F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

SWJO's avatar
SWJO
Icon for Cirrostratus rankCirrostratus
Jan 22, 2020

Does anyone did traffic logging?

Hi guys   I`m searching method which can logging or inspecting traffic information.   Target license are LTM and CGNAT.   I have looking for Telemetry streaming but that seems providing s...
application delivery
BIG-IP
cgnat
devops
iRules
Philippe_CLOUP's avatar
Philippe_CLOUP
Icon for Employee rankEmployee
Jan 23, 2020

Hi SWJO,

if you use HCL in TCP mode, the BIG-IP is able to multiplex logs into few TCP connections (same behaviour as OneConnect in a way).

depending on your platform 150k CPS (which IMO will be less, if you multiplex logs as mentioned), need to be checked, but should not impact the system more than normal tcp connections for the same device.

 

for disk, if your HSL is writing directly (and you don’t use any log local commands, then nothing is stored in the disk of the BIG-IP.

 

you mentioned CGNAT, and i can tell you that there is a lot of CSPs that use this way of logging to do legal interception or even traffic jogging based on IMEIs for example.