Ssl session identifier persistence – Extreme Networks Px Series User Manual

Page 71

Advertising
background image

Px Series Application Switch Installation and Configuration Guide

6-13

Persistence Modes

is being done, a default domain and pattern rule are still needed. The commands are as
follows:

config domain default

config pattern-rule default server-group-name <name>

cookie-name <cookie name> cookie-type [self | hash | learned]

Because learned cookie mode uses a database to track users, there is a configurable
timer. If a database entry has not been used for the amount of time specified by the
timer, the database entry is deleted. To configure the timer, use the following command:

config sticky cookie-id timeout HH:MM:SS

The timer affects both layer 4 and layer 7. Valid values are in the range 00:00:05 (5
seconds) to 97:43:52. You can specify the value

infinity

to indicate that the stickiness

should last forever.

NOTE: Although you configure it in the default domain, the cookie mode applies to the
whole service, not just the default domain.

SSL Session Identifier Persistence

Websites that use SSL encrypt all transmitted information in the SSL session except the
SSL session identifier. SSL session identifier persistence works in the same way as
learned cookie persistence, except it uses the SSL session identifier instead of a cookie to
bind the client and server in the session.

Configuring SSL is done on the main line of the service definition, as follows:

config service vip <ip address> port <number> protocol tcp L7

class https

config domain default

config pattern-rule default server-group-name <name>

SSL Session ID database entries have a separate timer. If a database entry has not been
used for the amount of time specified by the timer, then the database entry is deleted.
To configure the timer, use the following command:

config sticky session-id timeout HH:MM:SS

The timer affects both layer 4 and layer 7. Valid values are in the range 00:00:05 (5
seconds) to 97:43:52. You can specify the value

infinity

to indicate that the stickiness

should last forever.

Advertising
Popular Brands
Popular manuals