Forum Discussion
1 Reply
Sort By
- kohli9harjeevNimbostratus
Hi,
If you need the IP only,then you use the following irule and forward the logs to any SIEM server for historical data if you want to keep it
when CLIENT_ACCEPTED {
log local0. "IP: [IP::client_addr] accessed the application"
}
Regards