Last Modified: May 29, 2024
Affected Product(s):
F5OS F5OS
Known Affected Versions:
F5OS-A 1.4.0, F5OS-A 1.5.0, F5OS-A 1.5.1, F5OS-A 1.5.2, F5OS-C 1.5.0, F5OS-C 1.5.1
Fixed In:
F5OS-C 1.6.0, F5OS-A 1.7.0
Opened: Feb 21, 2023 Severity: 1-Blocking
The DOS attack traffic is distributed unevenly on different TMMs, and some DOS attack traffic is not handed off to hardware due to a misconfigured DOS group.
Reduced performance for DOS attack and hardware offload is not active.
Any DOS vector traffic going through the r10k device
No workaround exists for older F5OS releases. Need to upgrade to any latest F5OS version from F5OS-A 1.6.0 or later.
Implemented per ATSE DOS group support in F5OS that enables DOS group configuration at individual hardware offload engines.