Bug ID 775897: High Availability failover restarts tmipsecd when tmm connections are closed

Last Modified: Nov 07, 2022

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
13.1.0,,,,,,,,, 13.1.1,,,,, 13.1.3,,,,,,, 13.1.4,, 14.1.0,,,,,, 14.1.2,,,,, 15.0.0, 15.0.1,,,,

Fixed In:
15.1.0,, 13.1.5

Opened: Apr 24, 2019
Severity: 2-Critical


All security associations (SAs) can be deleted when tmipsecd restarts as a result of closing tmm connections during failover from active to standby.


tmipsecd restarts. All IPsec tunnels experience an interruption of service until new SAs are negotiated.


When failover happens for high availability (HA), tmipsecd aims to close tmm connections when on standby, because tmm must connect instead to the daemon running in the active system. But a side effect of this restarts tmipsecd, resulting in deletion of all SAs when tmipsecd came back up.



Fix Information

Now tmipsecd no longer restarts when the tmm connections are closed in response to failover from active to standby.

Behavior Change