Bug ID 818833: TCP re-transmission during SYN Cookie activation results in high latency

Last Modified: Sep 19, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP All(all modules)

Known Affected Versions:
15.0.0, 15.0.1

Opened: Aug 29, 2019
Severity: 3-Major

Symptoms

Issue is reported at the following system setup: client <-> BIG-IP <-> concentrator <-> proxy <-> BIG-IP nat gateway <-> Internet -- SYN Cookie got activated on F5 nat gateway. -- Latency from 'Internet' (public host) is observed at 'Proxy' device sitting before F5 nat gw. -- During the latency issue, SYN Cookie was active and evicting connections. -- When SYN Cookie is enabled, it switches to l7 delayed binding as expected but it is not sending ACK for HTTP request so the client sends it again and again.

Impact

High latency is observed.

Conditions

Haredware SYN Cookie is enabled on FastL4 profile

Workaround

Disable the SYN Cookie on the FastL4 profile

Fix Information

None

Behavior Change