Forum Discussion
nitass
Aug 08, 2013Employee
when i want to use cookie persistence i need to do SSL offloading due the fact that the VIP and REAL Servers use HTTPS.yes
Configured a Client SSL Profile, created a HTTP profile with Redirect Rewrite All and Insert X-Forwarded-For enabled. Results in TOO_MANY_REDIRECTScan you try clientssl, serverssl, http profiles with x-forwarded-for and cookie persistence?
e.g.
root@(ve11a)(cfg-sync Changes Pending)(Active)(/Common)(tmos) list ltm virtual bar
ltm virtual bar {
destination 172.28.20.111:443
ip-protocol tcp
mask 255.255.255.255
persist {
cookie {
default yes
}
}
pool foo
profiles {
clientssl {
context clientside
}
myhttp { }
serverssl {
context serverside
}
tcp { }
}
source 0.0.0.0/0
source-address-translation {
type automap
}
vs-index 6
}
root@(ve11a)(cfg-sync Changes Pending)(Active)(/Common)(tmos) list ltm profile http myhttp
ltm profile http myhttp {
app-service none
defaults-from http
insert-xforwarded-for enabled
}
root@(ve11a)(cfg-sync Changes Pending)(Active)(/Common)(tmos) list ltm pool foo
ltm pool foo {
members {
200.200.200.101:443 {
address 200.200.200.101
}
}
}
test
[root@ve11a:Active:Changes Pending] config curl -Ik https://172.28.20.111
HTTP/1.1 200 OK
Date: Thu, 08 Aug 2013 09:33:07 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 23 May 2013 00:28:46 GMT
ETag: "4185a8-59-c3efab80"
Accept-Ranges: bytes
Content-Length: 89
Content-Type: text/html; charset=UTF-8
Set-Cookie: BIGipServerfoo=1707657416.47873.0000; path=/