After you create a log filter it is immediately available, but is not active until you include it in a sensor profile. Process of creating a log filter is:

• Click System > Collection > Log Filters. A table for managing Log filters is displayed.
• Click Create to add a filter (the Add A Log Filter screen appears) or click the pencil button to edit a row.
• Enter the Log Filter Name.
• Choose a Tenant.
• Choose an optional Log Source. If you leave this blank, the filter applies to all sources.
• Click Condition. You can add multiple conditions, all of which are AND conditions.
• Choose a Field.
• Choose an Operator.
• Enter the Values for your condition.
• Click Submit.

But just creating the log filter will not make it active. The newly created log filter has to be added to the appropriate sensor profile in order to make it active and filter the required log traffic.