Forum Discussion
riyer_206339
Nimbostratus
Hi Winston,
I was referring to this KB to encode the pool member information.
https://support.f5.com/csp/article/K23254150
IPv4
BIGipServer=..0000
IPv6
BIGipServer=.
During security audit we found out that our member pool information were in 'plain text' so we had to encrypt the Cookie.
Regards, Ram
sirwinston
Mar 15, 2017Nimbostratus
But in your post you pasted an irule that has nothing to do with LTM cookie persistency. Instead it is about jsessionid persistency which happens to use a cookie as well.
If you use LTM's own cookie persistency it makes sense to use cookie encryption since it contains sensitive ip information. If you use jsessionid persistency encryption does not make sense (to me).