Hello All
CSMs GeoIP Database wasn't updated since last year:
https://software.cisco.com/download/home/286321073/type/284963388/release/2018.12.26
Also when checking under Tools -> IP Intelligence Settings there is no update since a while.
The manual states they are updated monthly:
https://www.cisco.com/c/en/us/td/docs/security/security_management/cisco_security_manager/security_manager/417/user/guide/CSMUserGuide/syspage.html#33764
GeoIP Maxmind Database Update Settings
MaxMind GeoLite City update packages are updated monthly on Cisco.com. Use the GeoIP Maxmind Database Update Settings to download an update package automatically from Cisco.com and to configure scheduled updates.
In any case, my problem is that the CSM generated Reports for top hits are not anymore showing from which countries the hits/attacks were from, because the database is older than 90 days (can those 90 days be somewhere customized?).
Also the automatic scheduler to update them has probably never worked since I use a 4.x version. Yes, I have accepted all certificates, EULAs and so on. Disabled and enabled the updates and nothing.
Thanks
Patrick