How do I identify log types going to syslog from F5 devices?

Question

(please ignore TECHNOLOGY tag, I had to pick 1 to post)&nbsp;
Hello everyone.  I manage a Splunk instance and am attempting to sort F5 logs I am receiving.  My syslog is receiving 13 different log files from the "F5 devices" but no one can tell me what the logs are or how to group/categorize them (break them into different sourcetypes).  I asked the network engineer but haven't heard anything in weeks so I'm reaching out for your help.  Any advice on how to go about determining what is what would be appreciated.&nbsp;
The logs are being sent to my syslog server and then getting picked up by Splunk.  The 13 different log files are all .log :&nbsp;
auth, authpriv, cron, daemon, kern, local0, local1, local2, local4, local6, mail, syslog, user&nbsp;

daniel_wolf_262 · Accepted Answer

Hi there,&nbsp;
maybe you looking for this information: K15934495: Configuring the level of information that syslog-ng sends to log files&nbsp;

dead_beef_39022 · Answer

This looks to be exactly what I needed!!!  This has enough info to tell me what each log is so I can sort them out.  Thank you so much.&nbsp;

Forum Discussion

How do I identify log types going to syslog from F5 devices?

2 Replies

Recent Discussions

F5Access | MacOS Sonoma

enable tls1.2 on management interface on F5 ltm running version 10.x

[ASM] - what is "Browser Challenge file" ?

SMS server with BIGIP

F5 terminal - help to run commands - disk space full

Related Content

Can't identify cookie

Adaptive Apps: Identify underlying issues in a complex app portfolio - Demo Kit

Device Management

Tcp syslog

Device ID not working for IOS iPhone devices