Forum Discussion

Altostratus

Mar 18, 2017

Cookie Encryption Issue

Hello Experts, I have below VS configured with cookie persistence profile : ltm virtual /Common/VIP_192.168.1.1_443 { destination /Common/192.168.1.1:443 ip-protocol tcp mask 25...

application delivery

cookie encryption issue

LTM

Prince

Altostratus

Mar 20, 2017

Nathan, i am talking about the data flow between F5 and backend server. In that data, i see sometimes the cookies are encrypted and at times it is not.

So wondering is this so ? Not checked on the client, but my first concern is when cookie encryption is set to required, shouldnt it always be encrypted :

ltm persistence cookie /Common/Persist_192.168.1.1_443 
{ app-service none 
**cookie-encryption required** 
cookie-encryption-passphrase $M$O0$PU5nvTKYL2GUTJInH7ZvSw== 
defaults-from /Common/cookie 
method insert 
timeout 180 
}

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Cookie Encryption Issue

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Encrypt HTTP cookies with dynamic names

F5 LTM cookie persistence encryption issue

Cookie Encryption Across Pools and Services

Re: SYN Cookie operation

Lock and Key - Encrypting EBS Disk Volumes for BIG-IP AWS Deployments

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS