Forum Discussion

Nimbostratus

Dec 10, 2012

f5 ltm sends syslog messages with local/ causing indexing issues with SPlunk

We are trying to point all our f5's to Splunk for syslog, but the default remote servers option is sending local/ in the syslog messages causing indexing issues with Splunk (it's reading them as loca...

management

monitoring

hoolio

Cirrostratus

Dec 10, 2012

Hi Christian,

Which LTM version are you seeing this on?

Thanks, Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

f5 ltm sends syslog messages with local/ causing indexing issues with SPlunk

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Expired client-certificate

F5 Big-IP Trust Internal CA Chain certificates for Web Servers

XC - geo LB to the origin servers

Floating Ip Problem

F5 rSeries || Upgrade tenant

Related Content

Load Balancing TCP TLS Encrypted Syslog Messages

Massive DDoS, DanaBot Dismantled, Scraped Discord Messages and Signal Blocks Windows Recall

TCL Error possibly causing TCP Resets?

Performance optimalization of message based load balancing.

FIX Message Response

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS