Last Modified: Nov 07, 2022
Affected Product(s):
BIG-IP AFM
Known Affected Versions:
14.0.0, 14.0.0.1, 14.0.0.2, 14.0.0.3, 14.0.0.4, 14.0.0.5, 14.0.1, 14.0.1.1
Opened: Jan 10, 2018 Severity: 4-Minor
A user can include the same APN in the GTP compliance checks disallowed_apns and allowed_apns.
A logically inconsistent configuration is validated. The resultant behavior might be unexpected. If an APN is on the "Disallowed APNs" list, traffic from matching APNs will be dropped even if they are on the "Allowed APNs" list.
Protocol Inspection configured to enable GTP compliance checks with a given APN specified in both the "Allowed APNs" and "Disallowed APNs" lists.
Review configuration manually and catch these configuration conflicts.
None