For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Alan_Evans_1020's avatar
Alan_Evans_1020
Icon for Nimbostratus rankNimbostratus
Sep 28, 2011

Cookie persistence with encryption or Cookie Hash or iRule with Universal

I see three ways to get past this problem but I am wondering which will be most reusable. My company is a managed hosting provider and we have hundreds of HTTP/HTTPS virtual services on our F5s and d...
config
design
jwham20's avatar
jwham20
Icon for Nimbostratus rankNimbostratus
Dec 14, 2011
Hmmmm. Gotta love the shared hosting model. Adds that fun twist to everything. Personally, I'd say you've got it right with the first option. Cookie encryption should not add to much overhead to the transaction, since it's a simple encrypt, and as you said, built in natively.

 

 

The other options are creative, fun, and ... have those cons + associated risks when it comes time to upgrade the devices (migrating irules usually works just fine, but once in a while, a command gets depricated, and you end up having to pull some rewrite magic)

 

 

-josh