Forum Discussion

Nimbostratus

Mar 22, 2006

Deny Large file download using HTTP::conent-Length

Hi, I am trying to implement something similar to the one in the thread titled :redirect POSTs bigger than 1MB http://devcentral.f5.com/Default.aspx?tabid=28&forumid=5&postid=5411&view=...

Historic F5 Account

Mar 23, 2006

It looks like you're on the right track so far. Have you tested this rule yet? Is it behaving the way you'd expect?

As far as only opening certain packets goes, that's really not feasible. You're deciding which packets to disallow/alter based on information inside the packet, so you have to open all of them to see if they match or not.

The up side is, the ones that aren't over your maximum allowed conent length will skip most of the rule, and should cause very little impact to your system.

-Colin

Forum Discussion

Deny Large file download using HTTP::conent-Length

Recent Discussions

What is the meaning is 52% block in WAF

Rundeck ansible F5 errors

rewrite Azure AD response for portal access via web portal

AS3 Monitoring multiple ports selectively

Open Redirection Mitigation

Related Content

Guarding Large Language Models: Advanced Approaches to Preventing Model Theft

Large payload post requests aren't responding

Time-to-exploit and large scale breaches - Jan 15th - 21st, 2024 - F5 SIRT - This Week in Security

Downloading VE for VmWare

Python BigREST ucs save and download