For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Spidey_29396's avatar
Spidey_29396
Icon for Nimbostratus rankNimbostratus
Oct 19, 2015

Cookie persistence not working on SSL-reencryption

Hi All,   I'm having problem with cookie persistence.Currently we have this settings   ClientF5Server   Basically, we have client SSL profile and Server SSL profile. Both have certificate an...
application delivery
availability
deployment
LTM
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Oct 19, 2015

If I may clarify, the presence of source address persistence information is not indicative of anything "broken". In fact it makes sense if you think about it. You want to do cookie persistence and use source address as a fallback if the cookie doesn't appear in the client's request. But if there's no persistence information stored if/when the cookie doesn't come, then it's not going to help you. By enabling a fallback persistence mechanism in the VIP, the F5 will automatically start capturing affinity information, whether it's ever used or not.