Guest

Preview Tool

Cisco Bug: CSCvt07902 - FTD ENH: option to disable inline set members when Snort is declared down

Last Modified

Apr 18, 2020

Products (1)

  • Cisco Firepower Management Center

Known Affected Releases

6.2.3 6.2.3.1 6.2.3.10 6.2.3.11 6.2.3.12 6.2.3.13 6.2.3.14 6.2.3.15 6.2.3.16 6.2.3.2 6.2.3.3 6.2.3.4 6.2.3.5 6.2.3.6 6.2.3.7 6.2.3.8 6.2.3.9 6.3.0 6.3.0.1 6.3.0.2 6.3.0.3 6.3.0.4 6.3.0.5 6.3.0.6 6.3.0.7 6.4.0 6.4.0.1 6.4.0.10 6.4.0.2 6.4.0.3 6.4.0.4 6.4.0.5 6.4.0.6 6.4.0.7 6.4.0.8 6.4.0.9 6.5.0 6.5.0.1 6.5.0.2 6.5.0.3 6.5.0.4 6.5.0.5 6.5.0.6 6.5.0_Hotfix

Description (partial)

Symptom:
This is an enhancement feature request to implement an option for user to configure in inline-set tab to disable (set to admin down) member interfaces, when Snort engine is down.

Conditions:
This feature would be applicable in networks, where there is another FW pair (ASA/FTD) conducting failover interface testing through the inline set. In current state, if Snort engine goes down in transit FTD NGIPS, normal traffic through inline set will not pass, but failover testing will succeed due to ARP traffic not being processed by Snort (as part of fix to CSCvh05193), so failover on adjacent FW pair will never happen.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.