More than one method of persistence

Question

When selecting more than one persistence method. For instance SSL session ID and in addition source I.P address affinity, how does the LTM track the secondary persistence method. What I am looking for is an explaination of how for instance, once the primary persistance mthod fails, such as the SSL session ID beinge renegotiated, then how does the LTM know to stick that same session by source I.P. ? Given that the LTM no longer recognises that session.

what_lies_bene1 · Answer

Both Persistence methods create records at the same time. So in your example, the SSL session ID changes so the SSL persistence record can't be used. However, there is a source IP address persistence record that is used based and identified based upon the client IP and destination VS and Service Port. &nbsp;
So, the 'backup' method doesn't recognise the session but recognises the client based on layer3 and 4 information. Note that (OneConnect notwithstanding) the TCP connection within which the SSL session ID changes has already been persisted and that won't change, it's only new connections that will use the backup persistence method.&nbsp;

Forum Discussion

More than one method of persistence

1 Reply

Bram - January 2026 Featured Member

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

F5OS VLAN naming length restrictions

Strict header Insertion

Profile ssl server using pass phrase

error code 503 redirect irule

AST Configuration Assistance

Related Content

F5 XC – Persistence and Resiliency pt. I (persistence)

Secondary persist method

Persistence Across HTTP Methods

Overview of MITRE ATT&CK Tactic : TA0003 - Persistence

BIG-IP methods to Fix the “421 Misdirected Request” Error

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS