Application firewall Logs are not logged locally in NetScaler

book

Article ID: CTX693174

calendar_today

Updated On:

Description

NetScaler appfw logs are being forwarded to the syslog server as expected. However, the logs are not being logged or displayed in the local (/var/log/ns.log).

Config:

add audit syslogPolicy sys_adv1 true sys1
bind audit syslogGlobal -policyName sys_adv1 -priority 100 -globalBindType APPFW_GLOBA

Before binding the policy the Appfw events are logged in local /var/log/ns.log file

Post binding the advanced syslog policy to the bindpoint APPFW_GLOBAL, the logs do not appear

Resolution

This is a known issue and is fixed in 13.1 56.x

Problem Cause

Syslog advanced policy configured and bound to APPFW_GLOBAL endpoint causing the issue.

Was this article helpful?

thumb_up Yes

thumb_down No