cancel
Showing results for 
Search instead for 
Did you mean: 

SA-4000 - SSL-Gateway - Problems with AJAX HTTP-GET-Requests/Downloads?

Hartmut.Schmidt_
New Contributor

SA-4000 - SSL-Gateway - Problems with AJAX HTTP-GET-Requests/Downloads?

Dear Folks,

we're using a SA-4000 with Firmware-Release 7.1R21.1 (build 33989) as SSL-Gateway for our students.

Recently, some students want to download eBooks from an IP-authorized website via SSL-Gateway.

The eBook-downloads are initiated by an AJAX HTTP-GET-Request.

We had a look into the Firefox-Inspector Networkanalysis, the following URL is generated for eBook download:

https://ssl.domain.de/stream/download?id=GABA__9783956230431248&index=2&fileName=GABA__2014__9783956...

These informations are missing:

,DanaInfo=www.ebookdownload.de,SSL,dom=1,CT=sxml+

If we put them manually together, the download works and starts:

https://ssl.domain.de/stream/,DanaInfo=www.ebookdownload.de,SSL,dom=1,CT=sxml+download?id=GABA__9783...

(I've anonymized the URLs)

Do you have any ideas, if this is a SA-4000 config-problem or a bug?

Thanks in advance!

Best regards!

3 REPLIES 3
Kita_
Valued Contributor

Re: SA-4000 - SSL-Gateway - Problems with AJAX HTTP-GET-Requests/Downloads?

Hello Hartmut,

 

This does look like a bug with the rewrite engine.  However, 7.1 has reached end of engineering for bug fixes.  Currently, we are providing 7.1 releases for only security issues as some hardware are still under support until 2016.  Since SA-4000 can only be upgraded to 7.1, the only recommendation I can make is try to utilize pass through proxy configuration or use SAM / NC or Pulse.

 

Please note, we have migrated our forum to https://forums.pulsesecure.net/topic/pulse-connect-secure.

Hartmut.Schmidt_
New Contributor

Re: SA-4000 - SSL-Gateway - Problems with AJAX HTTP-GET-Requests/Downloads?

Thanks a lot for your help, Kita! :-)

We'll make a decision, what will be the best solution.

Best regards!

zanyterp
Moderator

Re: SA-4000 - SSL-Gateway - Problems with AJAX HTTP-GET-Requests/Downloads?

In addition to the recommendations from kita, while I don't know if it will fix this issue but is good practice for AJAX-based connections, can you add a custom headers policy to allow custom headers at Users>Resource Policies>Web>Selective Rewriting>Custom Headers? The resource can be specific to this site or it can be generic.