Forum Discussion

Nimbostratus

Jun 08, 2020

I Rule to log source_ip , time_stamp, public_ip

Hello , i need to develop i rule to log the accepted connections to the VS as following parameters . wan_source_ip address , Geolocation , time stamp Regards,

Nimbostratus

Jun 09, 2020

hi Samir ,

thanks for information . i tried the below I rule i think its working .

when CLIENT_ACCEPTED {

log local0. "Source IP address and Port is [IP::client_addr]:[TCP::client_port]"

log local0. "cloc [whereis [IP::client_addr] country]"

log local0. "Geo Client ([IP::client_addr]) detected"

}

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

I Rule to log source_ip , time_stamp, public_ip

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

SSL Bridging and FQDN rewrite Policy

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

Could not communicate with the system. Try to reload page.

F5 BIG IP laboratory license

F5 mssql health monitor failing

Related Content

Re: get_statistics method failing when trying to get current connection counts

iRule for Brute Force Password Guessing Attacks

Event Notification Listener

Re: Response and blocking page

System Usage Information

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS