Logging Connections

Question

Is it possible to turn on a level of logging in the GUI that will log connections and which node they get load balanced to, or does that have to be done through an irule?

jrahm · Answer

Not sure in LTM, but I'd guess no.  Yes in GTM, though:&nbsp;
&nbsp;bigpipe db GTM.QueryLogging enable&nbsp;&nbsp;&nbsp;&nbsp;

hooleylist · Answer

You would indeed need to use a rule to log client connections through a virtual server and which node the request was sent to.  Here is an example:
when CLIENT_ACCEPTED {
   log local0. "client: [IP::remote_addr]:[TCP::remote_port] -&gt; dest: [IP::local_addr]:[TCP::local_port]"
}
when SERVER_CONNECTED {
   log local0. "client: [IP::local_addr]:[TCP::local_port] -&gt; dest: [IP::remote_addr]:[TCP::remote_port]"
}
You could combine this into one log statement using this:
when SERVER_CONNECTED {
   log local0. "client: [IP::client_addr]:[TCP::client_port] -&gt; dest: [IP::remote_addr]:[TCP::remote_port]"
}
The output of logging to local0.* is /var/log/ltm.
Aaron

deb_allen_18 · Answer

Just be careful of exceeding the capacity of /var with excessive logging, though...&nbsp;
&nbsp;You might want to check out hoolio's codeshare contribution about custom syslogging (Click here) and filter the messages resulting from your iRule off to a remote syslog server.&nbsp;
&nbsp;/d

Forum Discussion

Logging Connections

3 Replies

Recent Discussions

preserve client IP on layer 4 VIP

Failed to convert character dclid=%EDclid!

ASM - Parent policy vs OWASPcompliance

Rewrite uri translation not working

CONNECTION IS LOST DUE TO SELF IP IS DELIVERED

Related Content

Log tcp Connections.

Log client to vip connections

After applied ASM Policy to Virtual Server, connections will reset with Internal error in log

ASM logs

ASM LOGS