Forum Discussion

Amit1992

Nimbostratus

Aug 04, 2021

Session ID persistence based on SessionID parameter in Xml tag

Iam trying to write I-rule based on following requirement Client requests to initiate a session  F5 forwards the call to available Node in the pool. Node sends response to F5 containing se...

Nimbostratus

Aug 14, 2022

Me too searching for same. For my case it's HTTP payload.

when HTTP_RESPONSE {
if {[string length [findstr [HTTP::header] "<return>" 8 "</return>"]] == 30} ---> Create your own logic to identufy string
{
set SESSIONID_RS [findstr [HTTP::header] "<return>" 8 "</return>"]
log local0. "Response SessionID: $SESSIONID_RS"
persist uie add $SESSIONID_RS 1800
else {
persist source_address}

}
}
when HTTP_REQUEST {
if {[string length [findstr [HTTP::header] "<arg0>" 6 "</arg0>"]] == 30}
{

set SESSIONID_RQ [findstr [HTTP::header] "<arg0>" 6 "</arg0>"]
log local0. "Request SessionID: $SESSIONID_RQ"
persist uie $SESSIONID_RQ 1800
}
}

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Session ID persistence based on SessionID parameter in Xml tag

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

Universal Persistence iRule based upon ASP.NET SessionId

Persist On Last JSESSIONID in HTTP Parameter

Brute Force protection for single parameter like OTP

Load balancing based on ASP SessionID

Wildcard Parameter signature attack

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS