Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
284
Views
0
Helpful
4
Replies

How to check realtime logs in CISCO FTD 1120?

mrn270
Level 1
Level 1

‎05-28-2024 05:40 PM - last edited on ‎05-28-2024 06:18 PM by Community Manager

Hi All,

I have cisco FTD which has got few firewall rule with logging enables for eahc of the rules.  It is configured correctly to communicate to internet.  Subnet behind it can go to internet . For the live connection i am unable to see  event logs.  So, how can i enable logging in FTD to see the live logs ?  So that i can identify source and destinaiton IP and create my firewall rules require.

please assist.

 

Thanks   

0 Helpful
4 Replies 4

balaji.bandi
Hall of Fame
Hall of Fame

‎05-28-2024 10:01 PM

is this FTD Managed by using FDM or FMC ?

check below thread for Realtime monitor logs using FDM or FMC L

https://community.cisco.com/t5/network-security/cisco-ftd-fdm-event-viewer-or-realtime-monitoring/td-p/4431513

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

buffkata
Level 1
Level 1

‎05-29-2024 08:00 AM

If FMC is used - to get the live traffic go to Analysis > Unified Events

0 Helpful

mohamedlamine
Level 1
Level 1

‎05-29-2024 08:49 AM

is it managed by fmc or ftd ?

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-29-2024 09:52 AM

Follow the link provided by @balaji.bandi . Whether the device is FDM- or FMC-managed, you need to enable logging for your Access Control Policy rules - it's not on by default.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card