|
|
Table Of Contents
Release Note for the Cisco Guard and Cisco Traffic Anomaly Detector
New Features in Software Release 3.0(8.11)
Multiple SNMP Community Strings
Adding an SNMP Server Community String
Removing an SNMP Server Community String
Enhancement to the Riverhead SNMP MIB
Software Version 3.0(8.11) Open Caveats
Software Version 3.0(8.11) Resolved Caveats
Obtaining Technical Assistance
Release Note for the Cisco Guard and Cisco Traffic Anomaly Detector
June 15, 2004
Note
The most current Cisco documentation for released products is also available on Cisco.com. The online documents may contain updates and modifications made after the hardcopy documents were released.
This release note applies to software version 3.0(8.11) for the Cisco Guard and the Cisco Traffic Anomaly Detector.
This release note contains the following sections:
•
•
•
•
New Features in Software Release 3.0(8.11)
The following new features have been added in software release 3.0(8.11):
•
•
•
•
•
•
Multiple SNMP Community Strings
The configuration of the SNMP service in release 3.0(8) has the functionality to configure multiple SNMP community strings. This functionality allows access to the SNMP agent from clients in different organizational units and with different community strings on each client. The configuration is done using the existing snmp community command that enabled you to change the SNMP community string in previous releases.
Adding an SNMP Server Community String
You may now add a new community string. Note that the Guard default community string is `riverhead'.
To add a community string, use the following command from the Configuration command group level.
admin@GUARD-conf# snmp community <community-string>
The community-string defines the community string and may be a maximum length of 15 alphanumeric characters excluding spaces.
Removing an SNMP Server Community String
The no snmp community command has been added to enable you to remove an SNMP community string. Note that removing all community strings results in losing the ability to retrieve information through the SNMP server.
To remove a community string, enter the following command from the Configuration command group level. Define the community-string as the string you want to remove.
admin@GUARD-conf# no snmp community <community-string>
Enhancement to the Riverhead SNMP MIB
Time OIDs - All time OIDs have been changed from time-ticks type to string type. The string describes the time and date.
New OID - New OID has been added to the Riverhead MIB 'rhZoneLastAttackTime' in the Zone table. This OID indicates the time of the last detected attack on the Zone.
Setting Rebooting Parameters
You may set parameters that relate to the reboot process.
•
•
You may change these behaviors to either automatic activation of zones that were active prior to the reboot process or to non automatic activation. To change the reboot parameter, enter the following command from the Configuration command group level:
admin@GUARD-conf# [no] boot reactivate-zonesVersion Installation Process
The version installation process involves from this version only one rpm instead of two rpms as it used to (one rpm for base upgrade and another for the main version rpm).
Obtaining Debug Information
In case of an operational problem in the Guard/Detector, Cisco Technical Support may require you to send internal debug information.
To extract the debug information to an FTP server:
1.
admin@GUARD# copy debug-core <time> ftp <server> <full-file-name> [<login>] [<password>]
The syntax and variables are shown in the following table.
For example:
admin@GUARD# copy debug-core ftp 10.0.0.191 debug-file user password
Please wait while gathering the required information...Finished creating fileFTP in progress...Passive mode off.Local directory now /Riverhead/ImpExpadmin@GUARD#Software Version 3.0(8.11) Open Caveats
The following caveats are open in software version 3.0(8.11):
•
•
•
•
•
Software Version 3.0(8.11) Resolved Caveats
The following caveats were resolved in software version 3.0(8.11):
•
•
•
•
•
•
•
•
•
•
•
Obtaining Documentation
These sections explain how to obtain documentation from Cisco Systems.
World Wide Web
You can access the most current Cisco documentation on the World Wide Web at this URL:
Translated documentation is available at this URL:
http://www.cisco.com/public/countries_languages.shtml
Documentation CD-ROM
Cisco documentation and additional literature are available in a Cisco Documentation CD-ROM package, which is shipped with your product. The Documentation CD-ROM is updated monthly and may be more current than printed documentation. The CD-ROM package is available as a single unit or through an annual subscription.
Ordering Documentation
You can order Cisco documentation in these ways:
•
http://www.cisco.com/cgi-bin/order/order_root.pl
•
http://www.cisco.com/go/subscription
•
Documentation Feedback
You can submit comments electronically on Cisco.com. In the Cisco Documentation home page, click the Fax or Email option in the "Leave Feedback" section at the bottom of the page.
You can e-mail your comments to bug-doc@cisco.com.
You can submit your comments by mail by using the response card behind the front cover of your document or by writing to the following address:
Cisco Systems
Attn: Document Resource Connection
170 West Tasman Drive
San Jose, CA 95134-9883We appreciate your comments.
Obtaining Technical Assistance
Cisco provides Cisco.com as a starting point for all technical assistance. Customers and partners can obtain online documentation, troubleshooting tips, and sample configurations from online tools by using the Cisco Technical Assistance Center (TAC) Web Site. Cisco.com registered users have complete access to the technical support resources on the Cisco TAC Web Site.
Cisco.com
Cisco.com is the foundation of a suite of interactive, networked services that provides immediate, open access to Cisco information, networking solutions, services, programs, and resources at any time, from anywhere in the world.
Cisco.com is a highly integrated Internet application and a powerful, easy-to-use tool that provides a broad range of features and services to help you with these tasks:
•
•
•
•
•
If you want to obtain customized information and service, you can self-register on Cisco.com. To access Cisco.com, go to this URL:
Technical Assistance Center
The Cisco Technical Assistance Center (TAC) is available to all customers who need technical assistance with a Cisco product, technology, or solution. Two levels of support are available: the Cisco TAC Web Site and the Cisco TAC Escalation Center.
Cisco TAC inquiries are categorized according to the urgency of the issue:
•
•
•
•
The Cisco TAC resource that you choose is based on the priority of the problem and the conditions of service contracts, when applicable.
Cisco TAC Web Site
You can use the Cisco TAC Web Site to resolve P3 and P4 issues yourself, saving both cost and time. The site provides around-the-clock access to online tools, knowledge bases, and software. To access the Cisco TAC Web Site, go to this URL:
All customers, partners, and resellers who have a valid Cisco service contract have complete access to the technical support resources on the Cisco TAC Web Site. The Cisco TAC Web Site requires a Cisco.com login ID and password. If you have a valid service contract but do not have a login ID or password, go to this URL to register:
http://www.cisco.com/register/
If you are a Cisco.com registered user, and you cannot resolve your technical issues by using the Cisco TAC Web Site, you can open a case online by using the TAC Case Open tool at this URL:
http://www.cisco.com/tac/caseopen
If you have Internet access, we recommend that you open P3 and P4 cases through the Cisco TAC Web Site.
Cisco TAC Escalation Center
The Cisco TAC Escalation Center addresses priority level 1 or priority level 2 issues. These classifications are assigned when severe network degradation significantly impacts business operations. When you contact the TAC Escalation Center with a P1 or P2 problem, a Cisco TAC engineer automatically opens a case.
To obtain a directory of toll-free Cisco TAC telephone numbers for your country, go to this URL:
http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml
Before calling, please check with your network operations center to determine the level of Cisco support services to which your company is entitled: for example, SMARTnet, SMARTnet Onsite, or Network Supported Accounts (NSA). When you call the center, please have available your service agreement number and your product serial number.
This document is to be used in conjunction with the documents listed in the "Obtaining Technical Assistance" section.
Copyright © 2004, Cisco Systems, Inc.
All rights reserved.
Posted: Tue Jun 15 09:03:33 PDT 2004
All contents are Copyright © 1992--2004 Cisco Systems, Inc. All rights reserved.
Important Notices and Privacy Statement.
