Bug ID 569121: Advanced Detection rate limiting can be incorrect in multi-blade clusters when rate limit is low

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP AFM(all modules)

Known Affected Versions:
12.0.0, 12.0.0 HF1, 12.0.0 HF2, 12.0.0 HF3, 12.0.0 HF4

Fixed In:
13.0.0, 12.1.0 HF1

Opened: Jan 21, 2016

Severity: 3-Major

Symptoms

If you have a large CMP configuration using Advanced Detection and rate limiting with a low rate limit applied, the per-core rate limit on attack traffic can end up being lower than the desired overall rate limit.

Impact

Overall rate limit is lower than expected.

Conditions

This was seen during internal testing with a large number of cores (3 blades / 24 cores) and a very low rate limit applied.

Workaround

None

Fix Information

Improvements were made to rate limiting in environments with a high number of tmms

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips