Operation: SlowHTTP Protection
Description: Configure WAF slow HTTP. 

Sample Configuration
<WAFSlowHTTP> <RequestHeaderTimeoutEnabled>Enable/Disable</RequestHeaderTimeoutEnabled> <RequestHeaderTimeoutSoftLimit>10</RequestHeaderTimeoutSoftLimit> <RequestHeaderTimeoutHardLimit>30</RequestHeaderTimeoutHardLimit> <RequestHeaderTimeoutExtensionRate>5000</RequestHeaderTimeoutExtensionRate> <NetworkExceptions> <Host>HostName</Host> </NetworkExceptions> </WAFSlowHTTP>



Parameter Mandatory Default Description
request_header_timeout_soft_limitYes  
Specify 'request_header_timeout_soft_limit'
confines to:
  • Type is 'SCALAR'.
  • Datatype is 'INTEGER'.
skipped_networksNo  
Specify 'skipped_networks'
confines to:
  • Type is 'ARRAY'.
  • Datatype is 'STRING'.
  • Multiple values are allowed.
request_header_timeout_hard_limitYes  
Specify 'request_header_timeout_hard_limit'
confines to:
  • Type is 'SCALAR'.
  • Datatype is 'INTEGER'.
request_header_timeout_ext_rateYes  
Specify 'request_header_timeout_ext_rate'
confines to:
  • Type is 'SCALAR'.
  • Datatype is 'INTEGER'.
request_header_timeout_enabledYes  
Specify 'request_header_timeout_enabled'
confines to:
  • Type is 'SCALAR'.
  • Datatype is 'INTEGER'.
  • Only '0', '1' are allowed.



Operation   Status   Message
SlowHTTP Protection200Operation Successful.
SlowHTTP Protection500Operation Fail.


) Copyright 2017 Sophos Limited. All rights reserved.
Sophos is registered trademarks of Sophos Limited and Sophos Group. All other product and company names mentioned are trademarks or registered trademarks of their respective owners.
No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise unless you are either a valid licensee where the documentation can be reproduced in accordance with the license terms or you otherwise have the prior permission in writing of the copyright owner.