Forum Discussion

Jay_PL's avatar
Jay_PL
Icon for Nimbostratus rankNimbostratus
Jun 28, 2022

will the F5 log incoming connections into a log file?

Hi,

Would like to know, will F5 logs all the incoming connections into a log file?

like /var/log/ltm holds all local traffic logs, looking for similar file which hold all incoming connections to the VS?

i know we can check the current connections via tmsh show sys connections <different parameters>. but needed history.

event
  • Sebastiansierra's avatar
    Sebastiansierra
    Jun 29, 2022

    Hi,

    You can create a script that is run in the crontab every 30 seconds for example and export the data to an external server using scp, the disk capacity in the device is very limited and if you perform this task locally you can have many issues.

  • Sebastiansierra's avatar
    Sebastiansierra
    Icon for MVP rankMVP
    Jun 28, 2022

    Hi,

    BIG-IP system is not a logging server and has limited capacity for storing, archiving, and analyzing logs. A dedicated logging server is recommended for extensive logging functions. The BIG-IP system is configured by default to provide the most relevant log information to administrators.

    Changing the default log levels to a higher level increases the amount of data stored on the device. If the default levels are changed for troubleshooting purposes, remember to set the level back to its default setting.

    Additional to modify the log setting for default you to have to go to the path:

    System ›› Logs : Configuration : Options

    Additional you can export the log connection to a file the  inside your virtual server with this command:

    tmsh show sys connection cs-server-addr 192.168.138.30 > /var/tmp/connection.txt

    Hope it´s work.

    • Jay_PL's avatar
      Jay_PL
      Icon for Nimbostratus rankNimbostratus
      Jun 28, 2022

      Hi Sebastian

      tmsh show sys connection cs-server-addr 192.168.138.30 > /var/tmp/connection.txt ---> didnt work. got error unknown parameter on ">"

  • Jay_PL's avatar
    Jay_PL
    Icon for Nimbostratus rankNimbostratus
    Jun 28, 2022

    that worked. Thanks.

    but. i need that to be logged for a particular amount of time, say 1 hour like that

    • Sebastiansierra's avatar
      Sebastiansierra
      Icon for MVP rankMVP
      Jun 29, 2022

      Hi,

      You can create a script that is run in the crontab every 30 seconds for example and export the data to an external server using scp, the disk capacity in the device is very limited and if you perform this task locally you can have many issues.