Forum Discussion
Ruudje_121125
Nimbostratus
NimbostratusSSL Offloading + X-Forwarding + Cookie persistence
Hi all,
I have a BIGIP LTM 1600 with software version 11.3
For the virtual server (for the use of Blackboard and ELEUM) we have some issues. Clients who have an open session get sess...
nitass
Employee
Employeewhen i want to use cookie persistence i need to do SSL offloading due the fact that the VIP and REAL Servers use HTTPS.yes
Configured a Client SSL Profile, created a HTTP profile with Redirect Rewrite All and Insert X-Forwarded-For enabled. Results in TOO_MANY_REDIRECTScan you try clientssl, serverssl, http profiles with x-forwarded-for and cookie persistence?
e.g.
root@(ve11a)(cfg-sync Changes Pending)(Active)(/Common)(tmos) list ltm virtual bar
ltm virtual bar {
destination 172.28.20.111:443
ip-protocol tcp
mask 255.255.255.255
persist {
cookie {
default yes
}
}
pool foo
profiles {
clientssl {
context clientside
}
myhttp { }
serverssl {
context serverside
}
tcp { }
}
source 0.0.0.0/0
source-address-translation {
type automap
}
vs-index 6
}
root@(ve11a)(cfg-sync Changes Pending)(Active)(/Common)(tmos) list ltm profile http myhttp
ltm profile http myhttp {
app-service none
defaults-from http
insert-xforwarded-for enabled
}
root@(ve11a)(cfg-sync Changes Pending)(Active)(/Common)(tmos) list ltm pool foo
ltm pool foo {
members {
200.200.200.101:443 {
address 200.200.200.101
}
}
}
test
[root@ve11a:Active:Changes Pending] config curl -Ik https://172.28.20.111
HTTP/1.1 200 OK
Date: Thu, 08 Aug 2013 09:33:07 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 23 May 2013 00:28:46 GMT
ETag: "4185a8-59-c3efab80"
Accept-Ranges: bytes
Content-Length: 89
Content-Type: text/html; charset=UTF-8
Set-Cookie: BIGipServerfoo=1707657416.47873.0000; path=/
