Примечания к выпуску для Cisco Cisco Firepower Management Center 2000
5
FireSIGHT System Release Notes
New Features and Functionality
For this reason, the Cisco ASA functionality is currently managed through the Cisco Security Manager (CSM) or the
Adaptive Security Device Manager (ASDM), and the FirePOWER Services functionality is managed through the Cisco
Defense Center. As a result, the Defense Center does not support any of the following capabilities:
Adaptive Security Device Manager (ASDM), and the FirePOWER Services functionality is managed through the Cisco
Defense Center. As a result, the Defense Center does not support any of the following capabilities:
Cisco ASA hardware-based features, including clustering, stacking, switching, routing, virtual private networks
(VPN), and network address translation (NAT).
(VPN), and network address translation (NAT).
Configuring ASA interfaces. In addition, when FirePOWER Services are deployed in SPAN port mode, any ASA
interfaces that have been configured will not be displayed.
interfaces that have been configured will not be displayed.
Shutting down, restarting or otherwise managing ASA processes.
Creating or restoring backups from ASA devices.
Writing access control rules to match traffic using VLAN tag conditions.
Note:
The ASA platform provides these features, configured using the ASA command line interface (CLI) and ASDM. For
more information, see the ASA FirePOWER module documentation.
Platform Enhancements
VMware Tool Support
You can now use VMware Tools with FireSIGHT System virtual appliances. This enhances compatibility with the VMware
environment and improves management of virtual devices by enabling soft power down, migration, and other virtual
specific capabilities. VMware tools are supported on:
environment and improves management of virtual devices by enabling soft power down, migration, and other virtual
specific capabilities. VMware tools are supported on:
64-bit Virtual Defense Center
64-bit Virtual managed device
Note:
As of Version 5.4 of the FireSIGHT System, the system supports ESXi version 5.1 and ESXi version 5.5.
Support for VMXNET3 Interfaces in VMware Virtual Appliances
VMXNET3 interface types are now supported on virtual devices. This allows you to use high-speed network interfaces,
up to 10Gbits/s.
up to 10Gbits/s.
Multiple Management Interfaces
You can now use multiple management interface ports on Series 3 Defense Centers, FirePOWER (Series 3) managed
devices, and virtual Defense Centers. You can set one interface for management traffic and another interface for event
traffic. This improves deployment options in some environments.
devices, and virtual Defense Centers. You can set one interface for management traffic and another interface for event
traffic. This improves deployment options in some environments.
Series 3 Support
Version 5.4 introduces the 3D7050 as a 70xx Family device with a dual core quad thread processor, 8GB of RAM, and a
80GB hard drive.
80GB hard drive.
LACP Support
FirePOWER (Series 3) devices are now able to take part in Link Aggregation Control Protocol (LACP) (IEEE 802.3ad)
negotiation to aggregate multiple links together into one. This allows both link redundancy and bandwidth sharing.
negotiation to aggregate multiple links together into one. This allows both link redundancy and bandwidth sharing.
Defense Center 2000 (DC2000)
The DC2000 is a new Defense Center appliance platform that offers double the performance and capacity of the
DC1500.
DC1500.
Defense Center 4000 (DC4000)
The DC4000 is a new Defense Center appliance platform that offers double the performance and capacity of the
DC3500.
DC3500.