Jan 23 2020 04:47 AM
We are trying to integrate on premise cisco ASA with sentinel via syslog server. We have checked we are receiving the syslog server authentication logs on sentinel but not ASA logs. We have checked while running tcp dump command cisco ASA is forwarding the logs to syslog server but we are not receiving on the sentinel.
Please find the attached SS as well
While running the troubleshooting command we are receiving the below error
could not locate cef message in tcp dump
also a warning message logs you send is comply with RFC 5424
Jan 25 2020 07:52 AM
Apr 21 2020 03:06 PM
Hi I'm having the same issue, did you resolve this?