Cisco FTD logs to Sentinel without estreamer

Hi There, yes there is! You can simply just setup syslog forwarding on your FTDS and then use the Syslog via AMA connector on the a linux collector to forward the logs to sentinel, I've recently did this for a client as the estreamer wasnt working correctly due to some python updates that happened in august, the only downside to this is that the logs will not be in CEF format meaning you would probably need to create parser or tweak your rules. -https://support.auvik.com/hc/en-us/articles/360048078412-How-to-configure-syslog-on-Cisco-devices-with-Firepower-Management-Center