<div>
<div class="content wysiwyg-content">
Why would I choose to deny &quot;unknown http headers&quot; at my firewall? &nbsp;We have an application that sends, what else, Microsoft proprietary AJAX http headers. &nbsp;Our customer's firewall is swatting those down. &nbsp;One of our developers is telling us just have the customer disable that setting. &nbsp;Unfortunately I don't have the brand and model of the firewall. &nbsp;Is there the potential for abuse with unknown headers (generally speaking)? &nbsp;Or is this a redundant filter? &nbsp;Why would you use them? &nbsp;Can anyone point me to papers that describe attacks using this kind of header?<br />

</div>
</div>


Why would I choose to deny "unknown http headers" at my firewall?  We have an application that sends, what else, Microsoft proprietary AJAX http headers.  Our customer's firewall is swatting those down.  One of our developers is telling us just have the customer disable that setting.  Unfortunately I don't have the brand and model of the firewall.  Is there the potential for abuse with unknown headers (generally speaking)?  Or is this a redundant filter?  Why would you use them?  Can anyone point me to papers that describe attacks using this kind of header?


Why would I choose to deny &quot;unknown http headers&quot; at my firewall?

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Software Firewalls

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.

Security

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.

Why would I choose to deny &quot;unknown http headers&quot; at my firewall?

Why would I choose to deny "unknown http headers" at my firewall?