Cisco Cisco Firepower Management Center 2000
Version 5.3.0.6
Sourcefire 3D System Release Notes
38
Features Introduced in Previous Versions
•
If you register a stack of devices running Version 5.3 to a Defense Center
running Version 5.3.1.4 and attempt to update the stack, at least one of the
devices in the stack may fail updating. As a workaround, break up the stack
and update the devices individually, then recreate the stack. (CSCuu66152)
Features Introduced in Previous Versions
Functionality described in previous versions may be superseded by other new
functionality or updated through resolved issues.
5.3.0.x
The following features and functionality were introduced in Version 5.3.0.x:
•
As of Version 5.3.0.1, LDAP usernames are not case-sensitive. In Version
5.3, usernames were case-sensitive.
•
As of Version 5.3.0.1, you can no longer perform joins using the
application_tag_id
field in the
application_host_map
table when
querying the external database.
5.3
The following features and functionality were introduced in Version 5.3:
File Capture and Storage
L
ICENSE
: Malware
S
UPPORTED
D
EVICES
: Series 3, Virtual, X-Series
S
UPPORTED
D
EFENSE
C
ENTERS
: Any except DC500
The file capture feature provides the ability to automatically carve files of interest
out of network traffic based on the file type or the file disposition. Once captured,
the files can either be stored locally on FirePOWER appliances or automatically
submitted for additional malware analysis using Sourcefire’s cloud-based
sandboxing technology, dynamic analysis.
File capture is configured as part of a file policy and each file has a SHA-256
File capture is configured as part of a file policy and each file has a SHA-256
calculated to uniquely identify files and reduce duplicates in file storage. Captured
files are stored on the primary hard drive of the FirePOWER appliance.