New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
'Cisco ASA/FTD via AMA (Preview)' does not seem to be picking up Cisco FTD events from Syslog table #10300
Comments
Hi @pawelCPS, |
Hi @pawelCPS, |
Hey @pawelCPS, We are waiting for your response on above comment. Thanks! |
Hi @v-sudkharat, |
@pawelCPS, Noted. It would be great if you could provide any updated date with us. so we can follow up with you on that. Thanks! |
Hi @pawelCPS, |
Hi @pawelCPS , Gentle Reminder: We are waiting for your response on this issue. If you still need to keep this issue active, please respond to it in the next 2 days. If we don't receive a response by 02-05-2024 date, we will be closing this issue. |
Hi @pawelCPS , since we have not received a response from you, we are closing this issue as per our standard operating procedures. If you still need support for this issue, feel free to re-open at any time. Thank you for your co-operation. |
Hi @v-rusraut, apologies I was away on holiday. I'd like to have this re-open please. I'm chasing my client to provide you with the info you had requested. Hopefully will have that for you in next couple of days. |
Issue
I believe this is related to 'Connector Cisco ASA/FTD via AMA does not work #7681' which it's been closed since but unless I'm missing something it appears as if the issue remains.
To Reproduce
Enable said connector and send this via syslog, e.g.:
%FTD-4-106023: Deny tcp src Outside:1.1.1.1/34802 dst Inside:2.2.2.2/853 by access-group "CSM_FW_ACL_" [0x97aa021a, 0x0]
Expected behaviour
FDE events are expected to land in CommonSecurityLog table.
Data connector version:
1.0.0
Additional information:
#7681
The text was updated successfully, but these errors were encountered: