Re: http custom Gzip header being stripped on outbound request.

Mike, thanks for your reply, is there anything that can be done about it like
customizing the firewall to allow these headers other totally switching off
the firewall.

thanks

"Michael K. O'Neill" wrote:

> "sameer" <sameer@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:144C9A7C-9A87-4305-8EF3-E06884B3F6E6@xxxxxxxxxxxxxxxx
> > Hi All,
> > I am adding a custom header (Gzip header for compression) to the request
> > when calling a webservice( sitting on a webserver) over the internet from
> my
> > application ( If interested in the details of the application , it is a
> > vb.net winfom application ). The web server receives this request
> recognizes
> > this custom header, does what it has to do and sends back the data with
> the
> > custome Gzip header attached. But on some machines while the request is
> sent
> > from the client to the webserver, this customized header is being stripped
> > before reaching the web server.
> > Does any body out there know why the outbound request is being stripped
> of
> > this customized header and how can I make it not do this? I am guess it
> might
> > be something to do with on of the following
> >
> > The firewall,
> > IE security setting,
> > Antivirus
> > Popup blockers
> >
> > Client machines are using IE6 with OS windows 2000, XP.
> > Machine which is having this issue is with IE 6.0.2800.1106IC SP1 ,
> windows
> > 2000 SP4.
> >
> > Please suggest!
> >
>
> The affected machines might be running Norton/Symantec personal firewall or
> Symantec Client Firewall (SCF).
>
> Remarkably, the Norton/Symantec firewall changes HTTP headers so it can see
> and analyze the response more readily. Reportedly, one change that it makes
> (and there are several) is to replace "Accept-Encoding: gzip" in outbound
> headers to "--------------: ---". I suppose this makes it easier for the
> firewall to analyze the http response for the reason that it does not need
> to uncompress a gzip'd response.
>
> See
> http://www.newestindustry.org/index.php/2005/03/10/symantec_firewall_problems_with_accept_e
> for one report of this behavior. Apparently, the "Internet Security"
> component of the firewall makes this change (as well as other changes), so
> there's a strong possibility that a wider range of Norton/Symantec products
> will exhibit this behavior.
>
> Tell your customers to disable the firewall as a temporary test to confirm
> that the firewall is the source of the problem.
>
> Mike
>
>
>
.

Relevant Pages

  • Re: converting Java code to Perl (using LWP?)
    ... here's what my limited documentation says: ... The header structure is: Authorization: BASIC xxxxxxxxxxxxxxxx? ... is a firewall user name and password separated by ... so either ought to work. ...
    (comp.lang.perl.misc)
  • Re: Logging source IP address of a half-open scan
    ... > connection only after the TCP three-way handshake is completed. ... > packet, thereby closing the connection. ... > by a firewall when the first SYN packet is ... > would need to strip off the MAC frame header, the IP header, and then look ...
    (comp.security.firewalls)
  • Re: OWA 2007 400 bad request
    ... I had an Exchange 2003 behind a firewall (not ISA). ... Request Header Too Long ...
    (microsoft.public.exchange.admin)
  • Re: SSH tunneling/port forwarding and stateful packet inspection
    ... However, in doing a packet trace, I saw that the header of the ... So as far as teh SPI ... All the firewall can see is a TCP connection whose contents are entirely ...
    (comp.security.ssh)
  • RE: Sign custom SOAP Header on outbound call with WCF
    ... soapheaders into WCF message and also want to sign them, ... here are some findings and suggestion about custom ... WCF header and message securing: ... Microsoft MSDN Online Support Lead ...
    (microsoft.public.dotnet.framework)