Cisco Cisco Web Security Appliance S170 Notas de publicación
5
Release Notes for Cisco IronPort AsyncOS 7.7.5 for Web
Installation Notes
Installation Notes
Compatible Hardware
This release runs only on virtual appliances as described in
. It does not run on any S-Series physical hardware appliance.
Configuration Files
AsyncOS for Web 7.7.5 does not directly support backward compatibility with configuration files from
previous versions of AsyncOS for Web, such as 7.5.1 or 7.7.0.
previous versions of AsyncOS for Web, such as 7.5.1 or 7.7.0.
However, a Configuration Migration Tool is available to convert a configuration file from select versions
of AsyncOS into a new file that can be uploaded to a virtual appliance.
of AsyncOS into a new file that can be uploaded to a virtual appliance.
For details, see the Release Notes for the Configuration Migration Tool for Cisco Content Security
Virtual Appliances at
Virtual Appliances at
.
Essential Cisco Web Security Virtual Appliance Installation Instructions
Instructions for installing the Cisco Web Security virtual appliance are available in the Cisco Content
Security Virtual Appliance Installation Guide at
Security Virtual Appliance Installation Guide at
.
Note
It is extremely important to configure time and synchronization settings on your virtual machine in order
to prevent random failures on your Cisco Web Security Virtual Appliance. Specific instructions are in
the “Important! Preventing Random Failures” section of the Install Guide and must be followed
precisely.
to prevent random failures on your Cisco Web Security Virtual Appliance. Specific instructions are in
the “Important! Preventing Random Failures” section of the Install Guide and must be followed
precisely.
Encrypted
Private Keys
Private Keys
Use encrypted, password-protected private keys. Upload encrypted private keys
and provide a password for the WSA to decrypt them. The WSA then stores these
private keys by obfuscating/encrypting them with a password that is unknown to the
user. When configurations are exported to a file, private keys remain obfuscated and
unreadable to the user. The WSA can decrypt them when the configuration is
loaded onto a WSA. See Uploading a Root Certificate and Key in the user guide or
online help.
and provide a password for the WSA to decrypt them. The WSA then stores these
private keys by obfuscating/encrypting them with a password that is unknown to the
user. When configurations are exported to a file, private keys remain obfuscated and
unreadable to the user. The WSA can decrypt them when the configuration is
loaded onto a WSA. See Uploading a Root Certificate and Key in the user guide or
online help.
Enhancements
SNI extension for
Transparent SSL
Handshake
Transparent SSL
Handshake
Access the Server Name Indication (SNI) extension to parse the destination server
name. This is useful when making requests to virtual servers hosting multiple
HTTPS websites such as youtube.com and google.com.
name. This is useful when making requests to virtual servers hosting multiple
HTTPS websites such as youtube.com and google.com.
[Defect Number: 74969, CSCzv50011]
Table 3
New Features for AsyncOS 7.7 for Web (continued)
Feature
Description