Using VSX mode, 2 checkpoint 12000 series, R77.30
I got this log when trying to access a website, and it deny access.
Anyone facing this problem already.
Please help me on this case,
Thank you guys,
Sure (if Checkpoint allows)
How to increase / disable max_header_length
It was not changed for all instances in Smart Defense / IPS. Each profile has its own setting. All the settings need to be changed.
On the Security Management via GuiDBedit.
1.Log out of all smart console applications.
2.Log in to GuiDBedit.
3.Search guidbedit for the following data string http_max_header_length.Make sure the value is the value you want it set to on all profiles (detailed below). The default is 2100, max is 12288. (Left side shows current value changeable, right side shows default value not changeable).Then click Ctrl+F and click find next. You should see this parameter for each of the following object names. For each of them, perform the change. They should, but might not appear in the following order:
If Smart Defense / IPS is deactivate and the issue persists (traffic still being dropped), adjust the DeactivatedAdvancedSecurityObject to the desired length.
4.After performing the changes, save and exit.
6.If the drop is still present, consider increasing the value even further.
In case the solution fails completely, consider disabling http_max_header_length enforcement:
3.Search guidbedit for the following data string http_enforce_max_header_length.
Change it's value from true to false on all profiles:
5.Perform cpstop and cpstart on the Security Management.
just check sk44674, maybe it helps.CheersVincent
Thank for your reply.
My UC account doesn't have advance access to see the Solution. Could you please capture the text for me.
Thank in advance,
Very appreciate for your help. Already sloved.
i am glad that I could help, you're welcome!
Hope you're doing well, could you please help me capture solution of sk36161.
I'm requesting CP allow my account access to solution.
Thank you so much,
Retrieving data ...