Durch die Nutzung von AWS re:Post stimmt du den AWS re:Post Nutzungsbedingungen
AWS re:Postre:Post

I want to allow underscore( _ ) https header in load balancer

0

The default setting for load balancer does not allow underscore. But I want to allow this. What should I do?

Thank you

Tags
Application Load Balancer
Sprache
English
rePost-User-9821489
gefragt vor einem Jahr434 Aufrufe
2 Antworten
0

Hi there,

I understand that you want to know if there a way to override the "Drop Invalid header fields" ALB attribute to allow headers containing Underscore in them.

Unfortunately, there is no current ability for the ALB to consider underscore character as valid, and thus no option will be able to override this attribute if routing.http.drop_invalid_header_fields.enabled is set to true.

Although there is a workaround which will allow you to pass the headers with underscores.

You can set routing.http.drop_invalid_header_fields.enabled to false and ensure routing.http.desync_mitigation_mode is in DEFENSIVE mode.

The only limitation here is that, it allows invalid headers to pass, while desync_mitigation_mode ensures desync suspected requests doesn't share connection.

Desync mitigation is invented by ELB and goal is to protect weak target servers and underscore character is one of them that leads to confusion to some target servers that we protect.

Kind Regards,

Ahmad

profile pictureAWS
Ahmad Tariq
beantwortet vor einem Jahr
0

Hi, may I know will there be any future enhancements to allow underscores in ALB ?

Hino Rei
beantwortet vor 10 Tagen

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen

Relevanter Inhalt