Operational Defect Database
BugZero found this defect 89 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
F5 | 1494137
Translucent mode vlan-group uses wrong MAC when sending ICMP to client
Last update date:
4/26/2024
Affected products:
BIG-IP
BIG-IP All
Affected releases:
14.1.0
14.1.0.1
14.1.0.2
14.1.0.3
14.1.0.5
14.1.0.6
14.1.2
14.1.2.1
14.1.2.2
14.1.2.3
14.1.2.4
14.1.2.5
Fixed releases:
No fixed releases provided.
Description:
Bug ID 1494137: Translucent mode vlan-group uses wrong MAC when sending ICMP to client ... Symptoms ... Translucent mode vlan-group uses source MAC as the vlan-group's MAC address instead of the server's MAC address while responding to an ICMP unreachable request. ... Impact ... The wrong MAC address is used which can cause traffic disruption. ... Conditions ... 1. Configure Vlangroup in Translucent mode on BIG-IP 2. ... Send an ICMP unreachable request from client to server. ... 3. Capture the tcpdump on the BIG-IP, observe the response packet has source MAC as the vlan-group's MAC address instead of the server's MAC address while responding to an ICMP unreachable request. ... Workaround ... Disable vlangroup.flow.allocate : tmsh modify sys db vlangroup.flow.allocate value disable
