F5 - Cookie Encryption
Cookie Encryption via HTTP profile
Note: When you use the Configuration utility to configure cookie persistence, the cookies are encrypted using the AES cipher. The AES key length is 192 bits.
Beginning with BIG-IP LTM version 9.4.0, you can configure cookie encryption using the Configuration utility. To do so, perform the following procedure:
1.Log in to the Configuration utility. 2.Click Local Traffic. 3.Click Profiles. 4.From the Services drop-down menu, select HTTP. 5.Click Create. 6.Enter a name for the HTTP profile. 7.Enter one or more cookie names in the Encrypt Cookies box. 8.Enter a passphrase for the cookie in the Cookie Encryption Passphrase box. 9.Confirm the passphrase for the cookie by entering it in the Confirm Cookie Encryption Passphrase box. 10.Click Update.
Note: If you want to specify more than one cookie for the BIG-IP LTM to encrypt, separate the cookie names with a space.
Note: Cookie names must not contain the period ( . ) character due to a known issue. For more information, refer to SOL12472: The Configuration utility returns an error message when the HTTP profile is configured with a period character in the 'Encrypt Cookies' field.
You must now associate the HTTP profile with the virtual server.
Cookie Encryption via iRule
Externer VErweis in F5 DevCentral: hier