Cisco Cisco FirePOWER Appliance 7020 發佈版本通知
Version 5.3
Sourcefire 3D System Release Notes
30
Known Issues
•
If Greenwich Mean Time (GMT, also known as UTC) is not your local
timezone, scheduled geolocation updates may fail. If your local timezone is
+X number of hours from GMT, schedule geolocation updates for X:00 or
later. If your local timezone is -X number of hours from GMT, schedule
geolocation updates for (24:00 - X) or earlier. For example, if your local
timezone is UTC-5, schedule updates before 19:00 local time. (134742)
•
When querying the database, you cannot perform joins using host_id or
application_tag_id fields in the application_host_map table. (134791)
•
If you edit a previously-configured LDAP connection where user and group
access control parameters are enabled, clicking Fetch Groups does not
populate the Available Groups box. You must re-enter your password when
editing an LDAP connection in order to fetch available groups. (134872)
•
In some cases, if you enable Resolve IP Addresses in the Event Preferences
section of the Event View Settings page, hostnames associated with IPv6
addresses may not resolve as expected in the dashboard or event views.
(135182)
•
You cannot enter more than 450 characters in the Base Filter field when
creating an LDAP authentication object. (135314)
•
In some cases, if you schedule a task while observing Daylight Saving Time
(DST), the task does not run during periods when you are not observing
DST. As a workaround, select Europe, London as your local time zone on the
Time Zone Preference page (Admin > User Preferences) and recreate the task
during a period when you are not observing DST. (135480)
•
The system requires additional time to reboot appliances running Version
5.3 or later due to a database check. If errors are found during the database
check, the reboot requires additional time to repair the database. (135564,
136439)
•
In some cases, the system may generate a false positive for the SSH
preprocessor rule 128:1. (135567)
•
If you apply an intrusion policy containing a rule with the Extract Original
Client IP Address HTTP preprocessor option enabled, the system may
populate intrusion events with incorrect data in the Original Client IP field if
traffic passes through a dedicated proxy server. (135651)
•
If you update a managed device from Version 5.1.1.x to Version 5.2.x and
then to Version 5.3, the system generates extraneous health alerts for high
unmanaged disk usage. (135689)
•
If you configure a custom table populated with data from the Correlation
Events table and the Applications table, then select Source IP as a common
field, updates to Version 5.3 fail. As a workaround, delete the custom table
and recreate it after updating to Version 5.3. (135735)
•
If you update an appliance from Version 5.2.x to Version 5.3 and later create
a backup, you cannot restore the backup on appliances that were reimaged
to Version 5.3. (135869)