Persistence iRule

Question

Connections to a pool should use a non secure cookie persistence profile which I have created, unless they come from a specific list of IP addresses which need to use source address persistence&nbsp;
when CLIENT_ACCEPTED&nbsp;
{
if { [class match [IP::client_addr] equals addressrange] }
{ pool SF-ECRPROD
    persist source_addr}&nbsp;
else {
    pool SF-ECRPROD
    persist ?
    } 
}&nbsp;
How do I assign a specific persistence profile in the iRule?&nbsp;

nag_54823 · Answer

Hi Kevinmc,&nbsp;
If you want to use cookie insert persistence method , you can use below &nbsp;
persist cookie insert "cookiename" expirationtime&nbsp;

kevinmc · Answer

thanks nag. How do I specify if it is a secure or unsecure cookie? This virtual server is doing SSL offload so needs to use unsecure cookie&nbsp;

kai_wilke · Answer

Hi KevinMC,
I would recommend to use a Cookie-based persistence profile (including your desired settings) as the default profile on your Virtual Server and then use an iRule to overwrite this setting for just specific SRC-IPs...
when CLIENT_ACCEPTED { 
    if { [class match [IP::client_addr] equals addressrange] } then { 
        persist source_addr
    } else {
         Do nothing and keep the default persistence profile for this connection
    }
    pool SF-ECRPROD 
}

Cheers, Kai

Forum Discussion

Persistence iRule

3 Replies

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

2026 301a exam

F5OS login with admin/root failed via console

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

UCS Encryption Question

Unblock Request WAF

Related Content

F5 XC – Persistence and Resiliency pt. I (persistence)

XFF Universal Persistence iRule

Overview of MITRE ATT&CK Tactic : TA0003 - Persistence

Weblogic JSessionID Persistence

Setting up persistence in F5 XC

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS