F5 - Cookie Encryption

Aus Laub-Home.de Wiki
Zur Navigation springen Zur Suche springen

Cookie Encryption via HTTP profile

Note: When you use the Configuration utility to configure cookie persistence, the cookies are encrypted using the AES cipher. The AES key length is 192 bits.

Beginning with BIG-IP LTM version 9.4.0, you can configure cookie encryption using the Configuration utility. To do so, perform the following procedure:

1.Log in to the Configuration utility.
2.Click Local Traffic.
3.Click Profiles.
4.From the Services drop-down menu, select HTTP.
5.Click Create.
6.Enter a name for the HTTP profile.
7.Enter one or more cookie names in the Encrypt Cookies box.
8.Enter a passphrase for the cookie in the Cookie Encryption Passphrase box.
9.Confirm the passphrase for the cookie by entering it in the Confirm Cookie Encryption Passphrase box.
10.Click Update.

Note: If you want to specify more than one cookie for the BIG-IP LTM to encrypt, separate the cookie names with a space.

Note: Cookie names must not contain the period ( . ) character due to a known issue. For more information, refer to SOL12472: The Configuration utility returns an error message when the HTTP profile is configured with a period character in the 'Encrypt Cookies' field.

You must now associate the HTTP profile with the virtual server.

Cookie Encryption via iRule

Externer VErweis in F5 DevCentral: hier