So I recently set up GitLab in my server and I use the kemp load balancer to reverse proxy and also manage other rules and stuff but today I noticed that the web IDE wasn't working and after looking at the logs and doing some research I found out that the reason for this to happen is that kemp is decoding slashes that it shouldn't be decoding in the first place and I was wondering if it's possible for me to either bypass URL decoding in all the URLs or in certain ones to avoid this problem from happening.
Right URL: https://example.domain.com/api/v4/projects/qcast%2Fqcast-vosk-stt
Wrong URL (Decoded by Kemp): https://example.domain.com/api/v4/projects/qcast/qcast-vosk-stt
The wrong URL originates a 404 in GitLab since it doesn't recognize the URL since the %2F cant be decoded into a slash.
The logs:
2021-11-01T14:58:35+00:00 Kemp kernel: Detect: Invalid URL [00.00.00.00:51554->10.1.10.10:443] '/api/v4/projects/qcast/qcast-vosk-stt' - Invalid URL specification (sid:0 rev:0)
2021-11-01T14:58:35+00:00 Kemp kernel: Detect: Invalid URL [00.00.00.00:51632->10.1.10.10:443] '/api/v4/projects/qcast/qcast-vosk-stt' - Invalid URL specification (sid:0 rev:0)
2021-11-01T14:58:35+00:00 Kemp kernel: Detect: Invalid URL [00.00.00.00:58300->10.1.10.10:443] '/api/v4/projects/qcast/qcast-vosk-stt' - Invalid URL specification (sid:0 rev:0)
Can I fix this with content rules or other way?
Update:
I found out that the problem was being caused by this option
I disabled it temporarily for a quick fix but this should give some hits for helping me disable this rule for only a couple URLs or patterns.
PS: Its its the problem is not solved, I only included the temporary fix to help someone with more knowledge help me find how can I fix this with out disabling this sort of protection.
