Technical Forum
Ask questions. Discover Answers.
cancel
Showing results for 
Search instead for 
Did you mean: 

SPLUNK

Poseidon1974
Altocumulus
Altocumulus

Hi ,

to exploit the logs of the F5 LTM, APM,  I would like to use, SPLUNK, and to avoid doing TCPDUMP on an environment of  F5, do you know which keywords I could use on splunk.

Thanks,

4 REPLIES 4

Paulius
MVP
MVP

@Poseidon1974 I don't believe you can have the level of detail on a SPLUNK server that you can on a tcpdump on the F5, you will receive log messages but nothing as informative as a tcpdump.

Thanks 

If that was the correct answer for you, please flag it as such.

I totally agree on the answer btw, logging and tcpdump are different things. won't be possible to pull that traffic logging into Splunk.

Thanks