sys log-config destination arcsightΒΆ

sys log-config destination arcBIG-IP1TMSsysalog-config destination arcsight(1)



NAME
       arcsight - Formats incoming logs into the ArcSight format for delivery
       by a forwarding destination.

MODULE
       sys log-config destination

SYNTAX
       Configure the ArcSight component within the sys log-config destination
       module using the syntax shown in the following sections.

   CREATE/MODIFY
	create arcsight [name]
	modify arcsight [name]
	 options:
	  all
	  app-service [[string] | none]
	  description [string]
	  forward-to [string]

   DISPLAY
	list arcsight
	list arcsight [ [ [name] | [glob] | [regex] ] ... ]
	  options:
	    all-properties
	    non-default-properties
	    one-line

   DELETE
	delete arcsight [name]

       Note: You must remove all references to a destination before you can
       delete the destination. Default destinations may not be deleted.

DESCRIPTION
       You can use this destination component to create ArcSight formatting
       destinations for the common logging interface. ArcSight log
       destinations currently only deliver log messages from the Network
       Firewall Module or the Application Security Module.

EXAMPLES
       create arcsight my_dest forward-to another_dest

       Creates an ArcSight destination named my_dest which forwards to another
       destination another_dest. another_dest must be a Local Syslog, Local
       Database, Remote Syslog, or Remote High Speed Log destination.

       delete arcsight my_dest

       Deletes the destination named my_dest. Destinations cannot be deleted
       when in use by a publisher.

       list arcsight my_dest

       Displays properties of the destination named my_dest.

OPTIONS
       all  Specifies that you want to modify all of the existing components
	    of the specified type.

       app-service
	    Specifies the name of the application service to which the
	    destination belongs.  The default value is none. Note: If the
	    strict-updates option is enabled on the application service that
	    owns the object, you cannot modify or delete the destination. Only
	    the application service can modify or delete the destination.

       description
	    User defined description.

       forward-to
	    Specifies a Local Syslog, Local Database, Remote Syslog, or Remote
	    High Speed Log destination. This is required for the create and
	    modify commands.

       glob Displays the items that match the glob expression. See help glob
	    for a description of glob expression syntax.

       name Specifies a unique name for the component. This option is required
	    for the commands create, delete, and modify.

       regex
	    Displays the items that match the regular expression. The regular
	    expression must be preceded by an at sign (@[regular expression])
	    to indicate that the identifier is a regular expression. See help
	    regex for a description of regular expression syntax.

SEE ALSO
       create, delete, glob, list, modify, regex, tmsh

COPYRIGHT
       No part of this program may be reproduced or transmitted in any form or
       by any means, electronic or mechanical, including photocopying,
       recording, or information storage and retrieval systems, for any
       purpose other than the purchaser's personal use, without the express
       written permission of F5 Networks, Inc.

       F5 Networks and BIG-IP (c) Copyright 2008, 2012-2013. All rights
       reserved.



BIG-IP				  2013-0sys2log-config destination arcsight(1)