Bug ID 775897: High Availability failover restarts tmipsecd when tmm connections are closed

Last Modified: May 23, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.4, 14.1.0.5, 15.0.0

Opened: Apr 24, 2019
Severity: 2-Critical

Symptoms

All security associations (SAs) can be deleted when tmipsecd restarts as a result of closing tmm connections during failover from active to standby.

Impact

tmipsecd restarts. All IPsec tunnels experience an interruption of service until new SAs are negotiated.

Conditions

When failover happens for high availability (HA), tmipsecd aims to close tmm connections when on standby, because tmm must connect instead to the daemon running in the active system. But a side effect of this restarts tmipsecd, resulting in deletion of all SAs when tmipsecd came back up.

Workaround

None.

Fix Information

None

Behavior Change