Forum Discussion

Nimbostratus

Dec 11, 2023

Multiline logs in F5 Big

I am trying to Audit F5 ASM Logs in SIEM platform. The issue is, it seems like F5 is storing some of the logs with multiline description: This makes it very difficult to parse in SIEM as they...

application delivery

devops

zamroni777

Nacreous

i guess they are in json or xml format.
if it is, the parser should not process them as plain text but as json/xml

Utkc137

Nimbostratus

Dec 13, 2023

I don't think so, here's a screenshot from F5 backend:

Any way to make F5 store these as a single line event?

Recent Discussions

F5 looses the token for the first call
Dec 20, 2024
Ozzy
iRule - Url rewrite and header replace and pool selection not working
Dec 20, 2024
rct101
Switch ssl profile based on weak cipher detection via IRULE
Dec 20, 2024
aliasgar215
full-proxy HTTP2
Dec 20, 2024
former_newbie
Decode ObjectSID from Base64-encode string
Dec 20, 2024
Sefi_Miz

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Multiline logs in F5 Big

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Generating irule logs, emails and reports for Shadow API Endpoints on the F5 BIG-IP AWAF/ASM device

Prepare BIG-IP Central Manager for Automation

SSL Orchestrator Enhanced Uses Case: Remote Logging

The Case of the Missing F5 AMI : F5 BIG-IP AMI Lifecycle Events

How to Use BIG-IQ and Ansible to Build Advanced BIG-IP Automation Workflows

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS