Cisco Cisco Firepower Management Center 2000
40
FireSIGHT System Release Notes
For Assistance
In some cases, if you create a virtual router filter, the system incorrectly saves the virtual router OSPF Path Type as Ext-2 instead of
Ext-1. (CSCuv08158)
Ext-1. (CSCuv08158)
In some cases, if you configure a system policy to use remote NTP server to synchronize time to a system with a registered ASA
5500-X device or a Series 3 device running a version older than Version 5.4 and you experience a leap second, your system may use a
high amount of CPU. (CSCuv11738)
5500-X device or a Series 3 device running a version older than Version 5.4 and you experience a leap second, your system may use a
high amount of CPU. (CSCuv11738)
In some cases, if you add a cluster and edit the interfaces, you are unable to edit the secondary interface and the system generates an
Unable to load container error. (CSCuv25142)
Unable to load container error. (CSCuv25142)
The show user CLI command is not supported on ASA FirePOWER modules. As a workaround, look for the username in the
/etc/shadow file using expert shell. (CSCuv45343)
/etc/shadow file using expert shell. (CSCuv45343)
In some cases, if you create an access control rule configured with all countries selected as the destination or source country, the system
does not match IPv6 traffic. As a workaround, create an access control rule configured with a single country selected as the destination
or source country. (CSCuv93913)
does not match IPv6 traffic. As a workaround, create an access control rule configured with a single country selected as the destination
or source country. (CSCuv93913)
If you click the name of a file that contains extended characters in the table view for the Captured File Summary workflow (Analysis
> Files > Captured Files), an internal server error occurs. (CSCuv40941)
> Files > Captured Files), an internal server error occurs. (CSCuv40941)
In some cases, the SFDatacorrelator experiences issue and does not correctly handle Snort messages. (CSCuw34423)
In some cases, if you attempt to delete a security zone from the Security Zones page (Objects > Object Management > Security
Zones) that is referenced in the applied access control policy of an ASA5500-X Series device, the system does not save the changes
and the security zone is not deleted. As a workaround, remove the security zone from the access control policy, then delete the security
zone from the Security Zones page. (CSCuv40232)
Zones) that is referenced in the applied access control policy of an ASA5500-X Series device, the system does not save the changes
and the security zone is not deleted. As a workaround, remove the security zone from the access control policy, then delete the security
zone from the Security Zones page. (CSCuv40232)
If you open the Discovery Statistics page (Overview > Summary > Discovery Statistics) on a Defense Center that does not have any
discovery events, an internal server error occurs. (CSCuv42327)
discovery events, an internal server error occurs. (CSCuv42327)
In some cases, your login session on a Defense Center during a system update expires before the update process completes and your
system does not successfully update. As a workaround, either click on different tabs in the web interfaces or create a scheduled task to
download updates at an hourly interval to avoid session timeout. (CSCuw26878, CSCux04478)
system does not successfully update. As a workaround, either click on different tabs in the web interfaces or create a scheduled task to
download updates at an hourly interval to avoid session timeout. (CSCuw26878, CSCux04478)
In some cases, if you create an access control rule set with Interactive Block action, the system blocks only websites that end in .com.
(CSCuw92220)
(CSCuw92220)
If the Defense Center runs out of disk space but resolves the issue on its own, the system may still fail to store and display new event
information and generate All shard connections are busy for partition errors in the Syslog page (System > Monitoring > Syslog).
As a workaround, reboot the system. If the system continues to experience issues, contact Support. (CSCux00142)
information and generate All shard connections are busy for partition errors in the Syslog page (System > Monitoring > Syslog).
As a workaround, reboot the system. If the system continues to experience issues, contact Support. (CSCux00142)
In some cases, if you add a security zone to an access control policy and apply, the system does not correctly process traffic. If you add
security zones to your applied access control policy and suspect your traffic is being incorrectly processed or blocked, disable the
security zones in your access control policy. (CSCux05653)
security zones to your applied access control policy and suspect your traffic is being incorrectly processed or blocked, disable the
security zones in your access control policy. (CSCux05653)
Updating the system with managed devices running Version 5.4.0.5 or earlier to Version 6.0 may cause traffic outages and system
issues. Prior to updating to Version 6.0, you must update managed devices to Version 5.4.0.6 or later prior to updating to Version 6.0.
(CSCuy14563)
issues. Prior to updating to Version 6.0, you must update managed devices to Version 5.4.0.6 or later prior to updating to Version 6.0.
(CSCuy14563)
For Assistance
Thank you for choosing the FireSIGHT System.
Cisco Support
For information on obtaining documentation, using the Cisco Bug Search Tool (BST), submitting a service request, and gathering additional
information about Cisco ASA devices, see What’s New in Cisco Product Documentation at:
information about Cisco ASA devices, see What’s New in Cisco Product Documentation at:
.
Subscribe to What’s New in Cisco Product Documentation, which lists all new and revised Cisco technical documentation, as an RSS feed
and deliver content directly to your desktop using a reader application. The RSS feeds are a free service.
and deliver content directly to your desktop using a reader application. The RSS feeds are a free service.