Configure SAL (OnPrem) Integration

Configure Security Cloud Control to send events to the Secure Network Analytics appliance.

Deploy a Cisco Secure Network Analytics Flow Collector to receive events, a Cisco Secure Network Analytics Data Store (containing 3 Cisco Secure Network Analytics Data Nodes) to store events, and a manager. The Firewall Threat Defense devices send event data to the flow collector from where the events are sent to the Data Store for storage. From the Cloud-Delivered Firewall Management Center user interface, you can cross-launch the manager to view more information about the stores events.

Starting with Firewall Threat Defense Version 7.2, you can choose to associate different flow collectors to different devices.