Bug ID 1064189: DoH proxy and server listeners from GUI with client-ssl profile and server-ssl profile set to None produces undefined warning

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP TMOS(all modules)

Fixed In:
17.0.0, 16.1.2.2

Opened: Nov 25, 2021

Severity: 3-Major

Symptoms

Dns Over HTTPS (DOH) is allowed to work without a clientssl profile on clientside. Setting it to none disables the DNS resolution via the HTTPS protocol.

Impact

An error occurs: GUI: 01020036:3: The requested profile (/Common/NO_SELECTION) was not found. TMSH: 01070734:3: Configuration error: In Virtual Server (/Common/mydohproxylistener) http2 specified activation mode requires a client ssl profile

Conditions

- Selecting "None" in Client SSL Profile and Server SSL Profile in DOH Server Listener and DOH Proxy Listener from GUI

Workaround

None

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips