For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Valentine_96813's avatar
Valentine_96813
Icon for Nimbostratus rankNimbostratus
Oct 10, 2013

Generic Cookie Names

I have a need to correct cookie persistence on a set of legacy 10.2.x boxes by encrypting all the generic cookies using the default cookie persistence. I really don't want to use an iRule to fix th...
design
security
TMSH
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Oct 10, 2013

A custom cookie persistence profile with a specific name will not include the pool name in the cookie name - only the encoded IP and port. The default cookie persistence profile has the added benefit of being usable across VIPs (with the same pool), so your custom cookie profile will simply use the pool that is configured in the VIP. Otherwise your custom cookie profile should be fine.

 

As for encrypting the cookie contents, you could simply enable cookie encryption in the HTTP profile and provide the name of the cookie(s) that you want to encrypt and a passphrase.