Bug ID 567660: Disabling global Auto Last Hop setting breaks APM's Remote Desktop Gateway (RDG) feature

Last Modified: Oct 10, 2018

Bug Tracker

Affected Product:  See more info
BIG-IP APM(all modules)

Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4, 11.6.0 HF5, 11.6.0 HF6, 11.6.0 HF7, 11.6.0 HF8, 11.6.1, 12.0.0, 12.0.0 HF1, 12.0.0 HF2

Fixed In:
12.1.0, 12.0.0 HF3, 11.6.1 HF1

Opened: Jan 14, 2016
Severity: 3-Major

Symptoms

Existing TCP connection is being sporadically disrupted by the BIG-IP virtual server sending out a SYN, ACK, causing existing connection to fail. The client and virtual server set up a good TCP connection, complete the SSL handshake, and start to pass application data. APM virtual server then sends SYN, ACK with sequence and ACK numbers that do not match the existing stream. The APM then tries three SYN-ACKs before giving up and sending out a RST-ACK, which drops the connection attempt, but as it shares the same ip:port number as the existing connection, resets the good connection.

Impact

APM RDG feature does not work

Conditions

Auto Last Hop setting is disabled.

Workaround

You can use either of the following workarounds: -- Enable Auto Last Hop. -- Set cmp_enabled to 'NO' on the virtual server.

Fix Information

APM RDG feature now works as expected when Auto Last Hop is disabled.

Behavior Change