Web App Firewall blocks and logs duplicate cookies
Article ID: CTX245437
Updated On:
Description
12.1 build 50.31 Web App Firewall blocks all requests if duplicate cookies are found. This is also done, when Cookie Consistency is configured only to log the communication. If Cookie Consistency is turned off completely the communication is permitted.
Resolution
Change the default behaviour from APPFW_RFC_BLOCK to APPFW_RFC_BYPASS on your Profile settings
You can also disable the Logging mechanism of the bypass function by issuing the following command on the CLI
You can also disable the Logging mechanism of the bypass function by issuing the following command on the CLI
> set rfcprofile APPFW_RFC_BYPASS -duplicateCookieName stats
Problem Cause
default behaviour from AppFW is for HTTP requests to be RFC compliant
https://docs.citrix.com/en-us/citrix-adc/12-1/application-firewall/profiles/Enforce-HTTP-RFC-Compliance.html
Additional Information
https://docs.citrix.com/en-us/citrix-adc/12-1/application-firewall/profiles/Enforce-HTTP-RFC-Compliance.html
Was this article helpful?
Yes
No
Powered by
