Applies To:Show Versions
BIG-IP Link Controller
New Features in BIG-IP Version 17.0.0
Software Support Lifecycle change to 4 years on Long-Term Supported versions (x.1 releases)
New in LTM/TMOS
DAG using TEID hashing for GTP tunnels in Software
- Outer/First L3 header must be well-formed IPv4 or IPv6
- Outer/First L4 header must be well-formed UDP
- UDP payload must be at least 8 bytes (enough to include the TEID field)
- L4 Destination Port must be 2152 (decimal)
- GTP-U version must be 1
- GTP-U Protocol must be 1
MQTT over WebSocket for TCP Proxy/VS
- Support for MQTT protocol profile over WebSockets when both client-side and server-side connflows are encapsulated using WebSockets.
- Support for MQTT protocol profile over WebSockets when only client-side connflow is encapsulated using WebSockets.
New Log Manager role to modify system log configuration settings
Support AES-CCM and AES-CCM8
Support ECDH-RSA for SSLFWD
Support FFDHE for SSL Forward Proxy
New in Advanced WAF
Policy Layout User Experience Improvements
- Audit Log
- Brute Force Attacks
- Event Correlation
- Request Logs
- Has no websocket URL. The URLs are added as endpoints.
- Is the same as the Fundamental template with the exception of:
- The illegal URL violation is turned on.
- The illegal request content type is turned on.
- The language is UTF-8.
- Differentiate between HTTP/WS and HTTPS/WSS URLs is turned on.
- The new GraphQL violations are turned on:
- GraphQL data does not comply with format settings
- GraphQL disallowed pattern in response
- GraphQL introspection query
- Malformed GraphQL data
- There is no parent or child inheritance.
- Maximum Total Length of (GraphQL query)
- Maximum Value Length
- Maximum Structure Depth
- Maximum Batched Queries
- Maximum Query Cost - A schema file with costs definition can be uploaded with custom cost definitions.
Full Declarative Policy Export to Blank Template
New Factory Bot Defense Profile for Use with Shape
- Multiple consecutive slashes (//)
- Path parameters (;/)
- Trailing dot (/aaa.php. or [domain.com|http://domain.com/].)
- Trailing slash (/aaa.php/)
- Unescaped whitespace in URL