Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,
We are using the IPS module on the Cisco ASA 5525-X Firewalls and we’re running version 6.2.0.6.
We would like to forward detailed logs to a Syslog server.
We followed these procedures:
https://www.cisco.com/c/en/us/support/docs/security/fir...
Thanks again for your reply.
Do you know if using SNMP could work?
In this image, taken from the official guide, it says that Syslog sends Connection Events only, while SNMP doesn't say that. Could that be the reason/solution?
Thank you for your quick reply Marvin.
The thing that confuses me is that AlienVault has a plugin to parse all kind of FirePower events. So you would expect that there should be a way to get these events to AlienVault.
Do you know if it is possible...
