Forum Discussion

Nimbostratus

Sep 13, 2005

Expire Persistence Cookie

Because of application design we have active cookie persistence set up to make sure each user stays on a particular server in a pool. There are particular times in the application that users would be...

Historic F5 Account

Sep 16, 2005

Pete,

BIG-IP sets persistence cookie on every response. So, if you set expiration time of X minutes on it, it will expire after X minutes of inactivity. Persistence cookies get new lifetime equal to the expiration time on every response.

Moreover, the cookie "expiration" is actually done by the client. Clients must not send a cookie past it's expiration back to the server/BIG-IP. If a client sends expired peristence cookie, BIG-IP will use it because it does not store cookies and so it has no way to detect a stale one.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Expire Persistence Cookie

Recent Discussions

F5APM SSO SAML OAUTH

unable to question about getting hsl data to be formatted properly in splunk

question about getting hsl data to be formatted properly in splunk

Problem with lets encrypt and redirect after update

automatic learning logs/report ?

Related Content

Decoding the IPv4 address from the persistence cookie

How OneConnect Profile works with Cookie Persistence

Persistence Cookie Logging

Set the SameSite Attribute for LTM Persistence Cookies

Persistence Cookie Logger

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS