12-16-2017 01:57 AM - edited 02-21-2020 06:57 AM
I have installed FMC and registered 2 SFR module successful.
I have also configured ASA to send traffic to SFR for traffic analysis but still I am not able to see any traffic on FMC being analyzed.
Below is the ASA config :
ASA/act# show service-policy sfr
Global policy:
Service-policy: global_policy
Class-map: global-class-sfr
SFR: card status Up, mode fail-open
packet input 3769932114, packet output 3770123526, drop 96788, reset-drop 0
ASA/act#
12-16-2017 08:36 AM
hi
i had the same issue, it solved once i enabled NTP time synchronization of FTD devices via FMC.
12-16-2017 09:00 AM
Hi,
Yes, thought so but with NTP or manual setup still no success. I am not getting any data on dashboard.
12-16-2017 06:06 PM
By default connections are not logged.
Have you configured any access control policies with the "log" option turned on and/or specified the default intrusion policy to log connections?
12-17-2017 05:27 AM
Hi Marvin,
I have set Intrusion Policy to "Balanced security and connectivity" and logging with "Log at end connection" for Allow traffic and "log at beginning of connection".
12-17-2017 06:04 PM
Can you share a screen shot of your access control policy page?
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: