Last Modified: Apr 10, 2019
Affected Product:
See more info
BIG-IP AAM
Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4, 11.6.0 HF5
Fixed In:
12.0.0, 11.6.0 HF6
Opened: Feb 24, 2015
Severity: 3-Major
Related AskF5 Article:
K17058
MCPD accepts the wild-card IPIP tunnels with the same local-address and tunnel type (ip4ip6, ipip, ip6ip4, ip6ip6) without validation, although the configuration is eventually discarded in TMM.
This incorrect configuration is allowed on the BIG-IP system without error.
Creating wild-card tunnels with the same local-address and IPIP tunnel-type.
Specify wild-card tunnel using different local-address and tunnel-type.
Wild-card tunnel setup trials are now detected by BIG-IP system validation during creation time. The system disallows creation of wild-card tunnels with the same local-address and tunnel-type.