Forum Discussion
hooleylist
Jul 21, 2006Cirrostratus
Thanks for the clarification. I think this is your current configuration:
VIP:443 -> client SSL profile -> iRule1 -> pool1:80
VIP:80 -> iRule2 to redirect to VIP:443 (-> pool1:80??)
Are you redirecting all requests to VIP:80 to the VIP:443 using iRule2? Do requests ever make it to the nodes for the VIP:80?
If all requests to VIP:80 are being redirected to HTTPS or if no stateful content is being provided over HTTP, there shouldn't be any need to persist client requests to VIP:443 to the same node they used for VIP:80 (and therefore you shouldn't need to add a persistence profile to VIP:80).
Regardless, if you're using the same pool for both VIPs, the cookie insert persistence profile should work without setting the nodes in the pool to port 0. This assumes that the two VIP's are on the same IP address or host (so the client will actually send the cookie it received from VIP:80 to VIP:443).
This is a basic function of persistence. I don't think either rule should have any bearing on the peristence functionality. If this isn't working, I would suggest contacting support to get some assistance. It should be pretty straightforward for someone to take a look at your configuration in a tech.out and figure out exactly what's not working and why.
Aaron