You have something set to fail open in the event of an internal error (HTTP parsing error in your case), check these screens in the SmartConsole:
- Manage & Settings...Blades...Threat Prevention...Advanced Settings...Fail Mode (most likely candidate due to the IPS blade reference)
- Manage & Settings...Blades...Application Control & URL Filtering...Fail Mode
- Manage & Settings...Blades...Content Awareness...Fail Mode
- HTTPS Inspection Configuration (in SmartDashboard): HTTPS Inspection...HTTPS Validation...Fail Mode
Despite what the message says, I don't see any "Fail Mode" options in any of the Inspection Settings visible in the SmartConsole, unless it is referring to some kind of kernel variable that is not exposed in the SmartConsole.
Gateway Performance Optimization R81.20 Course
now available at maxpowerfirewalls.com