Forum Discussion
Stan_Marsh
Nimbostratus
NimbostratusExced Timeout in Event Logs WAF
I have a issue with a customer WAF, in the Event Logs, it shows me an error in the "triggered violation (I attached a screenshot).", & the request show the status: ilegal. we modify the maximun ...
Jeffrey_Granier
Employee
EmployeeHello,
Are you using local logging? Local logging can lag due to various performance metrics. Best practice is to setup and configure WAF events for an external log collector WAF Logging
Stan_MarshHi jeffrey,
Thanks,
Yes, I verified it and indeed the local log is being used. Any recommendations on how to apply the WAF event log to an external collector?
- Jeffrey_Granier
Hi Stan,
you will need to create a waf logging profile to use a remote log: Although this is an older doc its still relevant Configuring Application Security Event Logging
