Forum Discussion

Nimbostratus

Nov 29, 2006

Cookies and ASM

Hello, I am trying to send a cookie directly to a pool w/o ASM inspection. The cookie name changes which prohibits me from simply adding it to allowed cookies. The name is "ASPSESSIONID*****...

Cirrostratus

Nov 30, 2006

Hello,

It looks like you have a case open with support on this. I'd suggest working with them and then posting the results here once you guys figure it out.

The current behavior you're seeing is expected: if you are using an HTTP class to filter requests which contain the cookie and App Security is disabled on the class, every request with that cookie will be sent directly to the pool.

The ability to define a modified domain cookie using a regular expression has been requested in CR47126. I've attached your case to the request to have this feature built in a future version.

There are a few options for how to work around this in 9.2.3. I think it would be good to work with support to determine the best approach.

Thanks,

Aaron

Forum Discussion

Cookies and ASM

Recent Discussions

Find GSLB pool membership from vip IP

Pool Members communication with B-party via F5 VIP

Server 2 causing application slowness

F5Access | MacOS Sonoma

AS3 Deployments (shared objects)

Related Content

Changing samesite attribute on ASM TS Cookie

ASM not passing client cookies to the node servers

BIG-IP 17.0 ASM Cookie based allow requests

Cookie-based DDoS protection

Decoding the IPv4 address from the persistence cookie