XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

HSTS, HTTP Strict Transport Security on sophos XG WAF

Please add support for HSTS, HTTP Strict Transport Security on sophos XG WAF

27 votes
Sign in
(thinking…)
Sign in with: Facebook Google Sophos Features & Ideas Laboratory
Signed in as (Sign out)

We’ll send you updates on this idea

Johan shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

1 comment

Sign in
(thinking…)
Sign in with: Facebook Google Sophos Features & Ideas Laboratory
Signed in as (Sign out)
Submitting...
  • Robin commented  ·   ·  Flag as inappropriate

    Yes please, manual header additions and/or modifications/overrules on WAF rules is welcome.
    It's absolutely ridiculous that HSTS still isn't implemented by Sophos years after this was introduced/accepted by the general community...

    In UTM i could modify the configs manually for a generic HSTS addition/modification:

    Header unset Strict-Transport-Security
    Header always set Strict-Transport-Security "max-age=31536000;" env=HTTPS

    But with XG manual modifications are a challenge...

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.