Bug ID 976633: DDoS Hybrid Defender resets sys.db vlangroup.forwarding.override to disabled upon visiting certain pages

Last Modified: Jan 13, 2021

Bug Tracker

Affected Product:  See more info
BIG-IP AFM(all modules)

Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 14.1.2.1, 14.1.2.2, 14.1.2.3, 14.1.2.4, 14.1.2.5, 14.1.2.6, 14.1.2.7, 14.1.2.8, 14.1.3, 14.1.3.1, 15.1.0, 15.1.0.1, 15.1.0.2, 15.1.0.3, 15.1.0.4, 15.1.0.5, 15.1.1, 15.1.2, 16.0.0, 16.0.0.1, 16.0.1

Opened: Dec 23, 2020
Severity: 3-Major

Symptoms

If the value of the bigdb variable 'vlangroup.forwarding' is set to 'enabled', the DDoS Hybrid Defender UI resets it to 'disabled' when visiting certain pages.

Impact

The value of 'vlangroup.forwarding' is reset to 'disable' (which you can check in tmsh). Misconfiguration of vlan.override might lead to loss in traffic

Conditions

-- DDoS License is used. -- 'vlangroup.forwarding' is enabled. -- Visit one of the following pages: - DoS Setup :: Silverline - DoS Setup :: Global - Network :: High Availability - System :: About

Workaround

None.

Fix Information

None

Behavior Change