Cisco Cisco Firepower Management Center 2000 發佈版本通知
33
FireSIGHT System Release Notes
Known Issues
Resolved an issue where, if you created an intrusion policy or network analysis policy and added a shared layer to it, then exported and
imported the new policy the system generated a Back-end failed for import error and did not import the policy.
(144905/CSCze96093)
imported the new policy the system generated a Back-end failed for import error and did not import the policy.
(144905/CSCze96093)
Known Issues
The following known issues are reported in Version 5.4.0.6 and Version 5.4.1.5:
In some cases, if you generate an intrusion event performance graph from the Intrusion Event Performance page (Overview >
Summary > Intrusion Event Performance) and set the range to Last Hour, the system incorrectly generates a blank graph.
(145237/CSCze95774)
Summary > Intrusion Event Performance) and set the range to Last Hour, the system incorrectly generates a blank graph.
(145237/CSCze95774)
In some cases, if you create an intrusion rule set to block Multiprotocol Label Switching (MPLS) traffic and specify either a source IP
address or a destination IP address, the system does not block matching traffic. (CSCur46880)
address or a destination IP address, the system does not block matching traffic. (CSCur46880)
In some cases, if you register a device to a pair of Defense Centers and apply an access control policy with URL rules and turn on URL
cloud query, the managed device cannot successfully request a URL lookup. (CSCus99059)
cloud query, the managed device cannot successfully request a URL lookup. (CSCus99059)
In some cases, if you register and manage more than 100 devices on your Defense Center, the access control policy page may take up
to several minutes to load. (CSCuu44646)
to several minutes to load. (CSCuu44646)
In some cases, if you create an access control rule with an interactive block action and view a blocked web page in a Chrome web
browser, selecting the Continue button to bypass the block page does not work. As a workaround, view a blocked web page using
Firefox or Internet Explorer. (CSCuu53237, CSCuv21748)
browser, selecting the Continue button to bypass the block page does not work. As a workaround, view a blocked web page using
Firefox or Internet Explorer. (CSCuu53237, CSCuv21748)
In some cases, if you create an LDAP object in the Microsoft Active Directory and add the LDAP object to a user policy, then move
the LDAP object, the Defense Center cannot locate the LDAP object. As a workaround, remove the LDAP group containing the LDAP
object from the Users Policy page (Policies > Users) and Fetch Groups from the Defense Center, then add the group and recreate the
LDAP object to the user policy. (CSCuu95350)
the LDAP object, the Defense Center cannot locate the LDAP object. As a workaround, remove the LDAP group containing the LDAP
object from the Users Policy page (Policies > Users) and Fetch Groups from the Defense Center, then add the group and recreate the
LDAP object to the user policy. (CSCuu95350)
In some cases, LDAP connection fails if the username includes an international UTF-8 character. If you experience a failed LDAP
connection because of a username containing international UTF-8 characters, contact Support. (CSCuv05876)
connection because of a username containing international UTF-8 characters, contact Support. (CSCuv05876)
In some cases, if you suppress a rule in an intrusion policy with the Suppression Type set to either Source or Destination IP address
and enter a custom variable, then delete the custom variable and apply, applying the intrusion rule fails and the Defense Center does
indicate why policy apply failed. (CSCuv44581)
and enter a custom variable, then delete the custom variable and apply, applying the intrusion rule fails and the Defense Center does
indicate why policy apply failed. (CSCuv44581)
In some cases, if you create a scheduled task to download and install a geolocation database (GeoDB) on a Day of Week, the system
may not execute the scheduled task when it should. As a workaround, change the day of the scheduled task and save. (CSCuv44836)
may not execute the scheduled task when it should. As a workaround, change the day of the scheduled task and save. (CSCuv44836)
In some cases, if you generate a report template with a custom logo and create a backup file, then backup and restore the Defense
Center, the backup file does not save the custom logo in the report template. (CSCuv44883)
Center, the backup file does not save the custom logo in the report template. (CSCuv44883)
In some cases, if you select network file system (NFS) storage as a remote storage type from the Storage Type drop-down menu on
the Remote Storage device tab of the Local Configuration page (System > Local > Configuration), the system erroneously generates
a Remote device was not mounted error when the storage device is correctly mounted. (CSCuv50519)
the Remote Storage device tab of the Local Configuration page (System > Local > Configuration), the system erroneously generates
a Remote device was not mounted error when the storage device is correctly mounted. (CSCuv50519)
In some cases, if you create a file policy and enable the HTTP preprocessor, and the system detects a malware file containing a custom
SHA256 value, the system does not block the malware file when it should. (CSCuv59181)
SHA256 value, the system does not block the malware file when it should. (CSCuv59181)
In some cases, the system does not generate events for rules with the generator ID (GID) of 134 if the rule is configured to alert and
latency-based performance settings are enabled in the access control policy. Note that latency-based performance is enabled by default
(CSCuv70840)
latency-based performance settings are enabled in the access control policy. Note that latency-based performance is enabled by default
(CSCuv70840)
In some cases, if you manually configure the time to a future time or date while applying a device configuration and then apply another
device configuration with the current time or date to the same appliance, the device does not save the second device configuration when
it should. (CSCuw01691)
device configuration with the current time or date to the same appliance, the device does not save the second device configuration when
it should. (CSCuw01691)
External authentication login to the Radius server does not support usernames with capitalized characters. (CSCuw19529)