01-20-2010 05:41 AM
I just implemented ACE 4710, A3(2.4) in our network. It is doing loadbalancing with ssl termination. I configured stickiness using server cookies. My client is telling me cookie is sent in clear text on the Inernet. Is there a way on ACE to encrypt it?
your help is greately appreciated.
Solved! Go to Solution.
01-20-2010 07:25 AM
This is just not possible.
The cookie is part of the http header and the complete http data (header + content) is encrypted in the same SSL connection.
So not possible.
Have your customer send you the sniffer trace showing the problem.
Gilles.
01-20-2010 07:25 AM
This is just not possible.
The cookie is part of the http header and the complete http data (header + content) is encrypted in the same SSL connection.
So not possible.
Have your customer send you the sniffer trace showing the problem.
Gilles.
01-20-2010 08:35 AM
Thank you. That was also my thinking.
I'll ask them to give a sninffer trace.
01-20-2010 09:59 AM
gdufuor,
a part of my question was not right. Stickiness cookie is created by ACE. ACE is inserting the cookie. Does it make any diffirrence?
thank you.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide