Bug ID 1064189: DoH proxy and server listeners from GUI with client-ssl profile and server-ssl profile set to None produces undefined warning

Last Modified: Nov 07, 2022

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
16.1.0, 16.1.1, 16.1.2, 16.1.2.1

Fixed In:
17.0.0, 16.1.2.2

Opened: Nov 25, 2021
Severity: 3-Major

Symptoms

Dns Over HTTPS (DOH) is allowed to work without a clientssl profile on clientside. Setting it to none disables the DNS resolution via the HTTPS protocol.

Impact

An error occurs: GUI: 01020036:3: The requested profile (/Common/NO_SELECTION) was not found. TMSH: 01070734:3: Configuration error: In Virtual Server (/Common/mydohproxylistener) http2 specified activation mode requires a client ssl profile

Conditions

- Selecting "None" in Client SSL Profile and Server SSL Profile in DOH Server Listener and DOH Proxy Listener from GUI

Workaround

None

Fix Information

None

Behavior Change