Bug ID 1566569: Unable to access rSeries system from 172.17.0.0/16 IP subnet

Last Modified: Nov 13, 2024

Affected Product(s):
F5OS F5OS, F5OS-A(all modules)

Known Affected Versions:
F5OS-A 1.5.2, F5OS-A 1.7.0

Fixed In:
F5OS-A 1.8.0

Opened: Mar 18, 2024

Severity: 2-Critical

Symptoms

Unable to access the rSeries system from client or server systems in the 172.17.0.0/16 IP subnet

Impact

Unable to access the rSeries system from client or server systems in the 172.17.0.0/16 IP subnet

Conditions

-- r5000-series, r10000-series, or r12000-series appliance

Workaround

To work around this issue, do the following: 1. Log into the system as root 2. If running F5OS-A 1.7.0, edit /var/docker/config/platform.yml. If running F5OS-A 1.5.2, edit /var/docker/config/platform.patch.yml. 3. In the specified file, locate the section for "selinux_labeler", and add a line under it that reads 'network_mode: "none"'. The indentation of this line must match exactly the indentation of the "container_name" and "image" lines. For example: selinux_labeler: container_name: selinux_labeler network_mode: "none" image: ${... ... 4. Reboot the system. 5. Once the system is rebooted, log into the system as root, and run "docker network rm config_default"

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips