Bug ID 854001: TMM might crash in case of trusted bot signature and API protected url

Last Modified: Dec 11, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP ASM(all modules)

Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.4, 14.1.0.5, 14.1.0.6, 14.1.2, 14.1.2.1, 14.1.2.2, 15.0.0, 15.0.1, 15.1.0

Opened: Nov 28, 2019
Severity: 3-Major

Symptoms

When sending request to a protected API URL, with a trusted bot signature, tmm tries to perform reverse DNS to verify the signature. During this process, the URL qualification might change. In this case - tmm crashes.

Impact

Traffic disrupted while tmm restarts.

Conditions

-- Bot Defense profile attached. -- 'API Access for Browsers and Mobile Applications' is enabled. -- A DNS server is configured. -- Request is sent to an API-qualified URL. -- Request is sent with a trusted bot signature.

Workaround

Disable the 'API Access for Browsers and Mobile Applications' or remove the DNS server.

Fix Information

None

Behavior Change