Manual Chapter :
Configure IPsec event viewing on the BIG-IQ
Applies To:
Show VersionsBIG-IQ Centralized Management
- 6.0.0
Configure IPsec event viewing on the BIG-IQ
How do I configure viewing IPsec event logs?
You can use BIG-IQ® Centralized Management to view IPsec events. To set up IPsec event log viewing, you need to:
- Configure the BIG-IP® devices that comprise the IPsec tunnel to send events to the data
collection device.
- Create a remote log server pool.
- Create a remote high-speed log destination for IPsec.
- Create a remote Syslog destination for IPsec.
- Configure a log publisher to send IPsec events to the BIG-IQ.
- Configure the BIG-IQ system to view IPsec events by Enabling IPsec event collection.
After you complete these initial configuration tasks, you can view IPsec events on the BIG-IQ.
Create a log publisher pool
Creating a log publisher pool is
part of the sequence you perform to route IPsec events from the BIG-IP device to your data collection device so that you can view these events
from the BIG-IQ.
Important: You must perform
these steps
for
both of the BIG-IP devices that comprise the IPsec tunnel.
The log publisher
pools
you created
are
added to the pools list.
Create a remote high-speed log destination for IPsec
Before creating a remote high-speed
log destination for IPsec, you must create a log publishing pool.
Creating a remote high-speed log
destination is part of the sequence you perform to route IPsec events from the BIG-IP device to your data collection device so that you can view
these events from the BIG-IQ.
Important: You must perform
these steps
for
both of the BIG-IP devices that comprise the IPsec tunnel.
Create a remote Syslog destination for IPsec
Before creating a remote Syslog log
destination for IPsec, you must create a log publishing pool and a high-speed log
destination for IPsec.
Creating a remote Syslog log
destination is part of the sequence you perform to route IPsec events from the BIG-IP device to your data collection device so that you can view
these events from the BIG-IQ system.
Important: You must perform
these steps
for
both of the BIG-IP devices that comprise the IPsec tunnel.
Configure a log publisher to send IPsec events to the BIG-IQ
To send the IPsec event logs to the
data collection device, you must configure a publisher to send them to the IPsec Syslog
destination.
Important: You must perform
these steps
for
both of the BIG-IP devices that comprise the IPsec tunnel.
To use the IPsec tunnel
configuration
to
collect IPsec events, you must
activate
IPsec event collection for your data collection device (DCD)
cluster.
Enable IPsec event collection
To view IPsec tunnel events on BIG-IQ, you need to activate IPsec event collection for your data
collection device (DCD) cluster.
You can now view IPsec event logs
using the BIG-IQ user interface.