This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask the community

HTTP Header Profiles and comma separation

Go to solution
Natedog0024
New Contributor II

‎09-19-2023 05:42 AM

Hello, 

Has anyone had issues using comma separation in the referrer field of an HTTP request header? I attempted to use more than one URL comma separating them in the same field per NetSkope documentation, but it broke the URL that was already there and didn't work for the new one. I tried different variations with no luck. I had to create a new header profile for one url.. 

 

Any one else?

0 Likes
1 Solution
Go to solution
sshiflett
Netskope
Netskope
In response to Natedog0024

‎10-18-2023 11:01 AM - edited ‎10-18-2023 11:03 AM

@Natedog0024 ,

By design it should be a comma separated list that can be in a single entry per header field which is referenced in the documentation.   So your initial understanding is accurate however it appears that there is an issue with this at the moment so the separate entries are a workaround until a fix can be deployed.  I have placed a note in your support case requesting info on the fix and timeline for the comma separated functionality.  This note is internal only so you may not see a ticket update come through. 


Sam Shiflett
Netskope Solution Architect - North America

View solution in original post

0 Likes
9 Replies 9
Go to solution
sshiflett
Netskope
Netskope

‎10-18-2023 10:35 AM

Hello @Natedog0024,

Apologies for the delayed response to this query.   I see this may have been addressed in a support case and a workaround in the interim is to use separate entries:

sshiflett_0-1697650382123.png
It looks like a release date for the fix is in the works but did this workaround resolve the issue in the interim? 





Sam Shiflett
Netskope Solution Architect - North America
0 Likes
Go to solution
Natedog0024
New Contributor II
In response to sshiflett

‎10-18-2023 10:39 AM

Hello @sshiflett - I am still working through this with support. They haven't confirmed it's a bug yet although I suspect that is where we will end up.

 

Separate entries in the same HTTP header profile will not work because as the documentation states, those will be AND'd together so what you have in your screenshot will be evaluated as test2.com AND test.com where I need test2.com OR test.com.

Thanks, Nate

0 Likes
Go to solution
sshiflett
Netskope
Netskope
In response to Natedog0024

‎10-18-2023 10:45 AM

I believe the individual fields are ANDed together but multiple entries for the same field are ORed:

 

sshiflett_0-1697650957951.png
If this is not the behavior you're observing please let me know so I can investigate further.  Expanding on the previous example:

sshiflett_2-1697651056248.png

 


This should function as HOST of samshiflett.com and REFERER (test.com OR test2.com).  

 




 


Sam Shiflett
Netskope Solution Architect - North America
0 Likes
Go to solution
Natedog0024
New Contributor II
In response to sshiflett

‎10-18-2023 10:58 AM

I made the change and will get back to you once I can have a user test. For clarification, can you let me know what this means in your documentation?

 

This and the grey text in the text box made me think it was CSV?

  1. Select an attribute from the dropdown and enter a value for the custom field. You can configure the following attributes for the field:
    • Regex: Enter the regular expressions you want to match against.
    • Exact Match: Enter the values you want to match against, separated by commas.
    • Numerical: Select an operator and enter the numerical values you want to match against.

    https://docs.netskope.com/en/netskope-help/data-security/real-time-protection/profiles/http-header-p...

0 Likes
Go to solution
sshiflett
Netskope
Netskope
In response to Natedog0024

‎10-18-2023 11:01 AM - edited ‎10-18-2023 11:03 AM

@Natedog0024 ,

By design it should be a comma separated list that can be in a single entry per header field which is referenced in the documentation.   So your initial understanding is accurate however it appears that there is an issue with this at the moment so the separate entries are a workaround until a fix can be deployed.  I have placed a note in your support case requesting info on the fix and timeline for the comma separated functionality.  This note is internal only so you may not see a ticket update come through. 


Sam Shiflett
Netskope Solution Architect - North America
0 Likes
Go to solution
Natedog0024
New Contributor II
In response to sshiflett

‎10-20-2023 03:58 PM

Hello,

Testing to see if this works or not. Just awaiting users to hit the RTP for that use case.

Nate

0 Likes
Go to solution
mgl-agarcia
New Contributor
In response to Natedog0024

2 weeks ago

How did this approach work out?  We're experiencing the same issue.

0 Likes
Go to solution
Natedog0024
New Contributor II

a week ago

@mgl-agarcia The workaround provided did work for us. So instead of comma separated values you just click the plus sign and add separate values that way for each field. 

 

Natedog0024_1-1701281691164.png

 

Go to solution
mgl-agarcia
New Contributor
In response to Natedog0024

a week ago

Cool, thanks!

0 Likes
Subscribe
Top Liked Authors
Show More
Labels

In order to view this content, you will need to sign in to your account. Simply click the "Sign In" button below

Sign In