FIPS Errors

are you using enterprise manager? if yes, it may be a bug but the bug id has not been created. you may open a case to confirm.

in the meantime, you may exclude the log using custom syslog configuration.

LTM 9.4.2+: Custom Syslog Configuration by Deb Allen

https://devcentral.f5.com/s/articles/LTM-9-4-2-Custom-Syslog-Configuration

Hi Nitass - Do you know how to exclude this syslog message in v11:

Would it be this? So it wouldn't get to 'err'

Is there anyway to be specific on the service "iControlPortal.cgi"

root@(F5-LB-ACTIVE)(cfg-sync In Sync)(Active)(/Common)(tmos) list sys syslog sys syslog { auth-priv-from crit auth-priv-to crit cron-from crit cron-to crit daemon-from crit daemon-to crit kern-from crit kern-to crit local6-from crit local6-to crit mail-from crit mail-to crit messages-from crit messages-to crit remote-servers { remotesyslog1 { host x.x.x.x } } user-log-from crit user-log-to crit }

 daemon-from:  Specifies the lowest level of messages about daemon performance to include in the system log. The default value is notice.

Hi Nitass

I ended up updating the syslog configuration by adding the following: Syslog Configuration Extract include " filter f_fips_remote_logs { level(warn..emerg) and not match(\"FIPS open failed\"); }; destination d_remote_loghost { udp(\"10.10.1.199\" port(514)); }; log { source(s_syslog_pipe); filter(f_fips_remote_logs); destination(d_remote_loghost); }; "

are you using enterprise manager? if yes, it may be a bug but the bug id has not been created. you may open a case to confirm.

Bug 435044 - Do not log an error when F5KM checks for FIPS card.

Is there anyway to be specific on the service "iControlPortal.cgi"

i understand you have to filter it out similar to what Sulaiman did.