Forum Discussion

Chris_Olson_172's avatar
Chris_Olson_172
Icon for Nimbostratus rankNimbostratus
May 24, 2017

BigIP persistence cookie changing in middle of session.

User goes to the login page, they will get the BIGIPServerPool cookie. Once they authenticate they will get the application cookie. As long as they keep on hitting the right server with the application cookie, everything will work fine. If they hit a different server with application cookie, it will result in Session Not Found/User not Authenticated error.

We are using Cookie persistence with default values (no expiration)

We set the following Cookie

Response sent 55 bytes of Cookie data: Set-Cookie: BIGipServerpool_app=3728940042.20480.0000; path=/

Then 4 or 5 requests later, the request now has

Request sent 95 bytes of Cookie data:

            BIGipServerpool_app=3594722314.20480.0000
            applicationcookie=bo5fhllsdbjgnmwstqroyp2j

I understand the additional application cookie but why did the BigIp cookie change? The session did not close and there is no expiration set.

application delivery
BIG-IP
LTM

7 Replies

Sort By
  • ekaleido_26616's avatar
    ekaleido_26616
    Icon for Cirrocumulus rankCirrocumulus
    May 24, 2017

    Create an iRule to log the cookies going both directions. My guess is at some point the original BigIP cookie is getting removed by either the client or server.

     

    • Chris_Olson_172's avatar
      Chris_Olson_172
      Icon for Nimbostratus rankNimbostratus
      Jun 01, 2017

      Thank you. I think that would be best. However, I am a network admin not proficient in irules. Can you PLEASE get me started with something you think will work?

       

  • ekaleido's avatar
    ekaleido
    Icon for Cirrus rankCirrus
    May 24, 2017

    Create an iRule to log the cookies going both directions. My guess is at some point the original BigIP cookie is getting removed by either the client or server.

     

    • Chris_Olson_172's avatar
      Chris_Olson_172
      Icon for Nimbostratus rankNimbostratus
      Jun 01, 2017

      Thank you. I think that would be best. However, I am a network admin not proficient in irules. Can you PLEASE get me started with something you think will work?

       

  • DevBabu's avatar
    DevBabu
    Icon for Cirrus rankCirrus
    May 24, 2017

    I believe the cookie is in the cookie insert mode. Doesn't matter if server removes the cookie. It's BIG-IP which inserts the cookie after it receives response back from server.

     

    Could you try using oneconnect profile and check if that solves the issue.

     

    • Chris_Olson_172's avatar
      Chris_Olson_172
      Icon for Nimbostratus rankNimbostratus
      Jun 06, 2017

      We are running 11.5.4. I expect this may be application related. However, the error "Session Not Found/User not Authenticated error" does not occur when we log on to the server directly; bypassing the F5.