Wojciech_Starow
Apr 05, 2007Nimbostratus
Strange errors...
Hi I have BiGIP with configured two-way ssl. In my app I use certificates, so in every reguest i put in a header atribute a certificate. My rule is:
when CLIENTSSL_CLIENTCERT {
set ssl_cert [SSL::cert 0]
session add ssl [SSL::sessionid] $ssl_cert 180
log "ssl_cert: $ssl_cert"
}
when HTTP_REQUEST {
set client_cert [session lookup ssl [SSL::sessionid]]
HTTP::header replace SSLCertificate [X509::whole $client_cert]
log "client_cert: [X509::whole $client_cert]"
}
It works ok, but... every 2-3 minutes of inactivity in app results broken session and info in logs:
TCL error: Rule insert_cert_to_header HTTP_REQUEST - while executing X509::whole $client_cert
Does anyone know what is going on?