Rule to log SMTP traffic in npath deployment

Question

HI ,&nbsp;We deployed F5 in npath mode for SMTP mailing solution, and now we have requirement to capture SMTP traffic logs and save in sys log server with below list of paramater&nbsp;date , time ,source ip , destination ip, ports , message id , email from &amp; to , queue id .&nbsp;&nbsp;F5 VIP type is performance L4&nbsp;Regards,Saurabh Agate&nbsp;

simon_blakely · Answer

For some ideas, take a look at&nbsp;Logging SMTP traffic info via HSL to remote log server.&nbsp;However, because you need to collect the TCP payload to get SMTP items like message id , email from/to and queue id, this is expensive on memory in tmm. You will also need to parse out the items that have been requested using regex.&nbsp;Also, because this is npath traffic, The BigIP will only see the client side of the conversation.&nbsp;This sort of specific logging would be better delivered from the actual Mail Servers, as they understand the SMTP traffic without it having to be parsed.

Forum Discussion

Rule to log SMTP traffic in npath deployment

Recent Discussions

Can you set Kerberos AAA server via session variable?

HTML Code injection Not detected by ASM

What will be happen to live and existing connections when failover HA BIG IP active-standby

SSL Offload and remove FQDN

High CPU utilization (100%).

Related Content

Maximizing Scalability with F5 CIS: Blue-Green Deployment on OpenShift

Ensuring Security in Continuous Integration and Continuous Deployment (CI/CD) Pipelines

Testing the security controls for a notional FDX Open Banking deployment

Scale Multi-Cluster OpenShift Deployments with F5 Container Ingress Services

Your BIG-IP Deployment FastPass

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS