Bug ID 937769: SSL connection mirroring failure on standby with sslv2 records

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
15.1.4.1, 15.1.5, 16.0.0, 16.0.0.1, 16.0.1, 16.0.1.1, 16.0.1.2

Fixed In:
16.1.0, 15.1.5.1

Opened: Aug 18, 2020

Severity: 3-Major

Symptoms

Standby device in TLS/SSL connection-mirroring config does not handle SSLv2 records correctly.

Impact

Standby device fails handshake, active will finish handshake resulting in non mirrored connection.

Conditions

SSLv2 records processed by standby high availability (HA) device.

Workaround

None

Fix Information

Standby ssl connection mirroring now handles sslv2 records correctly

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips