Contents

HTTP Response: General Settings

On the General Settings page, you can configure basic HTTP parameters such as idle time out, and limits for line and total length.

  1. In the HTTP Proxy Action configuration, select HTTP Response > General Settings.

Screen shot of the HTTP Response General Settings
HTTP Proxy Action HTTP Response General Settings configuration in Fireware Web UI

Screen shot of the HTTP Proxy Action Configuration dialog box, HTTP Response General Settings page
HTTP Proxy Action HTTP Response General Settings configuration in Policy Manager

  1. To set limits for HTTP parameters, select the applicable check boxes. Type or select a value for the limits.

Set the timeout to

Controls how long the HTTP proxy waits for the web server to send the web page. When a user clicks a hyperlink or types a URL in a web browser, it sends an HTTP request to a remote server to get the content. In most browsers, a message similar to Contacting site..., appears in the status bar. If the remote server does not respond, the HTTP client continues to send the request until it receives an answer or until the request times out. During this time, the HTTP proxy continues to monitor the connection and uses valuable network resources.

Set the maximum line length to

Controls the maximum allowed length of a line of characters in HTTP response headers. Use this property to protect your computers from buffer overflow exploits. The default value is 4096 bytes. Because URLs for many commerce sites continue to increase in length over time, you might need to adjust this value in the future.

If an HTTP server response header line exceeds this length, the Firebox denies the HTTP response, displays a Deny page with the reason header-line too large, and generates the log message ProxyDeny: HTTP header line oversize.

To allow websites which are denied for this reason, increase the value of the setting to a higher number, such as 8192 or 16384 bytes. If a specific website is still denied, you could configure an HTTP-proxy exception for the site if you determine that it is safe, or you could contact the website administrator.

Set the maximum total length to

Controls the maximum length of HTTP response headers. If the total header length is more than this limit, the HTTP response is denied.

  1. To change settings for another category in this proxy, see the topic for that category.
  2. Save the configuration.

If you modified a predefined proxy action, when you save the changes you are prompted to clone (copy) your settings to a new action.

For more information on predefined proxy actions, see About Proxy Actions.

See Also

About the HTTP-Proxy

Give Us Feedback  ●   Get Support  ●   All Product Documentation  ●   Technical Search