Forum Discussion

RolandoValenzue's avatar
RolandoValenzue
Icon for Nimbostratus rankNimbostratus
Jul 08, 2019

AFM rule-list hit count and logging

Right now I have two very strict things I would like to accomplish but I cannot find a way to do [1][2][3] it and I was wondering if you can help me with them.

 

#1- Rule-list hit count

What's the best way to see the hit count of each rule-list?

I found the command "show /security firewall rule-stat" but if I do four telnet (4 SYN) in a row, the counter increases by twelve

4 != 12

 

#1.1- I tried with the "reset-stats security firewall <location>" command and the counter does not goes back to zero.

 

 

#2- Allow/Deny logging

Even if I enable the "logging" box on single each rule, I cannot find a record of the traffic that it allowed/denied. Where and/or how can I find logs for each allow/deny the AFM does?

 

Thank you!!

Rolando A. Valenzuela

1 Reply

  • I think I figure it out thanks to this article https://clouddocs.f5.com/training/community/firewall/html/class2/module1/lab3.html

    Where can I find an equivalent on the CLI? Is there a way to make this logging profiles default?

     

    Thanks.