Forum Discussion

Nimbostratus

Dec 19, 2018

How do I implement or configure Base Domain HSTS Preload on BigIP version 11

I recently transitioned proxy servers websites to F5 and now I am asked to implement or configure Base Domain HSTS Preload on all the their Virtual servers on the F5 so that the websites will meet se...

Cirrocumulus

Dec 19, 2018

You can add an iRule like this one on any virtual server where you're doing client ssl and have an http profile:

when HTTP_RESPONSE {
    HTTP::header insert Strict-Transport-Security "max-age=15552000; includeSubDomains"
}

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

How do I implement or configure Base Domain HSTS Preload on BigIP version 11

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Unable to Forward APM and AFM Logs to AWS CloudWatch Using Telemetry Streaming

Managing iRules configuration

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

[ASM] - How to disable the SQL injection attack signatures

Illigal Parameter addition as custom signature set wanted to Unblock

Related Content

Implementing SSL Orchestrator - Guided Configuration

CORS implementation

Hands-On Quantum-Safe PKI: A Practical Post-Quantum Cryptography Implementation Guide

Implementing SSL Orchestrator - F5 TMOS Configuration

Implementing SSL Orchestrator - L2 Service Configuration (Palo Alto)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS