Last Modified: Dec 07, 2023
Affected Product(s):
BIG-IP LTM
Known Affected Versions:
14.1.4.3, 14.1.4.4, 14.1.4.5, 14.1.4.6, 14.1.5, 15.1.4, 15.1.4.1, 15.1.5
Fixed In:
17.1.0, 15.1.5.1, 14.1.5.1
Opened: Jan 25, 2022 Severity: 3-Major
Virtual servers do not exit hardware SYN Cookie mode even after the SYN flood attack stops. The TMSH 'show ltm virtual' output shows 'full hardware' mode.
The affected virtual server will not receive TCP SYN packets until TMM is restarted. The limited range of MSS values in SYN Cookie mode may slightly affect performance.
-- VELOS and rSeries platforms. -- SYN cookie mode is triggered.
Disable HW SYN Cookie mode on all virtual servers.
Virtual server is now fully exits hardware SYN Cookie mode once a SYN flood attack stops.