ASM event logs do not show logs of last two days

Question

We have checked all event logs of all profiles last logs appear 2 days ago &nbsp;
We have noticed that logging on a lot of virtual servers was set as log all request, we have changed it to log only illegal requests.&nbsp;
We have to wait a time and logging will be adjusted or we have to modify something or execute commands &nbsp;

nathe · Answer

The logging change should be immediate. Any error messages in /var/log/asm or bd.log?&nbsp;
Are you logging remotely? If in a HA pair, what about if you fail over to the passive device, does that log successfully?&nbsp;
N&nbsp;

boggs_5738 · Answer

check disk space. logging locally sends it to the mysql database for asm. so if its full, it'll get truncated at some point but worth to check.&nbsp;
check via packet capture if when an illegal request is triggered, does the event log sent to the SIEM. depends on which interface the SIEM is reachable from - either mgmt interface or a self ip. &nbsp;

Forum Discussion

ASM event logs do not show logs of last two days

2 Replies

Recent Discussions

enable tls1.2 on management interface on F5 ltm running version 10.x

[ASM] - what is "Browser Challenge file" ?

SMS server with BIGIP

F5 terminal - help to run commands - disk space full

Can iRule be used to perform exception of IPI category based on Geolocation

Related Content

Log separation by event

Security event logs forwarding

Bot Log is not showing in BIG-IQ

AWAF - Do not log Geolocation violations from the Event Log

export ASM event logs in csv format