Powerful threat prediction, prevention, detection, and response along with compliance in a scalable, simple managed solution.
All-in-one networking solution that combines network connectivity, agility, security, and compliance in an affordable managed solution.
Accelerate business growth through our award-winning partner program.
Applies To: Cisco ASA Firewall 5500 Series and later.
Cisco Adaptive Security Appliance (ASA) Software is the core operating system for the Cisco ASA Family.It delivers enterprise-class firewall capabilities for ASA devices in an array of form factors - standalone appliances, blades, and virtual appliances - for any distributed network environment.
The EventTracker Enterprise acts as the Syslog Server for Cisco ASA, where Cisco ASA sends Syslog messages via UDP to Appliance’s Syslog Listener. The configuration procedures within this document set up Cisco ASA appliances to send Syslog messages to the Cisco Adaptive Security Device Manager (ASDM). Syslog messages are then forwarded to the EventTracker Enterprise from ASDM.
EventTracker Knowledge Pack for Cisco Adaptive Security (ASA) allows you to monitor following:-
Once logs are received in to EventTracker, Flex reports and Alerts can be configured into EventTracker.
The following Knowledge Packs are available in EventTracker v7.x and later to support Cisco ASA Firewall monitoring:
Alerts
Reports:-
The configuration details in this guide are consistent with EventTracker Enterprise version 7.X and later, Cisco ASA Firewall 5500 Series and later.
To configure Cisco ASA to send logs to EventTracker, refer the How to Guide.
For more information please refer the Integration guide