Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Jonathan_c's avatar
Jonathan_c
Icon for Cirrus rankCirrus
Nov 28, 2023

How to force close TLS sessions in a failover scenario

Hi, We have an application behind Big-IP which doesn't handle failovers well. The Big-IP keeps all TLS sessions consistent and open during failover but the application doesn't support TLS resume fo...
application delivery
close session
FAILOVER
ha
security
TLS sessions
Paulius's avatar
Paulius
Icon for MVP rankMVP
Nov 29, 2023

Jonathan_c If you're performing SSL termination on the F5 you should be able to do this by going into the SSL profile and disabling session mirroring. You will have an issue if this profile is used across multiple VS and only need to do this on one of them but you can always create a copy of that SSL profile and name it something slightly different so that it will only be for this one VS in question. If you do not have SSL termination you can go into the virtual server and disable connection mirroring. These two are outlined in this article.

https://my.f5.com/manage/s/article/K08005980