Bug ID 511381: Introduce a new sys db tunable to do sweep & flood based on a /64 IP address instead of /128

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP AFM(all modules)

Known Affected Versions:
12.1.0 HF1, 12.1.0 HF2, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2

Fixed In:
12.0.0

Opened: Mar 09, 2015

Severity: 2-Critical

Symptoms

A new sys db variable dos.ipv6endpoint.prefix is introduced to support network based sweep/flood detection.

Impact

Previously only single host IP addresses are subject to sweep/flood detection. With the new db variable, network addresses can also be detected.

Conditions

When AFM is enabled and sweep/flood vector is enabled.

Workaround

None

Fix Information

The prefix can only be applied to IPv6 addresses.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips