Forum Discussion

firedragon852_1's avatar
firedragon852_1
Icon for Nimbostratus rankNimbostratus
Jan 02, 2013

SSL Persistence

Our customer has an F5 load balancer in front of a pair of apache's proxying for a pair of JBoss App Servers. The apache's are responsible for all the SSL handshakes. The F5 should just pass the SSL traffic to the apache's.

 

We have a hard time trying to get sticky sessions to work over HTTPS. We know that we need to use SSL persistence, but which default virtual server profile should we use? We tried Performance (Layer 4) and it complained something about a FTP profile (doesn't make any sense). We tried Performance (HTTP) and the F5 wouldn't let any HTTPS traffic through it.

 

Can someone tell us in simple terms what we need to set?

 

 

config
design

4 Replies

Sort By
  • What_Lies_Bene1's avatar
    What_Lies_Bene1
    Icon for Cirrostratus rankCirrostratus
    Jan 02, 2013
    I would have thought this would be the ideal candidate for a Performance (Layer 4) Virtual Server. Can you post the current VS configuration, with sensitive info replaced please?
  • firedragon852_1's avatar
    firedragon852_1
    Icon for Nimbostratus rankNimbostratus
    Jan 02, 2013

    Hi Steve,

     

    We are getting the following error:

     

    https://devcentral.f5.com/community/group/aft/85097/asg/52

     

    We cannot even set SSL persistence for a Performance (Layer 4) VS. That's why we want to know which Virtual Server to use so that SSL persistence can work as expected. Thanks.

     

     

  • nitass's avatar
    nitass
    Icon for Employee rankEmployee
    Jan 02, 2013
    i see Aaron said standard virtual server (tcp profile) should be used instead, didn't he?

     

     

    Sorry for the wrong information. I guess SSL persistence isn't compatible with a Perf Layer4 VIP--which I guess makes sense as SSL is above layer 4. You could try using SSL session persistence with a standard TCP based virtual server without a client or server SSL profile.

     

     

    Aaron