iRule for Secure All The Time Redirect

Question

Hello,&nbsp;
We are trying to implement an iRule to forward all non-secure traffic (via 301) to secure and non-www to wwww&nbsp;
Example:&nbsp;
http to https
http://domain.com -&gt; https://www.domain.com
http://www.domain.com -&gt; https://www.domain.com
http://www.domain.com/category -&gt; https://www.domain.com/category
http://domain.com/category -&gt; https://www.domain.com/category&nbsp;
https non-www to https www
https://domain.com -&gt; https://www.domain.com
https://domain.com/category -&gt; https://www.domain.com/category&nbsp;
Thank you for your help&nbsp;

kai_wilke · Answer

Hi Joe,
you may try the iRule below as a starting point...
when HTTP_REQUEST {
    if { [string tolower [HTTP::host]] starts_with "www." } then {
        HTTP::respond 301 Location "https://[getfield [HTTP::host] ":" 1][HTTP::uri]"
    } else {
        HTTP::respond 301 Location "https://www.[getfield [HTTP::host] ":" 1][HTTP::uri]"
    }
}

Cheers, Kai

Forum Discussion

iRule for Secure All The Time Redirect

1 Reply

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

F5 Software Downgrade from version 17.x.x to 15.x.x

Error diskmonitor

CPU utilization of F5OS on r2600

sslprovide (--f5 ssl) does not generate CLIENT/SERVER_TRAFFIC_SECRET on server-side TLS traffic

Hardware replacement i2800 to r2600

Related Content

Quarterly Security Notification October 2025

F5 HTTPS Redirect 2025

Avoiding Common iRules Security Pitfalls

Positive Security vs. Negative Security: A Comparison Using F5's Security Portfolio

BIG-IP security hardening and compliance checks

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS