Forum Discussion

Nimbostratus

10 years ago

Regarding SSL session ID persistence

Hi All, We are having issue with one of the application which seems to be using SSLv3 and low cipher value. Due to this when the source server tries to connect to VIP the connection disconnects ...

Kevin_Stewart

Employee

10 years ago

It's all about OSI layers. You can absolutely do source IP address affinity because IPs are layer 3 and SSL doesn't happen until layer 6. You cannot, however, do X-Forwarded-For headers because that is HTTP (layer 7), which you can't have access to unless you decrypt the SSL (layer 6).

Forum Discussion

Regarding SSL session ID persistence

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

F5 ASM/AWAF – violations logged but no learning suggestions generated

VIP control across data centers - how to ensure only 1 VIP is up at a time?

FQDN Node Configuration

Logical Disk Full to Migrate rSeries

Priority Group Activation is not working

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS