Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
22348
Views
31
Helpful
11
Replies

FTD 2100 NTP timezone issue

Go to solution
Ajay Saini
Level 7
Level 7

‎04-24-2018 07:00 AM - edited ‎02-21-2020 07:40 AM

Hello,

 

We have HA pair of 2100 FTD appliances managed by VFMC running version 6.2.2.109. The issue is related to NTP. The FMC is pointed to our internal NTP server and is showing correct time and timezone.

 

The issue is with FTD appliances which are getting the UTC time but not taking the timezone. We have tried both options  from the platform settings - using FMC and pointing to NTP server but does not work.

 

 

Is there a way to fix the timezone issue.

 

Thanks in advance.

AJ

3 people had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
yogdhanu
Cisco Employee
Cisco Employee
In response to Ajay Saini

‎04-25-2018 01:22 AM

Hi Ajay,

 

CLI of FTD or FMC for that matter will be in UTC only. That's because of internal DB level communication of processes and designed that way. It does not affect user experience in terms of logs which can be in your time zone based on configuration on FMC GUI.

Please DO NOT change the CLI time zone from UTC on any of firepower products. That might end up corrupting the database and only way to fully recover from that could be to re-image the device.

 

Hope it helps,

Yogesh

 

View solution in original post

11 Replies 11

Go to solution
mikael.lahtela
Level 4
Level 4

‎04-24-2018 10:28 AM

Hi,

Where do you see the UTC time on the FTD?
In cli you will always see UTC time and that is the way it works.
Here is a Firepower doc about troubleshooting NTP.
https://www.cisco.com/c/en/us/support/docs/security/firesight-management-center/118626-technote-firesight-00.html

br, Micke

Go to solution
Ajay Saini
Level 7
Level 7
In response to mikael.lahtela

‎04-24-2018 03:08 PM

Hello Mikael,

 

Thanks for the clarification, thats what I wanted to check. The syslogs has the correct timestamp, only the cli on FTD has UTC.

 

Thanks,

AJ

0 Helpful

Go to solution
yogdhanu
Cisco Employee
Cisco Employee
In response to Ajay Saini

‎04-25-2018 01:22 AM

Hi Ajay,

 

CLI of FTD or FMC for that matter will be in UTC only. That's because of internal DB level communication of processes and designed that way. It does not affect user experience in terms of logs which can be in your time zone based on configuration on FMC GUI.

Please DO NOT change the CLI time zone from UTC on any of firepower products. That might end up corrupting the database and only way to fully recover from that could be to re-image the device.

 

Hope it helps,

Yogesh

 

Go to solution
Ajay Saini
Level 7
Level 7
In response to yogdhanu

‎04-25-2018 08:38 AM

Thanks Yogesh for the info. I think we are all set with the info provided by you and Mikael.

 

-

AJ

0 Helpful

Go to solution
ccna_security
Level 3
Level 3
In response to Ajay Saini

‎06-17-2019 11:45 PM

Dear all. I configured correlation policy and started to collect logs. Moreover i configured that when correlation event happen firepower must send it via email. Actually everything worked correctly. Except one thing that related to  timing. I got correlation event via email it shown that correlation had happened at 06.32 am but when i entered FMC and observed that correlation actually happened at  10.32am. I am sure that FMC shows correct time because i tested it. i created correlation event on purpose and FMC shown correct time. But email didnt. Hope you understood what kind of issue i have faced. Please if possible help me to solve this problem. thanks in advance.

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to ccna_security

‎06-18-2019 07:42 AM

Check the timezone on your FMC. It is probably set to 4 hours offset from UTC/GMT.

0 Helpful

Go to solution
ccna_security
Level 3
Level 3
In response to Marvin Rhoads

‎06-20-2019 04:36 AM

Hi MArvin 

Sorry for late reply. I am going to check timezone on FMC. Thank you so much

0 Helpful

Go to solution
HakamAbd79366
Level 1
Level 1
In response to yogdhanu

‎07-09-2020 01:06 AM

Dear All,

 

Timezone at FMC is correct when i configure System>Configuration>Time Synch.

But when i go to device>device management > Device. it show wrong timezone UTC (UTC+0:00). And i go to Platform setting>Time Synchronization set my clock Via NTP from Management Center. also got timezone UTC+0:00. and change to Via NTP from (same with FMC) .. but still have got timezone UTC+0:00... Its possible to change this timezone.?

 

Please advise.

 

Thanks

0 Helpful

Go to solution
OleksandrVasyniuk87346
Level 1
Level 1
In response to HakamAbd79366

‎12-29-2022 01:53 AM

Hi All,

You must go to the menu under the username in the upper left corner of the FMC GUI.

Then click User Preference -> In the Time Zone menu, select your own zone.

Screenshot 2022-12-29 at 11.37.21.pngUntitled.png

0 Helpful

Go to solution
mustafa83
Level 1
Level 1
In response to yogdhanu

‎06-03-2022 01:27 PM

luckily you guys are working for Cisco so things can be "designed" as you pleased because such design won't last a week in a company where designing has to make sense.

Go to solution
RSporbert
Level 1
Level 1
In response to mustafa83

‎04-08-2024 11:33 PM

Cannot like this observation enough

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card