Bug ID 562959: In some error scenarios, IPsec might send packets not intended for the IPsec over the tunnel.

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
11.6.0, 12.0.0, 12.0.0 HF1, 12.1.0 HF1, 12.0.0 HF2, 12.1.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2

Fixed In:
11.6.1, 11.5.4 HF3

Opened: Dec 15, 2015

Severity: 2-Critical

Related Article: K37138515

Symptoms

In some error scenarios, IPsec might send packets not intended for the IPsec over the tunnel.

Impact

Tmm restart without core due to internal connection timeout.

Conditions

This occurs when there is some issue processing the packet going through IPsec tunnel.

Workaround

None.

Fix Information

IPsec now only sends packets intended for IPsec over the tunnel.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips