Product Documentation

ns httpProfile

Sep 12, 2016

The following operations can be performed on "ns httpProfile":

add | rm | set | unset | show

add ns httpProfile

Adds an HTTP profile to the NetScaler appliance.

Synopsys

add ns httpProfile <name> [-dropInvalReqs ( ENABLED | DISABLED )] [-markHttp09Inval ( ENABLED | DISABLED )] [-markConnReqInval ( ENABLED | DISABLED )] [-cmpOnPush ( ENABLED | DISABLED )] [-conMultiplex ( ENABLED | DISABLED )] [-maxReusePool <positive_integer>] [-dropExtraCRLF ( ENABLED | DISABLED )] [-incompHdrDelay <positive_integer>] [-webSocket ( ENABLED | DISABLED )] [-rtspTunnel ( ENABLED | DISABLED )] [-reqTimeout <positive_integer>] [-adptTimeout ( ENABLED | DISABLED )] [-reqTimeoutAction <string>] [-dropExtraData ( ENABLED | DISABLED )] [-webLog ( ENABLED | DISABLED )] [-clientIpHdrExpr <expression>] [-maxReq <positive_integer>] [-persistentETag ( ENABLED | DISABLED )] [-spdy <spdy>] [-http2 ( ENABLED | DISABLED )] [-reusePoolTimeout <positive_integer>] [-maxHeaderLen <positive_integer>] [-minReUsePool <positive_integer>] [-http2MaxHeaderListSize <positive_integer>] [-http2MaxFrameSize <positive_integer>] [-http2MaxConcurrentStreams <positive_integer>] [-http2InitialWindowSize <positive_integer>] [-http2HeaderTableSize <positive_integer>]

Arguments

name

Name for an HTTP profile. Must begin with a letter, number, or the underscore \\(_\\) character. Other characters allowed, after the first character, are the hyphen \\(-\\), period \\(.\\), hash \\(\\#\\), space \\( \\), at \\(@\\), colon \\(:\\), and equal \\(=\\) characters. The name of a HTTP profile cannot be changed after it is created.

CLI Users: If the name includes one or more spaces, enclose the name in double or single quotation marks \\(for example, "my http profile" or 'my http profile'\\).

dropInvalReqs

Drop invalid HTTP requests or responses.

Possible values: ENABLED, DISABLED

Default value: DISABLED

markHttp09Inval

Mark HTTP/0.9 requests as invalid.

Possible values: ENABLED, DISABLED

Default value: DISABLED

markConnReqInval

Mark CONNECT requests as invalid.

Possible values: ENABLED, DISABLED

Default value: DISABLED

cmpOnPush

Start data compression on receiving a TCP packet with PUSH flag set.

Possible values: ENABLED, DISABLED

Default value: DISABLED

conMultiplex

Reuse server connections for requests from more than one client connections.

Possible values: ENABLED, DISABLED

Default value: ENABLED

maxReusePool

Maximum limit on the number of connections, from the NetScaler to a particular server that are kept in the reuse pool. This setting is helpful for optimal memory utilization and for reducing the idle connections to the server just after the peak time. Zero implies no limit on reuse pool size.

Default value: 0

Minimum value: 0

Maximum value: 360000

dropExtraCRLF

Drop any extra 'CR' and 'LF' characters present after the header.

Possible values: ENABLED, DISABLED

Default value: ENABLED

incompHdrDelay

Maximum time to wait, in milliseconds, between incomplete header packets. If the header packets take longer to arrive at NetScaler, the connection is silently dropped.

Default value: 7000

Minimum value: 1

Maximum value: 360000

webSocket

HTTP connection to be upgraded to a web socket connection. Once upgraded, NetScaler does not process Layer 7 traffic on this connection.

Possible values: ENABLED, DISABLED

Default value: DISABLED

rtspTunnel

Allow RTSP tunnel in HTTP. Once application/x-rtsp-tunnelled is seen in Accept or Content-Type header, NetScaler does not process Layer 7 traffic on this connection.

