Cisco Cisco Firepower Management Center 4000 發佈版本通知
Version 5.2.0.6
Sourcefire 3D System Release Notes
35
Known Issues
•
In some cases, if you set an operating system identity from the host profile
or network map, the system displays Please wait, loading... even after the
pop-up window has loaded completely. (124918, 128594)
•
In some cases, executing large Nmap scans may cause system issues. As a
workaround, reduce the size of the Nmap scans to include fewer targets.
(124999)
•
If you attempt to install a version of the Sourcefire Geolocation Database
(GeoDB) that is already installed on your system, the system does not
inform you that the update failed because the GeoDB version was already
installed. (125183)
•
If you configure an Nmap scan and specify a device in the Remote Device
Name field, the system runs the scan from the device even if you are using a
remediation where Scan from reporting device is disabled. (125608)
•
In some cases after importing a new intrusion rule update, the number of
imported rules in the intrusion policy may not match the number of rules in
the import log. (125900)
•
In some cases, the system may not log connection events for IPv6-in-IPv4
traffic if the access control policy contains an access control rule with
connection event logging enabled and any of the following ports selected:
IP 0
,
IP-ENCAP 4
,
IPv6 41
,
IPv6-ROUTE 43
,
IPv6-FRAG 44
,
GRE 47
,
ESP
50
, or
IPv6-OPTS 60
. (126117, 126746)
•
In some cases, if you configure a syslog alert response to send connection
events to the syslog, the system may omit data from the Initiator Country,
Responder Country, Client Version, Application Risk, Business Relevance,
Intrusion Events, Files, TCP Flags, NetBIOS Domain, Initiator Packets, Responder
Packets, Initiator Bytes, or Responder Bytes fields. (127682)
•
If you configure a traffic profile and a correlation rule to trigger on traffic
spikes at or above two standard deviations, the system may not generate a
correlation event. (128107)
•
In rare cases, the 3D8120, 3D8130, 3D8140, and 3D8250 may experience
system issues that require you to reboot the appliance. (128689)
•
If you disable ldap protocol detection in your network discovery policy, the
Defense Center stops logging user agent login data. (128741)
•
In some cases, if you schedule an automatic LDAP user data retrieval, you
cannot perform on-demand user data retrieval and download. (128962)
•
In rare cases, automatic application bypass (AAB) activates during network
discovery policy apply. (129230)
•
Critical Issue
After completing an event-only backup, the backup process
enters an unrecoverable state. Do not attempt an event-only backup. As a
workaround, back up both configurations and events. (129231)
•
In some cases, if you view reviewed intrusion events and drill down to the
packet view, there are no visible events and the reviewed constraint is
removed. (129257)
•
In rare cases, installing Version 5.2 or later on a 3D6500 managed device
may cause system issues. (129561)