The problem is that you can't invoke HTTP events such as redirects in an iRule without using an http profile on the virtual, and to do that, you've got to decrypt, which means handling the SSL cert first.
The only other option would be to process something in the CLIENT_ACCEPTED event, and there's no redirection there
Maybe something like this would work (haven't tried this):
when CLIENT_ACCEPTED {
SSL::disable
pool myPool
}
Where myPool would have the new domain's server as a pool member, but that's still not going to change the domain that the browser asked for. So, you'd likely get an SSL cert error when it did connect to the new server anyway.
So unfortunately, I don't think there's a way to do this.
Denny