cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
7564
Views
1
Helpful
5
Replies

No Connection/Event Logging in FMC 6.2 with FTDv 6.2

kskksaa
Level 1
Level 1

Hello,

i´m testing the new Cisco Firepower Thread Defense virtual Firewall with the Firepower Management Center.

Everything seems fine, i registered the virtual FWL with the FMC and sucessfully deployed my Access Control Policy which permits all Traffic, logging to Event Viewer is enabled at Begin of the Connection.

My Problem now is, that i don`t see any Events/Connections in the Dashboard, the Client behind the Firewall has Internet Access and when i set up Blocks (Urls, Ports) this does work. 

I have searched for help online, but all suggested Solutions diddn`t work for me.

Can anybody please help me out?

5 Replies 5

yogdhanu
Cisco Employee
Cisco Employee

Hi

You can try to run firewall debug on FTD to know which snort rule the traffic hits.

Login to FTD CLI

>system support firewall-engine-debug

Enter the source IP of client and have it generate some traffic.  Watch the output to determine which rule traffic is hitting and check if that rule has logging enabled.

If all that is correct, it could be something between FMC and FTD connectivity. Do you see any health alerts on FMC ?

Thanks

Yogesh