sharpie_79656
Nimbostratus
NimbostratusHTTP Policy Logging
I have an HTTP Policy in place with a big of logging. However I'd like to provide more detail in the log such as Client IP Address. I have attempted to use [IP::CLIENT_ADDR] however that doesn't appear to work. Is there away I can accomplish this. Below is my policy:
ltm policy /QA/API_SERVICES {
controls { forwarding }
requires { http }
rules {
"DROP_STATUS PAGES" {
actions {
0 {
log
write
message "[IP::CLIENT_ADDR] ATTEMPT TO ACCESS STATUS PAGE"
}
1 {
forward
reset
}
}
conditions {
0 {
http-uri
path
values { /favorites/status }
}
}
ordinal 2
}
ALLOWED_SERVICES {
actions {
0 {
log
write
message "Attempt to access non-permitted web service"
}
1 {
forward
reset
}
}
conditions {
0 {
http-uri
path
not
starts-with
values { /favorites/ }
}
}
ordinal 3
}
HOST_HEADER {
actions {
0 {
log
write
message "Bad host header."
}
1 {
forward
reset
}
}
conditions {
0 {
http-host
not
values { blah.foo.bar }
}
}
ordinal 1
}
}
strategy /Common/first-match
}
