Forum Discussion

Nimbostratus

Jun 08, 2020

I Rule to log source_ip , time_stamp, public_ip

Hello , i need to develop i rule to log the accepted connections to the VS as following parameters . wan_source_ip address , Geolocation , time stamp Regards,

Nimbostratus

Jun 08, 2020

hi Samir ,

thanks for information . i tried the below I rule i think its working .

when CLIENT_ACCEPTED {

log local0. "Source IP address and Port is [IP::client_addr]:[TCP::client_port]"

log local0. "cloc [whereis [IP::client_addr] country]"

log local0. "Geo Client ([IP::client_addr]) detected"

}

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

I Rule to log source_ip , time_stamp, public_ip

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Managing iRules configuration

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

[ASM] - How to disable the SQL injection attack signatures

Illigal Parameter addition as custom signature set wanted to Unblock

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Related Content

Re: get_statistics method failing when trying to get current connection counts

Re: FTP Session Logging

iRule for Brute Force Password Guessing Attacks

Event Notification Listener

Re: Response and blocking page

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS