Accept-Ranges: bytes Age: 390 Cache-Control: max-age=1200, public Content-Length: 646769 Content-Security-Policy: default-src 'self' https: blob:; child-src *; connect-src 'self' https: wss: *.amap.com *.inspectlet.com; font-src 'self' data: *.muscache.com fonts.gstatic.com use.typekit.net; img-src 'self' https: data: *.inspectlet.com; media-src 'self' https:; script-src 'self' 'unsafe-eval' 'unsafe-inline' a0.muscache.com cdn.siftscience.com bat.bing.com connect.facebook.net www.google-analytics.com www.googleadservices.com tpc.googlesyndication.com www.googletagmanager.com maps.googleapis.com ajax.googleapis.com app.link cdn.branch.io bam.nr-data.net js-agent.newrelic.com sslwidget.criteo.com static.criteo.net dis.criteo.com widget.us.criteo.com ethn.io blob: webapi.amap.com restapi.amap.com *.inspectlet.com https: 'sha256-Q5XE16X5zAhH/wvkJBoUIyRz1majl7a7U0JAZuQDRMc=' 'sha256-11bVsHJNXc3GrgcH8r4ZM9NwAw3ZwUVDm7MIdtgtPOs='; style-src 'self' https: 'unsafe-inline'; report-uri /tracking/csp?action=show&controller=homepages&report_only=false&req_uuid=759425e2-75e4-4d35-8ceb-6ba5c1ca0f19&version=cd31aa1ec53508bbc924787c2c2917c494c3f589 Content-Type: text/html; charset=utf-8 Date: Thu, 05 Oct 2017 10:32:22 GMT Etag: "5840af5b68bc99f098609846ffb542d2" Fastly-Debug-Digest: b9a1ba07d34f2dc41db4942b975339b7615bbdea24f237e6fc8886c7fd0c6fb8 Link: ;rel=preload;as=style,;rel=preload;as=style,;rel=preload;as=style,;rel=preload;as=style,;rel=preload;as=font;type=font/woff2;crossorigin=crossorigin,;rel=preload;as=font;type=font/woff2;crossorigin=crossorigin,;rel=preload;as=font;type=font/woff2;crossorigin=crossorigin,;rel=preload;as=script Server: nginx/1.7.12 Set-Cookie: xplwp2=new_marquee; expires=Mon, 04 Dec 2017 10:32:22 GMT; domain=.airbnb.com; path=/ Status: 200 200 OK Strict-Transport-Security: max-age=10886400; includeSubdomains Vary: Accept-Encoding Via: 1.1 varnish 1.1 varnish X-Cache: HIT, HIT X-Cache-Hits: 1, 1 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-Served-By: cache-iad2143-IAD, cache-ams4134-AMS X-Server-Name: www.airbnb.com X-Timer: S1507199542.428444,VS0,VE2 X-Ua-Compatible: IE=Edge,chrome=1 X-Xss-Protection: 1; mode=block