Cisco Cisco Firepower Management Center 4000

Page of 1844
 
22-13
FireSIGHT System User Guide
 
Chapter 22      Using Advanced Settings in an Intrusion Policy
  Understanding Troubleshooting Options
Understanding Troubleshooting Options
License: 
Protection
Support might ask you to modify one or more troubleshooting options during a troubleshooting call. 
Troubleshooting options appear on the configuration page for the advanced setting to which they are 
related. Although these options can be used in conjunction with the other options related to the advanced 
setting, changing the settings for these options will affect performance and should be done only with 
Support guidance.
The following table describes these troubleshooting options.
Table 22-11
Troubleshooting Options 
Advanced setting
Option
Description
FTP and Telnet 
Configuration 
(Policy)
Log FTP Command 
Validation Configuration
This FTP/Telnet target-based policy option enables or disables printing 
of the configuration information for each FTP command listed for the 
server.
See 
 for more 
information.
Performance Statistics 
Configuration 
(Global)
Log Session/Protocol 
Distribution
This global performance option logs protocol distribution, packet 
length, and port statistics.
See 
 for more 
information.
Performance Statistics 
Configuration 
(Global)
Summary
This global performance option instructs the system to calculate the 
performance statistics only when the Snort® process is shut down or 
restarted.
Note that this option is only available when the Log Session/Protocol 
Distribution troubleshooting option is enabled.
See 
 for more 
information.
TCP Stream 
Configuration 
(Global)
Session Termination 
Logging Threshold
This global TCP option logs a message when an individual connection 
exceeds the specified threshold.
A value of 0 turns off the message.
The upper limit of 1GB is also restricted by the amount of memory on 
the managed device allocated for stream processing.
See 
 for more 
information.