HTTPS Persistence & ISA servers

Question

We have 2 BigIP-5100's running BIG-IP Kernel 4.5.10 Build84 in an active-actve pair.  We have a squid pool with predictive node load-balancing and a virtual server for all of our clients that browse the web.  Currently, we have a workaround in place whereby all traffic from the squid servers going to the Internet are NAT'ted to a single IP address on our gateway firewall.  We are NAT'ting because sessions to secure sites on the Internet are broken. 
&nbsp;  
&nbsp; We have tried to implement persistence on the squid pool however it has problems with downstream proxy servers, such as ISA servers, chaining to our squid pool.  They can browse HTTP site without issue, however HTTPS site are extremely slow or don't work at all. 
&nbsp;  
&nbsp; We have tried active HTTP cookie with insert mode, passive HTTP, SSL persistence and the load balancing method set to round robin (for simplicity) but no joy. 
&nbsp;  
&nbsp; Any ideas anyone? 
&nbsp;  
&nbsp; Regards

joe_pruitt · Answer

This doesn't sound like a development related question but more like a product configuration one.  I'd suggest you contact F5 Product Support for help with these types of issues that deal with product functionatily and configuration.  Once you've got that figured out, we can help you automate and manage it with iControl and iRules. 
&nbsp;  
&nbsp; -Joe

Forum Discussion

HTTPS Persistence & ISA servers

Recent Discussions

How to export a list of paired external service providers from APM?

How to Renew F5 Device Certificate

BIG IP LTM - Multiple application on single VIP with multiple ports allowed.

Service discovery is not happening in AS3

Statistics ›› Analytics : HTTP : Overview

Related Content

Handling HTTP Requests on an HTTPS Virtual Server

Simple HTTP Authentication server

HTTP To HTTPS Cookie Persistence

HTTP and HTTPS on a single virtual server

Persist using a string in an HTTP URI

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS