Bug ID 521329: CGNAT - Rare TMM core with Deterministic NAT

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP CGN(all modules)

Known Affected Versions:
11.5.1, 11.4.1, 11.4.1, 11.4.1

Opened: May 04, 2015

Severity: 2-Critical


Under some circumstances TMM may core when using deterministic NAT due to a divide by zero error.


Traffic disrupted while tmm restarts.


CGNAT using deterministic NAT mode and persistence enabled. This error only occurs if a previous connection created an address persistence entry using the second address. This crash is dependent on both the configuration and the traffic. When the number of subscriber addresses that disaggregates to a TMM is not evenly divided by the number of translation addresses that disaggregates to the same TMM, connections from one or more subscribers may be assigned to blocks from two translation addresses. Depending on the exact address ratio, there may be only one port using the second address. Due to an off-by-one error, the number of ports available for the second address may be set to zero when it should be set to one. This causes the divide by zero fault.



Fix Information


Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips