Hi Guys!
We have an on-premises WAF (HA) deployed in KRP mode in our enviroment. On of our web applications use quite long (~10 mins) HTTP POSTs for some operations.
Here is the connection layout:
Client -> Imperva WAF -> HAProxy LB -> Web Server
Problem is the request terminates around 5 minutes each and every time. HAProxy clearly states, that the client (in this case the WAF) unexpecdetly terminates the connection.
In case the traffic goes through HAProxy directly (avoiding the WAF) the request completes without any errors.
I went through alterts and violatoins multiple times but didn't find any cause for this, nothing blocked. In fact it happens as well when the Server Group runs in simulation mode.
Is there a default timeout for HTTP (or TCP?) sessions in Imperva WAF, what could be the problem? If so, how can I change it? Where should I look for errors?
Every idea or opinion is welcome!
Thanks
#On-PremisesWAF(formerlySecuresphere)------------------------------
Attila Pozsonyi
Hungarian State Treasury
Budapest
------------------------------