Forum Discussion

Nimbostratus

Jan 04, 2017

HSTS on LTM

We are running 11.5.4 on several BIG IPs and want to implement HSTS. I understand the concept of using an iRule or a policy but I have a question. If our member web servers are doing HTTP only and S...

Employee

Jan 04, 2017

You shouldn't need to do anything differently.

However, HSTS is a commitment to SSL. So if you have any content that is legitimately and only accessible over HTTP, that will immediately break when the client gets the HSTS header.

Recent Discussions

Which process is consuming higher CPU
Nov 22, 2024
eagertolearn
F5 Health Monitor Receive String as JSON
Nov 22, 2024
Netmart
Background Tasks
Nov 22, 2024
eagertolearn
SSL bridging without SSL proxy forward
Nov 22, 2024
maciek
Big-IP VE edition for MacBook M4 Chip
Nov 22, 2024
RoadRunnerA

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

HSTS on LTM

Recent Discussions

Which process is consuming higher CPU

F5 Health Monitor Receive String as JSON

Background Tasks

SSL bridging without SSL proxy forward

Big-IP VE edition for MacBook M4 Chip

Related Content

to HSTS or not to HSTS

Enforcing HSTS (HTTP Strict Transport Security) in LineRate

HSTS

LTM Policy Recipes

Mutations in the TLS Protocol: HSTS, False Start, Snap Start

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS