Cisco Cisco Web Security Appliance S190 Notas de publicación
I R O N P O R T A S Y N C O S 6 . 3 . 7 F O R W E B R E L E A S E N O T E S
53
Web interface does not show changed update server settings in some cases
When you use the
updateconfig
CLI command to change the update server, the new server
does not appear in the web interface on the System Administration > Upgrade and Update
Settings page.
Settings page.
Workaround: Ignore the value in the web interface, and instead use the CLI to view and edit
the settings. [Defect ID: 67460]
the settings. [Defect ID: 67460]
Cannot import an AsyncOS 6.3.1 for Web Security configuration file to Configuration
Master 6.3
Master 6.3
Attempting to import an AsyncOS 6.3.1 for Web Security configuration file to Configuration
Master 6.3 results in error messages.
Master 6.3 results in error messages.
Workaround: Prior to import, delete the following three lines from the configuration file:
<prox_config_http_port_tunneling_enabled>1
</prox_config_http_port_tunneling_enabled>
<prox_etc_allow_wild_card_in_group_name>1
</prox_etc_allow_wild_card_in_group_name>
<prox_etc_basic_auth_charset>ISO-8859-1</prox_etc_basic_auth_charset>
[Defect ID: 56116]
Erroneous error message when deleting a route that does not exist on the Web Security
appliance
appliance
When deleting a route that does not exist on the Web Security appliance, the System Logs
show the following warning message:
show the following warning message:
Warning: The following update to the interface failed: setfib -1 route -n delete route Reason:
route: writing to routing socket: No such process
route: writing to routing socket: No such process
You can ignore this message. [Defect ID: 41304]
Web Security appliance sends authenticated user name to external DLP servers in
incorrect format
incorrect format
The Web Security appliance sends the authenticated user name (X-Authenticated-User value)
to external DLP servers in a format that is not compliant with the ICAP RFC. For some DLP
vendors, such as Vontu, this may adversely affect reports or user name based policies. [Defect
ID: 51433]
to external DLP servers in a format that is not compliant with the ICAP RFC. For some DLP
vendors, such as Vontu, this may adversely affect reports or user name based policies. [Defect
ID: 51433]
Web Security appliance sends HTTPS transactions to external DLP servers in obscure
format
format
The Web Security appliance sends HTTPS transactions to external DLP servers in a format that
does not make it clear it is an HTTPS transaction instead of HTTP. Instead of sending HTTPS
transactions as “https://uri” it sends them as the URI only. This may cause some DLP vendors,
does not make it clear it is an HTTPS transaction instead of HTTP. Instead of sending HTTPS
transactions as “https://uri” it sends them as the URI only. This may cause some DLP vendors,