Big-IP Log Message Reference

Question

I am trying to write a comprehensive log message parser for Big-IP appliances to be used in our SIEM system. My main focus first is system logging and LTM & GTM. Does there exist a some sort of log message reference for Big-IP appliances? There seem to be some information in various KB articles, e.g. in one talking about mcpd pool/node health checks, but I believe this will hardly lead me to a comprehensive listing. Also another way is to just wait and see what events I get in and create a parser for those messages as we go, but it would be easier, of course, to work with a vendor-made list.

nitass · Answer

i also do not have the list but there is log matching definition for snmp trap at /var/run/bigip_error_maps.dat. it may be useful.

sol6420: The /var/run/bigip_error_maps.dat file maps the alertd process input from the syslog-ng utility to an alert name  
https://support.f5.com/kb/en-us/solutions/public/6000/400/sol6420.html

get_nick_206749 · Answer

Hi treiman, &nbsp;
I know it might be a little late, but I wanted to let you know that we do have a Log Messages Reference available now. It is on our release documentation site. &nbsp;
Here is the link: https://support.f5.com/kb/en-us/products/big-ip_ltm/releasenotes/related/log-messages.html&nbsp;
~Nick &nbsp;

Forum Discussion

Big-IP Log Message Reference

2 Replies

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

In Using the AST tool am I pointing it to TENANTS or to the F5OS(hardware) I have?

Any way to cache HEAD request

can you help with getting a BigIP virtual edition serial key

VIP in https that redirect to another vip in https

2026 is Almost Here

Related Content

Automating Certificate Management on F5 BIG-IP

What's new in BIG-IP v21.0?

Introducing the F5 AI Assistant for BIG-IP

BIG-IP security hardening and compliance checks

BIG-IP Report

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS