Bug ID 1035889

Bug Tracker
ID 1035889

Bug ID 1035889: Support of ECDSA for DNSSEC in Unbound

Last Modified: Apr 28, 2025

Affected Product(s):
BIG-IP TMOS(all modules)

Fixed In:
17.1.0

Opened: Jul 23, 2021

Severity: 3-Major

Symptoms

In BIG-IP, DNS Cache does not support Elliptic Curve Digital Signature Algorithm (ECDSA), which is important for DNS software vendors to comply with DNS standards.

Impact

Unable to validate the zone, signed with ECDSA.

Conditions

Listener is configured with cache (validating resolver) profile, and zone is signed with ECDSA algorithms.

Workaround

None

Fix Information

Able to validate the zone, signed with ECDSA.

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips