Bug ID 1030853: Route domain IP exception is being treated as trusted (for learning) after being deleted

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
15.1.3, 15.1.3.1, 15.1.4, 15.1.4.1, 15.1.5

Fixed In:
17.0.0, 16.1.2.2, 15.1.5.1, 14.1.4.6, 13.1.5

Opened: Jul 01, 2021

Severity: 3-Major

Symptoms

Traffic is considered trusted for learning even though a trusted IP exception was deleted.

Impact

Traffic learning suggestions scores are miscounted. In automatic policy builder mode the policy can be updated by the policy builder based on the wrong score counting.

Conditions

Creating and deleting a route domain-specific IP exception

Workaround

Stop and restart learning for the relevant policy

Fix Information

When a route domain IP Exception configured for trusted learning is deleted, the upcoming suggestions scores will be calculated correctly without considering the deleted IP trusted.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips