Use https://seceonhelp.freshdesk.com/support/login to access updated Knowledge Base Articles, Submit Technical Support Tickets and Review Status of submitted support tickets.
Device Integration: F5 WAF Big-IP
Log in to the F5 Networks BIG-IP ASM appliance user interface.
In the navigation pane, select Application Security > Options
Click Logging Profiles
Click Create.
From the Configuration list, select Advanced.
Type a descriptive name for the Profile Name property.
Optional: Type a Profile Description If you do not want data logged both locally and remotely, clear the Local Storage check box.
Select the Remote Storage check box.
From the Type list, select 1 of the following options:
a .In BIG-IP ASM V12.1.2 or earlier, select Reporting Server.
b .In BIG-IP ASM V13.0.0 or later, select key-value pairs.
10. From the Protocol list, select UDP
11. In the IP Address field, type the IP address of the collector (CCE) Console and in the Port field, type a port value of 514.
12. Select the Guarantee Logging check box.
Note: Enabling the Guarantee Logging option ensures the system log requests continue for the web application when the logging utility is competing for system resources. Enabling the Guarantee Logging option can slow access to the associated web application.
13. Select the Report Detected Anomalies check box to allow the system to log details.
14. Click Create.
The display refreshes with the new logging profile. The log source is added to CCE as F5 Networks BIG-IP ASM events are automatically discovered. Events that are forwarded by F5 Networks BIG-IP ASM are displayed on the Seceon GUI under system logs flow collection tab.
Seceon Inc. All rights reserved. https://www.seceon.com