Bug ID 545817: In a HA setup, 'TCP Push Flood' vector counter increments in dos stats

Last Modified: Nov 22, 2021

Bug Tracker

Affected Product:  See more info
BIG-IP AFM(all modules)

Fixed In:
12.1.0

Opened: Sep 14, 2015
Severity: 3-Major

Symptoms

In a HA setup, 'TCP Push Flood' vector counter increments in dos stats because of HA heart beats.

Impact

TCP push flood stats.

Conditions

HA setup, firewall DOS enabled.

Workaround

Any of the following: 1. Add HA vlan (if it is a separate vlan) to the DoS Whitelist. 2. Add HA IPs subnet to the DoS Whitelist if all the HA peers are on the same subnet. 3. Add HA peer IPs to the DoS Whitelist.

Fix Information

Add whitelist to bypass DOS counting.

Behavior Change