Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP DNS
Known Affected Versions:
11.5.4, 11.5.5, 11.5.6, 11.6.1, 11.6.2, 11.6.3, 11.6.3.1, 11.6.3.2, 12.0.0, 12.0.0 HF1, 12.1.0 HF1, 12.0.0 HF2, 12.1.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.1 HF1, 12.1.1 HF2
Fixed In:
13.0.0, 12.1.2 HF1, 11.6.3.3, 11.5.7
Opened: Dec 07, 2016 Severity: 3-Major Related Article:
K40256229
Passing "AXFR" or "IXFR" as the type to the DNS::query iRule command can cause a tmm crash.
tmm will crash and restart every time this command is issued. Traffic disrupted while tmm restarts.
DNS Express must be enabled when one of the XFR types is used in the DNS::query iRule command.
Do not explicitly use AXFR or IXFR query types. If the [DNS::question type] command is being used to dynamically pass in the type, add a preceding check similar to the following: if { not [DNS::question type] ends_with "XFR" } { set rrs [DNS::query dnsx [DNS::question name] [DNS::question type]] }
The iRule now provides an error message in /var/log/ltm indicating that AXFR and IXFR are not valid types to use with the DNS::query command, and no tmm crash occurs as a result.