Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP ASM, BIG-IQ
Known Affected Versions:
12.0.0, 12.0.0 HF1, 12.1.0 HF1, 12.0.0 HF2, 12.1.0 HF2, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2
Fixed In:
12.1.0, 12.0.0 HF3
Opened: Oct 18, 2015 Severity: 2-Critical
When a new active ASM Policy is synchronized across a manual sync device group, the receiving side erroneously marks the device group as needing to be synchronized again afterwards.
The device group appears to be out of sync when it is not.
ASM Sync is enabled on a Failover device group with manual sync + incremental sync. A new active policy is created on the active device. The configuration is pushed to the peer.
Another push will leave them in a synchronized state.
The device group now stays synchronized after the ASM configuration is loaded.