I am trying to figure out the pros and cons of using sessionid based authentication vs cookie based authentication

As far as I can see in cookie based authentication

• User submits a login request sending their credentials
• The credentials are checked against a database
• Cookie will be set with the user details
• This will be done over https and the cookies will be encrypted.
• In .net if this is the authcookie user identity will be set
• The db is hit just once and subsequent calls just check the auth cookie

In case of session based authentication

• User submits a login request sending their credentials
• The credentials are checked against a database
• A session id is generated and is also stored in a db
• Cookie will be set with the user details and a generated session id
• Subsequent calls will compare the session id against the one in the database
• The db is hit every time

Questions

Is there any reason to prefer one over the other? Is the cookie based less secure (even if you encrypt and sign them)? Is the performance of session based worse since it hits the database during each call? I have seen several sites leaning one way or the other but could not get a clear picture of what approach to use. Any discussions/suggestions would be greatly appreciated.