On Fri, 2 Oct 2015, at 04:27 AM, Pablo Méndez Hernández wrote:
> Thanks!
>
> As suggested by you, if I add this:
>
> server "www.mydomain.org" {
> listen on $ext_addr port 80
>
> block return 301 "https://$SERVER_NAME";
> }
>
> it works, but in that case I don't see the point of configuring HSTS if we
> are forcing the redirect... :/
>
That redirect will only be used the first time a browser (that supports HSTS)
accesses the domain. Once they've been redirected to your https host the HSTS
flag will be set in their browser and from then on the browser will immediately
use https for your domain without going through the redirect.
--
Carlin
>
> Kind regards.
>
> >
> --
> Pablo Méndez Hernández
