Forum Discussion
Roman_80473
Nimbostratus
Jun 09, 2011where does my iRule log to?
Hi folks,
I'm trying to figure out where does my iRile log to. I have a simple iRule attached to vserver on LTM 9.4.8:
when CLIENT_ACCEPTED {
Log messages to /var/log/ltm? (0=no, 1=yes)
log local0. "In client accepted ..."
}
When I run the traffic thru, I don't see any of the log files updated in /var/log/. If, I however, put smth stupid in the file, like log banana, /var/log/ltm gets updated with an error message:
[Invalid syslog level - bad facility: banana] [log banana. "In client accepted ..."]
The syslog-ng.conf has entry local0. which actually points to /var/log/ltm commented out. Might that be a reason?
Any help is appreciated.
Roman
- hoolio
Cirrostratus
Hi Roman, - hoolio
Cirrostratus
That's not actually commented out. It's just a comment on what the statement is being used to do. Your ltm logs should be logged locally and to the two remote syslog servers.when RULE_INIT { log local0. "Here" }
- Roman_80473
Nimbostratus
Hi Aaron, - hoolio
Cirrostratus
Is the virtual server under heavy load or are you just testing with single requests? - Roman_80473
Nimbostratus
It's dev server, so I doubt there's much traffic there. When I initially saved the rule, this is what I saw in ltm: - hoolio
Cirrostratus
I'm not sure what would cause this if the RULE_INIT log statement works with local0. and you see a runtime TCL error in /var/log/ltm when you change the syslog facility to something invalid. You might try opening a case with Support on this and ask them for help troubleshooting this. - Roman_80473
Nimbostratus
I'll resort to support if I'm abs stuck. I wanted to debug the rule to see if it's actually being executed. I'll dig some more.
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects