'Cisco ASA/FTD via AMA (Preview)' does not seem to be picking up Cisco FTD events from Syslog table #10300
Comments
|
Hi @pawelCPS, |
|
Hi @pawelCPS, |
|
Hey @pawelCPS, We are waiting for your response on above comment. Thanks! |
Hi @v-sudkharat, |
|
@pawelCPS, Noted. It would be great if you could provide any updated date with us. so we can follow up with you on that. Thanks! |
|
Hi @pawelCPS, |
|
Hi @pawelCPS , Gentle Reminder: We are waiting for your response on this issue. If you still need to keep this issue active, please respond to it in the next 2 days. If we don't receive a response by 02-05-2024 date, we will be closing this issue. |
|
Hi @pawelCPS , since we have not received a response from you, we are closing this issue as per our standard operating procedures. If you still need support for this issue, feel free to re-open at any time. Thank you for your co-operation. |
Hi @v-rusraut, apologies I was away on holiday. I'd like to have this re-open please. I'm chasing my client to provide you with the info you had requested. Hopefully will have that for you in next couple of days. |
Issue
I believe this is related to 'Connector Cisco ASA/FTD via AMA does not work #7681' which it's been closed since but unless I'm missing something it appears as if the issue remains.
To Reproduce
Enable said connector and send this via syslog, e.g.:
%FTD-4-106023: Deny tcp src Outside:1.1.1.1/34802 dst Inside:2.2.2.2/853 by access-group "CSM_FW_ACL_" [0x97aa021a, 0x0]
Expected behaviour
FDE events are expected to land in CommonSecurityLog table.
Data connector version:
1.0.0
Additional information:
#7681
The text was updated successfully, but these errors were encountered: