Bug ID 1137521: TLSv1.3 connections dropped when SSL Persistence is enabled

Last Modified: Jun 13, 2024

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
16.1.0, 16.1.1, 16.1.2, 16.1.2.1, 16.1.2.2, 16.1.3, 16.1.3.1, 16.1.3.2, 16.1.3.3, 16.1.3.4, 16.1.3.5, 16.1.4, 16.1.4.1, 16.1.4.2, 16.1.4.3, 17.0.0, 17.0.0.1, 17.0.0.2

Opened: Aug 18, 2022

Severity: 3-Major

Symptoms

A virtual server with an SSL persistence profile processing TLSv1.3 traffic may see dropped connections.

Impact

Traffic may be impacted as the optimizations due to SSL Persistence may not work for TLSv1.3

Conditions

-- TLSv1.3 is enabled on ClientSSL profile on a virtual server. -- SSL Persistence Mode is enabled on the virtual server.

Workaround

Do not enable SSL Persistence with TLSv1.3 on the affected versions.

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips