For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

Mar 05, 2009

RST packet size

Hi, I'm quite puzzled why I am having this logs. Checked TCP dump, no one seems attacking my LTM. Mar 5 20:02:03 tmm tmm[1132]: 011e0001:4: Limiting open port RST response from 266 to ...

Icon for Cirrostratus rank

Cirrostratus

Mar 06, 2009

This alert is described in SOL9259 (Click here). LTM is limiting the rate of sending RST packets (not the size) in response to requests to invalid IP address:port combinations. If you're seeing the alert actively logged, you should see a large number of invalid TCP packets coming in. It would be ideal if F5 could provide the destination IP:port but it might not be tracked in that level of detail.

Aaron

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

Community Articles

application delivery

container ingress services

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5