IIS and .NET 5 ASP.NET MVC 5 App, HttpsRedirect not working outside IIS Server
I have an ASP.NET Core 5 MVC app, running fine on a IIS 10 server.
I've been asked to enable HTTPS and enforce it on port 6443. I have been given the certificate and configured it on IIS.
When going into Chrome locally on the server and going to http://localhost, you get correctly redirected to https://localhost:6443
Binding is configured:
Certificate is ok and locally it works.
When from another location in the network i visit the ip address of the server, if I visit it in https, it works.
If I visit in http, I get this chrome error:
ERR_CONNECTION_REFUSED, check connection or proxy.
This does not make any sense, before enabling https, it was working fine on http:80, and locally, the redirection works.
This is how it's done in code (Startup.cs):
public void Configure(IApplicationBuilder app)
{
if (appOptions.HttpsRedirectionEnabled)
{
app.UseHttpsRedirection();
}
// The default HSTS value is 30 days. You may want to change
// this for production scenarios, see https://aka.ms/aspnetcore-hsts.
app.UseHsts();
}
and
public void ConfigureServices(IServiceCollection services)
{
services.AddHttpsRedirection(options =>
{
options.RedirectStatusCode = StatusCodes.Status301MovedPermanently;
options.HttpsPort = 6443;
});
}
Also, visiting https://serverip seems to not work aswell, kinda like redirecting on 443 instead of 6443. So I get it working only locally.
I don't want to install any url rewrite stuff, this has to work normally.
What config I am missing on IIS or whatever else?
EDIT: been asked to add trace from chrome dev tools, here it is:
More detailed trace
Chrome hsts section:
But querying this finds stuff
As discussed in the comments, the browser had cached an HSTS response for the server, telling it to always request the secure version of the site. As per RFC 6797, this will only ever redirect to port 443.
Disabling the HSTS headers and clearing the cached response from Chrome (using the chrome://net-internals/#hsts settings page) resolved the issue.
- Sort program not working, not sure why
- Fast & accurate atan/arctan approximation algorithm
- What's the difference between strtok_r and strtok_s in C?
- How memory address for pointer to arrays is same as an element in 2D array?
- Which is the best way to suppress "unused variable" warning
- How to use ellipsis in c's case statement?
- How can I exclude non-numeric keys? CS50 Caesar Pset2
- Fast ceiling of an integer division in C / C++
- Is there an invalid pthread_t id?
- How to Implement Universal Setter/Getter Functions for Interrupt-Driven Variables in Embedded C?
- How does SIMD (avx) processing work? for example, if I want 10 32 bit floats how do i fit in a 256 bit avx vector?
- FDCAN problems on STM32G4
- How does the call macro enable mutual recursion between functions f and g in this Hanoi Tower implementation?
- Running test on Rocket core CPU - global variable initialized to 0 is unsuccessful, output wrong value instead
- Interacting with C arrays without knowing the size
- Combination of two strings
- Avoiding strcpy overflow destination warning
- carriage return by fgets
- How to use special characters in C?
- Why does 1.0/100.0 == 0.1/10.0 give True?
- Is it correct to compare pointers in C?
- Force free() to return malloc memory back to OS
- How can I print to standard error in C with 'printf'?
- What is the standard behavior of fread in C on Windows?
- How is strtok removing lines it shouldn't have access to?
- Using array as smart point in C
- Assigning string to malloced 2d char array not working as intended
- How to refactor repetition inside a Makefile?
- Why does an empty preprocessor command still evaluate to something?
- How to implement variable sized array within C struct