Guest

Preview Tool

Cisco Bug: CSCvs31557 - Sensitive Data Detection alerting on return traffic even when networks are configured.

Last Modified

Apr 14, 2020

Products (1)

  • Cisco Firepower Management Center

Known Affected Releases

6.2.3.12

Description (partial)

Symptom:
Customer's FMC on 6.2.3.12.

They have configured the sensitive data pre-processor in the FMC intrusion policy to only look at their networks.  Even though the customer is specifying the inspection of sensitive data on their source network they are seeing events from the destination and source.  According to the FMC configuration guide you can specify the destination host/hosts with the global sensitive data detection options.  We have configured those and still see events from the source and destination.

Conditions:
FMC using Sensitive data pre-processor.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.