Cisco Cisco Firepower Management Center 2000 Notas de publicación
7
FireSIGHT System Release Notes
New Features and Functionality
—
ICMPv6 Echo Normalizations
—
IPv4 DF Flag Normalizations
—
IPv4 Options Normalizations
—
IPv4 Reserved Flag Normalizations
—
IPv4 Resize Normalizations
—
IPv4 TOS Normalizations
—
IPv4 TTL Normalizations
—
IPv6 TTL Normalizations
—
IPv6 Options Normalizations
—
TCP Header Padding Normalizations
—
TCP No Option Normalizations
—
TCP NS Flag Normalizations
—
TCP Options Normalizations
—
TCP Packets Blocked by Normalization
—
TCP Reserved Flags Normalizations
—
TCP Segment Reassembly Normalizations
—
TCP SYN Option Normalizations
—
Total TCP Filtered Packets
—
TCP Timestamp ECR Normalizations
—
Total UDP Filtered Packets
—
TCP Urgent Flag Normalizations
You can now configure the HTTP Referrer and User Agent fields in the Connection Events table view and the Security Intelligence
Events table view when configuring the displayed columns.
Events table view when configuring the displayed columns.
You can now view warnings associated with the individual rules of your access control policy via the Access Control Policy page
(Policies > Access Control). In the access control policy editor, view a warning by hovering your pointer over the alert icon next to
the rule name and reading the warning in the tooltip text, or by selecting the Show Warnings button at the top of the page to view the
warnings associated with all the rules referenced in your access control policy.
(Policies > Access Control). In the access control policy editor, view a warning by hovering your pointer over the alert icon next to
the rule name and reading the warning in the tooltip text, or by selecting the Show Warnings button at the top of the page to view the
warnings associated with all the rules referenced in your access control policy.
In Version 5.4, inline normalization is automatically enabled when you create a network analysis policy with Inline Mode enabled. In
previous versions, you had to manually enable inline normalization in your inline intrusion policies. Note that the update from Version
5.3.x to Version 5.4 does not change your inline normalization settings.
previous versions, you had to manually enable inline normalization in your inline intrusion policies. Note that the update from Version
5.3.x to Version 5.4 does not change your inline normalization settings.
You can now add access control rule port conditions that specify unassigned protocol numbers not included in the Protocol drop-down
list.
list.
You no longer need a secondary rule to control FTP Data Channel in your access control policy.
The new Decompress SWF File (LZMA), Decompress SWF File (Deflate), and Decompress PDF File (Default) HTTP Inspect
preprocessor options offer enhanced decompression support for PDF and SWF file content.
preprocessor options offer enhanced decompression support for PDF and SWF file content.