Forum Discussion

Nimbostratus

Sep 17, 2007

syslog-ng and centralized logging

We are trying to find a way to send syslog from the servers behind bigip to a central log server and distinguish what host the message came from. Is there any way to do this? Will creating ...

config

design

Deb_Allen_18

Historic F5 Account

Sep 17, 2007

Hi Kevin --

With a default SNAT in place, the traffic through a forwarding VS would be SNAT'd.

If your server addresses are routable out to the remote syslog server, and UDP is the transport protocol, I think you could configure as follows to preserve source IP even with a default SNAT configured:

Virtual server

- Dest: :514

- Type: Standard

- Proto: UDP

- VLAN: Enable on

- Address translation: Enabled

Pool

- Members: :514

- Allow SNAT: No

HTH

/deb

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

syslog-ng and centralized logging

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

Syslog NG Email Configuration

Configuring syslog-ng to email messages

Could you recommend the syslog-ng guide in the above situation?

Changing the BIG-IP Default Syslog-NG Facilities

F5 Distributed Cloud Telemetry (Logs) - Loki

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS