Forum Discussion

Cirrus

Jun 03, 2024

Remote log WAF based on number of violations

Hi All, At a customer I have configured a WAF to protect their web applications. Also configured a Logging Profile to send the logging to a remote server. This works fine. But customer would like...

Cirrus

Jun 18, 2024

Hi,

I have a follow up question. Is there an option to send only High and Medium violations within WAF to the remote syslog servers and don't send the Low violations? Or do I need to create an iRule and this is not an standard option within the F5 web GUI.

Regards,
Martijn.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Remote log WAF based on number of violations

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

[ASM] - How to disable the SQL injection attack signatures

[ASM] : SQL-INJ "end-quote UNION" - How to allow this signature to specific url/uri/parameter only

Changes to DO and AS3 GitHub - no longer monitored

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Help with SSH Virtual Server

Related Content

KEV Guardrails on BIG-IP: iRules + AWAF custom violations for Vite, Versa Concerto, and Zimbra

Integrate F5 Distributed Cloud remote logging with ELK

Separating False Positives from Legitimate Violations

Automated backup F5 configuration to remote server

ImageTragick - ImageMagick Remote Code Execution Vulnerability

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS