Forum Discussion

Nimbostratus

Jul 24, 2024

Old logs of backend nodes on F5

There was some issue on application where backend node were flapping so I want to check the back logs for that pool to share with them. Please help me with the F5 CLI command to check the old logs o...

Noctilucent

Jul 24, 2024

How old is the incident. Depending upon the logs that has been flowing in the respective F5, the logs get rotated/archived.

Try the 1st command to see how old files you could see.

The second cmd checks the ip 1.1.1.1 (it could be assumed as node ip Or any ip as a matter of fact) in the uncompressed ltm files.

The last cmd checks on the archived files.

ls -ltrh /var/log/ltm*
cat /var/log/ltm* | grep 1.1.1.1
zcat /var/log/ltm* | grep 1.1.1.1

If you get zero hits, presumably the logs are rotated.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Old logs of backend nodes on F5

Recent Discussions

What Was Your Favorite Moment at AppWorld 2026?

Article: We're Creating a Knowledge Collapse and No One's Talking About It

Traveling to Las Vegas for AppWorld 2026?

BIG-IP System Preferences

F5 EXAM VOUCHERS

Related Content

iRule to Force Source IP to Specific Backend Node

Logging/Blocking possible prompt injection

SSL Offloading and Backend pool https

Forwarding Logs to SIEM Tools via HTTP Proxy for F5 Distributed Cloud Global Log Receiver

F5 Distributed Cloud Telemetry (Logs) - Loki

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS