trying to export the custom signature - the tool crashes, and I get the error message:

An error has occurred and ACST was not able to complete the operation.

Any idea how to fix this?

PhoneBoy · ‎2023-10-03

This would need to be addressed via TAC: https://help.checkpoint.com.

yanivatia · ‎2023-10-12

Hi I have succeed without any error on the ACST app side.

I tryed the cnn sports from the support sk and change it to my specific header and when I import the xml to the smart console I get failed. can you help with the header itself?

Thanks

https://youtube.com/@yanivatia301?si=E6ppe9Bh7jCNX2VO

PhoneBoy · ‎2023-10-12

Again, please consult with the TAC.

Are you a member of CheckMates?

Blocking traffic based on HTTP Request Header