Buy or Renew
Buy or Renew
COMING SOON: Umbrella and Secure Access release notes are coming to Cisco Community. The community will be in read-only August 16 – 19. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
230
Views
2
Helpful
1
Replies

Change facility for intrution event logs via LinaConfigTool on FTD

Go to solution
Pennerborn
Level 1
Level 1

‎06-26-2024 02:44 AM

Hello,

I'm trying to change the facility via LinaConfigTool on a Cisco 2100 FTD, 7.0 for intrution event logs. 

I've used this command to change the facility for syslogs:

/usr/local/sf/bin/LinaConfigTool "logging facility 19"

Is there any similar for intrution event logs? Or can you do it any other way without FMC?

 

Kind regards,

Tom Pennerborn

Labels:
1 Accepted Solution

Accepted Solutions

Go to solution
Pennerborn
Level 1
Level 1

‎06-26-2024 04:10 AM

I've found the soulution

In the file /ngfw/var/sf/detection_engines/YOUR-OWN/ids_alert.conf

Under intrution change facility to one from this document: external_alerting_for_intrusion_events.pdf (cisco.com)

 

View solution in original post

1 Reply 1

Go to solution
Pennerborn
Level 1
Level 1

‎06-26-2024 04:10 AM

I've found the soulution

In the file /ngfw/var/sf/detection_engines/YOUR-OWN/ids_alert.conf

Under intrution change facility to one from this document: external_alerting_for_intrusion_events.pdf (cisco.com)

 

Customers Also Viewed These Support Documents