Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology
Answers

How to hide specific logs from F5

Hi Guys,

I am getting below logs on in F5 System>>Logs>>Audit logs. I checked in below article in that showing it is a normal logs.

https://devcentral.f5.com/questions/what-could-be-the-reason-for-the-apm-log-user-root-folder-common-module-tmos-status-command-ok-cmd-data-list-sys-db-50450

I need more information on this

why alerts were triggered at that specific time and date? What is the root cause? Is there any way we can clear the alerts?

Observed messages in logs: pid=22039 user=root folder=/Common module=(tmos)# status=[Command OK] cmd_data=show sys mcp-state field-fmt: Happened since 7 Dec 4:00am

0
Rate this Question
Comments on this Question
Comment made 3 months ago by Mayur 62

I checked more on this on BIGIP device, In System>log>Configuration>Option, It is possible to disable tmsh and MCP login. Which is enabled by default after 11.x version.

0

Answers to this Question

placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

You can avoid those messages using "Log Filters"

To do so, you need to create a Log Filter (in Log Options) as "notice" specifying just '01420002' code. Destination of those messages should be 'None'.

About the meaning... try this -> https://devcentral.f5.com/questions/meaning-of-the-audit-log

KR, Dario.

0