BIG-IP normalizes BIG-IP events and enables you to analyze BIG-IP data. It includes the Syslog Collector based F5 log source template, which ensures consistency in collecting, processing and analyzing BIG-IP logs for precise security event analysis and reporting.
Logpoint aggregates and normalizes the BIG-IP logs so you can analyze the information through the dashboards. The BIG-IP dashboards visualize events such as malware, attacks, user agents, content types, virtual server metrics, file system utilization, network traffic and system settings detected in your network. You can customize the dashboards to perform in-depth analysis by changing the data used in a search.
You can configure BIG-IP from Log Source Template or Devices. We recommend using the log source template.
Supported Devices/Sources
BIG-IP v11.x.x
BIG-IP v12.x.x
BIG-IP v13.x.x
F5 ASM
F5 Loadbalancer
BIG-IP Components
Dashboard Packages
LP_F5 Load Balancer v11_6
LP_BIGIP ASM
LP_F5 Load Balancer v11_4_1
Compiled Normalizers
Modularized Compiled Normalizer:
Modularization separates a program’s functionality into independent, interchangeable modules. Each module contains everything necessary to executes only one aspect of the program’s functionality. With modularization it is easier to add and maintain smaller program components, understand the purpose of each module, and reuse and refactor them. The modularized compiled normalizer BigIPF5CompiledNormalizer includes the modules like F5AFMCEFNormalizer, F5ASMCEFCompiledNormalizer and F5ASMNormalizer that are capable of carrying out task(s) independently and work as basic constructs for the BigIPF5CompiledNormalizer.
Normalization Packages
LP_BIG-IP ASM Remote Server Format
LP_F5 Load Balancer
LP_F5 Load Balancer v11_4_1
LP_F5 BIG-IP APM v12_x_x
LP_F5 BIG-IP Process
LP_F5 BIG-IP AFM Syslog
LP_F5 LTM and FWM
LP_F5 Load Balancer v11_6
LP_F5 BIG_IP Link Controller
LP_F5 BIG-IP APM v11_x_x
LP_BIG-IP ASM Reporting Server Format
Label Packages
LP_F5 Load Balancer v11_4_1
LP_F5 Load Balancer