Forum Discussion
Ray_Dodier_1102
Sep 27, 2010Nimbostratus
So here's the deal. The VIP with the longer SSL time is not doing the SSL handshake correctly at least half the time.
The Server Hello response from the F5 is coming back with 1 of 2 Session IDs. Every other time there is an SSL handshake to this VIP it has to do a full-handshake because the Session ID sent in the Client Hello request does not match what's coming back from the F5. The Client Hello always uses the same Session ID.
This means it's having to do a full-hanshake every other time to one VIP. I do not see this behavior with the other VIP.