Operational Defect Database
BugZero found this defect 416 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
F5 | 1282029
Logging suspicious vector feature is not supported for tcp-flags-uncommon vector on upgrade to BIG-IP 17.1.0
Last update date:
4/26/2024
Affected products:
BIG-IP
BIG-IP AFM
BIG-IP Install/Upgrade
Affected releases:
17.1.0
17.1.0.1
17.1.0.2
17.1.0.3
17.1.1
17.1.1.1
17.1.1.2
17.1.1.3
Fixed releases:
No fixed releases provided.
Description:
Bug ID 1282029: Logging suspicious vector feature is not supported for tcp-flags-uncommon vector on upgrade to BIG-IP 17.1.0 ... Last Modified: Apr 26, 2024 ... Symptoms ... The following log is observed in the console or /var/log/ltm logs: Logging 01071d5e:3: DOS attack data (tcp-flags-uncommon): Suspicious vector feature is not supported for tcp-flags-uncommon vector. ... Impact ... The following log is observed in the console or /var/log/ltm logs: Logging 01071d5e:3: DOS attack data (tcp-flags-uncommon): Suspicious vector feature is not supported for tcp-flags-uncommon vector. ... in the console or /var/log/ltm ... 1. The Only Count Suspicious Events option is enabled or the attribute suspicious is true on TCP Push Flood vector. ... Reload MCPD per K13030. ... AFM comes back up with config loaded fine. ... Fix Information
