X-Content-Type-Options: nosniff
Accept-Ranges: bytes
Set-Cookie: visid_incap_1227725=NNi/OWDVTVazpe/Ih4sba/Ksn1oAAAAAQUIPAAAAAADam+73zLr1QBmIvjd7xSmV; expires=Thu, 07 Mar 2019 08:39:58 GMT; path=/; Domain=.settled.govt.nz
Content-Type: text/html; charset=utf-8
X-Frame-Options: SAMEORIGIN
Age: 0
Set-Cookie: ___utmvbRkuEfEIB=bZx
X-Iinfo: 13-18226108-18226116 NNNN CT(306 302 0) RT(1520413938153 24) q(0 0 6 9) r(11 14) U2
Vary: Accept-Encoding
Set-Cookie: ___utmvmRkuEfEIB=xInASklqRjr; path=/; Max-Age=900
Transfer-Encoding: chunked
X-XSS-Protection: 1; mode=block
Frame-Options: SAMEORIGIN
Via: 1.1 varnish-v4
Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.cwp.govt.nz *.settled.govt.nz *.rea.govt.nz *.typekit.net *.google.com *.googletagmanager.com *.facebook.net *.google-analytics.com; connect-src 'self' *.cwp.govt.nz *.settled.govt.nz *.rea.govt.nz *.typekit.net; img-src 'self' data: *.cwp.govt.nz *.settled.govt.nz *.rea.govt.nz *.typekit.net *.doubleclick.net *.gstatic.com *.facebook.com *.google-analytics.com; style-src 'self' 'unsafe-inline' *.cwp.govt.nz *.settled.govt.nz *.rea.govt.nz *.googleapis.com *.google.com; font-src 'self' *.gstatic.com *.typekit.net; frame-src 'self' *.youtube.com *.doubleclick.net;
HTTP/1.1 200 OK
X-Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.cwp.govt.nz *.settled.govt.nz *.rea.govt.nz *.typekit.net *.google.com *.googletagmanager.com *.facebook.net *.google-analytics.com; connect-src 'self' *.cwp.govt.nz *.settled.govt.nz *.rea.govt.nz *.typekit.net; img-src 'self' data: *.cwp.govt.nz *.settled.govt.nz *.rea.govt.nz *.typekit.net *.doubleclick.net *.gstatic.com *.facebook.com *.google-analytics.com; style-src 'self' 'unsafe-inline' *.cwp.govt.nz *.settled.govt.nz *.rea.govt.nz *.googleapis.com *.google.com; font-src 'self' *.gstatic.com *.typekit.net; frame-src 'self' *.youtube.com *.doubleclick.net;
X-WebKit-CSP: default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.cwp.govt.nz *.settled.govt.nz *.rea.govt.nz *.typekit.net *.google.com *.googletagmanager.com *.facebook.net *.google-analytics.com; connect-src 'self' *.cwp.govt.nz *.settled.govt.nz *.rea.govt.nz *.typekit.net; img-src 'self' data: *.cwp.govt.nz *.settled.govt.nz *.rea.govt.nz *.typekit.net *.doubleclick.net *.gstatic.com *.facebook.com *.google-analytics.com; style-src 'self' 'unsafe-inline' *.cwp.govt.nz *.settled.govt.nz *.rea.govt.nz *.googleapis.com *.google.com; font-src 'self' *.gstatic.com *.typekit.net; frame-src 'self' *.youtube.com *.doubleclick.net;
X-XXS-Protection: 1; mode=block
Date: Wed, 07 Mar 2018 09:12:19 GMT
X-Varnish: 5971856
X-CDN: Incapsula
Set-Cookie: incap_ses_878_1227725=trbDQfmKD2DOSg6wjkgvDPOsn1oAAAAA4Rlz/YXxHvq2+LcBuxXeyg==; path=/; Domain=.settled.govt.nz
Set-Cookie: ___utmvaRkuEfEIB=zCDhDcs; path=/; Max-Age=900
Cache-Control: max-age=0, must-revalidate, no-transform, no-cache, no-store
Server: nginx
Connection: keep-alive
XuiOsalk: Kts; path=/; Max-Age=900
Strict-Transport-Security: max-age=31536000