About Bill CARTER

Bill CARTER · 02-20-2019

Alan Nix has created a great python script to import the Talos Blacklist into Stealthwatch. I have successfully run the script manually. I would like to run the script daily using cron. I used crontab, but I am not sure it actually runs. Here is th...

Bill CARTER · 01-14-2019

Using the ISE Endpoint Analysis Tool, I can not get a profile to match. I am wondering if it is because the OUI contains ( and ). I don't get a match when OUI EQUALS LG Electronics (Mobile Communications). There is a match on "LG-Device" which uses...

Bill CARTER · 11-29-2018

SpoilerCould you provide the new certificate we can manually install? Using the fix for CSCvm81052 I now have AMP updates succeeding, however URL updates still fail. see https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm81052/Could you provide the n...

Bill CARTER · 07-30-2018

Will this be fixed in a future rule update or a Firepower patch? I am experiencing this issue with software 6.2.3.2-42 and rule update 2018-07-16-001-vrt.

Bill CARTER · 06-07-2017

I believe I am getting a false positive for ChromeSetup.exe. I downloaded the Chrome beta installer direct from Google. SHA-256 a1fa0737b15a05ac5073985839af253f3470c162730f89f604eb3dc008066c05 Virus Total analysis https://www.virustotal.com/en/file...

Bill CARTER · 05-04-2019

Great post. Worked for me!!

Bill CARTER · 02-21-2019

Thank you! I removed "root" and changed the log setting. I was able confirm the script successfully ran. swm:~/scripts/log# crontab -l# m h dom mon dow command10 16 * * * /usr/bin/python /root/scripts/TalosBlacklistImport.py > /root/scripts/log/ta...

Bill CARTER · 01-14-2019

I am on 2.4 Patch 5. I will try working with a separate profile.

Bill CARTER · 04-12-2018

I set rule updates for daily during non-business hours. I have never had a problem.

Bill CARTER · 07-27-2016

I had this issue also. There are a couple of settings in the HTTP preprocessor. Firepower 6.0 Go to Policies -> Access Control -> Network Analysis Policy (Top right of browers window). Edit existing policy, or create new policy. Policy information ->...

Member Since	‎11-04-2001 05:31 PM
Date Last Visited	‎09-13-2022 07:26 AM
Posts	218
Total Helpful Votes Received	65

User Statistics

User Activity

Stealthwatch Python Script using cron

Can't Match endPoint Profile for OUI equals "LG Electronics (Mobile Communications)"

CSCvm03931 - software update downloads by Firepower failing due to newer CA certificates not being present - 2

CSCvk52667 - FDM - Deployment is failing after latest SRU update in 6.2.3-83 build.

AMP False Positive for chromesetup.exe

Re: ARP PERMIT-NONCONNECTED IN CISCO FTD 6.2.3.x WORKAROUND

Re: Stealthwatch Python Script using cron

Re: Can't Match endPoint Profile for OUI equals "LG Electronics (Mobile Communications)"

Re: Firepower rulee update

I had this issue also. There