Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
X-Drupal-Cache: HIT
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=7200
X-Content-Type-Options: nosniff
X-Micro-Short-Cache-Anon: MISS
HTTP/1.1 200 OK
X-Haproxy-Server: anonymous
Keep-Alive: timeout=10
Strict-Transport-Security: max-age=15768000; preload
Server: IT.NRW webserver
Content-Language: de
Date: Wed, 25 Oct 2017 22:48:45 GMT
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 25 Oct 2017 22:00:22 GMT
Content-Length: 139101
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.nrw.de *.google.com *.youtube.com *.youtu.be *.twimg.com *.twitter.com twitter.com *.jwpcdn.com *.gstatic.com *.googleapis.com *.googlesyndication.com *.openstreetmap.org *.mozilla.org *.vimeo.com *.vimeocdn.com *.flickr.com *.staticflickr.com ; style-src 'self' 'unsafe-inline' *.nrw.de *.twitter.com twitter.com *.facebook.com *.googleapis.com *.twimg.com; font-src *; img-src data: *; frame-ancestors 'self' *.nrw.de *.facebook.com *.facebook.de *.twitter.com twitter.com *.google.com *.youtube.com *.youtu.be ytchannelembed.com; child-src 'self' *.nrw.de *.facebook.com *.facebook.de *.twitter.com twitter.com *.google.com *.youtube.com *.youtu.be ytchannelembed.com *.openstreetmap.org broschueren.nordrheinwestfalendirekt.de; object-src 'self'; media-src *;
Expires: Sun, 19 Nov 1978 05:00:00 GMT
X-Permitted-Cross-Domain-Policies: master-only
X-Country: DE