Last Modified: Nov 07, 2022
Affected Product(s):
BIG-IP LTM
Known Affected Versions:
11.4.1, 11.5.0, 11.5.1, 11.5.1 HF1, 11.5.1 HF10, 11.5.1 HF11, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5, 11.5.1 HF6, 11.5.1 HF7, 11.5.1 HF8, 11.5.1 HF9, 11.5.10, 11.5.2, 11.5.2 HF1, 11.5.3, 11.5.3 HF1, 11.5.3 HF2, 11.5.4, 11.5.4 HF1, 11.5.4 HF2, 11.5.4 HF3, 11.5.4 HF4, 11.5.5, 11.5.6, 11.5.7, 11.5.8, 11.5.9
Fixed In:
11.6.0
Opened: Jan 22, 2014 Severity: 2-Critical
When a VXLAN tunnel is given a self IP, addresses on that IP's network can be pinged through the VXLAN tunnel. Two BIG-IP systems can ping each other in that manner through a VXLAN tunnel to which both belong. However, if the self IP is an IPv6 address, two BIG-IP systems cannot ping each other.
Pinging a VXLAN tunnel self IPv6 address results in network unreachable messages.
This occurs when VXLAN tunnels configured with self IPv6 addresses.
A workaround is to associate a VXLAN tunnel with a VLAN group.
VXLAN tunnel self IPv6 addresses can be pinged.