BugZero | F5 BugID 428764 - Policies become non-functional when the complexity...

OPERATIONAL DEFECT DATABASE

...

BugZero | F5 BugID 428764 - Policies become non-functional when the complexity...

F5 - Defect ID: 428764

Policies become non-functional when the complexity increases a certain point

F5 - Defect ID: 428764

Policies become non-functional when the complexity increases a certain point

Last updated on April 28th, 2025

BugZero Risk Score
6.9 Medium

Overall: 6.9

Severity: 7.3

Community: 4.2

Lifecycle: 8.3

What is the BugZero Risk Score?

F5 Integration

Learn more about where this data comes from

F5 Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Bug Details

Priority: 3-Major
Status: Verified
Impact Category: Local Traffic Manager

Description

Symptoms

An LTM policy can become non-functional when its complexity increases, though there are various factor that determine a policies complexity, the may cause is when it contains many rules that have no overlapping conditions. Conditions overlap when they share the same type of condition on the same operand, e.g. when they both have 'http-host ends-with' or 'http-uri starts-with'.

Impact

The policy becomes non-functional.

Conditions

When the complexity increases, the policy ceases to execute and it appear that no rule ever matches and no action is ever executed.

Workaround

None.

Fix Information

Improvement to allow more rules and bigger state-machines to ensure CPM functions as designed after policy update.

Change history

2025-04-28 Added: 11.4.0, 11.4.1

Top F5 Defects

9.6Defect ID: 1496269
VCMP guest on version 16.1.4 or above might experience constant TMM crashes.
9.4Defect ID: 1399369
While upgrading standby device, active device is going to standby mode for few seconds, and traffic loss is observed.
9.4Defect ID: 970269
Install fails as lind keeps failing due to "Fatal error: block id new probe failed - device file:/dev/cdrom"
9.4Defect ID: 1407909
For E810 100G SR-IOV NICs, traffic disruption is seen with ICE driver v1.11.14 and NVM 4.20 combination.
9.4Defect ID: 885949
Untagged packet traffic does not work on i15800 platforms with virtual wire

F5 Integration

Learn more about where this data comes from

F5 Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Ready to prevent the next vendor outage?

Get a demo

OPERATIONAL DEFECT DATABASE

F5 - Defect ID: 428764

Policies become non-functional when the complexity increases a certain point

F5 - Defect ID: 428764

Policies become non-functional when the complexity increases a certain point

Last updated on April 28th, 2025

BugZero Risk Score6.9 Medium

Bug Details

Symptoms

Impact

Conditions

Workaround

Fix Information

Links

Top F5 Defects

Ready to prevent the next vendor outage?

BugZero Risk Score
6.9 Medium