Possible values: ENABLED, DISABLED

Default value: DISABLED

reqTimeout

Time, in seconds, within which the HTTP request must complete. If the request does not complete within this time, the specified request timeout action is executed. Zero disables the timeout.

Default value: 0

Minimum value: 0

Maximum value: 86400

adptTimeout

Adapts the configured request timeout based on flow conditions. The timeout is increased or decreased internally and applied on the flow.

Possible values: ENABLED, DISABLED

Default value: DISABLED

reqTimeoutAction

Action to take when the HTTP request does not complete within the specified request timeout duration. You can configure the following actions:

* RESET - Send RST (reset) to client when timeout occurs.

* DROP - Drop silently when timeout occurs.

* Custom responder action - Name of the responder action to trigger when timeout occurs, used to send custom message.

dropExtraData

Drop any extra data when server sends more data than the specified content-length.

Possible values: ENABLED, DISABLED

Default value: DISABLED

webLog

Enable or disable web logging.

Possible values: ENABLED, DISABLED

Default value: ENABLED

clientIpHdrExpr

Name of the header that contains the real client IP address.

maxReq

Maximum number of requests allowed on a single connection. Zero implies no limit on the number of requests.

Default value: 0

Minimum value: 0

Maximum value: 65534

persistentETag

Generate the persistent NetScaler specific ETag for the HTTP response with ETag header.

Possible values: ENABLED, DISABLED

Default value: DISABLED

spdy

Enable SPDYv2 or SPDYv3 or both over SSL vserver. SSL will advertise SPDY support either during NPN Handshake or when client will advertises SPDY support during ALPN handshake. Both SPDY versions are enabled when this parameter is set to ENABLED.

Possible values: DISABLED, ENABLED, V2, V3

Default value: DISABLED

http2

Choose whether to enable support for HTTP/2.

Possible values: ENABLED, DISABLED

Default value: DISABLED

reusePoolTimeout

Idle timeout (in seconds) for server connections in re-use pool. Connections in the re-use pool are flushed, if they remain idle for the configured timeout.

Default value: 0

Minimum value: 0

Maximum value: 31536000

maxHeaderLen

Number of bytes to be queued to look for complete header before returning error. If complete header is not obtained after queuing these many bytes, request will be marked as invalid and no L7 processing will be done for that TCP connection.

Default value: 24820

Minimum value: 2048

Maximum value: 61440

minReUsePool

Minimum limit on the number of connections, from the NetScaler to a particular server that are kept in the reuse pool. This setting is helpful for optimal memory utilization and for reducing the idle connections to the server just after the peak time. Zero implies no limit on reuse pool size.

Default value: 0

Minimum value: 0

Maximum value: 360000

http2MaxHeaderListSize

Maximum size of header list that the NetScaler is prepared to accept, in bytes. NOTE: The actual plain text header size that the NetScaler accepts is limited by maxHeaderLen. Please change this parameter as well when modifying http2MaxHeaderListSize.

Default value: 24576

Minimum value: 8192

Maximum value: 65535

http2MaxFrameSize

Maximum size of the frame payload that the NetScaler is willing to receive, in bytes.

Default value: 16384

Minimum value: 16384

Maximum value: 16777215

http2MaxConcurrentStreams

Maximum number of concurrent streams that is allowed per connection.

Default value: 100

Minimum value: 0

Maximum value: 1000

http2InitialWindowSize

Initial window size for stream level flow control, in bytes.

Default value: 65535

Minimum value: 8192

Maximum value: 20971520

http2HeaderTableSize

Maximum size of the header compression table used to decode header blocks, in bytes.

Default value: 4096

Minimum value: 0

Maximum value: 16384

Example

add httpprofile <profile name> -dropInvalReqs ON -markHttp09Inval ON

rm ns httpProfile

Removes an HTTP profile from the appliance.

Synopsys

rm ns httpProfile <name>

Arguments

name

Name of the HTTP profile to be removed.

Example

rm httpprofile <profile name>

set ns httpProfile

Modifies the attributes of an HTTP profile.

