Guest

Preview Tool

Cisco Bug: CSCur53155 - Rules with !$HOME_NET will fail when added to intrusion policies

Last Modified

Nov 16, 2017

Products (38)

  • Cisco Firepower Management Center
  • Cisco FirePOWER Appliance 8360
  • Sourcefire Defense Center 1000 Chassis
  • Sourcefire 3D6500 Sensor
  • Cisco FirePOWER Appliance 8260
  • Cisco FirePOWER Appliance 8120
  • Cisco FirePOWER Appliance 8140
  • Cisco FirePOWER Appliance 8350
  • Cisco FirePOWER Appliance 8130
  • Cisco AMP 8150
View all products in Bug Search Tool Login Required

Known Affected Releases

5.3.0

Description (partial)

Symptom:
When trying to add a custom rule with a !$HOME_NET to an intrusion policy in 5.3.0 saving the policy will fail stating "Policy validation failure: !any is not allowed: !$HOME_NET."

Conditions:
Steps to reproduce:
1)On a 5.3.0 System go to the Poliies->Intrusion Policy->Rule Edit page
2)Create a new rule with Source network = !$HOME_NET
3)Edit an Intrusion Policy and navigate to Rules
4)Search for an select your rule from step 2
5)Change to Drop and Generate Events
6)Save your changes

Results:
the following error is displayed "Policy validation failure: !any is not allowed: !$HOME_NET."

Expected results:
The policy should be allowed to save if any of the variable sets have $HOME_NET set to anything other than any. as they may be used in the AC policy with this intrusion policy.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.