AFM rule-list hit count and logging

Question

Right now I have two very strict things I would like to accomplish but I cannot find a way to do [1][2][3] it and I was wondering if you can help me with them.

#1- Rule-list hit count

What's the best way to see the hit count of each rule-list?

I found the command "show /security firewall rule-stat" but if I do four telnet (4 SYN) in a row, the counter increases by twelve

4 != 12

#1.1- I tried with the "reset-stats security firewall <location>" command and the counter does not goes back to zero.

#2- Allow/Deny logging

Even if I enable the "logging" box on single each rule, I cannot find a record of the traffic that it allowed/denied. Where and/or how can I find logs for each allow/deny the AFM does?

Thank you!!

Rolando A. Valenzuela

bw · Answer

I think I figure it out thanks to this article https://clouddocs.f5.com/training/community/firewall/html/class2/module1/lab3.html

Where can I find an equivalent on the CLI? Is there a way to make this logging profiles default?

Thanks.

Forum Discussion

AFM rule-list hit count and logging

1 Reply

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

F5 Networks F5CAB1 Exam - Need Help Regarding Prep

Username is not filled in EdgeClient in the Modern customization

The GSLB pool is providing an incorrect IP to end users

iRule causing requests to be duplicated (sometimes)

Cisco TACACS+ Config on ISE LTM Pair

Related Content

Forwarding Logs to SIEM Tools via HTTP Proxy for F5 Distributed Cloud Global Log Receiver

AFM / Configuring rules within a rule list through REST

F5 Rules for AWS WAF - List of CVE

F5 Distributed Cloud Telemetry (Logs) - Loki

The table Command: Counting

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS