Last Modified: Jan 07, 2026
Affected Product(s):
BIG-IP AFM
Known Affected Versions:
11.5.1, 11.5.1 HF1, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5, 11.5.1 HF6, 11.5.1 HF7, 11.5.1 HF8, 11.5.1 HF9, 11.5.1 HF10, 11.5.1 HF11, 11.5.2, 11.5.2 HF1, 11.5.3, 11.5.3 HF1, 11.5.3 HF2, 11.5.4, 11.5.4 HF1, 11.5.4 HF2, 11.5.4 HF3, 11.5.4 HF4, 11.5.5, 11.5.6, 11.5.7, 11.5.8, 11.5.9, 11.5.10
Opened: Nov 26, 2013 Severity: 3-Major Related Article:
K69585633
1) AFM ACL rule logs action = "Accept Decisively" for the firewall rule with action set to Allow Final. 2) When custom field logging is enabled, AFM still generates the ACL match logs with ALL fields for syslog format rfc5424
There is no impact: this is customer enhancement request.
1) AFM ACL rule action is set to Allow-final and logging is enabled. Firewall ACL rule log message shows action as 'Accept Decisively' (which is BigIP specific implementation) and may not be well understood by all log destinations. 2) Custom (selective) field logging is enabled in Security Log Profile and one of the log destination format is set to syslog rfc5424
This issue has no workaround at this time.
None