AFM rule-list hit count and logging

Question

Right now I have two very strict things I would like to accomplish but I cannot find a way to do [1][2][3] it and I was wondering if you can help me with them.

#1- Rule-list hit count

What's the best way to see the hit count of each rule-list?

I found the command "show /security firewall rule-stat" but if I do four telnet (4 SYN) in a row, the counter increases by twelve

4 != 12

#1.1- I tried with the "reset-stats security firewall <location>" command and the counter does not goes back to zero.

#2- Allow/Deny logging

Even if I enable the "logging" box on single each rule, I cannot find a record of the traffic that it allowed/denied. Where and/or how can I find logs for each allow/deny the AFM does?

Thank you!!

Rolando A. Valenzuela

bw · Answer

I think I figure it out thanks to this article https://clouddocs.f5.com/training/community/firewall/html/class2/module1/lab3.html

Where can I find an equivalent on the CLI? Is there a way to make this logging profiles default?

Thanks.

Forum Discussion

AFM rule-list hit count and logging

Recent Discussions

ASM Export JSON - size Limit ?

Can i apply ddos profile on virtual server using port range

I used the wrong email account when take Application Delivery Exam (101)

F5 iControl REST API - viewBy Parameter Issue in Analytics Report

'F5 rules for AWS WAF' ruleset not working for jsp web shell attack

Related Content

AFM / Configuring rules within a rule list through REST

F5 Rules for AWS WAF - List of CVE

The table Command: Counting

Logging DNS Requests

CEF logs F5

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS