驗證Firepower軟體版本
目錄
簡介
本文檔介紹Firepower軟體版本的驗證。
必要條件
需求
基本產品知識、REST-API、SNMP。
採用元件
本文中的資訊是根據特定實驗室環境內的裝置所建立。文中使用到的所有裝置皆從已清除(預設)的組態來啟動。如果您的網路運作中,請確保您瞭解任何指令可能造成的影響。
本文中的資訊係根據以下軟體和硬體版本:
- Firepower 11xx
- Firepower 21xx
- Firepower 31xx
- Firepower 41xx
- Firepower管理中心(FMC)版本7.1.x
- Firepower可擴充作業系統(FXOS) 2.11.1.x
- Firepower裝置管理器(FDM) 7.1.x
- Firepower威脅防禦7.1.x
- ASA 9.17.x
驗證軟體版本
FMC軟體版本
使用以下選項可驗證FMC軟體版本:
- FMC UI
- FMC CLI
- REST API請求
- FMC疑難排解檔案
- FTD或Firepower模組CLI
- FTD或Firepower模組故障排除檔案
FMC UI
完成以下步驟,驗證FMC UI上的FMC軟體版本:
- 選擇Help > About:
2. 檢查軟體版本:
FMC CLI
完成以下步驟,在FMC CLI上驗證FMC軟體版本。
- 透過SSH或控制檯連線訪問FMC。橫幅顯示軟體版本:
Cisco Firepower Extensible Operating System (FX-OS) v2.11.0 (build 154)
Cisco Secure Firewall Management Center 4600 v7.1.0 (build 90)
2. 在CLI上運行show version命令:
> show version
-----------[ FMC-4600-2.cisco.com ]------------
Model : Cisco Firepower Management Center 4600 (66) Version 7.1.0 (Build 90)
UUID : a10ed34e-d127-11e8-b440-728439d95305
Rules update version : 2022-05-02-003-vrt
LSP version : lsp-rel-20220502-1613
VDB version : 354
----------------------------------------------------
FMC REST-API
完成以下步驟,透過FMC REST-API請求驗證FMC軟體版本。使用REST-API客戶端驗證軟體版本。本示例中使用curl:
- 要求驗證權杖:
# curl -s -k -v -X POST 'https://192.0.2.1/api/fmc_platform/v1/auth/generatetoken' -H 'Authentication: Basic' -u 'admin:Cisco123' | grep -i X-auth-access-token
< X-auth-access-token: 9408fe38-c25c-4472-b7e6-3571bb4e2b8d
- 在此查詢中使用X-auth-access-token:
# curl -k -X GET 'https://192.0.2.1/api/fmc_platform/v1/info/serverversion' -H 'X-auth-access-token: 9408fe38-c25c-4472-b7e6-3571bb4e2b8d' | python -m json.tool
{
"links": {
"self": "https://192.0.2.1/api/fmc_platform/v1/info/serverversion?offset=0&limit=25"
},
"items": [
{
"serverVersion": "7.1.0 (build 90)",
"geoVersion": "2022-04-25-002",
"vdbVersion": "build 354 ( 2022-04-27 19:39:56 )",
"sruVersion": "2022-05-04-001-vrt",
"lspVersion": "lsp-rel-20220504-1121",
"type": "ServerVersion"
}
],
"paging": {
"offset": 0,
"limit": 25,
"count": 1,
"pages": 1
}
FMC疑難排解檔案
完成以下步驟,在故障排除檔案中驗證FMC軟體版本:
- 打開故障排除檔案,然後導航到資料夾<filename>.tar/results-<date>—xxxxxx/dir-archives/etc/sf/
- 打開檔案ims.conf,然後找到包含金鑰SWVERSION和SWBUILD的行:
# pwd
/var/tmp/results-05-06-2022--199172/dir-archives/etc/sf/
# cat ims.conf | grep -E "SWVERSION|SWBUILD"
SWVERSION=7.1.0
SWBUILD=90
FTD或Firepower模組CLI
完成以下步驟,以驗證FTD CLI或Firepower模組CLI上的FMC軟體版本:
- 透過SSH或主控台連線存取FTD。對於Firepower模組,請透過SSH訪問模組,或透過session sfr命令從ASA CLI訪問模組。
- 運行expert命令。
> expert admin@fpr2k-1:~$
3. 對FTD執行less /ngfw/var/sf/detection_engines/<UUID>/ngfw.rules命令,對Firepower模組執行less /var/sf/detection_engine/<UUID>/ngfw.rules命令,並檢查行DC Version:
admin@fpr2k-1:~$ less /ngfw/var/sf/detection_engines/65455e3a-c879-11ec-869a-900514578f9f/ngfw.rules
#### ngfw.rules ############################################################################## # # AC Name : FTD-ACP-1652807562 # Policy Exported : Tue May 17 17:29:43 2022 (UTC) # File Written : Tue May 17 17:31:10 2022 (UTC) # # DC Version : 7.1.0-90 OS: 90 # SRU : 2022-05-11-001-vrt # VDB : 354 # ##############################################################################
...
FTD或Firepower模組故障排除檔案
完成以下步驟,驗證FTD或Firepower模組疑難排解檔案中的FMC軟體版本:
- 開啟疑難排解檔案,並導覽至<filename>-troubleshoot .tar/results-<date>—xxxxxx/file-contents/ngfw/var/sf/detection-engines/<UUID>/ 資料夾(如果檔案是在FTD上產生的)。對於Firepower模組,導航到資料夾<filename>-troubleshoot .tar/results-<date>—xxxxxx/file-contents/var/sf/detection-engines/<UUID>/
- 打開ngfw.rules檔案並檢查行DC Version:
# pwd
/var/tmp/results-05-06-2022--163203/file-contents/ngfw/var/sf/detection_engines/5e9fa23a-5429-11ec-891e-b19e407404d5
# cat ngfw.rules
#### ngfw.rules ############################################################################## # # AC Name : FTD-ACP-1652807562 # Policy Exported : Tue May 17 17:29:43 2022 (UTC) # File Written : Tue May 17 17:31:10 2022 (UTC) # # DC Version : 7.1.0-90 OS: 90 # SRU : 2022-05-11-001-vrt # VDB : 354 # ##############################################################################
...
FDM軟體版本
FDM軟體版本可以使用下列選項進行驗證:
- FDM UI
- FTD CLI
- FTD SNMP輪詢
- FTD疑難排解檔案
- FDM REST API
- Firepower機箱管理器(FCM) UI
- FXOS CLI
- FXOS REST API
- FXOS機箱show-tech檔案
FDM UI
若要驗證FDM UI上的軟體版本,請核取首頁面上的Software:
FDM REST API
完成以下步驟,透過FDM REST-API要求驗證FDM軟體版本。使用REST-API客戶端驗證軟體版本。在此範例中,使用curl:
- 要求驗證權杖:
# curl -k -X POST --header 'Content-Type: application/json' --header 'Accept: application/json' -d '{ "grant_type": "password", "username": "admin", "password": "Admin#1324" }' 'https://192.0.2.2/api/fdm/latest/fdm/token'
{
"access_token":
"eyJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE2NTIyNDk5NTcsInN1YiI6ImFkbWluIiwianRpIjoiNDk3MmRjNjAtZDBmMi0xMWVjLTk4ZWMtNDdlZTQwODkwMDVjIiwibmJmIjoxNjUyMjQ5OTU3LCJleHAiOjE2NTIyNTE3NTcsInJlZnJlc2hUb2tlbkV4cGlyZXNBdCI6MTY1MjI1MjM1NzQ1NywidG9rZW5UeXBlIjoiSldUX0FjY2VzcyIsInVzZXJVdWlkIjoiYTU3ZGVmMjgtY2M3MC0xMWVjLTk4ZWMtZjk4ODExNjNjZWIwIiwidXNlclJvbGUiOiJST0xFX0FETUlOIiwib3JpZ2luIjoicGFzc3dvcmQiLCJ1c2VybmFtZSI6ImFkbWluIn0.lJLmHddJ2jaVRmpdXF6qg48qdBcyRuit94DLobCJ9LI",
"expires_in": 1800,
"refresh_expires_in": 2400,
"refresh_token": "eyJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE2NTIzOTQxNjksInN1YiI6ImFkbWluIiwianRpIjoiMGU0NGIxYzQtZDI0Mi0xMWVjLTk4ZWMtYTllOTlkZGMwN2Y0IiwibmJmIjoxNjUyMzk0MTY5LCJleHAiOjE2NTIzOTY1NjksImFjY2Vzc1Rva2VuRXhwaXJlc0F0IjoxNjUyMzk1OTY5MDcwLCJyZWZyZXNoQ291bnQiOi0xLCJ0b2tlblR5cGUiOiJKV1RfUmVmcmVzaCIsInVzZXJVdWlkIjoiYTU3ZGVmMjgtY2M3MC0xMWVjLTk4ZWMtZjk4ODExNjNjZWIwIiwidXNlclJvbGUiOiJST0xFX0FETUlOIiwib3JpZ2luIjoicGFzc3dvcmQiLCJ1c2VybmFtZSI6ImFkbWluIn0.Avga0-isDjQB527d3QWZQb7AS4a9ea5wlbYUn-A9aPw",
"token_type": "Bearer"
}
2. 在此查詢中使用存取權杖值:
# curl -s -k -X GET -H 'Accept: application/json' -H 'Authorization: Bearer eyJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE2NTIyNDk5NTcsInN1YiI6ImFkbWluIiwianRpIjoiNDk3MmRjNjAtZDBmMi0xMWVjLTk4ZWMtNDdlZTQwODkwMDVjIiwibmJmIjoxNjUyMjQ5OTU3LCJleHAiOjE2NTIyNTE3NTcsInJlZnJlc2hUb2tlbkV4cGlyZXNBdCI6MTY1MjI1MjM1NzQ1NywidG9rZW5UeXBlIjoiSldUX0FjY2VzcyIsInVzZXJVdWlkIjoiYTU3ZGVmMjgtY2M3MC0xMWVjLTk4ZWMtZjk4ODExNjNjZWIwIiwidXNlclJvbGUiOiJST0xFX0FETUlOIiwib3JpZ2luIjoicGFzc3dvcmQiLCJ1c2VybmFtZSI6ImFkbWluIn0.lJLmHddJ2jaVRmpdXF6qg48qdBcyRuit94DLobCJ9LI' 'https://192.0.2.2/api/fdm/v6/operational/systeminfo/default' | grep -i software
"softwareVersion" : "7.1.0-90",
"softwareVersion" : "7.1.0-90",
FTD CLI
完成一節中的步驟。
FTD SNMP
完成一節中的步驟。
FTD疑難排解檔案
完成一節中的步驟。
FCM UI
FCM在Firepower 4100和Firepower 9300系列上可用。完成一節中的步驟。
FXOS CLI
完成一節中的步驟。
FXOS REST-API
完成一節中的步驟。
FXOS機箱show-tech檔案
完成一節中的步驟。
FXOS軟體版本
使用以下選項可驗證FXOS軟體版本:
- FCM UI (僅限Firepower 4100/9300)
- FXOS CLI
- FXOS REST API
- FXOS SNMP輪詢
- FXOS機箱show-tech檔案。
FCM UI
要驗證FCM UI上的FXOS軟體版本,請在首頁上選中Version:
FXOS CLI
Firepower 4100/9300
在FXOS CLI上完成以下步驟以驗證FXOS軟體版本:
- 與機箱建立控制檯或SSH連線。
- 切換到scope system並運行show firmware monitor 命令:
firepower # scope system
firepower /system # show firmware monitor
FPRM:
Package-Vers: 2.11(1.154)
Upgrade-Status: Ready
Fabric Interconnect A:
Package-Vers: 2.11(1.154)
Upgrade-Status: Ready
Chassis 1:
Server 1:
Package-Vers: 2.11(1.154)
Upgrade-Status: Ready
Server 2:
Package-Vers: 2.11(1.154)
Upgrade-Status: Ready
Server 3:
Package-Vers: 2.11(1.154)
Upgrade-Status: Ready
具備FTD的Firepower 1000/2100/3100
在FXOS CLI上完成以下步驟以驗證FXOS軟體版本:
- 建立與機箱的控制檯連線或與FTD的SSH連線。
在透過SSH連線到FTD的情況下,對FTD CLISH運行connect fxos命令:
> connect fxos
2. 切換到scope system,並運行show firmware detail 命令:
firepower # scope system
firepower /system # show firmware detail
Version: 7.1.0-90
Startup-Vers: 7.1.0-90
MANAGER:
Boot Loader:
Firmware-Vers: 1012.0200.0213
Rommon-Vers: 1.0.12
Fpga-Vers: 2.0.00
Fpga-Golden-Vers:
Power-Sequencer-Vers: 2.13
Firmware-Status: OK
SSD-Fw-Vers: 0147
System:
Running-Vers: 2.11(1.154)
Platform-Vers: 2.11.1.154
Package-Vers: 7.1.0-90
Startup-Vers: 2.11(1.154)
NPU:
Running-Vers: 2.11(1.154)
Platform-Vers: 2.11.1.154
Package-Vers: 7.1.0-90
Startup-Vers: 2.11(1.154)
Service Manager:
Running-Vers: 2.11(1.154)
Platform-Vers: 2.11.1.154
Package-Vers: 7.1.0-90
Startup-Vers: 2.11(1.154)
Firepower 1000/3100(帶ASA)和Firepower 2100(帶ASA)在裝置模式下
在FXOS CLI上完成以下步驟以驗證FXOS軟體版本:
- 建立與機箱的控制檯連線或與ASA的telnet/SSH連線。
如果使用telnet/SSH連線到ASA,請在ASA CLI上運行connect fxos命令。
asa# connect fxos
- 切換到scope system並運行show firmware detail命令:
firepower # scope system
firepower /system # show firmware detail
Version: 9.17.1
Startup-Vers: 9.17.1
MANAGER:
Boot Loader:
Firmware-Vers: 1012.0200.0213
Rommon-Vers: 1.0.12
Fpga-Vers: 2.0.00
Fpga-Golden-Vers:
Power-Sequencer-Vers: 2.13
Firmware-Status: OK
SSD-Fw-Vers: 0147
System:
Running-Vers: 2.11(1.154)
Platform-Vers: 2.11.1.154
Package-Vers: 9.17.1
Startup-Vers: 2.11(1.154)
NPU:
Running-Vers: 2.11(1.154)
Platform-Vers: 2.11.1.154
Package-Vers: 9.17.1
Startup-Vers: 2.11(1.154)
Service Manager:
Running-Vers: 2.11(1.154)
Platform-Vers: 2.11.1.154
Package-Vers: 9.17.1
Startup-Vers: 2.11(1.154)
在平台模式下具有ASA的Firepower 2100
在FXOS CLI上完成以下步驟以驗證FXOS軟體版本:
- 建立與機箱的SSH或控制檯連線,或與ASA的telnet/SSH連線。
如果使用telnet/SSH連線到ASA,請在ASA CLI上運行connect fxos命令。
asa# connect fxos
- 切換到scope system,並運行show firmware detail 命令:
firepower # scope system
firepower /system # show firmware detail
Version: 9.17.1
Startup-Vers: 9.17.1
MANAGER:
Boot Loader:
Firmware-Vers: 1012.0200.0213
Rommon-Vers: 1.0.12
Fpga-Vers: 2.0.00
Fpga-Golden-Vers:
Power-Sequencer-Vers: 2.13
Firmware-Status: OK
SSD-Fw-Vers: 0147
System:
Running-Vers: 2.11(1.154)
Platform-Vers: 2.11.1.154
Package-Vers: 9.17.1
Startup-Vers: 2.11(1.154)
NPU:
Running-Vers: 2.11(1.154)
Platform-Vers: 2.11.1.154
Package-Vers: 9.17.1
Startup-Vers: 2.11(1.154)
Service Manager:
Running-Vers: 2.11(1.154)
Platform-Vers: 2.11.1.154
Package-Vers: 9.17.1
Startup-Vers: 2.11(1.154)
FXOS REST-API
Firepower 4100/9300系列支援FXOS REST-API。
Firepower 4100/9300
完成以下步驟,透過FXOS REST-API請求驗證FXOS軟體版本。使用REST-API客戶端驗證軟體版本。在此範例中,使用curl:
- 要求驗證權杖:
# curl -k -X POST -H 'USERNAME: admin' -H 'PASSWORD: Cisco123' 'https://192.0.2.100/api/login'
{
"refreshPeriod": "0",
"token": "1206f6a3032e7bdbeac07cfdd9d5add5cdd948e4e5f4511535a959aed7e1e2f5"
}
2. 在此查詢中使用語彙基元:
# curl -s -k -X GET -H 'Accept: application/json' -H 'token: 1206f6a3032e7bdbeac07cfdd9d5add5cdd948e4e5f4511535a959aed7e1e2f5' 'https://192.0.2.100/api/sys/firmware/install-platform-fw' | grep -i platformBundle
"platformBundleName": "fxos-k9.2.11.1.154.SPA",
"platformBundleVersion": "2.11(1.154)",
FXOS SNMP
FXOS上的SNMP配置在帶有ASA的Firepower 2100(平台模式)和Firepower 4100/9300上受支援。
Firepower 4100/9300
完成以下步驟,透過SNMP驗證FXOS軟體版本:
- 確保在FXOS上配置了SNMP。有關配置步驟,請參閱在Firepower NGFW裝置上配置SNMP。
- Poll .1.3.6.1.4.1.9.9.826.1.30.47.1.6或CISCO-FIREPOWER-FIRMWARE-MIB:: cfprFirmwareRunningPackageVersion:
# snmpwalk -On -v2c -c cisco 192.0.2.100 .1.3.6.1.4.1.9.9.826.1.30.47.1.6
.1.3.6.1.4.1.9.9.826.1.30.47.1.6.20823 = STRING: "2.11(1.154)"
.1.3.6.1.4.1.9.9.826.1.30.47.1.6.25326 = ""
.1.3.6.1.4.1.9.9.826.1.30.47.1.6.25331 = STRING: "2.11(1.154)"
.1.3.6.1.4.1.9.9.826.1.30.47.1.6.30266 = STRING: "1.0.18"
.1.3.6.1.4.1.9.9.826.1.30.47.1.6.30269 = STRING: "1.0.18"
.1.3.6.1.4.1.9.9.826.1.30.47.1.6.30779 = ""
.1.3.6.1.4.1.9.9.826.1.30.47.1.6.30780 = STRING: "2.11(1.154)"
.1.3.6.1.4.1.9.9.826.1.30.47.1.6.30781 = STRING: "2.11(1.154)"
.1.3.6.1.4.1.9.9.826.1.30.47.1.6.32615 = STRING: "2.11(1.154)"
.1.3.6.1.4.1.9.9.826.1.30.47.1.6.48820 = STRING: "0.0"
在平台模式下具有ASA的Firepower 2100
完成以下步驟,透過SNMP驗證FXOS軟體版本:
- 確保在FXOS上配置了SNMP。有關配置步驟,請參閱在Firepower NGFW裝置上配置SNMP。
- Poll .1.3.6.1.2.1.1.1.0或SNMPv2-MIB::sysDescr.0:
# snmpwalk -On -v2c -c cisco 192.0.2.101 SNMPv2-MIB::sysDescr.0
.1.3.6.1.2.1.1.1.0 = STRING: Cisco FirePOWER FPR-2140 Security Appliance, System Version 2.11(1.146)
# snmpwalk -On -v2c -c cisco 192.0.2.101 .1.3.6.1.2.1.1.1.0
.1.3.6.1.2.1.1.1.0 = STRING: Cisco FirePOWER FPR-2140 Security Appliance, System Version 2.11(1.146)
FXOS機箱show-tech檔案
Firepower 4100/9300
完成以下步驟,驗證FXOS機箱show-tech檔案中的FXOS軟體版本:
- 對於FXOS版本2.7及更高版本,請在<name>_BC1_all.tar/ FPRM_A_TechSupport.tar.gz/FPRM_A_TechSupport.tar中打開檔案sam_techsupportinfo
對於早期版本,請在FPRM_A_TechSupport.tar.gz/ FPRM_A_TechSupport.tar中打開檔案sam_techsupportinfo。
- 檢視show firmware monitor 命令的輸出:
# pwd
/var/tmp/20220313201802_F241-01-11-FPR-2_BC1_all/FPRM_A_TechSupport/
# cat sam_techsupportinfo
...
`show firmware monitor`
FPRM:
Package-Vers: 2.11(1.154)
Upgrade-Status: Ready
Fabric Interconnect A:
Package-Vers: 2.11(1.154)
Upgrade-Status: Ready
Chassis 1:
Server 1:
Package-Vers: 2.11(1.154)
Upgrade-Status: Ready
Server 2:
Package-Vers: 2.11(1.154)
Upgrade-Status: Ready
Server 3:
Package-Vers: 2.11(1.154)
Upgrade-Status: Ready
...
Firepower 1000/2100/3100
- 打開<name>_FPRM.tar.gz/<name>_FPRM.tar中的tech_support_brief檔案
- 檢視show firmware detail命令的輸出:
# pwd
/var/tmp/fp2k-1_FPRM/
# cat tech_support_brief
...
`show firmware detail` Version: 7.1.0-90 Startup-Vers: 7.1.0-90 MANAGER: Boot Loader: Firmware-Vers: 1012.0200.0213 Rommon-Vers: 1.0.12 Fpga-Vers: 2.0.00 Fpga-Golden-Vers: Power-Sequencer-Vers: 2.13 Firmware-Status: OK SSD-Fw-Vers: 0147 System: Running-Vers: 2.11(1.154) Platform-Vers: 2.11.1.154 Package-Vers: 7.1.0-90 Startup-Vers: 2.11(1.154) NPU: Running-Vers: 2.11(1.154) Platform-Vers: 2.11.1.154 Package-Vers: 7.1.0-90 Startup-Vers: 2.11(1.154) Service Manager: Running-Vers: 2.11(1.154) Platform-Vers: 2.11.1.154 Package-Vers: 7.1.0-90 Startup-Vers: 2.11(1.154)
...
FTD軟體版本
使用以下選項可驗證FTD軟體版本:
- FTD CLI
- FTD SNMP輪詢
- FTD疑難排解檔案
- FMC UI
- FMC REST API
- FDM UI
- FDM REST API
- FCM UI
- FXOS CLI
- FXOS REST API
- FXOS機箱show-tech檔案
FTD CLI
完成以下步驟,以驗證FTD CLI上的FTD軟體版本:
- 根據平台和部署模式,使用以下選項存取FTD CLI:
- 使用SSH直接訪問FTD -所有平台
- 透過connect ftd命令從FXOS控制檯CLI(Firepower 1000/2100/3100)訪問
- 從FXOS CLI透過命令(Firepower 4100/9300)訪問:
connect module <x> [console|telnet],其中x是插槽ID,然後
連線ftd [執行處理],其中執行處理僅與多執行處理部署相關。
- 對於虛擬FTD、直接透過SSH訪問FTD或從Hypervisor或雲UI進行控制檯訪問
2. 在CLI上運行show version命令:
> show version -------------------[ firepower ]-------------------- Model : Cisco Firepower 2120 Threat Defense (77) Version 7.1.0 (Build 90) UUID : 1b324aaa-670e-11ec-ac2b-e000f0bd3ca1 LSP version : lsp-rel-20220328-1342 VDB version : 353 ----------------------------------------------------
FTD SNMP
完成以下步驟,透過SNMP驗證FTD軟體版本:
- 確保已配置並啟用SNMP。對於FDM管理的FTD,請參閱在Firepower FDM上配置SNMP並對其進行故障排除以瞭解配置步驟。有關FMC管理的FTD的資訊,請參閱在Firepower NGFW裝置上配置SNMP,瞭解配置步驟。
- Poll OID SNMPv2-MIB::sysDescr.0或OID .1.3.6.1.2.1.1.1.0.:
# snmpwalk -v2c -c cisco123 192.0.2.2 SNMPv2-MIB::sysDescr.0
SNMPv2-MIB::sysDescr.0 = STRING: Cisco Firepower Threat Defense, Version 7.1.0 (Build 90), ASA Version 9.17(1)
# snmpwalk -v2c -c cisco123 192.0.2.2 SNMPv2-MIB::sysDescr.0 .1.3.6.1.2.1.1.1.0
SNMPv2-MIB::sysDescr.0 = STRING: Cisco Firepower Threat Defense, Version 7.1.0 (Build 90), ASA Version 9.17(1)
FMC UI
完成以下步驟,以驗證FMC UI上的FTD軟體版本:
- 選擇Devices > Device Management:
2. 檢查「版本」欄:
FMC REST API
完成以下步驟,透過FMC REST-API驗證FTD軟體版本。使用REST-API客戶端驗證軟體版本。本示例中使用curl:
- 要求驗證權杖:
# curl -s -k -v -X POST 'https://192.0.2.1/api/fmc_platform/v1/auth/generatetoken' -H 'Authentication: Basic' -u 'admin:Cisco123' | grep -i X-auth-access-token
< X-auth-access-token: 5d817ef7-f12f-4dae-b0c0-cd742d3bd2eb
2. 辨識包含裝置的域。在大多數REST API查詢中,domain引數是必需的。在此查詢中使用X-auth-access-token檢索域清單:
# curl -s -k -X 'GET' 'https://192.0.2.1/api/fmc_platform/v1/info/domain' -H 'accept: application/json' -H 'X-auth-access-token: 5d817ef7-f12f-4dae-b0c0-cd742d3bd2eb' | python -m json.tool
{
"items": [
{
"name": "Global",
"type": "Domain",
"uuid": "e276abec-e0f2-11e3-8169-6d9ed49b625f"
},
{
"name": "Global/domain1",
"type": "Domain",
"uuid": "ef0cf3e9-bb07-8f66-5c4e-000000000001"
},
{
"name": "Global/domain2",
"type": "Domain",
"uuid": "341a8f03-f831-c364-b751-000000000001"
}
],
"links": {
"self": "https://192.0.2.1/api/fmc_platform/v1/info/domain?offset=0&limit=25"
},
"paging": {
"count": 3,
"limit": 25,
"offset": 0,
"pages": 1
}
}
3. 使用域UUID查詢裝置記錄:
# curl -s -k -X 'GET' 'https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords' -H 'accept: application/json' -H 'X-auth-access-token: 5d817ef7-f12f-4dae-b0c0-cd742d3bd2eb' | python -m json.tool
{
"items": [
{
"id": "a4752f3c-86cc-11e9-8c9a-a3c958bed664",
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/a4752f3c-86cc-11e9-8c9a-a3c958bed664"
},
"name": "fw1.lab.local",
"type": "Device"
},
{
"id": "05e9799c-94fc-11ea-ad33-a0032ddb0251",
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/05e9799c-94fc-11ea-ad33-a0032ddb0251"
},
"name": "fw2.lab.local",
"type": "Device"
},
{
"id": "c8bef462-49f7-11e8-b2fb-ad9838c6ed90",
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/c8bef462-49f7-11e8-b2fb-ad9838c6ed90"
},
"name": "fw3.lab.local",
"type": "Device"
},
{
"id": "3c41913a-b27b-11eb-b131-d2e2ce2a368d",
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/3c41913a-b27b-11eb-b131-d2e2ce2a368d"
},
"name": "fw4.lab.local",
"type": "Device"
},
{
"id": "48f7f37c-8cf0-11e9-bf41-fb2d7b740db7",
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/48f7f37c-8cf0-11e9-bf41-fb2d7b740db7"
},
"name": "fw5.lab.local",
"type": "Device"
},
{
"id": "0b1a9c94-8ba8-11ec-b2fd-93263934908d",
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/0b1a9c94-8ba8-11ec-b2fd-93263934908d"
},
"name": "fpr2k-1",
"type": "Device"
},
4. 使用域UUID和裝置/容器UUID:
# curl -s -k -X GET 'https://192.0.2.1/api/fmc_config/v1/domain/e276abec-e0f2-11e3-8169-6d9ed49b625f/devices/devicerecords/0b1a9c94-8ba8-11ec-b2fd-93263934908d/operational/commands?offset=0&limit=25&command=show%20version' -H 'X-auth-access-token: f3233164-6ab8-4e33-90cc-2612c19571be' | python -m json.tool
{
"items": [
{
"commandInput": "show version",
"commandOutput": "--------------------[ fpr2k-1 ]---------------------\nModel : Cisco Firepower 2110 Threat Defense (77) Version 7.1.0 (Build 90)\nUUID : 0b1a9c94-8ba8-11ec-b2fd-93263934908d\nLSP version : lsp-rel-20220502-1613\nVDB version : 353\n----------------------------------------------------\n\nCisco Adaptive Security Appliance Software Version 9.17(1) \nSSP Operating System Version 2.11(1.154)\n\nCompiled on Tue 30-Nov-21 19:37 GMT by builders\nSystem image file is \"disk0:/mnt/boot/installables/switch/fxos-k8-fp2k-npu.2.11.1.154.SPA\"\nConfig file at boot was \"startup-config\"\n\nfpr2k-1 up 10 days 4 hours\nfailover cluster up 57 days 17 hours\nStart-up time 37 secs\n\nHardware: FPR-2110, 6588 MB RAM, CPU MIPS 1200 MHz, 1 CPU (6 cores)\n\n\n 1: Int: Internal-Data0/1 : address is 000f.b748.4801, irq 0\n 3: Ext: Management1/1 : address is 707d.b9e2.836d, irq 0\n 4: Int: Internal-Data1/1 : address is 0000.0100.0001, irq 0\n 5: Int: Internal-Data1/2 : address is 0000.0300.0001, irq 0\n 6: Int: Internal-Control1/1 : address is 0000.0001.0001, irq 0\n\nSerial Number: JAD213508B6\nConfiguration last modified by enable_1 at 04:12:18.743 UTC Wed May 4 2022\n",
"type": "command"
}
],
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/e276abec-e0f2-11e3-8169-6d9ed49b625f/devices/devicerecords/0b1a9c94-8ba8-11ec-b2fd-93263934908d/operational/commands?offset=0&limit=25&command=show version"
},
"paging": {
"count": 1,
"limit": 25,
"offset": 0,
"pages": 1
}
FDM UI
完成一節中的步驟。
FDM REST-API
完成一節中的步驟。
FTD疑難排解檔案
完成以下步驟,以驗證FTD疑難排解檔案中的FTD軟體版本:
- 打開故障排除檔案,然後導航到資料夾<filename>-troubleshoot .tar/results-<date>—xxxxxx/command-outputs/
- 打開檔案usr-local-sf-bin-sfcli.pl show version.output,然後找到Model:
# pwd
/var/tmp/results-05-06-2022--199172/dir-archives/etc/sf/
# cat "usr-local-sf-bin-sfcli.pl show version.output"
--------------------[ fpr2k-1 ]--------------------- Model : Cisco Firepower 2110 Threat Defense (77) Version 7.1.0 (Build 90) UUID : 0b1a9c94-8ba8-11ec-b2fd-93263934908d LSP version : lsp-rel-20220510-1044 VDB version : 354 ----------------------------------------------------
FCM UI
對於Firepower 4100/9300上的FTD,請使用FCM並在Logical Devices頁籤中檢查Version:
FXOS CLI
Firepower 4100/9300上的FTD
完成以下步驟,在FXOS CLI上驗證FTD軟體版本:
- 與機箱建立控制檯或SSH連線。
- 切換到scope ssa,並運行show app-instance 命令:
firepower# scope ssa firepower /ssa # show app-instance App Name Identifier Slot ID Admin State Oper State Running Version Startup Version Deploy Type Turbo Mode Profile Name Cluster State Cluster Role ---------- ---------- ---------- ----------- ---------------- --------------- --------------- ----------- ---------- ------------ --------------- ------------ asa ASA 1 Enabled Online 9.16.2.7 9.16.2.7 Native No Not Applicable None ftd FTD-MI-1 3 Enabled Online 7.1.0.90 7.1.0.90 Container No RP110 Not Applicable None
Firepower 1000/2100/3100上的FTD
完成以下步驟,在FXOS CLI上驗證FTD軟體版本:
- 建立與機箱的控制檯連線或與FTD的SSH連線
在透過SSH連線到FTD的情況下,對FTD CLISH運行connect fxos命令:
> connect fxos
2. 切換到scope ssa,然後運行show app-instance命令:
firepower# scope ssa firepower /ssa # show app-instance Application Name Slot ID Admin State Operational State Running Version Startup Version Deploy Type Profile Name Cluster Oper State Cluster Role -------------------- ---------- --------------- -------------------- --------------- --------------- ----------- ------------ -------------------- ------------ ftd 1 Enabled Online 7.1.0.90 7.1.0.90 Native Not Applicable None
FXOS REST-API
完成以下步驟,透過FXOS REST-API驗證FTD軟體版本:
1. 請求身份驗證令牌:
# curl -s -k -X POST -H 'USERNAME: admin' -H 'PASSWORD: cisco' 'https://192.0.2.100/api/login'
{
"refreshPeriod": "0",
"token": "28821660bc74e418f3fadc443619df0387d69e7b150e035f688bed9d347b4838"
}
2. 使用此查詢中的語彙基元,並確保指定安裝FTD的插槽ID:
# curl -s -k -X GET -H 'Accept: application/json' -H 'token: 28821660bc74e418f3fadc443619df0387d69e7b150e035f688bed9d347b4838' 'https://192.0.2.100/api/slot/3/app-inst' | grep -Ei "identifier|version"
"identifier": "FTD-MI-1",
"runningVersion": "7.1.0.90",
"hwCryptoVersion": "2",
"startupVersion": "7.0.1.84",
"versionIncompatibleErrorMgr": ""
FXOS機箱show-tech檔案
完成以下步驟,驗證FXOS機箱show-tech檔案中的FTD軟體版本:
Firepower 4100/9300上的FTD
1. 對於FXOS 2.7及更高版本,請在<name>_BC1_all.tar/ FPRM_A_TechSupport.tar.gz/FPRM_A_TechSupport.tar中打開檔案sam_techsupportinfo
對於早期版本,請在FPRM_A_TechSupport.tar.gz/ FPRM_A_TechSupport.tar中打開檔案sam_techsupportinfo。
2. 檢查「show slot expand detail」下每個插槽的相應部分:
# pwd
/var/tmp/20220313201802_F241-01-11-FPR-2_BC1_all/FPRM_A_TechSupport/
# cat sam_techsupportinfo
...
`show slot expand detail`
Slot: Slot ID: 3 Log Level: Info Admin State: Ok Oper State: Online Disk Format State: Ok Disk Format Status: 100% Clear Log Data: Available Error Msg: Application Instance: App Name: ftd Identifier: FTD-MI-1 Admin State: Enabled Oper State: Online Running Version: 7.1.0.90 Startup Version: 7.1.0.90 Deploy Type: Container
...
Firepower 1000/2100/3100上的FTD
- 打開<name>_FPRM.tar.gz/<name>_FPRM.tar中的tech_support_brief檔案
- 檢查scope ssa和show slot部分:
# pwd
/var/tmp/fp2k-1_FPRM/
# cat tech_support_brief
...
`scope ssa` `show slot` Slot: Slot ID Log Level Admin State Operational State ---------- --------- ------------ ----------------- 1 Info Ok Online `show app` Application: Name Version Description Author Deploy Type CSP Type Is Default App ---------- ---------- ----------- ---------- ----------- ----------- -------------- ftd 7.1.0.90 N/A cisco Native Application Yes `show app-instance detail` Application Name: ftd Slot ID: 1 Admin State: Enabled Operational State: Online Running Version: 7.1.0.90 Startup Version: 7.1.0.90
...
ASA軟體版本
可以使用以下選項驗證ASA軟體版本:
- ASA CLI
- ASA SNMP輪詢
- ASA show-tech檔案
- FCM UI
- FXOS CLI
- FXOS REST API
- FXOS機箱show-tech檔案
ASA CLI
完成以下步驟以驗證ASA CLI上的ASA軟體版本:
1. 根據平台和部署模式,使用以下選項訪問ASA CLI:
- 在裝置模式下對Firepower 1000/3100和Firepower 2100上的ASA進行直接telnet/SSH訪問
- 在平台模式下從Firepower 2100上的FXOS控制檯CLI進行訪問,然後透過connect asa命令連線到ASA
- 透過Firepower 4100/9300命令從FXOS CLI訪問:
connect module <x> [console|telnet],其中x是插槽ID,然後連線asa
- 對於虛擬ASA,直接透過SSH訪問ASA,或從Hypervisor或雲UI進行控制檯訪問
2. 運行show version命令:
ciscoasa# show version Cisco Adaptive Security Appliance Software Version 9.17(1) SSP Operating System Version 2.11(1.154) Device Manager Version 7.17(1) Compiled on Tue 30-Nov-21 19:37 GMT by builders System image file is "disk0:/mnt/boot/installables/switch/fxos-k8-fp2k-npu.2.11.1.154.SPA" Config file at boot was "startup-config" ciscoasa up 4 hours 40 mins Start-up time 1 sec
ASA SNMP
完成以下步驟以透過SNMP驗證ASA軟體版本:
- 確保已配置並啟用SNMP。
- 使用SNMP客戶端輪詢OID SNMPv2-MIB::sysDescr.0或OID .1.3.6.1.2.1.1.1.0:
# snmpwalk -v2c -c cisco123 192.0.2.2 SNMPv2-MIB::sysDescr.0 SNMPv2-MIB::sysDescr.0 = STRING: Cisco Adaptive Security Appliance Version 9.17(1) # snmpwalk -v2c -c cisco123 192.0.2.2 SNMPv2-MIB::sysDescr.0 .1.3.6.1.2.1.1.1.0 SNMPv2-MIB::sysDescr.0 = Cisco Adaptive Security Appliance Version 9.17(1)
ASA show-tech檔案
使用Cisco自適應安全裝置軟體版本字串搜尋以下行:
Cisco Adaptive Security Appliance Software Version 9.17(1) SSP Operating System Version 2.11(1.154) Device Manager Version 7.17(1)
...
FCM UI
完成一節中的步驟。
FXOS CLI
完成一節中的步驟。
FXOS REST-API
完成一節中的步驟。
FXOS機箱show-tech檔案
完成一節中的步驟。
Firepower模組軟體版本
ASA上的Firepower模組是舊版Sourcefire模組或SFR的新名稱。
其軟體版本可使用以下選項進行驗證:
- FMC UI
- FMC REST-API
- Firepower模組CLI
- Firepower模組故障排除檔案
- ASA CLI
- ASA show-tech檔案
FMC UI
完成一節中的步驟。
FMC REST-API
完成一節中的步驟。
Firepower模組CLI
完成以下步驟,在模組CLI上驗證Firepower模組軟體版本:
1. 透過SSH或透過session sfr命令從ASA CLI連線到模組。
2. 運行show version命令:
> show version ----------------[ sfr1 ]----------------- Model : ASA5516 (72) Version 7.1.0 (Build 90) UUID : c049dad8-c42e-11e9-986d-bdeff3ce399e Rules update version : 2022-05-10-001-vrt VDB version : 354 ----------------------------------------------------
Firepower模組故障排除檔案
完成以下步驟,驗證模組故障排除檔案中的Firepower模組軟體版本:
- 打開故障排除檔案,然後導航到資料夾<filename>-troubleshoot .tar/results-<date>—xxxxxx/command-outputs/
- 打開檔案usr-local-sf-bin-sfcli.pl show version.output,然後找到Model:
# pwd
/var/tmp/results-05-12-2022--199172/command-outputs
# cat "usr-local-sf-bin-sfcli.pl show version.output"
----------------[ sfr1 ]----------------- Model : ASA5516 (72) Version 7.1.0 (Build 90) UUID : c049dad8-c42e-11e9-986d-bdeff3ce399e LSP version : 2022-05-10-001-vrt VDB version : 354 ----------------------------------------------------
ASA CLI
在ASA CLI上運行show module sfr details 命令並檢查軟體版本:
asa# show module sfr details Getting details from the Service Module, please wait... Card Type: FirePOWER Services Software Module Model: ASA5516 Hardware version: N/A Serial Number: JAD222103XA Firmware version: N/A Software version: 7.1.0-90 MAC Address Range: 7872.5dce.b3b2 to 7872.5dce.b3b2 App. name: ASA FirePOWER App. Status: Up App. Status Desc: Normal Operation App. version: 7.1.0-90 Data Plane Status: Up Console session: Ready Status: Up DC addr: No DC Configured Mgmt IP addr: 192.168.45.45 Mgmt Network mask: 255.255.255.0 Mgmt Gateway: 0.0.0.0 Mgmt web ports: 443 Mgmt TLS enabled: true
ASA show-tech檔案
使用show module sfr detail string搜尋行:
------------------ show module sfr detail ------------------ Getting details from the Service Module, please wait... Card Type: FirePOWER Services Software Module Model: ASA5516 Hardware version: N/A Serial Number: JAD222103XA Firmware version: N/A Software version: 7.1.0-90 MAC Address Range: 7872.5dce.b3b2 to 7872.5dce.b3b2 App. name: ASA FirePOWER App. Status: Up App. Status Desc: Normal Operation App. version: 7.1.0-90 Data Plane Status: Up Console session: Ready Status: Up DC addr: No DC Configured Mgmt IP addr: 192.168.45.45 Mgmt Network mask: 255.255.255.0 Mgmt Gateway: 0.0.0.0 Mgmt web ports: 443 Mgmt TLS enabled: true
驗證Snort、VDB和SRU版本
深度封包偵測引擎(Snort)版本
使用以下選項可驗證Snort版本:
- FMC UI
- FMC REST-API
- FDM UI
- FDM REST API
- FTD或Firepower模組CLI
- FTD或Firepower模組故障排除檔案
FMC UI
完成以下步驟以驗證FMC UI上的FTD Snort版本:
- 選擇Devices > Device Management:
2. 檢查Snort標籤:
FMC REST-API
完成以下步驟,透過FMC REST-API驗證FTD Snort版本。使用REST-API客戶端驗證軟體版本。在此範例中,使用curl:
- 要求驗證權杖:
# curl -s -k -v -X POST 'https://192.0.2.1/api/fmc_platform/v1/auth/generatetoken' -H 'Authentication: Basic' -u 'admin:Cisco123' | grep -i X-auth-access-token
< X-auth-access-token: 5d817ef7-f12f-4dae-b0c0-cd742d3bd2eb
2. 辨識包含裝置的域。在大多數REST API查詢中,domain引數是必需的。在此查詢中使用X-auth-access-token檢索域清單:
# curl -s -k -X 'GET' 'https://192.0.2.1/api/fmc_platform/v1/info/domain' -H 'accept: application/json' -H 'X-auth-access-token: 5d817ef7-f12f-4dae-b0c0-cd742d3bd2eb' | python -m json.tool
{
"items": [
{
"name": "Global",
"type": "Domain",
"uuid": "e276abec-e0f2-11e3-8169-6d9ed49b625f"
},
{
"name": "Global/domain1",
"type": "Domain",
"uuid": "ef0cf3e9-bb07-8f66-5c4e-000000000001"
},
{
"name": "Global/domain2",
"type": "Domain",
"uuid": "341a8f03-f831-c364-b751-000000000001"
}
],
"links": {
"self": "https://192.0.2.1/api/fmc_platform/v1/info/domain?offset=0&limit=25"
},
"paging": {
"count": 3,
"limit": 25,
"offset": 0,
"pages": 1
}
}
3. 使用域UUID查詢裝置記錄:
# curl -s -k -X 'GET' 'https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords' -H 'accept: application/json' -H 'X-auth-access-token: 5d817ef7-f12f-4dae-b0c0-cd742d3bd2eb' | python -m json.tool
{
"items": [
{
"id": "a4752f3c-86cc-11e9-8c9a-a3c958bed664",
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/a4752f3c-86cc-11e9-8c9a-a3c958bed664"
},
"name": "fw1.lab.local",
"type": "Device"
},
{
"id": "05e9799c-94fc-11ea-ad33-a0032ddb0251",
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/05e9799c-94fc-11ea-ad33-a0032ddb0251"
},
"name": "fw2.lab.local",
"type": "Device"
},
{
"id": "c8bef462-49f7-11e8-b2fb-ad9838c6ed90",
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/c8bef462-49f7-11e8-b2fb-ad9838c6ed90"
},
"name": "fw3.lab.local",
"type": "Device"
},
{
"id": "3c41913a-b27b-11eb-b131-d2e2ce2a368d",
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/3c41913a-b27b-11eb-b131-d2e2ce2a368d"
},
"name": "fw4.lab.local",
"type": "Device"
},
{
"id": "48f7f37c-8cf0-11e9-bf41-fb2d7b740db7",
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/48f7f37c-8cf0-11e9-bf41-fb2d7b740db7"
},
"name": "fw5.lab.local",
"type": "Device"
},
{
"id": "0b1a9c94-8ba8-11ec-b2fd-93263934908d",
"links": {
"self": "https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/0b1a9c94-8ba8-11ec-b2fd-93263934908d"
},
"name": "fpr2k-1",
"type": "Device"
},
4. 在此請求中使用域UUID和裝置/容器UUID:
# curl -s -k -X GET 'https://192.0.2.1/api/fmc_config/v1/domain/ef0cf3e9-bb07-8f66-5c4e-000000000001/devices/devicerecords/0b1a9c94-8ba8-11ec-b2fd-93263934908d' -H 'X-auth-access-token: 5d817ef7-f12f-4dae-b0c0-cd742d3bd2eb ' | python -m json.tool | grep -i snort
"snortVersion": "3.1.7.1-108",
"snortEngine": "SNORT3",
FDM UI
完成以下步驟,驗證FDM UI上的FTD Snort版本:
- 轉到更新頁:
2. 檢查Snort檢測引擎:
FDM REST API
完成以下步驟,透過FDM REST-API要求驗證Snort版本。使用REST-API客戶端驗證軟體版本。在此範例中,使用curl:
- 要求驗證權杖:
# curl -k -X POST --header 'Content-Type: application/json' --header 'Accept: application/json' -d '{ "grant_type": "password", "username": "admin", "password": "Admin#1324" }' 'https://192.0.2.2/api/fdm/latest/fdm/token'
{
"access_token":
"eyJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE2NTIyNDk5NTcsInN1YiI6ImFkbWluIiwianRpIjoiNDk3MmRjNjAtZDBmMi0xMWVjLTk4ZWMtNDdlZTQwODkwMDVjIiwibmJmIjoxNjUyMjQ5OTU3LCJleHAiOjE2NTIyNTE3NTcsInJlZnJlc2hUb2tlbkV4cGlyZXNBdCI6MTY1MjI1MjM1NzQ1NywidG9rZW5UeXBlIjoiSldUX0FjY2VzcyIsInVzZXJVdWlkIjoiYTU3ZGVmMjgtY2M3MC0xMWVjLTk4ZWMtZjk4ODExNjNjZWIwIiwidXNlclJvbGUiOiJST0xFX0FETUlOIiwib3JpZ2luIjoicGFzc3dvcmQiLCJ1c2VybmFtZSI6ImFkbWluIn0.lJLmHddJ2jaVRmpdXF6qg48qdBcyRuit94DLobCJ9LI",
"expires_in": 1800,
"refresh_expires_in": 2400,
"refresh_token": "eyJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE2NTIzOTQxNjksInN1YiI6ImFkbWluIiwianRpIjoiMGU0NGIxYzQtZDI0Mi0xMWVjLTk4ZWMtYTllOTlkZGMwN2Y0IiwibmJmIjoxNjUyMzk0MTY5LCJleHAiOjE2NTIzOTY1NjksImFjY2Vzc1Rva2VuRXhwaXJlc0F0IjoxNjUyMzk1OTY5MDcwLCJyZWZyZXNoQ291bnQiOi0xLCJ0b2tlblR5cGUiOiJKV1RfUmVmcmVzaCIsInVzZXJVdWlkIjoiYTU3ZGVmMjgtY2M3MC0xMWVjLTk4ZWMtZjk4ODExNjNjZWIwIiwidXNlclJvbGUiOiJST0xFX0FETUlOIiwib3JpZ2luIjoicGFzc3dvcmQiLCJ1c2VybmFtZSI6ImFkbWluIn0.Avga0-isDjQB527d3QWZQb7AS4a9ea5wlbYUn-A9aPw",
"token_type": "Bearer"
}
2.在此查詢中使用access_token值:
# curl -s -k -X GET -H 'Accept: application/json' -H 'Authorization: Bearer eyJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE2NTI0NDU3ODksInN1YiI6ImFkbWluIiwianRpIjoiM2U1Njg0YjYtZDJiYS0xMWVjLTk4ZWMtZGI2YjRiYTM1MTU2IiwibmJmIjoxNjUyNDQ1Nzg5LCJleHAiOjE2NTI0NDc1ODksInJlZnJlc2hUb2tlbkV4cGlyZXNBdCI6MTY1MjQ0ODE4OTMyNSwidG9rZW5UeXBlIjoiSldUX0FjY2VzcyIsInVzZXJVdWlkIjoiYTU3ZGVmMjgtY2M3MC0xMWVjLTk4ZWMtZjk4ODExNjNjZWIwIiwidXNlclJvbGUiOiJST0xFX0FETUlOIiwib3JpZ2luIjoicGFzc3dvcmQiLCJ1c2VybmFtZSI6ImFkbWluIn0.kXtsUu3_WWtOWu9w0mSDfJjwcyiVCa5dgyzNjCGnlF4' 'https://10.62.148.181/api/fdm/v6/operational/systeminfo/default' | grep -i snort
"snortVersion" : { "snortVersion" : "3.1.7.1-108", "snortPackage" : "/ngfw/var/sf/snort-3.1.7.1-108/snort-75-3.1.7.1-108-daq14.tar.bz2", "type" : "snortversion
FTD或Firepower CLI
在FTD CLI上,執行show snort3 status 指令:
> show snort3 status Currently running Snort 3
Firepower模組僅支援Snort 2。
FTD或Firepower模組故障排除檔案
完成以下步驟,以驗證FTD疑難排解檔案中的Snort版本:
- 打開故障排除檔案,然後導航到資料夾<filename>-troubleshoot .tar/results-<date>—xxxxxx/command-output
- 打開檔案usr-local-sf-bin-sfcli.pl show snort3.output:
# pwd
/var/tmp/results-05-06-2022--163203/command-outputs
# cat "usr-local-sf-bin-sfcli.pl show snort3.output" Output of /ngfw/usr/local/sf/bin/sfcli.pl show snort3: Currently running Snort 3
Firepower模組僅支援Snort 2。
漏洞資料庫(VDB)版本
使用以下選項可驗證VDB版本:
- FMC UI
- FMC REST-API
- FMC疑難排解檔案
- FDM UI
- FDM REST API
- FTD CLI
- FTD或Firepower模組故障排除檔案
FMC UI
完成以下步驟以驗證FMC UI上的VDB版本:
- 選擇Help > About:
2. 檢查VDB版本:
FMC CLI
完成以下步驟,在FMC CLI上驗證VDB版本:
- 透過SSH或控制檯連線訪問FMC。
- 運行show version命令:
> show version -----------[ FMC-4600-2.cisco.com ]------------ Model : Cisco Firepower Management Center 4600 (66) Version 7.1.0 (Build 90) UUID : a10ed34e-d127-11e8-b440-728439d95305 Rules update version : 2022-05-02-003-vrt LSP version : lsp-rel-20220502-1613 VDB version : 354 ---------------------------------------------
FMC REST-API
完成以下步驟,透過FMC REST-API驗證VDB版本。使用REST-API客戶端驗證軟體版本。在此範例中,使用curl:
- 要求驗證權杖:
# curl -s -k -v -X POST 'https://192.0.2.1/api/fmc_platform/v1/auth/generatetoken' -H 'Authentication: Basic' -u 'admin:Cisco123' | grep -i X-auth-access-token
< X-auth-access-token: 7acdb34c-ea85-47bf-83fe-d77b63f012da
2. 辨識包含裝置的域。在大多數REST API查詢中,domain引數是必需的。在此查詢中使用X-auth-access-token檢索域清單:
# curl -s -k -X GET 'https://192.0.2.1/api/fmc_platform/v1/info/serverversion' -H 'X-auth-access-token: 7acdb34c-ea85-47bf-83fe-d77b63f012da' | python -m json.tool
{
"items": [
{
"geoVersion": "2022-05-09-001",
"lspVersion": "lsp-rel-20220510-1044",
"serverVersion": "7.1.0 (build 90)",
"sruVersion": "2022-05-10-001-vrt",
"type": "ServerVersion",
"vdbVersion": "build 354 ( 2022-04-27 19:39:56 )"
}
],
"links": {
"self": "https://10.62.184.21/api/fmc_platform/v1/info/serverversion?offset=0&limit=25"
},
"paging": {
"count": 1,
"limit": 25,
"offset": 0,
"pages": 1
}
}
FMC疑難排解檔案
完成以下步驟,驗證FMC故障排除檔案中的VDB版本:
- 打開故障排除檔案,然後導航到資料夾<filename>-troubleshoot .tar/results-<date>—xxxxxx/dir-archives/etc/sf/.versiondb
- 打開檔案vdb.conf並找到包含項CURRENT_BUILD的行:
# pwd
/var/tmp/results-05-06-2022--199172/dir-archives/etc/sf/.versiondb
# cat vdb.conf CURRENT_VERSION=4.5.0 CURRENT_BUILD=344 CURRENT_APPID_VER=82 CURRENT_NAVL_VER=106
FDM UI
在首頁上檢查VDB:
FDM REST API
完成以下步驟,透過FDM REST-API要求驗證VDB版本。使用REST-API客戶端驗證軟體版本。在此範例中,使用curl:
- 要求驗證權杖:
# curl -k -X POST --header 'Content-Type: application/json' --header 'Accept: application/json' -d '{ "grant_type": "password", "username": "admin", "password": "Admin#1324" }' 'https://192.0.2.2/api/fdm/latest/fdm/token'
{
"access_token":
"eyJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE2NTIyNDk5NTcsInN1YiI6ImFkbWluIiwianRpIjoiNDk3MmRjNjAtZDBmMi0xMWVjLTk4ZWMtNDdlZTQwODkwMDVjIiwibmJmIjoxNjUyMjQ5OTU3LCJleHAiOjE2NTIyNTE3NTcsInJlZnJlc2hUb2tlbkV4cGlyZXNBdCI6MTY1MjI1MjM1NzQ1NywidG9rZW5UeXBlIjoiSldUX0FjY2VzcyIsInVzZXJVdWlkIjoiYTU3ZGVmMjgtY2M3MC0xMWVjLTk4ZWMtZjk4ODExNjNjZWIwIiwidXNlclJvbGUiOiJST0xFX0FETUlOIiwib3JpZ2luIjoicGFzc3dvcmQiLCJ1c2VybmFtZSI6ImFkbWluIn0.lJLmHddJ2jaVRmpdXF6qg48qdBcyRuit94DLobCJ9LI",
"expires_in": 1800,
"refresh_expires_in": 2400,
"refresh_token": "eyJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE2NTIzOTQxNjksInN1YiI6ImFkbWluIiwianRpIjoiMGU0NGIxYzQtZDI0Mi0xMWVjLTk4ZWMtYTllOTlkZGMwN2Y0IiwibmJmIjoxNjUyMzk0MTY5LCJleHAiOjE2NTIzOTY1NjksImFjY2Vzc1Rva2VuRXhwaXJlc0F0IjoxNjUyMzk1OTY5MDcwLCJyZWZyZXNoQ291bnQiOi0xLCJ0b2tlblR5cGUiOiJKV1RfUmVmcmVzaCIsInVzZXJVdWlkIjoiYTU3ZGVmMjgtY2M3MC0xMWVjLTk4ZWMtZjk4ODExNjNjZWIwIiwidXNlclJvbGUiOiJST0xFX0FETUlOIiwib3JpZ2luIjoicGFzc3dvcmQiLCJ1c2VybmFtZSI6ImFkbWluIn0.Avga0-isDjQB527d3QWZQb7AS4a9ea5wlbYUn-A9aPw",
"token_type": "Bearer"
}
2.在此查詢中使用access_token值:
# curl -s -k -X GET -H 'Accept: application/json' -H 'Authorization: Bearer eyJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE2NTI0NDU3ODksInN1YiI6ImFkbWluIiwianRpIjoiM2U1Njg0YjYtZDJiYS0xMWVjLTk4ZWMtZGI2YjRiYTM1MTU2IiwibmJmIjoxNjUyNDQ1Nzg5LCJleHAiOjE2NTI0NDc1ODksInJlZnJlc2hUb2tlbkV4cGlyZXNBdCI6MTY1MjQ0ODE4OTMyNSwidG9rZW5UeXBlIjoiSldUX0FjY2VzcyIsInVzZXJVdWlkIjoiYTU3ZGVmMjgtY2M3MC0xMWVjLTk4ZWMtZjk4ODExNjNjZWIwIiwidXNlclJvbGUiOiJST0xFX0FETUlOIiwib3JpZ2luIjoicGFzc3dvcmQiLCJ1c2VybmFtZSI6ImFkbWluIn0.kXtsUu3_WWtOWu9w0mSDfJjwcyiVCa5dgyzNjCGnlF4' 'https://10.62.148.181/api/fdm/v6/operational/systeminfo/default' | grep -i vdb
"vdbVersion" : {
"lastSuccessVDBDate" : "2022-05-05 12:44:09Z",
"vdbCurrentVersion" : "346",
"vdbCurrentBuild" : "0",
"vdbReleaseDate" : "2021-08-24 21:48:15",
"type" : "vdbversion"
FTD或Firepower模組CLI
完成以下步驟,以在FTD CLI或Firepower模組(SFR) CLI上驗證VDB版本:
- 透過SSH或主控台連線存取FTD。對於Firepower模組,請透過SSH訪問模組,或透過session sfr命令從ASA CLI訪問模組。
- 在CLI上運行show version命令:
> show version --------------------[ fpr2k-1 ]--------------------- Model : Cisco Firepower 2110 Threat Defense (77) Version 7.1.0 (Build 90) UUID : 0b1a9c94-8ba8-11ec-b2fd-93263934908d LSP version : lsp-rel-20220510-1044 VDB version : 354 ----------------------------------------------------
> show version ----------------[ sfr1 ]----------------- Model : ASA5516 (72) Version 7.1.0 (Build 90) UUID : c049dad8-c42e-11e9-986d-bdeff3ce399e Rules update version : 2022-05-10-001-vrt VDB version : 354 ----------------------------------------------------
FTD或Firepower模組故障排除檔案
完成以下步驟,驗證FTD或Firepower模組疑難排解檔案中的VDB版本:
- 打開故障排除檔案,然後導航到資料夾<filename>-troubleshoot.tar/results-<date>—xxxxxx/command-outputs/
- 打開檔案usr-local-sf-bin-sfcli.pl show version.output,然後找到具有VDB version的行:
# pwd
/var/tmp/results-05-06-2022--163203/command-outputs/
# cat "usr-local-sf-bin-sfcli.pl show version.output" --------------------[ fpr2k-1 ]--------------------- Model : Cisco Firepower 2110 Threat Defense (77) Version 7.1.0 (Build 90) UUID : 0b1a9c94-8ba8-11ec-b2fd-93263934908d LSP version : lsp-rel-20220510-1044 VDB version : 354 ----------------------------------------------------
# pwd
/var/tmp/results-05-12-2022--199172/command-outputs
# cat "usr-local-sf-bin-sfcli.pl show version.output"
----------------[ sfr1 ]----------------- Model : ASA5516 (72) Version 7.1.0 (Build 90) UUID : c049dad8-c42e-11e9-986d-bdeff3ce399e Rules update version : 2022-05-10-001-vrt VDB version : 354 ----------------------------------------------------
入侵規則更新版本
入侵規則更新提供新的和更新的入侵規則和前處理器規則、已安裝規則的修改狀態以及修改的預設入侵策略設定。
安全規則更新(SRU)適用於Snort版本2,而輕量安全包(LSP)更新適用於Snort版本3。
使用以下選項可驗證SRU/LSP軟體版本:
- FMC UI
- FMC REST-API
- FMC疑難排解檔案
- FDM UI
- FDM REST API
- FTD或Firepower模組CLI
- FTD或Firepower模組故障排除檔案
FMC UI
完成以下步驟以驗證FMC UI上的SRU/LSP版本:
- 選擇Help > About:
2. 檢查規則更新版本和LSP版本:
FMC CLI
在FMC CLI上完成以下步驟以驗證SRU/LSP版本:
- 透過SSH或控制檯連線訪問FMC。
- 在CLI上運行show version命令:
> show version -----------[ FMC-4600-2.cisco.com ]------------ Model : Cisco Firepower Management Center 4600 (66) Version 7.1.0 (Build 90) UUID : a10ed34e-d127-11e8-b440-728439d95305 Rules update version : 2022-05-02-003-vrt LSP version : lsp-rel-20220502-1613 VDB version : 354 ---------------------------------------------
FMC REST-API
完成以下步驟,透過REST-API請求驗證軟體版本。使用REST-API客戶端驗證軟體版本。本示例中使用curl:
- 要求驗證權杖:
# curl -s -k -v -X POST 'https://192.0.2.1/api/fmc_platform/v1/auth/generatetoken' -H 'Authentication: Basic' -u 'admin:Cisco123' | grep -i X-auth-access-token < X-auth-access-token: 9408fe38-c25c-4472-b7e6-3571bb4e2b8d
2. 在此查詢中使用X-auth-access-token:
# curl -s -k -X GET 'https://192.0.2.1/api/fmc_platform/v1/info/serverversion' -H 'X-auth-access-token: 7acdb34c-ea85-47bf-83fe-d77b63f012da' | python -m json.tool
{
"items": [
{
"geoVersion": "2022-05-09-001",
"lspVersion": "lsp-rel-20220510-1044",
"serverVersion": "7.1.0 (build 90)",
"sruVersion": "2022-05-10-001-vrt",
"type": "ServerVersion",
"vdbVersion": "build 354 ( 2022-04-27 19:39:56 )"
}
],
"links": {
"self": "https://10.62.184.21/api/fmc_platform/v1/info/serverversion?offset=0&limit=25"
},
"paging": {
"count": 1,
"limit": 25,
"offset": 0,
"pages": 1
}
}
FMC疑難排解檔案
完成以下步驟,驗證FMC故障排除檔案中的SRU版本:
- 打開故障排除檔案並轉到資料夾<filename>.tar/results-<date>—xxxxxx/dir-archives/etc/sf/
- 打開檔案sru_versions.conf,然後找到包含項Intrusion_Rules_Update的行:
# pwd
/var/tmp/results-05-06-2022--199172/dir-archives/etc/sf/
# cat sru_versions.conf Intrusion_Rules_Update=2022-04-25-003-vrt Rule_Pack=2699 Sourcefire_Decoder_Rule_Pack=2088 Sourcefire_Policy_Pack=2763 Module_Pack=3066 snort=2.9.16-4022
完成以下步驟,在FMC故障排除檔案中驗證LSP版本:
- 打開故障排除檔案並轉到資料夾<filename>.tar/results-<date>—xxxxxx/command-output
- 打開檔案查詢var-sf-lsp -maxdepth 2 -ls.output並檢查帶有/var/sf/lsp/active-lsp的行
# pwd
/var/tmp/results-05-06-2022--199172/command-outputs
# cat "find var-sf-lsp -maxdepth 2 -ls.output" ... Output of find /var/sf/lsp -maxdepth 2 -ls: 19138123 4 drwxrwxr-x 3 www root 4096 May 11 04:01 /var/sf/lsp 19142268 0 lrwxrwxrwx 1 root root 33 May 11 04:00 /var/sf/lsp/installed-lsp -> /var/sf/lsp/lsp-rel-20220510-1044 19138299 4 drwxrwxr-x 5 www root 4096 May 11 04:01 /var/sf/lsp/lsp-rel-20220510-1044 19142266 600 -rwxrwxr-x 1 www root 614400 May 10 14:55 /var/sf/lsp/lsp-rel-20220510-1044/lsp.icdb.RELEASE.tar 19142234 4 drwxrwxr-x 5 www root 4096 May 11 04:00 /var/sf/lsp/lsp-rel-20220510-1044/ntd_metadata 19268898 4 drwxrwxr-x 2 www root 4096 May 10 14:55 /var/sf/lsp/lsp-rel-20220510-1044/icdb 19138303 4 drwxrwxr-x 6 www root 4096 May 10 14:51 /var/sf/lsp/lsp-rel-20220510-1044/talos_content 19142269 46640 -rw-r--r-- 1 root root 47759360 May 11 04:01 /var/sf/lsp/lsp-rel-20220510-1044/lsp-rel-20220510-1044.tar.xz.REL.tar 19142267 4 -rwxrwxr-x 1 www root 238 May 11 04:00 /var/sf/lsp/lsp-rel-20220510-1044/.snort-versions 19142265 4 -rwxrwxr-x 1 www root 26 May 10 14:51 /var/sf/lsp/lsp-rel-20220510-1044/lspd_ver.properties 19139198 260 -rw-r--r-- 1 root root 264403 Feb 12 03:32 /var/sf/lsp/pigtail-all-1644636642.log 19142270 0 lrwxrwxrwx 1 root root 33 May 11 04:01 /var/sf/lsp/active-lsp -> /var/sf/lsp/lsp-rel-20220510-1044
FDM UI
在首頁上檢查入侵規則更新:
FDM REST API
完成以下步驟,透過FDM REST-API要求驗證VDB版本。使用REST-API客戶端驗證軟體版本。本示例中使用curl:
- 要求驗證權杖:
# curl -k -X POST --header 'Content-Type: application/json' --header 'Accept: application/json' -d '{ "grant_type": "password", "username": "admin", "password": "Admin#1324" }' 'https://192.0.2.2/api/fdm/latest/fdm/token'
{
"access_token":
"eyJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE2NTIyNDk5NTcsInN1YiI6ImFkbWluIiwianRpIjoiNDk3MmRjNjAtZDBmMi0xMWVjLTk4ZWMtNDdlZTQwODkwMDVjIiwibmJmIjoxNjUyMjQ5OTU3LCJleHAiOjE2NTIyNTE3NTcsInJlZnJlc2hUb2tlbkV4cGlyZXNBdCI6MTY1MjI1MjM1NzQ1NywidG9rZW5UeXBlIjoiSldUX0FjY2VzcyIsInVzZXJVdWlkIjoiYTU3ZGVmMjgtY2M3MC0xMWVjLTk4ZWMtZjk4ODExNjNjZWIwIiwidXNlclJvbGUiOiJST0xFX0FETUlOIiwib3JpZ2luIjoicGFzc3dvcmQiLCJ1c2VybmFtZSI6ImFkbWluIn0.lJLmHddJ2jaVRmpdXF6qg48qdBcyRuit94DLobCJ9LI",
"expires_in": 1800,
"refresh_expires_in": 2400,
"refresh_token": "eyJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE2NTIzOTQxNjksInN1YiI6ImFkbWluIiwianRpIjoiMGU0NGIxYzQtZDI0Mi0xMWVjLTk4ZWMtYTllOTlkZGMwN2Y0IiwibmJmIjoxNjUyMzk0MTY5LCJleHAiOjE2NTIzOTY1NjksImFjY2Vzc1Rva2VuRXhwaXJlc0F0IjoxNjUyMzk1OTY5MDcwLCJyZWZyZXNoQ291bnQiOi0xLCJ0b2tlblR5cGUiOiJKV1RfUmVmcmVzaCIsInVzZXJVdWlkIjoiYTU3ZGVmMjgtY2M3MC0xMWVjLTk4ZWMtZjk4ODExNjNjZWIwIiwidXNlclJvbGUiOiJST0xFX0FETUlOIiwib3JpZ2luIjoicGFzc3dvcmQiLCJ1c2VybmFtZSI6ImFkbWluIn0.Avga0-isDjQB527d3QWZQb7AS4a9ea5wlbYUn-A9aPw",
"token_type": "Bearer"
}
2.在此查詢中使用access_token值:
# curl -s -k -X GET -H 'Accept: application/json' -H 'Authorization: Bearer eyJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE2NTI0NDU3ODksInN1YiI6ImFkbWluIiwianRpIjoiM2U1Njg0YjYtZDJiYS0xMWVjLTk4ZWMtZGI2YjRiYTM1MTU2IiwibmJmIjoxNjUyNDQ1Nzg5LCJleHAiOjE2NTI0NDc1ODksInJlZnJlc2hUb2tlbkV4cGlyZXNBdCI6MTY1MjQ0ODE4OTMyNSwidG9rZW5UeXBlIjoiSldUX0FjY2VzcyIsInVzZXJVdWlkIjoiYTU3ZGVmMjgtY2M3MC0xMWVjLTk4ZWMtZjk4ODExNjNjZWIwIiwidXNlclJvbGUiOiJST0xFX0FETUlOIiwib3JpZ2luIjoicGFzc3dvcmQiLCJ1c2VybmFtZSI6ImFkbWluIn0.kXtsUu3_WWtOWu9w0mSDfJjwcyiVCa5dgyzNjCGnlF4' 'https://10.62.148.181/api/fdm/v6/operational/systeminfo/default' | grep -Ei "sru|lsp"
"sruVersion" : {
"sruVersion" : "20211110-1348",
"lastSuccessSRUDate" : "2022-05-12 18:29:00Z",
"lspVersions" : [ "20211110-1348" ],
"type" : "sruversion"
FTD或Firepower模組CLI
完成以下步驟以驗證FTD CLI或Firepower模組CLI上的SRU/LSP版本:
- 透過SSH或主控台連線存取FTD。對於Firepower模組,請透過SSH訪問模組,或透過session sfr命令從ASA CLI訪問模組。
- 在CLI上運行show version命令:
> show version ------------[ FIREPOWER1.cisco.com ]------------ Model : Cisco Firepower 2120 Threat Defense (77) Version 7.1.0 (Build 90) UUID : 1cbe9952-cc6f-11ec-b63a-ae4636e42209 LSP version : lsp-rel-20211110-1348 VDB version : 346 ----------------------------------------------------
or
> show version ------------[ FIREPOWER1.cisco.com ]------------ Model : Cisco Firepower 2120 Threat Defense (77) Version 7.1.0 (Build 90) UUID : 1cbe9952-cc6f-11ec-b63a-ae4636e42209 Rules update version : 2022-05-11-001-vrt VDB version : 346 ----------------------------------------------------
> show version ----------------[ sfr1 ]----------------- Model : ASA5516 (72) Version 7.1.0 (Build 90) UUID : c049dad8-c42e-11e9-986d-bdeff3ce399e Rules update version : 2022-05-10-001-vrt VDB version : 354 ----------------------------------------------------
FTD或Firepower模組故障排除檔案
完成以下步驟,驗證FTD或Firepower模組故障排除檔案中的SRU/LSP版本:
- 打開故障排除檔案,然後轉至資料夾<filename>-troubleshoot.tar/results-<date>—xxxxxx/command-outputs/
- 打開檔案usr-local-sf-bin-sfcli.pl show version.output,然後找到版本為SRU/LSP的行:
# pwd
/var/tmp/results-05-06-2022--163203/command-outputs/
# cat "usr-local-sf-bin-sfcli.pl show version.output" ------------[ FIREPOWER1.cisco.com ]------------ Model : Cisco Firepower 2120 Threat Defense (77) Version 7.1.0 (Build 90) UUID : 1cbe9952-cc6f-11ec-b63a-ae4636e42209 LSP version : lsp-rel-20211110-1348 VDB version : 346 ----------------------------------------------------
or
# pwd
/var/tmp/results-05-06-2022--163203/command-outputs/
# cat "usr-local-sf-bin-sfcli.pl show version.output" ------------[ FIREPOWER1.cisco.com ]------------ Model : Cisco Firepower 2120 Threat Defense (77) Version 7.1.0 (Build 90) UUID : 70727d06-8ba7-11ec-bfcc-999f61f27102 Rules update version : 2022-05-11-001-vrt VDB version : 346 ----------------------------------------------------
# pwd
/var/tmp/results-05-12-2022--199172/command-outputs
# cat "usr-local-sf-bin-sfcli.pl show version.output"
----------------[ sfr1 ]----------------- Model : ASA5516 (72) Version 7.1.0 (Build 90) UUID : c049dad8-c42e-11e9-986d-bdeff3ce399e Rules update version : 2022-05-10-001-vrt VDB version : 354 ----------------------------------------------------
已知的問題
思科漏洞ID CSCwb34098 
ENH:「show managers」命令輸出中的Show FMC版本
思科漏洞ID CSCve13470 ENH:在FirePOWER 6.x上啟用軟體相關OID
思科漏洞ID CSCwb85969 ENH:在故障排除檔案中包含「show version」FMC CLISH命令的輸出
思科漏洞ID CSCvu15709 ENH:支援SNMP OID以輪詢Firepower平台上的SRU/VDB/GEO位置版本
相關資訊
修訂記錄
| 修訂 | 發佈日期 | 意見 |
|---|---|---|
2.0 |
17-Aug-2024 |
已移除'follow'的執行個體。增加了Alt文本。 |
1.0 |
18-May-2022 |
初始版本 |
意見