Cisco Cisco Firepower Management Center 4000

Detects abnormally large chunk sizes in URI data. 

You can enable rules 119:16 and 119:22 to generate events for this option. See 

 for more information.

Disables HTTP decoding for pipelined requests. When this option is disabled, performance is 
enhanced because HTTP requests waiting in the pipeline are not decoded or analyzed, and are only 
inspected using generic pattern matching.

Enables non-strict URI parsing. Use this option only on servers that will accept non-standard URIs 
in the format "GET /index.html abc xo qr \n". Using this option, the decoder assumes that the URI 
is between the first and second space, even if there is no valid HTTP identifier after the second space.

Enables parsing of extended ASCII characters in an HTTP request URI. Note that this option is 
available in custom server profiles only, and not in the default profiles provided for Apache, IIS, or 
all servers.

Protection

Use the following procedure to configure HTTP server options. For more information on the HTTP 
server options, see 

.

Admin/Intrusion Admin

Select 

The Intrusion Policy page appears.

Click the edit icon (

) next to the policy you want to edit.

If you have unsaved changes in another policy, click 

 to discard those changes and continue. See 

 for information on saving unsaved changes in another 

policy.

The Policy Information page appears.

Click 

 in the navigation panel on the left.

The Advanced Settings page appears.

You have two choices, depending on whether 

 under Application Layer Preprocessors 

is enabled:

If the configuration is enabled, click 

.

If the configuration is disabled, click 

, then click 

.