Forum Discussion

Nimbostratus

Nov 17, 2010

Irule for remote logging

Hey guys, I have a one are configuration, and I want to log each connection to a syslog server. I want to log client ip address along with node ip address. I'm assuming I'll have to us...

Cirrostratus

Nov 18, 2010

Sure: [IP::client_addr] is available any time after the connection from the client to the VS is established:


when SERVER_CONNECTED { 
   log 10.10.231.1 local0.info "Client: [IP::client_addr], Pool member [IP::server_addr]:[TCP::server_port]"
}

Also, if you're already SNAT'ing all of the serverside traffic you should consider adding a default OneConnect profile to the virtual server to re-use the serverside connections and reduce LTM and server load.

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Irule for remote logging

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

GRPC through F5 Virtual Server [RST_STREAM with error code: INTERNAL_ERROR]

[ASM] - How to disable the SQL injection attack signatures

[ASM] : SQL-INJ "end-quote UNION" - How to allow this signature to specific url/uri/parameter only

Changes to DO and AS3 GitHub - no longer monitored

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Related Content

Integrate F5 Distributed Cloud remote logging with ELK

SIEM news! F5 Distributed Cloud’s remote logging adds IBM’s QRadar

F5 remote logging server

SSL Orchestrator Enhanced Uses Case: Remote Logging

How I did it - "Configuring remote logging for F5 Distributed Cloud Services"

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS