ACE: two URLs, cookie stickyness

Unanswered Question
Sep 17th, 2010

Hello Experts,

I have a couple of ACE that load balances two web servers using stickyness with cookie insert (BTW the topology is one armed mode). You can see the sanitized config below:

rserver host WEBSERVER1

  ip address


rserver host WEBSERVER2

  ip address


serverfarm host MY-SF

  rserver WEBSERVER1


  rserver WEBSERVER2


sticky http-cookie MY-COOKIE MY-SF-STICKY

  cookie insert

  replicate sticky

  serverfarm MY-SF

class-map match-all WEB-VIP

  2 match virtual-address tcp eq www

policy-map type loadbalance http first-match WEB-POLICY

  class class-default

    sticky-serverfarm MY-SF-STICKY

policy-map multi-match VIPS

  class WEB-VIP

    loadbalance vip inservice

    loadbalance policy WEB-POLICY

    loadbalance vip icmp-reply active

    nat dynamic 10 vlan 222

interface vlan 222

  ip address


  peer ip address

  access-group input IP-ICMP-ANY

  nat-pool 10 netmask pat

  service-policy input VIPS

  no shutdown

The web application asks the Client to connect to two different URLs, for example and

For each URL the Client receives correctly a cookie. How can we force the ACE to send for each of the two URLs a cookie that sticks to a unique real server ? Shall we change the load balancing policy ?

Thanks a Lot


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jlamousn Fri, 09/17/2010 - 08:23


Are both urls resolving to the same vip address.  If so, The ace does not care about the  url when inserting cookies.  Any connections that comes to the same vip address will get  the cookie.  The client will remember the cookie for that url, however, and if the client  connects on a subsequent request to the same vip address but using a different url, more  than likely the client will not provide the cookie that it had learned from the previous  request at the other url, and that will cause the ace to potentially load balance that  request to a new server.  So it will be possible in this scenario for the client to be  stuck to two different servers to the same vip address, one for each url or FQDN.

Joel Lamousnery
TAC Customer Support Engineer


This Discussion