Forum Discussion

Electrofly_1769's avatar
Electrofly_1769
Icon for Nimbostratus rankNimbostratus
Jul 07, 2012

Cookies blocked or stripper intermittantly by Reverse Proxy?

Hi,

 

 

I hope this is the right group for this question, I am new to F5.

 

 

I am seeing cookies (required session cookies) being occasionally stripped from HTTP requests coming in through the F5 Reverse Proxy.

 

 

I need to identify exactly why and wondered if anyone can confirm if this could be something that the RP is doing?

 

 

Is there any particular logging I can enable which might confirm this?

 

 

Thanks,

 

 

EF

 

config
design

1 Reply

Sort By
  • nitass's avatar
    nitass
    Icon for Employee rankEmployee
    Jul 07, 2012
    I need to identify exactly why and wondered if anyone can confirm if this could be something that the RP is doing?it depends on what your configuration is. anyway, by default, i do not think bigip does either block or strip cookie.

    e.g. 

    [root@ve10:Active] config  b virtual bar list
virtual bar {
   snat automap
   pool foo
   destination 172.28.19.79:80
   ip protocol 6
   profiles {
      http {}
      tcp {}
   }
}
[root@ve10:Active] config  b pool foo list
pool foo {
   members 200.200.200.101:80 {}
}

[root@ve10:Active] config  ssldump -Aed -nni 0.0 port 80
New TCP connection 1: 172.28.19.251(36155) <-> 172.28.19.79(80)
1341657823.7187 (0.0020)  C>S
---------------------------------------------------------------
GET /something HTTP/1.1
User-Agent: curl/7.15.5 (i686-redhat-linux-gnu) libcurl/7.15.5 OpenSSL/0.9.8b zlib/1.2.3 libidn/0.6.5
Host: 172.28.19.79
Accept: */*
Cookie: MyCookie=123456

---------------------------------------------------------------

New TCP connection 2: 200.200.200.10(36155) <-> 200.200.200.101(80)
1341657823.7248 (0.0030)  C>S
---------------------------------------------------------------
GET /something HTTP/1.1
User-Agent: curl/7.15.5 (i686-redhat-linux-gnu) libcurl/7.15.5 OpenSSL/0.9.8b zlib/1.2.3 libidn/0.6.5
Host: 172.28.19.79
Accept: */*
Cookie: MyCookie=123456

---------------------------------------------------------------

    for logging, hope this is helpful.

    Logging HTTP::request pre and post HTTP profile

    https://devcentral.f5.com/Community/GroupDetails/tabid/1082223/asg/50/aft/2163496/showtab/groupforums/Default.aspx