Forum Discussion

Cirrocumulus

Nov 30, 2023

Can BIG-IQ forward ASM event log which receive from BIG-IP to syslog server?

Hi Right now we have all BIG-IP send ASM event log to BIG-IQ. Question is Can BIG-IQ forward ASM event log which receive from BIG-IP to syslog server? or I need to config on each BIG-IP to s...

MVP

Nov 30, 2023

Most of the time I use MGMT interface to send the ASM logs to internal SYLOG server or any internal or external client SPLUNK or any other log servers

Its best to export the ASM event log to both (BIG-IQ and syslog server) independently rather than first send the logs from ASM to BIGIQ and then from BIGIQ to SYSLOG, as there you have to select on BIGIQ what logs to export to SYSLOG as it may be getting logs from multiple LTMs / ASM or other BIGIP devices.

Also there is a known issue that BIGIQ face issues sending logs to SYSLOG.

BIG-IQ not sending logs to configured syslog server

https://my.f5.com/manage/s/article/K000135937

HTH

🙏

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Can BIG-IQ forward ASM event log which receive from BIG-IP to syslog server?

BIG-IQ not sending logs to configured syslog server

Recent Discussions

SSL bridging without SSL proxy forward

Client SSL Profile set to Require Client Certificate breaks RDP in APM

TS Declarations for DNS

APM file and registry key date check 8 days old

Should config via cli rather than gui?

Related Content

F5 Forwarding

f5 as a forward proxy

Looking Forward Through the Rearview Mirror

SSL forward proxy with web acceleration iApp template

Best practices Windows DNS forwarding to F5 DNS

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS