JTucker_137331
Jun 12, 2014Nimbostratus
Logging Specific Message to Syslog Server LTM 11.4.1
Hi,
I have followed the steps from here:
http://support.f5.com/kb/en-us/solutions/public/13000/300/sol13333.html
but I don't seem to be getting any output to the syslog server.
modify syslog {
auth-priv-from notice
auth-priv-to emerg
console-log enabled
cron-from warning
cron-to emerg
daemon-from notice
daemon-to emerg
description none
include "
filter f_remote_loghost {
level(warn..emerg);
};
destination d_remote_loghost {
udp(\"172.22.0.90\" port(514));
};
log {
source(s_syslog_pipe);
filter(f_remote_loghost);
destination(d_remote_loghost);
};
"
iso-date disabled
kern-from notice
kern-to emerg
local6-from notice
local6-to emerg
mail-from notice
mail-to emerg
messages-from notice
messages-to warning
remote-servers none
user-log-from notice
user-log-to emerg }
Which looks fine as per the article - tcpdump on the ether0 interface shows no traffic either (even when set to higher logging levels.) I've also noticed that the GUI doesn't seem to reflect this change, is that right too?
Any pointers would be appreciated!
James