Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IP APM, SWG
Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 15.0.0, 15.0.1
Fixed In:
15.1.0, 15.0.1.1, 14.1.0.6
Opened: Apr 18, 2019 Severity: 3-Major
SWG session limits are enforced on SSLO deployments that enable Explicit proxy authentication.
SSLO fails to connect when the SWG session limit is reached.
-- SSLO with Explicit proxy authentication is deployed. -- Many concurrent SSLO connections (beyond the SWG session limit).
None.
If there is an SSLO profile paired with either an APM or SSLO per-request policy on a virtual server, and the operation has done a hostname only lookup, an SWG license is no longer consumed. This answers the case where there is auth (APM) on one virtual server, and the transparent virtual server is SSLO with hostname Category Lookup only.