Error: "Invalid content type - Blocked" in application firewall

Error: "Invalid content type - Blocked" in application firewall

book

Article ID: CTX237475

calendar_today

Updated On:

Description

 Application Firewalls blocks the Content Type 'application/*+xml;version=30.0;charset=utf-8'  even tough Block might not be checked in security settings.

Resolution


ns.log:

Jul 15 11:26:36 x.x.x.x 15/07/2018:09:26:36 GMT FDHBENS02 0-PPE-0 : default APPFW AF_400_RESP 207572 0 :x.x.x.x 12952194-PPE0 pGCArZJpzWUG1vfyKfiVMiwT6l40000 APPFW_profile_name APPFW_profile_name Invalid content-type 'application/*+xml;version=30.0;charset=utf-8' in request headers. <blocked>


It’s Invalid content-type header value, Content-type headers should not contain version field as seen in above logs. We are blocking it as it’s not standard RFC Content-Type header.

Content-Type:  application/*+xml;version=30.0;charset=utf-8
 

Problem Cause

Non RFC complaince

Issue/Introduction

In ns.log we would see following logs: Jul 15 11:26:36 x.x.x.x 15/07/2018:09:26:36 GMT FDHBENS02 0-PPE-0 : default APPFW AF_400_RESP 207572 0 :x.x.x.x 12952194-PPE0 pGCArZJpzWUG1vfyKfiVMiwT6l40000 APPFW_profile_name APPFW_profile_name Invalid content-type 'application/*+xml;version=30.0;charset=utf-8' in request headers.

Additional Information

RFC 2616

https://tools.ietf.org/html/rfc2616

Powered by Wolken Software