Forum Discussion
AltostratusIs it safe to delete rewrite* files in /var/log?
Hello,
I'm having huge amount of rewrite* files in the /var/log and I would like to know if it's safe to delete them? I have old one (3 weeks) different from current ones like rewrite3.1, rewrite5.1, rewrite6.1 all on the same 3 week old date...
Also, I have 8 rewrite files, starting from rewrite to rewrite7 all from today's date but they take about 20Gb of space in that /var/log partition... Is it normal?
Thanks.
NS
Dario_GarridoNoctilucent
Hello njseq
"The BIG-IP® system publishes logs for portal access traffic and for connections to virtual desktops (VDI) to the /var/log/rewrite* files. APM® cannot publish these logs to remote destinations."
>> Those log files are local, so you can remove them or move them to a different log server.
/var/log/rewrite<x>.log
"The rewrite log contains events from the rewrite profile. The <x> indicates the CPU instance that logged the rewrite info."
REF - https://support.f5.com/csp/article/K13595
>> Regarding the high volume of logging, I suspect that you are logging with a 'debug' level. I would check if vdi is in debug mode.
tmsh list /sys db log.vdi.levelKR,
Dario.
njseqHi Dario,
Thanks for answering.
I'm not using VDI so this is strange...
The rewrite files are quite a few and some start with rewrite1, rewrite2, ... others a little older with rewrite1.1 , rewrite2.1, etc...
Use have BIG-IP VE version 14.1
Thanks.
Kind regards,
NS
Instead of deleting them with 'rm', you could also wipe their content, like for example:
'cat /dev/null > /var/log/rewrite1.1'
This will empty the file, but will be less disruptive. For more info on cleaning up files this way see:
https://superuser.com/questions/849413/why-would-you-cat-dev-null-var-log-messages
