Forum Discussion

Cirrus

Aug 10, 2022

Inserting X-frame-Options, X-XSS-Protection, X-Content-Type-Options, Strict-Transport-Security

Hi, We have multiple web applications running on a single Virtual server with host/domain based pool routing. For eg: red.lab.ae green.lab.ae irule: when HTTP_REQUEST { switch [string tolower ...

application delivery

Juergen_Mang

MVP

Aug 10, 2022

Before adding X-XSS-Protection header read this: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection

Recent Discussions

Change LB priority based on status
Nov 08, 2024
neeeewbie
DEVICE-0202 Error while adding rSeries as a provider in CM
Nov 08, 2024
mx9
HTML Code injection Not detected by ASM
Nov 08, 2024
MattAlex1
HTTPS Monitor Health - Receive String 200 OK Not Working
Nov 08, 2024
Netmart
SSL Server Profil
Nov 07, 2024
romolo82

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Inserting X-frame-Options, X-XSS-Protection, X-Content-Type-Options, Strict-Transport-Security

Recent Discussions

Change LB priority based on status

DEVICE-0202 Error while adding rSeries as a provider in CM

HTML Code injection Not detected by ASM

HTTPS Monitor Health - Receive String 200 OK Not Working

SSL Server Profil

Related Content

Implementing HTTP Strict Transport Security in iRules

x-content-type-options

WhiteBoard Wednesday: HTTP Strict Transport Security

Enforcing HSTS (HTTP Strict Transport Security) in LineRate

Issues with X-XSS Protection HTTP Header

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS