Bug ID 756401: IKEv2 debug logging often omits SPI values that would identify the SAs involved

Last Modified: Apr 29, 2023

Affected Product(s):
BIG-IP TMOS(all modules)

Known Affected Versions:
14.0.0,,,,,, 14.0.1,, 14.1.0,,,,,, 14.1.2,,,,,,,,, 14.1.3,, 14.1.4,,,,,,, 14.1.5,,,,, 15.0.0, 15.0.1,,,,

Fixed In:

Opened: Jan 24, 2019

Severity: 4-Minor


Debug logging for IPsec often has no clear identification of which SA was involved during some logged events.


You might have trouble analyzing what happened from logs when the SA involved in an event is not identified.


When you examine logs in either /var/log/tmm or /var/log/ipsec.log to debug IPsec activity.



Fix Information

More logged lines now include SPI values to identify the SA involved, especially in error cases.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips