Forum Discussion

Jonathancert's avatar
Jonathancert
Icon for Nimbostratus rankNimbostratus
Mar 03, 2020

TMOS HSTS

Is there a TMOS command to view HSTS settings for a Profile? I can see hsts listed under Property Group but not options. Second option. Is there are curl command to verify.

 

(cfg-sync In Sync)(Active)(/Common)(tmos)# sho /ltm profile http xxx_yyyy_http_prof ?

Options:

 default       Units are determined based on current values

 exa         All values are displayed in exa-units

 field-fmt      Show statistics in field format for the specified items

 gig         All values are displayed in giga-units

 kil         All values are displayed in kilo-units

 meg         All values are displayed in mega-units

 peta         All values are displayed in peta-units

 raw         No conversions are made to any values

 tera         All values are displayed in tera-units

 yotta        All values are displayed in yotta-units

 zetta        All values are displayed in zetta-units

 |          Route command output to a filter

Identifier:

 [object identifier] Name of the profile

Property Groups:

 enforcement     Specifies protocol enforcement settings for the HTTP profile.

 explicit-proxy    Specifies explicit settings for the HTTP profile.

 hsts         Specifies HSTS settings for the HTTP profile.

 sflow        Specifies sFlow settings for the HTTP profile.

 

  • If you use list instead of show you will see the current settings for the profile (list /ltm profile http xxx_yyyy_http_prof)

     

    And when you curl if you use -vv you will see it in the output display that it is defined

     

     

    < HTTP/2.0 302

    < content-type:text/html

    < content-length:161

    < location:https://example.com/

    < strict-transport-security:max-age=31536000; includeSubDomains

    <

     

  • If you use list instead of show you will see the current settings for the profile (list /ltm profile http xxx_yyyy_http_prof)

     

    And when you curl if you use -vv you will see it in the output display that it is defined

     

     

    < HTTP/2.0 302

    < content-type:text/html

    < content-length:161

    < location:https://example.com/

    < strict-transport-security:max-age=31536000; includeSubDomains

    <

     

    • Jonathancert's avatar
      Jonathancert
      Icon for Nimbostratus rankNimbostratus

      Thanks alot. I would have never found that. Trying to get management to sign off on a Linux class. I'm so lost it TMOS and Bash