Synopsys

set ns httpProfile <name> [-dropInvalReqs ( ENABLED | DISABLED )] [-markHttp09Inval ( ENABLED | DISABLED )] [-markConnReqInval ( ENABLED | DISABLED )] [-cmpOnPush ( ENABLED | DISABLED )] [-conMultiplex ( ENABLED | DISABLED )] [-maxReusePool <positive_integer>] [-dropExtraCRLF ( ENABLED | DISABLED )] [-incompHdrDelay <positive_integer>] [-webSocket ( ENABLED | DISABLED )] [-rtspTunnel ( ENABLED | DISABLED )] [-reqTimeout <positive_integer>] [-adptTimeout ( ENABLED | DISABLED )] [-reqTimeoutAction <string>] [-dropExtraData ( ENABLED | DISABLED )] [-webLog ( ENABLED | DISABLED )] [-clientIpHdrExpr <expression>] [-maxReq <positive_integer>] [-persistentETag ( ENABLED | DISABLED )] [-spdy <spdy>] [-http2 ( ENABLED | DISABLED )] [-http2MaxHeaderListSize <positive_integer>] [-http2MaxFrameSize <positive_integer>] [-http2MaxConcurrentStreams <positive_integer>] [-http2InitialWindowSize <positive_integer>] [-http2HeaderTableSize <positive_integer>] [-reusePoolTimeout <positive_integer>] [-maxHeaderLen <positive_integer>] [-minReUsePool <positive_integer>]

Arguments

name

Name of the HTTP profile to be modified.

dropInvalReqs

Drop invalid HTTP requests or responses.

Possible values: ENABLED, DISABLED

Default value: DISABLED

markHttp09Inval

Mark HTTP/0.9 requests as invalid.

Possible values: ENABLED, DISABLED

Default value: DISABLED

markConnReqInval

Mark CONNECT requests as invalid.

Possible values: ENABLED, DISABLED

Default value: DISABLED

cmpOnPush

Start data compression on receiving a TCP packet with PUSH flag set.

Possible values: ENABLED, DISABLED

Default value: DISABLED

conMultiplex

Reuse server connections for requests from more than one client connections.

Possible values: ENABLED, DISABLED

Default value: ENABLED

maxReusePool

Maximum limit on the number of connections, from the NetScaler to a particular server that are kept in the reuse pool. This setting is helpful for optimal memory utilization and for reducing the idle connections to the server just after the peak time. Zero implies no limit on reuse pool size.

Default value: 0

Minimum value: 0

Maximum value: 360000

dropExtraCRLF

Drop any extra 'CR' and 'LF' characters present after the header.

Possible values: ENABLED, DISABLED

Default value: ENABLED

incompHdrDelay

Maximum time to wait, in milliseconds, between incomplete header packets. If the header packets take longer to arrive at NetScaler, the connection is silently dropped.

Default value: 7000

Minimum value: 1

Maximum value: 360000

webSocket

HTTP connection to be upgraded to a web socket connection. Once upgraded, NetScaler does not process Layer 7 traffic on this connection.

Possible values: ENABLED, DISABLED

Default value: DISABLED

rtspTunnel

Allow RTSP tunnel in HTTP. Once application/x-rtsp-tunnelled is seen in Accept or Content-Type header, NetScaler does not process Layer 7 traffic on this connection.

Possible values: ENABLED, DISABLED

Default value: DISABLED

reqTimeout

Time, in seconds, within which the HTTP request must complete. If the request does not complete within this time, the specified request timeout action is executed. Zero disables the timeout.

Default value: 0

Minimum value: 0

Maximum value: 86400

adptTimeout

Adapts the configured request timeout based on flow conditions. The timeout is increased or decreased internally and applied on the flow.

Possible values: ENABLED, DISABLED

Default value: DISABLED

reqTimeoutAction

Action to take when the HTTP request does not complete within the specified request timeout duration. You can configure the following actions:

* RESET - Send RST (reset) to client when timeout occurs.

