To set up F5 BIG-IP collector, do the following:
Enable F5 BIG-IP collector
Install the XDR Collector
Configure the firewall
Open the port on the XDR Collector Host
Enable F5 BIG-IP Collector
In Barracuda XDR Dashboard, navigate to Administration > Integrations.
On the F5 BIG-IP Collector card, click Setup.
Select the Enabled check box.
Click Save.
Install the XDR Collector
If you haven't already set up the XDR Collector, do one of the following:
Configuring the Firewall
To add a Syslog server to the F5 BIG-IP Firewall follow the steps that can be found in the F5 BIG-IP Documentation.
When entering the necessary information for each syslog server that is added, make sure that the port is pointing to 9256, not to the default port that is mentioned in the documentation.
Open the Port on the XDR Collector Host
Ensure incoming traffic is allowed on UDP port 9256.
Linux
sudo ufw allow 9256/udp
Windows
netsh advfirewall firewall add rule name="F5 BIG-IP Events" dir=in action=allow protocol=UDP localport=9256