Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
534
Views
0
Helpful
2
Replies

Firesight Access Control policies

adamgibs7
Level 6
Level 6

‎11-27-2017 12:59 PM - edited ‎02-21-2020 06:50 AM

Dears,


Please find the attached screenshot,


IF no ACP matches then my default action  is inline IPS  then how come I  can see the connection events with "Initial Passive Network Analysis Policy" actually I don't know what is Initial Passive Network Analysis Policy" and why it is hitting.


thanks

Labels:
Preview file
42 KB
0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎11-27-2017 06:03 PM

The Default action in your Access control Policy (ACP) probably has a "Send connection Events to Event Viewer"logging setting.

 

Click on the little scroll icon in the bottom right of your ACP to check it.

 

FMC ACP Logging.PNG

0 Helpful

adamgibs7
Level 6
Level 6
In response to Marvin Rhoads

‎11-27-2017 08:40 PM

Dear Marvin,
can you elaborate more on your reply, actually I didn't understood.
thanks
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card