Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I am looking at the Cisco FTD platform logs, and we are trying to convert the logs to OCSF format.
We want to focus on security relevant events, according to the guide there are only 5 syslog messages which are security relevant - https://www.cisco.c...
Thanks for the reply, I see that there are various severity levels. The only way to get the severity is by the number followed by FTD, for example - %FTD-1-101001 has severity level 1Is this understanding correct? Basis this string we can pick high a...