http OPTIONS request blocked on OSX w/ AnyConnect Web Security

ryan.linton · ‎09-11-2015

Greetings,

I'm running into an issue on OSX devices where AnyConnect Web Security is installed. This is apparently fairly widespread: http://www.bennadel.com/blog/2559-cisco-anyconnect-vpn-client-may-block-cors-ajax-options-requests.htm

When i issue a CURL request, i get the following (details xxx'd out):

[~] curl -H "Origin: http://x.xxx.xxxxxxx.com" \

-H "Access-Control-Request-Method: GET" \

-H "Access-Control-Request-Headers: nordapiversion" \

-X OPTIONS --verbose \

http://xxxx.xxxx.xxxx.xxxx.com/api/queryresults/browse/6012239

* Hostname was NOT found in DNS cache

* Trying 111.11.101.11...

* Connected to xxxx.xxxxx.xxx.api.dev.xxxxxxx.com (127.0.0.1) port 80 (#0) <— strangely resolves to localhost

> OPTIONS /api/queryresults/browse/6012239 HTTP/1.1

> User-Agent: curl/7.37.1

> Host: xxxx.xxxxx.xxx.api.dev.xxxxxxx.com

> Accept: */*

> Origin: http://x.xxx.xxxxxxxx.com

> Access-Control-Request-Method: GET

> Access-Control-Request-Headers: foobar

>

* Empty reply from server

* Connection #0 to host xxxx.xxxxx.xxx.api.dev.xxxxxxx.com left intact

curl: (52) Empty reply from server

regular GET requests to the same URL returns just fine.

After uninstalling Web Security, everything works fine.

Is this a known issue with AnyConnect V3?

thanks,

Ryan

Tom Foucha · ‎09-16-2015

I've never seen that happen in the past and I use the ACWS client on mac daily. Without knowing the sites that you have xxxx'd out not much we can do here. I recommend you open a TAC case if this is interfering with the productivity and usability of the user.