Bug ID 1086309: Legitimate traffic gets blocked on detecting Bad Destination IP of virtual server subnet

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP AFM(all modules)

Fixed In:
15.1.9

Opened: Mar 11, 2022

Severity: 4-Minor

Symptoms

-- All traffic destined for IPs of the same virtual subnet gets blocked. -- Other legitimate users of the same subnet can't access resources.

Impact

Other legitimate users of the same subnet can't access resources.

Conditions

1. Neurond process configured and running. 2. Should have virtual server subnet. 3. Enabling Attacked Destination Detection of any DOS vector. 4. A DOS vector is triggered and mitigation occurs.

Workaround

Until the respective BD entry evicts, the problem persists.

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips