Jump to content
Welcome to our new Citrix community!

Documentation for "Maximum Header Field Length" and "Maximum Header Length" in HTTP-Profile. I Cant find it anywhere.


Recommended Posts

Hi Holger,

Please visit the following link for the documentation: https://docs.netscaler.com/en-us/citrix-adc/current-release/system/http-configurations.html#:~:text=The%20header%20size%20can%20be,to%20use%20these%20HTTP%20configurations.

Screenshot2023-09-22at1_53_04PM.thumb.png.9f601df917ea51db4ee26f7b7afb0afa.pngOne quick thing to note is that the max value mentioned in the document is not correct. Hence, we will rectify it asap.

The following are the values for both Maximum Header Length and Maximum Header Field Length

Default: 24820 B

Min: 2048 B

Max: 122880 B

Thanks and Regards,

Subhojit Goswami

Link to comment
Share on other sites

Hi Subhojit,

thank you for the quick answer. We do need this settings, because we are having trouble in the past and with actual applications using authentication. Sometimes the cookie for some Users is quit huge and than the session is corrupted.

In the past we have used the CLI to configure only the maxHeaderFieldLen:

maxHeaderFieldLen Maximum header field length Default value: 16384 Minimum value: 2048 Maximum value: 122880

To be more specific this is the reason why I ask, what is the difference between the two options now in the GUI HTTP-Profile?

Thank you and greets

Holger-Sören Dretzke

Link to comment
Share on other sites

Hi Holger,

maxHeader.thumb.JPG.b9b7c5fe0e431d03c5bd22017229a7ff.JPGSo, Maximum Header Length parameter in the HTTP Profile caters to the maximum value the NetScaler will check for the entire header. So, for example if you set 2048 B, then NetScaler will check for that many bytes to find the end of the entire header, if not found, then it will mark the request as invalid.

Whereas, Maximum Header Field Length parameter in the HTTP Profile caters to the maximum value the NetScaler will check for each field present within the HTTP header, eg in the attached pic: Host, User-agent, etc. So, for example if you set 2048 B, then NetScaler will check for it, and if the header fields exceed that specified value, then the HTTP request will be marked invalid.

I hope this answers your query.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...