Forum Discussion

Nimbostratus

Feb 15, 2016

AFM Logging without a Virtual Server Profile

Hi, I am trying to view the logging for rules configured on our network firewall. All F5 documentation I have found ultimately points applying a profile to a VIP. We are using this as a layer 4 ...

Employee

Feb 15, 2016

If you are applying global rules they you need to modify the global-network logging profile to log to your intended destination. I know that we generally advise against modifying default profiles, but in this case it is the only way to log rules that are applied in a global context. Creating a child profile with global-network as the parent will not work.

Bear in mind that the AFM still requires a valid TMM listener to handle the traffic after it passes the firewall. BigIP is a default deny device and will not pass traffic unless configured to do so.

Forum Discussion

AFM Logging without a Virtual Server Profile

Recent Discussions

Big-IP Next 20.2.0-2.375.1+0.0.43 iRule count problem

Azure SAML - F5 APM

iRule resulting in too many redirects

ASM cookie, modifying "domain" field

URL

Related Content

Integrating SSL Orchestrator with Fortinet FortiGate Virtual Edition as a Virtual Wire

Create F5 BIG-IP Next Instance on Proxmox Virtual Environment

ASM logs

ASM LOGS

Logging DNS Requests