* DROP - Drop silently when timeout occurs.

* Custom responder action - Name of the responder action to trigger when timeout occurs, used to send custom message.

dropExtraData

Drop any extra data when server sends more data than the specified content-length.

Possible values: ENABLED, DISABLED

Default value: DISABLED

webLog

Enable or disable web logging.

Possible values: ENABLED, DISABLED

Default value: ENABLED

clientIpHdrExpr

Name of the header that contains the real client IP address.

maxReq

Maximum number of requests allowed on a single connection. Zero implies no limit on the number of requests.

Default value: 0

Minimum value: 0

Maximum value: 65534

persistentETag

Generate the persistent NetScaler specific ETag for the HTTP response with ETag header.

Possible values: ENABLED, DISABLED

Default value: DISABLED

spdy

Enable SPDYv2 or SPDYv3 or both over SSL vserver. SSL will advertise SPDY support either during NPN Handshake or when client will advertises SPDY support during ALPN handshake. Both SPDY versions are enabled when this parameter is set to ENABLED.

Possible values: DISABLED, ENABLED, V2, V3

Default value: DISABLED

http2

Choose whether to enable support for HTTP/2.

Possible values: ENABLED, DISABLED

Default value: DISABLED

http2MaxHeaderListSize

Maximum size of header list that the NetScaler is prepared to accept, in bytes. NOTE: The actual plain text header size that the NetScaler accepts is limited by maxHeaderLen. Please change this parameter as well when modifying http2MaxHeaderListSize.

Default value: 24576

Minimum value: 8192

Maximum value: 65535

http2MaxFrameSize

Maximum size of the frame payload that the NetScaler is willing to receive, in bytes.

Default value: 16384

Minimum value: 16384

Maximum value: 16777215

http2MaxConcurrentStreams

Maximum number of concurrent streams that is allowed per connection.

Default value: 100

Minimum value: 0

Maximum value: 1000

http2InitialWindowSize

Initial window size for stream level flow control, in bytes.

Default value: 65535

Minimum value: 8192

Maximum value: 20971520

http2HeaderTableSize

Maximum size of the header compression table used to decode header blocks, in bytes.

Default value: 4096

Minimum value: 0

Maximum value: 16384

reusePoolTimeout

Idle timeout (in seconds) for server connections in re-use pool. Connections in the re-use pool are flushed, if they remain idle for the configured timeout.

Default value: 0

Minimum value: 0

Maximum value: 31536000

maxHeaderLen

Number of bytes to be queued to look for complete header before returning error. If complete header is not obtained after queuing these many bytes, request will be marked as invalid and no L7 processing will be done for that TCP connection.

Default value: 24820

Minimum value: 2048

Maximum value: 61440

minReUsePool

Minimum limit on the number of connections, from the NetScaler to a particular server that are kept in the reuse pool. This setting is helpful for optimal memory utilization and for reducing the idle connections to the server just after the peak time. Zero implies no limit on reuse pool size.

Default value: 0

Minimum value: 0

Maximum value: 360000

Example

set httpprofile <profile name> -dropInvalReqs ON -markHttp09Inval ON

unset ns httpProfile

Removes the attributes of the HTTP profile. Attributes for which a default value is available revert to their default values. Refer to the 'set ns httpProfile' command for a description of the parameters..Refer to the set ns httpProfile command for meanings of the arguments.

Synopsys

unset ns httpProfile <name> [-dropInvalReqs] [-markHttp09Inval] [-markConnReqInval] [-cmpOnPush] [-conMultiplex] [-maxReusePool] [-dropExtraCRLF] [-incompHdrDelay] [-webSocket] [-dropExtraData] [-clientIpHdrExpr] [-reqTimeout] [-adptTimeout] [-reqTimeoutAction] [-webLog] [-maxReq] [-persistentETag] [-spdy] [-http2] [-http2MaxHeaderListSize] [-http2MaxFrameSize] [-http2MaxConcurrentStreams] [-http2InitialWindowSize] [-http2HeaderTableSize] [-reusePoolTimeout] [-maxHeaderLen] [-rtspTunnel] [-minReUsePool]

show ns httpProfile

Displays information about HTTP profiles configured on the appliance.

