For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Juanma_47808's avatar
Juanma_47808
Icon for Nimbostratus rankNimbostratus
Jun 16, 2008

ssl persist fails - 2 users go to the same session!

Hello all,     this is my SCENARIO:   -------------------     client -SSL-> (ends)BigIP(starts) -SSL-> server     BigIP LTM 9.3.1 version     ...
application delivery
dev
devops
iRules
Andrea_Knapp_28's avatar
Andrea_Knapp_28
Icon for Nimbostratus rankNimbostratus
Jun 24, 2008
Hi Deb -

 

 

I have gone through tech support on this issue, that is why I am asking Juanma if there are proxies that the customers are coming from. We had this issue and it took us over 7 months to figure out that the issue was with the way that v9 was changed and how proxies interacted with it. I wanted to try to save Juanma from the grueling pain of trying to figure out why this is happening. For us it was because 4.x sends the persistent cookie back everytime insuring that the cookie set to MAX Age = 0 would not be registered with the proxies. However in v9.x the cookie is only set on the first interaction with the client. All subsequent requests see this cache max age = 0 and bluecoats specifically consider this to be a type t-value object and will set it to cache causing users information to cross data. In order to solve this issue we had to change out max age= 0 to set it to private.

 

 

Thank you,

 

Andrea