request-method Command Syntax
Parameter Description
ext Specifies the extension methods.
ext_methods Identifies one of the extended methods that will be allowed to pass through
the Security Appliance.
rfc Specifies RFC 2616 supported methods.
rfc_method Identifies one of the RFC methods that will be allowed to pass through the
Security Appliance.
action Identifies the action taken when a message fails this command inspection.
allow Allows the message.
drop Closes the connection.
reset Sends a TCP reset message to the client and server.
log (Optional) Generates a syslog.
In addition to HTTP request filtering, you can inspect the HTTP message content through
the http-map command, as shown in Example 19-6. The following HTTP content criteria
can be inspected:
■ Content-length—Content length range inspection
■ Content-type-verification—Content type inspection
Table 19-3 request-method Command Syntax
Parameter Description
ext Specifies the extension methods.
ext_methods Identifies one of the extended methods that will be allowed to pass through
the Security Appliance.
rfc Specifies RFC 2616 supported methods.
rfc_method Identifies one of the RFC methods that will be allowed to pass through the
Security Appliance.
action Identifies the action taken when a message fails this command inspection.
allow Allows the message.
drop Closes the connection.
reset Sends a TCP reset message to the client and server.
log (Optional) Generates a syslog.
604 Chapter 19: IPS and Advanced Protocol Handling
■ Max-header-length—Maximum header size inspection
■ Max-uri-length—maximum URI size inspection