Syslog configured in FMC

shaikh.zaid22 · ‎04-27-2023

Hi guys,

I have FTD(active and passive ver 7.0.1) managed via FMC ver 7.0.1.

I have configured the syslog server in FMC to forward vpn logs to the syslog servers.

i am not seeing any vpn logs in the syslog server. I want to know how i can identify the logs are being sent? Also which device will forward the logs FMC or active FTD??

Any guidance will be helpful.

buffkata · ‎04-27-2023

I have the same setup - I do see both devices to send RAVPN syslogs to the syslog server. Have not looked into details but they seam to be identical but formatted differently - FTD is simply sending syslog type of messages and the FMC is logging a DB type.

When the FTD forward those ravpn messages - they are considered informational - Severity 6 ( make sure you have this configured).

shaikh.zaid22 · ‎04-27-2023

Can u pls share which types of ravpn logs u selected to forward. if u can share a snap i will configure it exactly and verify.

shaikh.zaid22 · ‎05-01-2023

Hi can u pls provide the info

cutepbaby · ‎07-14-2023

hi please provide more details i have configured also but i dont see them may be this will help