ManualsPro Cisco CISCO SWD-14010 Stealthwatch Flow Collector NetFlow User Guide

CISCO SWD-14010 Stealthwatch Flow Collector NetFlow User Guide

June 13, 2024
Cisco

CISCO SWD-14010 Stealthwatch Flow Collector NetFlow

Product Information

The Stealthwatch Flow Collector NetFlow Update Patch v7.3.1 is a software update patch for the Stealthwatch Flow Collector NetFlow appliance. This patch, patch-fcnf-ROLLUP008-7.3.1-01.swu, includes several fixes for defects in the previous version.

The patch addresses the following fix:

  • Defect SWD-16828: Fixed an issue where Interface Top Reports were showing incorrect results. Rows (all data) were missing when searching for specific hosts or hostgroups, and client or server.

This patch also includes previous defect fixes, which are listed in the user manual.

Product Usage Instructions

Download:

  1. Go to Cisco Software Central at https://software.cisco.com.
  2. In the Download and Upgrade section, select “Access downloads”.
  3. Type “Secure Analytics (Stealthwatch)” in the Select a Product field, then press Enter.
  4. Select the appropriate appliance model.
  5. Under Select a Software Type, choose “Stealthwatch Patches”.
  6. Select the desired release version.
  7. Download the patch update file, patch-fcnf-ROLLUP008-7.3.1-01.swu, and save it to your preferred location.

Installation:

  1. Log in to the SMC (Stealthwatch Management Console).
  2. Click on the Global Settings icon, then click on Central Management.
  3. Click on Update Manager.
  4. On the Update Manager page, click on Upload, and then open the saved patch update file, patch-fcnf-ROLLUP008-7.3.1-01.swu.
  5. Click the Actions menu for the appliance, then click Install Update.

Note: The Flow Collector engine will be stopped, and the appliance will be restarted as part of the patch installation process.

Stealthwatch Flow Collector NetFlow
Update Patch v7.3.1
This document provides a description of the patch and installation procedure for the Stealthwatch Flow Collector NetFlow appliance v7.3.1.

Stealthwatch Flow Collector NetFlow  Update Patch v7.3.1
This document provides a description of the patch and installation procedure for the Stealthwatch Flow Collector NetFlow appliance v7.3.1.

There are no prerequisites for this patch.

Patch Description

This patch, patch-fcnf-ROLLUP008-7.3.1-01.swu, includes the following fix:

Defect Description

SWD-16828

| Fixed an issue where Interface Top Reports were showing incorrect results. Rows (all data) were missing when searching for specific hosts or hostgroups, and client or server.

Previous fixes included in this patch are described in a table on the next page.

Download and Installation

Download
To download the patch update file, complete the following steps:

  1. Go to Cisco Software Central, https://software.cisco.com.
  2. In the Download and Upgrade section, select Access downloads.
  3. Type Secure Analytics (Stealthwatch) in the Select a Product field, then press Enter.
  4. Select the appliance model.
  5. Under Select a Software Type, select Stealthwatch Patches.
  6. Select All Release, then select release version.
  7. Download the patch update file, patch-fcnf-ROLLUP008-7.3.1-01.swu, and save it to your preferred location.

Installation
To install the patch update file, complete the following steps:

  1. Log in to the SMC.
  2. Click the Global Settings icon, then click Central Management.
  3. Click Update Manager.
  4. On the Update Manager page, click Upload, and then open the saved patch update file, patch-fcnf-ROLLUP008-7.3.1-01.swu.
  5. Click the Actions menu for the appliance, then click Install Update.

The Flow Collector engine is stopped, and the appliance is restarted as part of the patch installation process.

