IIS 8 SSL F5 configuration

Question

Several IIS 8 Webservers with valid certificates and windows authentication enabled are placed behind F5 with balancing based on ssl session id. But there is persistent strange behaviour with "server not responding" "socket closed" and "access denied" errors, while with single web server all works perfect, where can be a problem?

kevin_stewart · Answer

There are probably two issues here.&nbsp;

As a general rule, SSL session ID persistence is ineffective for browser-based communications. Modern applications frequently renegotiate TLS sessions, which changes the session ID. For HTTP traffic, the very best persistence method is usually cookies.

When you say "windows authentication", are you talking about client certificate authentication? And are you not terminating the SSL between the client and the web servers?&nbsp;

Forum Discussion

IIS 8 SSL F5 configuration

Recent Discussions

AS3 Limitations

Help needed with iRule (connection closed log )

Use of SSL Decryption.

VLAN Failsafe Functionality

FTP PASV mode to Extended Passive mode

Related Content

F5 BIG-IP SSL Orchestrator Configuration with Advanced WAFaaS

Implementing SSL Orchestrator - Guided Configuration

Implementing SSL Orchestrator - F5 TMOS Configuration

LTM Policy Recipes II

Implementing SSL Orchestrator - L2 Service Configuration (Palo Alto)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS