For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

sally_calvert_8

Icon for Nimbostratus rank

Nimbostratus

Aug 24, 2015

are there circumstances where a cookie gets removed by the load balancer?

developer claims the load balancer is stripping off the cookie. virtual server uses 443 passthrough, profile tcp

application delivery

3 Replies

amolari
Cirrostratus
Aug 24, 2015
should not. passthrough = no ssl profiles on the BIGIP? Then no way it could remove a cookie... the BIGIP do not decrypt SSL in that case and cannot "see" any HTTP passing through.

Maybe your issue is that the backend sets a domain for the cookie and it doesn't corresponds to the URL in client's browser. I suggest a HTTP trace in your browser to see what cookie the app is setting.
Hamish
Cirrocumulus
Aug 24, 2015
If you're using SSL passthrough (Presumably he has encryption enabled and not using one of the NULL encryption suites), then no. He gets it all or the stream breaks.

H
sally_calvert_8
Nimbostratus
Aug 24, 2015
additional information - it works fine in firefox but not in IE 11 compatibility mode.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5