I have searched but did not find a specific answer to my question.

I am having a issue with mod security blocking a download via http.

Mod security return this 406 error.

Access denied with code 406 (phase 2). Match of "rx ^apache.*perl" against "REQUEST_HEADERS:User-Agent" required. [id "990011"] [msg "Request Indicates an automated program explored the site"] [severity "NOTICE"]

The program used to access is actualy a game. Call of Duty4.

A mod is hosted on the website and when a player logs into the game server(not hosted on the same machine) it redirects his game and downloads the mod files from the webserver, then reconnects him to the game. This is done to increase DL speeds of mods and maps which can be in the 10-30 MB range.

Apparently is does not like the way the game is calling the file. I can host this file on another webserver without mod_security no issues at all.

Is there a way to allow this to pass through without disabling the entire rule set?