F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

swapnilbendekar's avatar
swapnilbendekar
Icon for Nimbostratus rankNimbostratus
May 20, 2011

way to get away with truncated syslog

Hi friends,     I have written iRule script as:     when HTTP_REQUEST {   if {[HTTP::header value Content-Type] contains "application/vnd.syncml+xml"}{   set sec...
ve
virtualization
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
May 20, 2011
I'd look at High Speed Logging as this bypasses the local syslog daemon:

 

 

http://devcentral.f5.com/wiki/default.aspx/iRules/hsl

 

 

Also, if you want to capture the full HTTP payload, you'll need to call HTTP::collect and then use HTTP::payload to access the collected data:

 

 

http://devcentral.f5.com/wiki/default.aspx/iRules/http__collect

 

http://devcentral.f5.com/wiki/default.aspx/iRules/http__payload

 

 

Aaron