Home‎ > ‎

The Danger of Indefinate Timeouts

posted Feb 22, 2013, 12:38 PM by Allen Gattis
You may be tempted to configure your F5 for 'indefinite' TCP session. These seems nice when you have a system such as WebSEAL that makes persistant connections to AD.

Don't - Your F5 may hit ceilings and drop your session without sending you a reset. When that happens, the client still thinks it has a session and goes though a long process of socket write failures before giving up and creating a new session.