Bug ID 569255: Network Access incorrectly manipulates routing table when second adapter being connected if "Allow Local subnet access' is set to ON

Last Modified: Apr 28, 2025

Affected Product(s):
BIG-IP APM(all modules)

Known Affected Versions:
11.5.3, 11.5.3 HF1, 11.5.3 HF2, 11.5.4, 11.5.4 HF1, 11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4, 11.6.0 HF5, 11.6.0 HF6, 11.6.0 HF7, 11.6.0 HF8, 12.0.0, 12.0.0 HF1, 12.0.0 HF2

Fixed In:
13.0.0, 12.1.0, 12.0.0 HF3, 11.6.1, 11.5.4 HF2

Opened: Jan 21, 2016

Severity: 3-Major

Related Article: K81130213

Symptoms

When Network Access is already established and a second network interface is being connected to client system, VPN quickly reconnects, which breaks existing TCP connections. Because reconnect occurs very quickly, it might appear to the user that nothing happened.

Impact

Long-standing TCP connection may break, for example, VPN over Network Access.

Conditions

-- 'Allow Local subnet access' enabled. -- Client system is getting second network interface connected.

Workaround

Disable 'Allow Local subnet access'.

Fix Information

Now Network Access remains stable when a second network interface is being connected, so any long-standing TCP connections (such as VPN over Network Access) continue as expected.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips