Cisco Cisco FirePOWER Appliance 8250
54-8
FireSIGHT System User Guide
Chapter 54 Monitoring the System
Understanding Running Processes
Understanding Executables and System Utilities
License:
Any
There are a number of executables on the system that run when executed by other processes or through
user action. The following table describes the executables that you may see on the Process Status page.
user action. The following table describes the executables that you may see on the Process Status page.
sftunnel
Provides the secure communication channel for all processes requiring communication with a
remote appliance
remote appliance
sshd
Manages the Secure Shell (SSH) process; runs in the background to provide SSH access to the
appliance
appliance
syslogd
Manages the system logging (syslog) process
Table 54-5
System Daemons (continued)
Daemon
Description
Table 54-6
System Executables and Utilities
Executable
Description
awk
Utility that executes programs written in the
awk
programming language
bash
GNU Bourne-Again SHell
cat
Utility that reads files and writes content to standard output
chown
Utility that changes user and group file permissions
chsh
Utility that changes the default login shell
SFDataCorrelator
(Defense Center only —
requires FireSIGHT)
requires FireSIGHT)
Analyzes binary files created by FireSIGHT to generate events, connection
data, and the network map
data, and the network map
cp
Utility that copies files
df
Utility that lists the amount of free space on the appliance
echo
Utility that writes content to standard output
egrep
Utility that searches files and folders for specified input; supports extended
set of regular expressions not supported in standard grep
set of regular expressions not supported in standard grep
find
Utility that recursively searches directories for specified input
grep
Utility that searches files and directories for specified input
halt
Utility that stops the server
httpsdctl
Handles secure Apache Web processes
hwclock
Utility that allows access to the hardware clock
ifconfig
Indicates the network configuration executable. Ensures that the MAC
address stays constant
address stays constant
iptables
Handles access restriction based on changes made to the Access
Configuration page. See
Configuration page. See
for more information about access configuration.
iptables-restore
Handles iptables file restoration
iptables-save
Handles saved changes to the iptables