Bug ID 427012: dns: fix handling of edns0 queries for TCP and UDP

Last Modified: Oct 06, 2020

Bug Tracker

Affected Product:  See more info
BIG-IP GTM, LTM(all modules)

Known Affected Versions:
11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1

Fixed In:
11.5.0, 11.4.1 HF2, 11.4.0 HF4, 11.2.1 HF10

Opened: Aug 02, 2013
Severity: 2-Critical
Related AskF5 Article:
K14851

Symptoms

BIG-IP did not truncate DNS responses (for non-EDNS0 queries) to 512 bytes. On TCP a query w/ or w/o EDNS0 may also be truncated.

Impact

The message may be too large over UDP; or it may be truncated over TCP.

Conditions

A query with or without EDNS0 against DNS-Express or DNS Cache. On UDP, the query should be truncated to 512b if no EDNS0 is sent; of course if an EDNS0 max udp size is set, then truncate to that value. On TCP a response should never be truncated.

Workaround

An iRule may be written to keep track of query ID and conditionally truncate the response.

Fix Information

BIGIP no longer truncates DNS over TCP; nor does it send more than 512 bytes over UDP when edns0 is not present.

Behavior Change