Forum Discussion

Nimbostratus

Jul 22, 2013

Audit log? Where can I see who made what changes?

Does anyone know if there is a log file somewhere or some way to see what changes have been made to a particular LTM? Or at very least some way to diff the configs and see changes? Thanks i...

management

monitoring

nitass

Employee

Jul 25, 2013

there is a load of other stuff in there which I dont need so will have a closer look and see what can be got rid of. you can filter some message using syslog include. this article is in 9.x but it is applicable in 11.x as well except you have to use tmsh instead of bigpipe.

LTM 9.4.2+: Custom Syslog Configuration by Deb Allen

https://devcentral.f5.com/s/articles/LTM-9-4-2-Custom-Syslog-Configuration

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Audit log? Where can I see who made what changes?

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

How to configure ssh access by key on F5OS

F5 BIG-IP DNS/Audit Logs — Structured Format for SIEM Ingestion

Bot Defense causing a lot of false positives

Recommendation for Adv. Lab

iRules for recreation: HTTP Protocol Parser implemented using BIG-IP iRule(unfinished)

Related Content

Audit WAF changes

Auditing Security Policy Updates

Quantum Computer decrypt RSA, Bitcoin PQC, Solidity audit tool, Meaningless threat

Image installation status audited

Logging/Audit Binary Execution?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS