Manual Chapter :
Create and
associate a logging profile for SSH proxy events
Applies To:
Show VersionsBIG-IP AFM
- 17.1.0, 17.0.0, 16.1.5, 16.1.4, 16.1.3, 16.1.2, 16.1.1, 16.1.0, 16.0.1, 16.0.0, 15.1.10, 15.1.9, 15.1.8, 15.1.7, 15.1.6, 15.1.5, 15.1.4, 15.1.3, 15.1.2, 15.1.1, 15.1.0
Create and
associate a logging profile for SSH proxy events
Create an SSH logging profile to specify the
events that are logged for SSH proxy. Use a unique name for the log profile, and specify
the log publisher you created for SSH Proxy events.
- On the Main tab, click.The Logging Profiles list screen opens.
- ClickCreate.The Create New Logging Profile screen opens.
- In theProfile Namefield, type a unique name for the profile.
- Select theProtocol Securitycheck box.
- In the SSH Proxy area, from thePublisherlist, select the log publisher you created.
- To log client authentication failures, forLog Client Auth Fail Event, clickEnabled.
- To log successful client authentications, forLog Client Auth Success Event, clickEnabled.
- To log partial client events, forLog Client Auth Partial Event, clickEnabled.
- To log server authentication failures, forLog Server Auth Fail Event, clickEnabled.
- To log successful server authentications, forLog Server Auth Success Event, clickEnabled.
- To log partial server events, forLog Server Auth Partial Event, clickEnabled.
- To log disallowed channel action, forLog Disallowed Channel Action, clickEnabled.
- To log allowed channel action, forLog Allowed Channel Action, clickEnabled.
- To log SSH timeouts, forLog SSH Timeout Event, clickEnabled.
- To log Non-SSH timeouts, forLog Non-SSH Timeout Event, clickEnabled.
- ClickFinishedto create the SSH logging profile.To create the SSH logging profile at the command line, create the log profile with the following command:tmsh create sec log profile <log_profile_name> ssh-proxy add { ssh-log { log-publisher <log_publisher_name> allowed-channel-action enabled disallowed-channel-action enabled ssh-timeout enabled non-ssh-traffic enabled successful-server-side-auth enabled unsuccessful-client-side-auth enabled unsuccessful-server-side-auth enabled }}
- To associate the logging profile with the SSH virtual server, click.
- Click the name of the SSH virtual server.
- From theSecuritymenu, choosePolicies.
- For theLog Profilesetting:
- Set it toEnabled.
- From theAvailablelist, move the SSH logging profile into theSelectedlist.
You can assign only one local logging profile to a virtual server, but it can have multiple remote logging profiles. - ClickUpdate.
A logging profile that includes the SSH proxy events is created and associated with the
SSH virtual server.