Persistence with a Virtual Server that is being used as a Pool Member

Question

Hello F5'ers -&nbsp;I have an external (public facing) VS which has one single pool member which is actually the internal VS. client --&gt; external VS time.domain.com ---&gt; Pool Member (internal VS time.domain.com). SSL pass-through with no persistence (no persistence set up on the Pool Member aka internal VS).internal VS time.domain.com ----&gt; Pool - time.domain.com_pool (5 node cluster of time servers) - SSL bridging with cookie persistence.&nbsp;Question: Is it required to enable persistence on the external VS pool member being that its actually another VIP? &nbsp;I would think so, because the ssl and tcp handshakes occur between the client and server (external VS is ssl passthrough no L7 inspection), then another session is established between the external VS and the internal VS. Hope this makes some sense to everyone. Clients have been experiencing disconnects last few days and nothing has changed.&nbsp;

sanjayp · Answer

To my knowledge, internal VS would need oneconnect profile with cookie persistence. External VS won't need persistence/oneconnect as it would have only 1 pool member (i.e. internal VS)

If session persistence is not working, clients would receive some other error but not the reset/disconnect. So please investigate the reason for the disconnect it could be something on the network, or pool members having issue.

Forum Discussion

Persistence with a Virtual Server that is being used as a Pool Member

1 Reply

Recent Discussions

Port Group on F5OS network setting

F5Access | MacOS Sonoma

Rewrite uri translation not working

Chrome V 124+ on MacOS - Virtual Server Access Issue

Transaction looks successful but file not downloading

Related Content

Check a Virtual Server's SSL Status

Virtual Server graphical App for F5 LTM

virtual server config

Reviewing vulnerability scanner results for an Access Policy Manager (APM) protected Virtual Server

Persisting Across Virtual Servers