Bug ID 925161: Access Remote Logging configuration on BIG-IQ

Last Modified: Sep 18, 2020

Bug Tracker

Affected Product:  See more info
BIG-IQ Access(all modules)

Known Affected Versions:
7.1.0, 7.1.0.1

Opened: Jul 07, 2020
Severity: 2-Critical

Symptoms

After clicking the 'Configure' button on the Monitoring > DASHBOARDS > Access> Remote Logging Configuration page, you see the following text displayed under the 'Status' column: "Failed - Failed to create Access-Remote-Syslog-Node-x.x.x.x"

Impact

Access Remote Logging remains in an error state. This causes Access/APM logs to not aggregate to the BIG-IQ. APM logs are the primary source of data for Access Dashboards to display Access statistics. Access Dashboards will fail to display data. For example Monitoring > DASHBOARDS > Access > Access Summary page displays "No Data Available" under the chart "Access Sessions over time".

Conditions

This happens when a BIG-IP device is configured for ASM Remote Logging and you attempt to configure Access/APM Remote Logging on BIG-IQ using the following steps: 1. Navigate to the Monitoring > DASHBOARDS > Access > Remote Logging Configuration page. 2. Select the check box next to the BIG-IP you want to enable logging on. 2. Click the 'Configure' button

Workaround

You must reconfigure Access Remote Logging directly on the BIG-IP device. For more information, follow the steps for configuring APM Remote Logging in the BIG-IP guide for the version it is running. For example, for BIG-IP version 15.1.0 devices, see https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-access-policy-manager-portal-access/logging-and-reporting.html You might also need to enable below two additional settings from the BIG-IP using the associated API calls. 1. Policy Tracing BIG-IP API : /mgmt/tm/sys/db/tmm.access.policytrace PATCH with { "value" : "enabled" } Policy trace is a dB variable which when enabled logs policy trace messages on the BIG-IP. This log message is used to generate Denied Reasons, Auth Failure reports. 2. VPN Statistics BIG-IP API: /mgmt/tm/sys/db/vpn.logstats PATCH with { "value" : "enabled" } VPN stats is a dB variable that needs to enabled to get the Bytes Transferred log message for VPN Sessions. Bytes transferred log message is generated periodically.

Fix Information

None

Behavior Change