Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP AFM
Known Affected Versions:
14.1.0.1, 14.1.0.2, 14.1.0.3
Fixed In:
15.0.0, 14.1.0.5
Opened: Mar 04, 2019 Severity: 3-Major
After failover, there is no GARP from the newly active device for FW NAT policy rule's dest prefixes.
After failover traffic can fail/degrade.
Configure FW NAT policy rules with proxy arp enabled for destination prefixes. After failover no GARP is sent for those destinations prefixes.
No workaround other than forcing the initial active HA device to be active again.
The system now sets the high availability (HA) unit correctly for FW NAT policy.