Versions Compared

Old Version 6

changes.mady.by.user Customer Success & Engineering (Unlicensed)

Saved on

compared with

New Version Current

changes.mady.by.user Customer Success & Engineering (Unlicensed)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Available Zones: Enter the security zones over which the Syslog server is reachable and move it to the Selected Zones/ Interfaces Column.

...

Click OK and Save in order to save the configuration.

Click Save in order to save the platform setting. Choose Deploy, choose the FTD appliance where you want to apply the changes, and click Deploy in order to start deployment of the platform setting.

Configure E-mail Setup for Logging

FTD allows you to send the Syslog to a specific e-mail address. E-mail can be used as a logging destination only if an e-mail relay server has already been configured.

There are two steps to configure e-mail settings for the Syslogs.

Step 1. Choose Device > Platform Setting > Threat Defense Policy > Syslog >E-mail Setup.

Source E-Mail Address: Enter the source e-mail address which will appear on all the e-mails sent out from the FTD which contain the Syslogs.

...

Step 2. In order to configure the destination e-mail address and Syslog severity, click Add.

Destination Email Address: Enter the destination e-mail address wherein Syslog messages will be sent.

Syslog Severity: Choose the Syslog severity from the Syslog Severity drop-down list.

...

Click OK in order to save the configuration.

Click Save in order to save the platform setting. Choose Deploy, choose the FTD appliance where you want to apply the changes, and click Deploy in order to start deployment of the platform setting.

Verification

Verification can be done either from CCE Server or from UI

Using CCE

Run the command : sudo tcpdump -i any port 514 and host <IP address>

Using UI

  • Go on UI >> Systems

...

  • >>Logs and Flows collection Status

...

  • Inside Source device IP the IP will reflect.