Cookie Persistence Issue
Our environment is setup as follows:
Reverse Proxy - Firewall - F5 LTM 1600s - Web Servers
The reverse proxy is in an internet facing DMZ, the F5s are behind a firewall in a non-internet facing DMZ (as are the web servers being served by the F5)
The reverse proxy is running Apache httpd 2.22
The F5 is running 10.2.3
The Web servers are running a .NET proprietary application that requires some form of sticky persistence. I say "some form" because ideally, we'd want affinity, but the load balancing was off, so we're exploring other options without success (SSL and Cookie based persistence)
Traffic is encrypted to the internet facing web site on the Reverse Proxy. It is decrypted for processing in the rev proxy, and then re-encrypted when sent to the site on the F5.
We are doing it this way because we also have an internal route setup directly to the web application via the F5 device that requires encryption.
AND, to complicate things even further, we have a single sign on application also being used through the same reverse proxy connection (just with a different URI context).
My first question is this - has anyone ever done this with the sticky session requirement, and had success? If so, how?
If not, then I'd like some input on how to get it to work.
The basic problem is that (according to the application developers) the session seems to be not handled properly and it is losing any level of stickiness it should have -though he cannot provide me with any specific logs to back up his assertion. The reverse proxy access logs do not indicate where these disconnects are occurring and I don't have any real level of traffic monitoring enabled in the F5 to try to see if that's where it is occurring. Sometimes I feel like the application developers are hiding from their bad outdated code by blaming it on the reverse proxy or F5, but I'm not entirely convinced it's any of my equipment (I'm just the infrastructure guy).
I would imagine this will require more info from me, so let me know what else you want to know. Any help would be most appreciated.