Configure Global Log Streaming

Objective

This guide provides instructions on how to enable streaming of your tenant logs from F5® Distributed Cloud Regional Edge (RE) Sites to an external log collection system. The streamed logs include all system and application logs of your tenant. This also includes logs of all Customer Edge (CE) Sites of that tenant. For conceptual information about logging, see Logs.

A folder gets created each day in your log collection system and in that folder, a folder for each hour gets created. The logs are streamed for every 5 minutes into the hourly folder and are stored in a compressed gzip file.

Note: Currently, global log streaming supports only sending the request (access) logs for all HTTP Load Balancers and sites.

Using the instructions provided in this guide, you can configure a Global Log Receiver in the F5® Distributed Cloud Console (Console) to enable the streaming of logs to an external log collection system.

Note: The Global Log Receiver currently only supports streaming of logs to an AWS S3 bucket.


Prerequisites

Note: If you do not have an account, see Create an Account.

  • An external log collection system reachable publicly.

Enable Global Streaming of Logs

The example shown in this guide creates a global log receiver object in the Console for streaming the logs to the external log collection system.

Perform the following in the F5® Distributed Cloud Console:

Step 1: Start creating a global log receiver.
  • In the Console home page, select Cloud and Edge Sites service.

  • Select Management > Log Management in the primary navigation menu.

  • Select Global Log Receiver.

NavGlobalLogReceiver
Figure: Navigate to Global Log Receiver Page

  • Select Add Global Log Receiver button.
Step 2: Configure global log receiver properties.

Do the following in the Global Log Receiver section:

  • Enter a name in the metadata section. Optionally, set labels and add a description.

  • Select logs from current namespace for the Log Message Selection field. This is also the default option.

  • Select S3 Receiver for the Receiver Configuration box. Configure following for S3 receiver:

    • Enter your AWS S3 bucket name in the S3 Bucket Name field.

    • Select AWS Cloud Credentials box, select a cloud credentials object from the drop-down. Alternatively, you can also use the Create new Cloud Credential button to create new object. For instructions on creating cloud credentials, see Cloud Credentials.

    • Select AWS Region box, select a region from the drop-down. Ensure that you select the same region in which the S3 storage is configured.

GlobalLogReceiver
Figure: Global Log Receiver Configuration

Step 3: Complete log receiver creation.

Select Save & Exit to complete creating the global log receiver. Verify that logs are received into your S3 bucket in AWS.


Concepts