Bug ID 569121: Advanced Detection rate limiting can be incorrect in multi-blade clusters when rate limit is low

Last Modified: Oct 01, 2018

Bug Tracker

Affected Product:  See more info
BIG-IP AFM(all modules)

Known Affected Versions:
12.0.0, 12.0.0 HF1, 12.0.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.0

Fixed In:
13.0.0, 12.1.0 HF1

Opened: Jan 21, 2016
Severity: 3-Major

Symptoms

If you have a large CMP configuration using Advanced Detection and rate limiting with a low rate limit applied, the per-core rate limit on attack traffic can end up being lower than the desired overall rate limit.

Impact

Overall rate limit is lower than expected.

Conditions

This was seen during internal testing with a large number of cores (3 blades / 24 cores) and a very low rate limit applied.

Workaround

None

Fix Information

Improvements were made to rate limiting in environments with a high number of tmms

Behavior Change