Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IP APM
Known Affected Versions:
11.4.0
Fixed In:
11.5.0, 11.4.1, 11.4.0 HF3
Opened: Jul 10, 2013 Severity: 3-Major Related Article:
K15581
"Client Classification and Prelogon Checks" VPE macro template creates antivirus action with two issues in configuration: 1. Branch Rules contain expression "expr {[mcget {session.check_av.last.result}] == 1}" with session variables used prior to 11.4.0. The expression should be "expr { [mcget {session.check_software.last.av.result}] == 1 }" 2. There are no entries in "Properties" tab of AV checker.
As a result of this issue, the "fallback" branch is always selected.
BIG-IP versions 11.4.0 "Client Classification and Prelogon Checks" VPE Macro is used.
1. Change the expression in the "Successful" branch rule of antivirus action manually by overwriting the already existing one with this: "expr { [mcget {session.check_software.last.av.result}] == 1 }" 2. Create an entry manually in properties tab and dont change any values of the new entry, this will be your default entry.
The VPE macros "Client Classification and Prelogon Checks" now contain correct antivirus entry