Hertz.com website issues
#16
Join Date: Jul 2012
Posts: 1,115
Didn't want to start a new topic, but this is something I observed for a few months now with the Hertz website.
Every time I do a lot of work on the Hertz website (making reservations, reviewing reservations, rebooking at modified rates, etc.) I eventually seem to get "locked out" because Hertz starts sending malformed packages that are being filtered by my firewall.
I do not get an error message from Hertz itself. Instead, Chrome will be stuck on "Connecting..." or "Waiting for www.hertz.com..." and will eventually give a time out error. Other non-Hertz websites still work fine. If I do nothing, connectivity eventually returns to normal after a few hours. An instant fix, however, is to open a new tab in Incognito mode or change to another browser, this restores connectivity immediately, which indicates that it may be session-related.
I noticed that entries like these start appearing in my firewall logs when this happens:
This means my firewall received a bad TCP header from Hertz and filtered the package. The "a23-217-162-147.deploy.static.akamaitechnologies.com" is an Akamai CDN frontend for Hertz. The R in the last line indicates Akamai reset the connection, probably because it stalled for too long.
I checked my logs since 2017 and do not find any occurrence of this "bad hdr length" with other websites. This only happens with Hertz, and only after doing >30 minutes of work on their website. I have observed this behavior multiple times over the past few months.
Has anyone else experienced this?
Every time I do a lot of work on the Hertz website (making reservations, reviewing reservations, rebooking at modified rates, etc.) I eventually seem to get "locked out" because Hertz starts sending malformed packages that are being filtered by my firewall.
I do not get an error message from Hertz itself. Instead, Chrome will be stuck on "Connecting..." or "Waiting for www.hertz.com..." and will eventually give a time out error. Other non-Hertz websites still work fine. If I do nothing, connectivity eventually returns to normal after a few hours. An instant fix, however, is to open a new tab in Incognito mode or change to another browser, this restores connectivity immediately, which indicates that it may be session-related.
I noticed that entries like these start appearing in my firewall logs when this happens:
Code:
a23-217-162-147.deploy.static.akamaitechnologies.com.https > my.ip.50107: . [bad hdr length] (DF) a23-217-162-147.deploy.static.akamaitechnologies.com.https > my.ip.50107: . [bad hdr length] (DF) a23-217-162-147.deploy.static.akamaitechnologies.com.https > my.ip.50107: . [bad hdr length] (DF) a23-217-162-147.deploy.static.akamaitechnologies.com.https > my.ip.50107: R [bad hdr length] (DF)
I checked my logs since 2017 and do not find any occurrence of this "bad hdr length" with other websites. This only happens with Hertz, and only after doing >30 minutes of work on their website. I have observed this behavior multiple times over the past few months.
Has anyone else experienced this?