Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
225
Views
0
Helpful
2
Replies

FMCv 7.6 logging issue

lcaruso
Level 6
Level 6

‎04-01-2025 08:01 AM

We recently upgraded from FMCv7.4.2.1 to 7.6.0.113 and ran into a logging issue (FTD remains at 7.4.2.1). This was after FMCv hung on reboot referencing a Perl script that hung on a database operation. Of course TAC was on the call, we had planned the upgrade proactively with them. After a hour, TAC recommended rebooting which completed the upgrade but now logging is hosed. We typically have about six months of logs but now no matter the query specification, we can only retrieve about six hours of logs. TAC does not have a fix other than to restore back to 7.4.2.1. 

We do not have redundant FMCv, but we could if it would help us recover from this scenario, something like this: build a new FMCv independently with a fresh database, restore the ACP and other settings separately, bring into HA, etc? Trying to figure out if this is the best solution. Please advise if you know the details. 

0 Helpful
2 Replies 2

nspasov
Cisco Employee
Cisco Employee

‎04-08-2025 08:34 AM

Just to confirm: Is your issue/goal to restore historical data/events or is the FMC simply not retaining data/events beyond 6 hours?

Thank you for rating helpful posts!

Thank you for rating helpful posts!
0 Helpful

lcaruso
Level 6
Level 6
In response to nspasov

‎04-08-2025 08:53 AM

Both issues, but we discovered a setting that needed updating for retaining new logs beyond a few hours, so that issue is solved. For the other issue, TAC is advising we restore from backup, or purge, or create a new VM and restore configuration without events.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card