Synopsys

show ns httpProfile [<name>]

Arguments

name

Name of the HTTP profile to be displayed. If a name is not provided, information about all HTTP profiles is shown.

Outputs

dropInvalReqs

Dropping of invalid HTTP requests/responses

markHttp09Inval

Invalidating HTTP 0.9 requests

markConnReqInval

Invalidating CONNECT HTTP requests

cmpOnPush

Compression on PUSH packet

conMultiplex

Reuse server connections for requests from more than one client connections.

maxReusePool

Maximum connections in reusepool

webSocket

HTTP connection to be upgraded to a web socket connection. Once upgraded, NetScaler does not process Layer 7 traffic on this connection.

refCnt

Number of entities using this profile

stateflag

State flag

dropExtraCRLF

Drop any extra 'CR' and 'LF' characters present after the header.

incompHdrDelay

Maximum time to wait, in milliseconds, between incomplete header packets. If the header packets take longer to arrive at NetScaler, the connection is silently dropped.

reqTimeout

Time, in seconds, within which the HTTP request must complete. If the request does not complete within this time, the specified request timeout action is executed. Zero disables the timeout.

adptTimeout

Adapts the configured request timeout based on flow conditions. The timeout is increased or decreased internally and applied on the flow.

reqTimeoutAction

Action to take when the HTTP request does not complete within the specified request timeout duration. You can configure the following actions:

* RESET - Send RST (reset) to client when timeout occurs.

* DROP - Drop silently when timeout occurs.

* Custom responder action - Name of the responder action to trigger when timeout occurs, used to send custom message.

dropExtraData

Drop any extra data when server sends more data than the specified content-length.

webLog

Disabling weblog option

clientIpHdrExpr

Name of the header that contains the real client IP address.

maxReq

Maximum number of requests allowed on a single connection. Zero implies no limit on the number of requests.

persistentETag

Generate the persistent NetScaler specific ETag for the HTTP response with ETag header.

spdy

Enable SPDYv2 or SPDYv3 or both over SSL vserver. SSL will advertise SPDY support either during NPN Handshake or when client will advertises SPDY support during ALPN handshake. Both SPDY versions are enabled when this parameter is set to ENABLED.

http2

Choose whether to enable support for HTTP/2.

http2MaxHeaderListSize

Maximum size of header list that the NetScaler is prepared to accept, in bytes. NOTE: The actual plain text header size that the NetScaler accepts is limited by maxHeaderLen. Please change this parameter as well when modifying http2MaxHeaderListSize.

http2MaxFrameSize

Maximum size of the frame payload that the NetScaler is willing to receive, in bytes.

http2MaxConcurrentStreams

Maximum number of concurrent streams that is allowed per connection.

http2InitialWindowSize

Initial window size for stream level flow control, in bytes.

http2HeaderTableSize

Maximum size of the header compression table used to decode header blocks, in bytes.

reusePoolTimeout

Idle timeout (in seconds) for server connections in re-use pool. Connections in the re-use pool are flushed, if they remain idle for the configured timeout.

maxHeaderLen

Number of bytes to be queued to look for complete header before returning error. If complete header is not obtained after queuing these many bytes, request will be marked as invalid and no L7 processing will be done for that TCP connection.

rtspTunnel

Allow RTSP tunnel in HTTP. Once application/x-rtsp-tunnelled is seen in Accept or Content-Type header, NetScaler does not process Layer 7 traffic on this connection.

minReUsePool

Minimum limit on the number of connections, from the NetScaler to a particular server that are kept in the reuse pool. This setting is helpful for optimal memory utilization and for reducing the idle connections to the server just after the peak time. Zero implies no limit on reuse pool size.

builtin

Flag to determine if http profile is built-in or not

devno

count

Example

show http profile [profile name]