Forum Discussion
ecoumesh_264424
Nimbostratus
Nimbostratussyslog over tcp and define management IP as source
Hello
I used following method to add syslog server ip with tcp port. can anyone help me how to define source IP (management IP) to send logs to syslog server.
https://support.f5.com/csp/article/K13080
Configuring the BIG-IP system to log to the remote syslog server using TCP protocol Impact of procedure: Performing the following procedure should not have a negative impact on your system.
1.Log in to tmsh by typing the following command: tmsh
2.To log to the remote syslog server using the TCP protocol, use the following command syntax:
modify /sys syslog include "destination remote_server {tcp(\"\" port (514));};filter f_alllogs {level (debug...emerg);};log source(local);filter(f_alllogs);destination(remote_server);};"
For example, to log to the remote syslog server 172.28.68.42, type the following command:
modify /sys syslog include "destination remote_server {tcp(\"172.28.68.42/" port (514));};filter f_alllogs {level (debug...emerg);};log {source(local);filter(f_alllogs);destination(remote_server);};"
youssef1Cumulonimbus
Hello,
For your asked you have to a add route to force traffic passing by management route.
You have to know that routing for mgmt is different of business routing.
SO connect to F5 using cli and enter in tmsh then add your route:
tmsh create /sys management-route network / gatewayexample
tmsh create /sys management-route syslog-route network 172.28.68.42/32 gateway 1.1.1.11.1.1.1 will be the management gw
Then save configuration
tmsh save /sys configThis article describe routing trough mgmt interface: https://support.f5.com/csp/article/K13284
Keep me update,
Regards,