Hi,

Perhaps I'm missing something very obvious here but let's give it a go.
I have AM 3.2 reverse proxy and my reverse proxy is seeing similar
traffic like this (raw) request:


Code:
--------------------

POST https://testservice.foofii.com/MyApp.aspx HTTP/1.1
Accept: image/jpeg, image/gif, image/pjpeg, application/x-ms-application, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
Referer: testservice.foofii.com/MyApp.aspx
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Host: testservice.foofii.com
Content-Length: 32
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: ASP.NET_SessionId=xxx

MYPARAM1=1&MYPARAM2=2&MYPARAM3=LOGIN

--------------------


This specific application provides only one URL */MyApp.aspx*.

Let's assume that above request content could contain different values
like:

MyParam1=123&MyParam2=456&MyParam3=*Login*
MyParam1=100&MyParam2=150&MyParam3=*Logout*
MyParam1=200&MyParam2=300&MyParam3=*Browse*


So how do use AM policies to capture changes in raw request content data
(bolded above)? For example, when it says "Logout", I'd like to logout
user using AM ESP.
I was kind of hoping to use any of existing policies with content data
regexp but it is not doable as I've understood.

Any ideas?


--
tomikoski
------------------------------------------------------------------------
tomikoski's Profile: https://forums.netiq.com/member.php?userid=3801
View this thread: https://forums.netiq.com/showthread.php?t=51500