Cisco Cisco Firepower Management Center 2000
38
FireSIGHT System Release Notes
For Assistance
In some cases, if you create a virtual router filter, the system incorrectly saves the virtual router OSPF Path Type as
Ext-2 instead of Ext-1. (CSCuv08158)
Ext-2 instead of Ext-1. (CSCuv08158)
In some cases, if you configure a system policy to use remote NTP server to synchronize time to a system with a
registered ASA 5500-X device, a Series 2 device, or a Series 3 device running a version older than Version 5.4 and
you experience a leap second, your system may use a high amount of CPU. (CSCuv11738)
registered ASA 5500-X device, a Series 2 device, or a Series 3 device running a version older than Version 5.4 and
you experience a leap second, your system may use a high amount of CPU. (CSCuv11738)
In some cases, if you create an access control rule with an interactive block action and view a blocked webpage in
a Chrome web browser, selecting the Continue button to bypass the block page does not work. As a workaround,
view a blocked webpage using Firefox or Internet Explorer. (CSCuv21748)
a Chrome web browser, selecting the Continue button to bypass the block page does not work. As a workaround,
view a blocked webpage using Firefox or Internet Explorer. (CSCuv21748)
In some cases, if you add a cluster and edit the interfaces, you are unable to edit the secondary interface and the
system generates an Unable to load container error. (CSCuv25142)
system generates an Unable to load container error. (CSCuv25142)
If you generate a new internal CA certificate on the Object Management page (Objects > Object Management >
PKI), the generated certificate is only valid for 30 days when it should be valid for ten years. (CSCuv29004)
PKI), the generated certificate is only valid for 30 days when it should be valid for ten years. (CSCuv29004)
In some cases, if you edit the Indications of Compromise (IOC) settings of your network discovery policy, then disable
the IOC and save changes, the IOC is still displayed in the Indications of Compromise by Host dashboard widget.
(CSCuv41376)
the IOC and save changes, the IOC is still displayed in the Indications of Compromise by Host dashboard widget.
(CSCuv41376)
In some cases, if you create an access control rule configured with all countries selected as the destination or source
country, the system does not match IPv6 traffic. As a workaround, create an access control rule configured with a
single country selected as the destination or source country. (CSCuv93913)
country, the system does not match IPv6 traffic. As a workaround, create an access control rule configured with a
single country selected as the destination or source country. (CSCuv93913)
In some cases, if you configure a static route on your appliance and reapply your system policy, the system
incorrectly deletes the static route. (CSCuw07826)
incorrectly deletes the static route. (CSCuw07826)
If you click the name of a file that contains extended characters in the table view for the Captured File Summary
workflow (Analysis > Files > Captured Files), an internal server error occurs. (CSCuv40941)
workflow (Analysis > Files > Captured Files), an internal server error occurs. (CSCuv40941)
In some cases, the SFDatacorrelator experiences issue and does not correctly handle Snort messages.
(CSCuw34423)
(CSCuw34423)
In some cases, if you attempt to delete a security zone from the Security Zones page (Objects > Object
Management > Security Zones) that is referenced in the applied access control policy of an ASA5500-X Series
device, the system does not save the changes and the security zone is not deleted. As a workaround, remove the
security zone from the access control policy, then delete the security zone from the Security Zones page.
(CSCuv40232)
Management > Security Zones) that is referenced in the applied access control policy of an ASA5500-X Series
device, the system does not save the changes and the security zone is not deleted. As a workaround, remove the
security zone from the access control policy, then delete the security zone from the Security Zones page.
(CSCuv40232)
If you open the Discovery Statistics page (Overview > Summary > Discovery Statistics) on a Defense Center that
does not have any discovery events, an internal server error occurs. (CSCuv42327)
does not have any discovery events, an internal server error occurs. (CSCuv42327)
For Assistance
Thank you for choosing the FireSIGHT System.
Cisco Support
For information on obtaining documentation, using the Cisco Bug Search Tool (BST), submitting a service request, and
gathering additional information about Cisco ASA devices, see What’s New in Cisco Product Documentation at:
gathering additional information about Cisco ASA devices, see What’s New in Cisco Product Documentation at:
Subscribe to What’s New in Cisco Product Documentation, which lists all new and revised Cisco technical
documentation, as an RSS feed and deliver content directly to your desktop using a reader application. The RSS feeds
are a free service.
documentation, as an RSS feed and deliver content directly to your desktop using a reader application. The RSS feeds
are a free service.
If you have any questions or require assistance with Cisco ASA devices, please contact Cisco Support:
http://support.cisco.com/
.