Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
303
Views
0
Helpful
4
Replies

FMC IP SLA Alert

Go to solution
dcanady55
Level 3
Level 3

‎11-01-2024 09:46 AM

FMC and FTD 7.4.1

I've setup an IP SLA to track some static routes and I'm struggling trying to figure out how to alert on if the SLA gets triggered. Is this possible? I want to setup an email alert anytime the SLA goes down and up.

Thanks,

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎11-01-2024 09:55 AM - edited ‎11-01-2024 09:57 AM

@dcanady55 you could use syslog and send an alert when the route is added or removed:-

622001

Error Message %FTD-6-622001: string tracked route network mask address , distance number , table string , on interface interface-name

Explanation A tracked route has been added to or removed from a routing table, which means that the state of the tracked object has changed from up or down.

https://www.cisco.com/c/en/us/td/docs/security/firepower/Syslogs/b_fptd_syslog_guide/syslogs6.html#con_4774896

Configure logging to send an email alert - https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/200479-Configure-Logging-on-FTD-via-FMC.html

 

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Rob Ingram
VIP
VIP

‎11-01-2024 09:55 AM - edited ‎11-01-2024 09:57 AM

@dcanady55 you could use syslog and send an alert when the route is added or removed:-

622001

Error Message %FTD-6-622001: string tracked route network mask address , distance number , table string , on interface interface-name

Explanation A tracked route has been added to or removed from a routing table, which means that the state of the tracked object has changed from up or down.

https://www.cisco.com/c/en/us/td/docs/security/firepower/Syslogs/b_fptd_syslog_guide/syslogs6.html#con_4774896

Configure logging to send an email alert - https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/200479-Configure-Logging-on-FTD-via-FMC.html

 

0 Helpful

Go to solution
dcanady55
Level 3
Level 3
In response to Rob Ingram

‎11-01-2024 10:02 AM

Thanks Rob,

I just set that up and testing this weekend and will report back the results on Monday. Do you happen to know if logging level of 1 alerts is all I need or should I put this at Informational? 

Thanks,

0 Helpful

Go to solution
Rob Ingram
VIP
VIP
In response to dcanady55

‎11-01-2024 10:07 AM

@dcanady55 informational would seem to be appropriate.

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to dcanady55

‎11-01-2024 10:49 AM - edited ‎11-01-2024 11:00 AM

https://www.tunnelsup.com/cisco-asa-and-sla-monitoring/

in ASA we run log list check link above, in FMC you can filter only these logs from level-6

https://forum.tufin.com/support/kc/latest/Content/Suite/12108.htm

MHM

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card