Plesk & SocialBee have teamed up. Save 30% now!

Knowledge Base

Site on Plesk is not available: ModSecurity: Response body too large

Symptoms

Domain is not available with the following error shown:

500
external Server Error
The following messages can be found in Domains > example.com > Logs or in /var/www/vhosts/example.com/logs/error.log file:

[error] [client 203.0.113.2] ModSecurity: Output filter: Response body too large (over limit of 524288, total not specified). [hostname "www.example.com"] [uri "/index.php"] [unique_id "W*****U43-wA*****G"]

Cause

Domain exceeded the default SecResponseBodyLimit parameter for ModSecurity (512 Kb).

Resolution

For domain

Log in to Plesk.
Navigate to Domains > example.com > Apache & nginx Settings
Add the following line to Additional directives for HTTP and to Additional directives for HTTPS:

<IfModule mod_security2.c>
SecResponseBodyLimit 536870912
</IfModule>
Press Apply .

Server-wide

Log in to Plesk.
Navigate to Tools & settings > Web Application Firewall (ModSecurity) > Settings > Custom directives section:
Add the following line:

SecResponseBodyLimit 536870912
Press Apply

Related Posts

Your Complete .htaccess Guide: Including .htaccess Basics and More

NGINX vs Apache – Which Is the Best Web Server in 2024?

Top Web Servers For Linux And Windows

Knowledge Base

How to disable specific ModSecurity rules in Plesk

A website hosted in Plesk or the webmail page for it fails to load when ModSecurity is enabled

How to test ModSecurity Atomic Basic rule set in Plesk?

How to allow access to a website directory from specific IP address in Plesk?

Hosting Wiki