Forum Discussion
Need to be clear on which part of the F5 is marked as a vulnerability risk, the management or load balanced traffic?
If management then updating any TCP profile will not have any impact and also based on F5 sol8072 changing this behaviour could have an impact on the F5 system, one of which could be iQuery to/from GTM systems. I would personally ensure management access is restricted and isolated from production traffic (always good practise) and accept the vulnerabilty risk from your scan.
If it is impacting load balanced traffic then update the TCP profiles associated with the at risk Virtual Servers to disable "Extensions for High Performance" option. This will not have any impact on BIP-IP to BIG-IP connection such as iQuery to/from GTM and only affect load balanced traffic for Virtual Servers with updated TCP profiles.