03-19-2019 01:02 PM - edited 02-21-2020 08:57 AM
Under "Build Filter" I don't see anything related to filter for "deny" or anything else other than ip, ports, etc. I'm probably looking in wrong place. Anyone know good doc to refer to I can't find on Cisco.
Solved! Go to Solution.
03-19-2019 02:36 PM
As per i know unfortunatly you did not find this (like any other vendor give you flexibility to select deny based on the log, like CP, Palo, Forti)
Otherway around you can select #Severity Level(4=WARNINGS) FILTER:sev=4;
03-19-2019 02:36 PM
As per i know unfortunatly you did not find this (like any other vendor give you flexibility to select deny based on the log, like CP, Palo, Forti)
Otherway around you can select #Severity Level(4=WARNINGS) FILTER:sev=4;
03-19-2019 05:45 PM
03-20-2019 06:40 AM
I have done some custom syslog server offload the logs to syslog server and create a good report with customer GUI dashaboads using Kibana / LogStash.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: