Logging at FMC

haytham elsamadony · ‎09-09-2020

Hi Guys

I am a beginner at FTD and i have a basic question about how to make logging to any rule

i just want to show the log of traffic to know if the traffic pass through this rule or not

i searched about it . but i can`t find a simple steps after creating rule until i can see the log of the traffic

Thanks

balaji.bandi · ‎09-09-2020

here is the step by step : ( on the ACP rule you see the logging tab) you need to enable based on the requirement to get log events.

https://networkdirection.net/articles/firewalls/firepowermanagementcentre/fmcaccesscontrolpolicies/

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

haytham elsamadony · ‎09-09-2020

Thanks Balaji,

But i already know all of this i asked about the next, means after creation rule and add zones, networks and ports and activate the logging at the begging and end then what? from where i can see the log for this rule, from where i can know if this traffic will pass through the source zone to destination zone or not ?

and sorry but i have another questio from this article what the different between allow and monitor /

Thanks

balaji.bandi · ‎09-09-2020

Apologies i may be reading wrong then - I was in the impression you were looking to setup one - you can view the events on FMC Analysis - connection- events

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help