Cisco Bug: CSCtb49822 - http traffic with segmented GET blocked by url-filtering configuration
Feb 22, 2014
- Cisco Catalyst 6500 Series Firewall Services Module
Known Affected Releases
Symptom: Some specific web pages might fail to load through a FWSM configured for URL filtering. Sections of the page might not load at all, and hitting the 'refresh' button on the browser sometimes allows the page to load successfully. Conditions: All of the following conditions must be met to hit this bug: - The FWSM must be running version 3.2 or 4.0 - The URL being accessed must be considered a "long" url, meaning that the length of the URL is greater than 1159 bytes - The FWSM must be configured for url filtering - The HTTP GET is segmented across multiple TCP packets by the HTTP client, and the HOST portion of the http request is not present in the first TCP packet of the GET request. This might occur with Internet Explorer, but not with the firefox web browser.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases