Preview Tool

Cisco Bug: CSCvv99419 - [6.7.0] FDM Snort 3 SSL Policy addition/removal causing Snort to restart w/o UI warning

Last Modified

Oct 14, 2020

Products (1)

  • Cisco Firepower NGFW

Known Affected Releases


Description (partial)

Snort3 requires a restart in one particular configuration scenario.

In one particular scenario Snort3 restarts.

Steps to reproduce:

1. Install the device with a 6.7 image and manage locally using FDM.
2. Create an access control rule with a file policy with 'Inspect Archive set to true' and Deploy, Note Snort3 PID will not change after deployment has finished.
3. Create an SSL policy with single rule any any do not decrypt and deploy. Note that the snort 3 PID has changed
4. No deploy warnings are displayed before deployment
5. After this, adding or removing SSL policies cause snort to restart.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.