EdH_135054
Oct 15, 2013Nimbostratus
SSL and sticky sessions (offload at app server)
We are for better or worse offloading SSL based transactions at the application server. The F5 is responsible for port translation 443 to 9002 and needs to establish a sticky session. However we are told that a sticky session is impossible given the traffic is encrypted. That is, F5 does not know how to associate the request to a persistent connection.
The fix provided by F5 tech is to perform an SSL Offload at the F5, re-encrypt and send to app server. In this way, they can establish a sticky session. The application uses JSESSIONID.
Question, is this the way to do this? Seems like there should be another way.
Newbi