Bug ID 932825: Delayed Gratuitous ARPs may cause traffic to go to the previous active BIG-IP device

Last Modified: Jul 23, 2021

Bug Tracker

Affected Product:  See more info
BIG-IP LTM(all modules)

Known Affected Versions:
15.1.0, 15.1.0.1, 15.1.0.2, 15.1.0.3, 15.1.0.4, 15.1.0.5, 16.0.0, 16.0.0.1, 16.0.1, 16.0.1.1, 16.0.1.2

Fixed In:
16.1.0, 15.1.1

Opened: Jul 31, 2020
Severity: 3-Major

Symptoms

When the standby system in a High Availability (HA) group becomes active, it sends out gratuitous ARPs to advertise its ownership of IP addresses and direct traffic to itself. In rare conditions, when becoming active, other processes may send out traffic before Gratuitous ARPs are generated.

Impact

This has been observed as an issue for IPsec during failover, causing tunnel stability issues after failover. No other protocols are known to be affected by the issue.

Conditions

-- HA configured -- Protocols in use that generate frequent and fast signaling messages

Workaround

None

Fix Information

When the standby device in an HA pair becomes active, Gratuitous ARPs are prioritized over other traffic.

Behavior Change