HSTS preload?

cjabates · ‎02-11-2019

Can this be done in a Horizon View 7.7 instantiation?

"Add an HTTP Strict Transport Security (HSTS) header to HTTPS responses .... in order to direct web clients to only use HTTPS for future access."

We are using View Security Servers in our DMZ, tunneling to our sessions internally.

This is a US Government installation, so no configs or logs or any of that useful stuff- sorry.

sjesse · ‎02-11-2019

I don't know this answer directly, but if you have a load balancer in front of them, why not just redirect 80 traffic in the load balancer to 443. This way 80 should never touch the back end servers, this is what we are doing with our environment. F5 has a guide that has the redirect in it, this is for the unfied access gateways, but the same idea applies for the redirect

https://www.f5.com/pdf/solution-center/load-balancing-vmware-unified-access-gateway-servers-deployme...

All

HSTS preload?