Go to Web Application Firewall > Export Logs in the main menu of the LoadMaster UI.

Screenshots of the page when the different logging formats are selected are provided below:

Logging Format

Depending on what format you want the audit logs to appear in, you can select the logging format option from drop-down list:

  • Native

  • JSON

  • Splunk

Note: The Splunk option is only available if Enable Remote Logging is selected.
Note: Do not use SPLUNK as the Username if you are using a Logging Format other than Splunk.

Enable Remote Logging

This check box enables you to enable or disable remote logging for WAF.

Remote URI

Specify the Uniform Resource Identifier (URI) for the remote logging server.

Username

Specify the username for the remote logging server.

Password/Token

Specify the password or token for the remote logging server.
Note: Specify the Splunk HTTP Event Collector (HEC) token in the Password/Token text box if the Logging Format is set to Splunk.

Example screenshots of the WAF logs are provided below: