How can we help?

How to configure syslog on Cisco devices with Firepower Management Center

Follow

These instructions assume:

  • You’re running Firepower Management Center (FMC) software version 6.2 or higher.
  • Firepower Threat Defence (FTD) devices are connected to your FMC device.
  • The date, time and time zone are correctly set on the Firepower devices.
  • You have login credentials and admin access to your Firepower Management Center.
  • The IP address of your Auvik collector is known. You can find this in the Syslog > Summary tab in the Export Information column
  1. Navigate to Devices
  2. Click on Platform Settings
  3. Click New Policy and choose Threat Defence Settings

  1. Give a name to the policy, select the firewall(s) to apply the configuration hit the Add to Policy button
  2. Click Save
  3. In the left bar choose Syslog
  4. In Logging Setup check the box for Enable Logging

 

  1. In the Syslog Servers tab, click on Add
  2. Enter the IP address of the collector and the interface where the collector is on the firewall

  3. Click on Save
  4. Deploy the changes on the firewall(s)

For more information:
https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/200479-Configure-Logging-on-FTD-via-FMC.html

Was this article helpful?
1 out of 2 found this helpful
Have more questions? Submit a request