Previous Fixes

The following items are previous defect fixes i ncluded in this patch:

Defect Description
SWD-14010 Fixed an issue with refactor syslog compliance toggling.
SWD-15136 Fixed issue to prevent database backup from canceling.
SWD-15235 Fixed an issue to enable reloading snmpd for configuration changes.
SWD-15421 Fixed an issue with the rotate Chrony log files.
SWD-15443 Fixed issue with add file check before reading SSL files
SWD-15465 Fixed an issue with incorrect patch version on installing multiple

SWUs.
SWD-15574| Fixed an issue with the initiator setting on ASA bi-directional flows. (LSQ-5071)
SWD-15592| Fixed the issue where 50% of Traffic Showing was Unknown on the Dashboard.
SWD-15593| Fixed an issue where some applications were not being detected.
SWD-15679| Fixed issue with secret manager being removed after installing the v7.2.1 update patches.
SWD-15712| Fixed an issue where the SE Query provided incorrect data.
SWD-15713| Fixed an issue where the v7.2.1 update patch installation failed due to docker not running.
Defect| Description
---|---
SWD-15730| Fixed and issue where the NVM Process Hash and Parent Process Hash were missing in Flow Collector.
SWD-15732| Fixed issue that was preventing osaxsd-server from completing the package upgrade.
SWD-15574| Fixed an issue with setting the initiator on the second half of an ASA bi-flow. (LSQ-5071)

SWD-15744

| Fixed an issuer where flows without client and server bytes/packets were missing interface information. (LSQ- 5118)

SWD-15779

| Fixed an issue where the Palo Alto, AppId/UserId, fields seemed to initiate the Flow Collector Oversubscribed alarm. (LSQ-4919 )
SWD-15842| Fixed an issue with system alarms not clearing.
SWD-15885| Fixed an issue support for ASA bi-flows with bytes = 0 and pkts > 0 and Flow Action needs to be set

SWD-15947

| Fixed an issue where TrustSec and user data were missing from active user sessions in new flows after FC reboot or upgrade.
SWD-15984| Fixed an issue where the eta analysis tool was running when generating diag pack. (LSQ-5308)
SWD-16024| Fixed an issue to prevent enabling the datastore advance option in System Config unintentionally.
SWD-16025| Fixed an issue where running a database backup failed. (LSQ- 5358)
SWD-16030| Fixed an issue with the Flow Collector engine indexing the groups array with values greater than, or equal to, 65535.
SWD-16049| Fixed an issue where the swe-detections-worker service on the Flow Collector wasn’t registering observations.
Defect| Description
---|---

SWD-16054

| Fixed a Port Scan Alarm issue where the associated flow table was empty because the client server wasn’t following the initiator order. (LSQ-5366)
SWD-16068| Fixed an issue where docker images weren’t cleaned up during package upgrade.
SWD-16087/SWD- 16437| Fixed an issue where flow-based Identities were missing on Users report.
SWD-16111/SWD- 16114| Fixed an issue with SIGSEGV in the Threat Feed Update. (LSQ-5437)
SWD-16163| Fixed an error with flow duration values calculated by the Flow Collector engine.
SWD-16183| Fixed an issue where customized applications were not tagging traffic according to DPI definitions. (LSQ-5456)
SWD-16169 / SWD-16210| Fixed an issue where NetFlow data from Checkpoint exporters didn’t process properly due to Checkpoint inadvertently using the PEN field. ( LSQ-5470)
SWD-16284| Fixed an issue with the range policy_id value.
SWD-16333| Enhanced the Flow Data Lost alarm to set limits longer than the hard-coded, 30-minute threshold. (LSQ-5549)
SWD-16805

Clones: SWD-16783 SWD-16944

| Fixed an issue where Flag counters were not accurate on TCP flows. In addition, some non-TCP flows were displaying TCP flag counters.
SWONE-7828| Fixed an issue where the ingest service was falling behind and not catching up.
SWONE-12159| Added TrustSec improvements.
SWONE-14903 / SWONE-18750| Fixed an issue with three memory-related changes to svc-db- ingest.
SWOS-206| Enabled the upgrade process to continue when upgrading
Defect| Description
---|---
| osaxsd-server.
SWOS-357| Updated cryptography dependencies to versions built against CiscoSSL.

Contacting Support

If you need technical support, please do one of the following:

Copyright Information

Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: https://www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1721R)

© 2022 Cisco Systems, Inc. and/or its affiliates. All rights reserved.

References

Read User Manual Online (PDF format)

Read User Manual Online (PDF format)  >>

Download This Manual (PDF format)

Download this manual  >>

Cisco User Manuals

cisco Configuring Console Access Instructions
Cisco
cisco HyperFlex HX-Series Data Platform for HCI Instructions
Cisco
CISCO Meraki Cloud Monitoring for Catalyst User Guide
Cisco
CISCO Cloud-Delivered Catalyst SD-WAN Platform User Guide
Cisco
CISCO 60079011 Wi Fi 6 E Access Point User Manual
Cisco
CISCO IP Phone o Through the Normal Startup Process User Guide
Cisco
CISCO Install Enterprise NFVIS Using USB User Guide
Cisco
CISCO NCS 1014 Network Convergence System 1014 Instruction Manual
Cisco
CISCO Set Up Webex User Guide
Cisco
CISCO Webex App User Guide
Cisco
CISCO DNA Center Configure Telemetry User Guide
Cisco
802.11 Parameters for Cisco Access Points User Guide
Cisco
CISCO Nexus 3000 Series NX-OS Verified Scalability Guide Release 9.3 Instruction Manual Product Information
Cisco
CISCO P-LTE-450 Cellular Pluggable Interface Module Configuration User Guide
Cisco
CISCO Nexus 3600 Series NX-OS Verified Scalability Guide Release 9.3 User Guide
Cisco
CISCO Nexus 3000 SeriesNX-OS Verified Scalability Guide Release 9.3 User Guide
Cisco
CISCO Nexus 3000 Series NX-OS Verified Scalability Guide User Guide
Cisco
CISCO Nexus 9804 NX-OS Mode Switch Hardware Installation Guide
Cisco
CISCO Nexus 3548 Series NX-OS Verified Scalability Instructions
Cisco
CISCO 9.0SU Emergency Responder User Guide
Cisco

Related Manuals

AXIL GS Extreme 2.0 User Manual
AXIL
Etac BM28199 Nova StandUp User Manual
Etac
uCool LK-Z6 2-in-1 Magnetic Wireless Charging Stand User Manual
uCool
marta MT-1882 Electric Food Dryer User Manual
MARTA
ELVITA CVK2152S Electric Kettle User Manual
ELVITA
wanbo T2 Max 1080P Mini LED Projector Instruction Manual
wanbo
Energy Australia Gas Bill Electricity Bill Explained Instructions
Energy Australia
XTREME XWS7-2002-BLK Smart WiFi Outdoor Plug User Manual
Xtreme
KEONJINN Acrylic Framed LED Mirror Installation Guide
KEONJINN
BRESSER 9119501 40X-640X Microscope Instruction Manual
BRESSER
TELRAN FT-454 Optical Fiber Identifier with Visual Fault Locator Instructions
TELRAN
AC INFINITY HS8025A-X Scale Axial Series Project Cooling Fan User Manual
AC Infinity
SPINCARE RCM 2022 Vinyl Record Cleaning Machine Instructions
SPINCARE
sanlight EVO Series Bluetooth Dimmer Instruction Manual
sanlight
VEVOR BDH1000B Electric Chain Hoist Instruction Manual
VEVOR
Yealink DECT IP Phone W60 Package User Guide
Yealink
FISHER and PAYKEL DH9060H1 9kg Heat Pump Dryer User Guide
FISHER and PAYKEL
HILTI X-DR S ALH 27 Drop Rod with Nail Instructions
HILTI
HELVIA ZEUS X Series 4 CH Low Impedance Power Amplifiers User Manual
HELVIA
bcp SKY7067 Metal Stocking Stand Instruction Manual
bcp
veho Cave VHS-010-OC HD Outdoor Wireless IP Camera User Manual
veho
XKGLOW XK-NS Nite Stix Overhead LED Work Light Instruction Manual
XKGLOW
XPARKIN ZQS100 Outdoor Wireless Solar Security Camera User Manual
XPARKIN
Wimius H8 Trail Camera User Manual
Wimius
MODALICS Beat Scholar Divisible Drum Machine Plug User Manual
MODALICS
ABH MANUFACTURING 6000 SERIES Push Pull Hospital Latch Instruction Manual
ABH MANUFACTURING
V-TAC VT-8-10 LED Prismatic Fitting Instruction Manual
V TAC
BROMECH BWP03 High Precision Scale User Manual
BROMECH
AFX MOTORSPORTS TEC012 Aluminum Roof Installation Guide
AFX MOTORSPORTS
LG 50QNED7SSQA LED TV Owner’s Manual
LG
Contact Us   Privacy Policy   4.047ms