Bug ID 558865: Overlapping of address are not allowed on firewall NAT policy match side

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP AFM(all modules)

Known Affected Versions:
12.1.0, 12.1.1, 12.1.2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 12.1.3.4, 12.1.3.5, 12.1.3.6, 12.1.3.7, 12.1.4, 12.1.4.1, 12.1.5, 12.1.5.1, 12.1.5.2, 12.1.5.3, 12.1.6, 13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3, 13.0.1

Fixed In:
13.1.0

Opened: Nov 18, 2015

Severity: 2-Critical

Related Article: K45262411

Symptoms

Overlapping IP addresses (addresses and address-list) are not allowed in NAT policy rules.

Impact

Cannot configure overlapping IP addresses in NAT policy rules.

Conditions

Trying to configure overlapping IP addresses in NAT policy rules.

Workaround

None.

Fix Information

The system now allows overlapping IP addresses (addresses and address-list) in a NAT policy rule. It logs a notice message in /var/log/ltm when there are overlapping IP addresses and includes detail address information.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips