Forum Discussion

Cirrostratus

9 years ago

Is it possible to set multiple IPs in the Source IP Address of the advanced ASM Event log search?

Hi, I want to exclude a couple IPs from the event logs I am looking at. I can set the drop down to 'is not' for the Source IP field and enter one IP address, removing this one IP from the event ...

Cirrus

9 years ago

Unfortunatly the answer is 'No'. You cant input multiple IP address to extract the event logs from ASM console.

You can try extract the logs from big ip cli, /var/log/asm file and filter it with grep commands( and/or functions).

-Jinshu

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Is it possible to set multiple IPs in the Source IP Address of the advanced ASM Event log search?

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

IPv8 Would Fix My Routing Tables. It Will Never Ship.

Recent Discussions

Errors with AS3 3.56.0 with F5 17.5.1.6

F5 ASM/AWAF – violations logged but no learning suggestions generated

F5 VELOS Backplane Inter-Tenants Communication

migrate from serie I to R. Cluster LTM-GTM

Best Practice guide for enabling Attack signature In BIG-IP ASM

Related Content

Logging/Blocking possible prompt injection

From ASM to Advanced WAF: Advancing your Application Security

F5 BIG-IP Advanced WAF – DOS profile configuration options.

Advanced iRules: Tables

Introduction to F5 BIG-IP Advanced Firewall Manager (AFM)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS