Bug ID 725022: IKEv1 has unused CRL-File in GUI that does nothing at runtime

Last Modified: Sep 14, 2023

Affected Product(s):
BIG-IP TMOS(all modules)

Known Affected Versions:
14.1.0,,,,,, 14.1.2,,,,,,,,, 14.1.3,, 14.1.4,,,,,,, 14.1.5,,,,,

Fixed In:

Opened: Jun 21, 2018

Severity: 3-Major


The CRL File in config for an IKEv1 ike-peer does not actually do anything, so it should not be presented in the web GUI. It also appears in the tmsh command line.


The CRL file is not used in certificate checking.


When using the configuration utility (web UI), the config for an IKEv1 ike-peer allows you to specify a CRL file that is not actually used for anything.


There is no workaround other than not configuring the unused file.

Fix Information


Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips