Forum Discussion

Nimbostratus

Sep 04, 2014

Verifying Cookie Persistence

I'm trying to validate cookie persistence is working on my Lab VE. My profile is using the Cookie Insert method with the default settings from the default cookie persistence profile. I can see that t...

Kevin_Stewart

Employee

Sep 05, 2014

How do you know for sure that the BIG-IP is using Cookie persistence and not Source persistence?

Because one is the primary and one is the secondary. This implies that the first will always be used unless it doesn't exist in the request. The cookie itself is an obfuscation of the pool-node-port of the selected member. You could then, technically, capture a known good cookie value for a pool member, create a new connection through a proxy-inspection product like Fiddler or Burp, and then swap the current cookie with the saved cookie. Assuming the above is true, the existence of this cookie should send the request to the new pool member, regardless of the secondary source persistence.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Verifying Cookie Persistence

Recent Discussions

Upgrade F5 BIGIP

DNS HM Probe issue

Is XFF a must for ASM WAF DoS

Switch ssl profile based on weak cipher detection via IRULE

F5 Switches in 'Changes Pending' Status

Related Content

Decoding the IPv4 address from the persistence cookie

How OneConnect Profile works with Cookie Persistence

Persistence Cookie Logging

Persistence Cookie Logger

Set the SameSite Attribute for LTM Persistence Cookies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS