Need an iRule to parse out UDP Syslog messages

I have a Firemon deployment that is getting buried with a flood of UDP syslog message streams from our Firewalls. The Firemon units can simply not handle the amount of syslog traffic that is being sent and it is dropping messages. I can't dial down the syslog level at the Firewalls as our Secure Works deployment needs to see all of the call setup and tear down messages where as the Firemon only needs to see ACL usage messages. I was wondering if there was a iRule that I could implement that can look inside of the UDP Syslog message and only forward certain syslog types, i.e. in this case Cisco ASA messages 106100, 111005 and 111007 and discard all others?