SSL Keep alive setting? F5 LTM

Question

I am hunting for a setting on our LTM that will allow connection pooling ssl tcp keep alives.  Am I missing something?

hoolio · Answer

What's the issue you're trying to address?  Are you looking at client or server side connections?  Are you trying to reduce the number of SSL handshakes performed or TCP connections established? 
&nbsp;  
&nbsp; Thanks, 
&nbsp; Aaron

ngmocoit_66829 · Answer

We are trying to reduce the number of SSL handshakes.  This would be for both client and server side connects.

lopezal_55485 · Answer

Did you get resolution. I know that enabling SSL keepalive with tomcat / apache greatly reduces number of SSL connections you have to establish.

hoolio · Answer

You can use a OneConnect profile with a /32 netmask to have LTM re-use serverside TCP connections for the same client IP.  If you don't need to see the original client IP address on the servers, you could use SNAT on the VIP and then use a /0 netmask for very efficient re-use of serverside connections. 
&nbsp;  
&nbsp; See this page for details on OneConnect: 
&nbsp;  
&nbsp; http://devcentral.f5.com/wiki/default.aspx/AdvDesignConfig/oneconnect 
&nbsp;  
&nbsp; Aaron

Forum Discussion

SSL Keep alive setting? F5 LTM

4 Replies

Jeff - May 2026 Featured F5er

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

Recent Discussions

migrate from serie I to R. Cluster LTM-GTM

APM URL encoding Hardening?

Trial License for F5 virtual edition in eve-ng

certitcate error

about create wide ip,

Related Content

GTM Pool Members Gone After Maintenance? It's Probably This One Setting

Setting up persistence in F5 XC

Setting up BIG-IP with AWS CloudHSM

Setting up F5 Telemetry Streaming with Splunk Cloud

Set HTTP version

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS