For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Skuba_85554's avatar
Skuba_85554
Icon for Nimbostratus rankNimbostratus
Feb 13, 2009

cookie encryption (again)

i'm fairly new to using cookies on ltm so please bare with me...

 

i've created my own cookie from the standard parent cookie profile and applied an irule to encrypt it (the irule i have used is the standard aes one that is available on devcentral)

 

the problem is that i would like to see the results of the irule within the cookie on the client machine. unfortunately, i can't see any difference within the cookie whether or not the irule is specified on the virtual server

 

am i doing something wrong? how can i actually tell that the cookie is encrypted?

 

thanks
application delivery
dev
devops
iRules

4 Replies

  • The_Bhattman's avatar
    The_Bhattman
    Icon for Nimbostratus rankNimbostratus
    Feb 15, 2009
    In your code you can assing the cookie value to a variable before it is encoded and another variable after it is encoded and then output to the log file

     

     

    I.E.

     

     

    log local0. "cookiebeforeencript$ and afterencrypt$"

     

     

    Hope this helps

     

    CB

     

  • hoolio's avatar
    hoolio
    Icon for Cirrostratus rankCirrostratus
    Feb 16, 2009
    Skuba,

     

     

    You should see the value of the cookie encrypted. If the cookie value is still showing in clear text, the iRule isn't working correctly. CB's suggestion of logging the cookie values before and after encryption would help. If you want help in troubleshooting the issue, try posting the iRule you're testing and the log output from /var/log/ltm.

     

     

    Aaron
  • Skuba_85554's avatar
    Skuba_85554
    Icon for Nimbostratus rankNimbostratus
    Feb 19, 2009
    thanks guys

     

     

    hoolio - yes, i can see the value of the cookie is encrypted

     

     

    cheers