Last Modified: Jun 19, 2025
Affected Product(s):
BIG-IP ASM
Known Affected Versions:
17.1.2, 17.1.2.1, 17.1.2.2
Opened: Apr 01, 2025 Severity: 4-Minor
Inherited IP exceptions for non-zero default route domains are not deleted in child policies
Leftover ip addresses remain in the child policies.
A parent policy exists in a partition that has a non-zero default route domain, and an ip address exception is added to the policy. A child policy then inherits from this parent policy, and then the ip address is deleted from the parent policy.
The inheritance needs to be disabled and re-enabled for the IP Address section, and the leftover elements must be removed manually from each child.
None