Forum Discussion

IanK_37849's avatar
IanK_37849
Icon for Nimbostratus rankNimbostratus
Jul 02, 2013

https redirection when node fails

Hi We have a Virtual server on the BipIP ( v11) the BigIP terminates the https session and has apropriate certificate installed.   when a node fails that has an active https session in place ,is...
application delivery
dev
devops
iRules
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Jul 02, 2013
Are you referring the BIG-IP as a "node", or servers in a pool.

 

 

If the latter, since you're terminating the SSL at the front door, you'd need to establish some form of (layer 7?) session persistence mechanism if one node had to take over for another. SSL wouldn't be a factor since the client isn't establishing an SSL session directly to the server.

 

 

If the former, there is no way (currently) to share the SSL session state (session key, private data) between BIG-IP peers. If a BIG-IP failed over, you could maintain server node persistence, and even application session state, but the user would have to start a new SSL session with the now active BIG-IP.