Bug ID 976641

Bug Tracker
ID 976641

Bug ID 976641: Stonewall Service for Windows may block all traffic while periodically re-resolving DNS exclusions.

Last Modified: Apr 28, 2025

Affected Product(s):
APM-Clients TMOS(all modules)

Fixed In:
7.2.2, 7.2.1.4

Opened: Dec 24, 2020

Severity: 3-Major

Symptoms

Traffic to all destinations in a Stonewall exclusion list may be blocked for a long period of times if one or more of the entries in the list cannot be resolved.

Impact

- Traffic to all destinations in Stonewall exclusion list may be blocked for an unknown period of time. - In case of multiple network events on the system, this issues is exacerbated and traffic to all destinations in Stonewall exclusion list may be blocked for a long period of time.

Conditions

- One or more hostnames from the exclusions cannot be resolved and thus resolution times out. - Network events occur on the system.

Workaround

N/A

Fix Information

- Stonewall Service for Windows does not wait for DNS resolution of exclusions to complete to allow traffic to already gathered list of exclusions.

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips