Cisco Cisco FirePOWER Appliance 7020
55-10
FireSIGHT System User Guide
Chapter 55 Using Health Monitoring
Configuring Health Policies
You must apply the policy to each appliance for it to take effect. For more information on applying health
policies, see
policies, see
Configuring Policy Run Time Intervals
License:
Any
You can control how often health tests run by modifying the Policy Run Time Interval for the health
policy. The maximum run time interval you can set is 99999 minutes.
policy. The maximum run time interval you can set is 99999 minutes.
Caution
Do not set a run interval of less than five minutes.
To configure a policy run time interval:
Access:
Admin/Maint
Step 1
On the Health Policy Configuration page, select
Policy Run Time Interval
.
The Health Policy Configuration — Policy Run Time Interval page appears.
Step 2
In the
Run Interval (mins)
field, enter the time in minutes that you want to elapse between automatic
repetitions of the test.
Step 3
You have three options:
•
To save your changes to this module and return to the Health Policy page, click
Save Policy and Exit
.
•
To return to the Health Policy page without saving any of your settings for this module, click
Cancel
.
•
To temporarily save your changes to this module and switch to another module’s settings to modify,
select the other module from the list at the left of the page. If you click
select the other module from the list at the left of the page. If you click
Save Policy and Exit
when you
are done, all changes you made will be saved; if you click
Cancel
, you discard all changes.
You must apply the health policy to the appropriate appliances if you want your settings to take effect.
See
See
for more information.
Configuring Advanced Malware Protection Monitoring
License:
Malware
This module tracks the state and stability of the Defense Center’s ability to query the Cisco cloud and
detect files in network traffic. If the system detects that your connection with the cloud is interrupted,
the encryption keys used for the connection are invalid, or the number of files detected in a time frame
is excessive, the status classification for this module changes to Warning and the module generates a
health alert.
detect files in network traffic. If the system detects that your connection with the cloud is interrupted,
the encryption keys used for the connection are invalid, or the number of files detected in a time frame
is excessive, the status classification for this module changes to Warning and the module generates a
health alert.
To configure Advanced Malware Protection health module settings:
Access:
Admin/Maint
Step 1
In the Health Policy Configuration page, select Advanced Malware Protection.
The Health Policy Configuration — Advanced Malware Protection page appears.