Solved: Re: Cisco WSA S370 bug fix

abyewondimu · ‎12-20-2017

We are currently running on our WSA’s version 10.1.1-235. We noticed 10.1.2-036 which resolves the following bug https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd68626. The update isn’t available for 10.1.2-036. The only update we see available currently is 10.5.1-296, which doesn’t show as a known fixed release for this specific bug.

We wanted to know if 10.5.1-296 address this bug, as this version isn’t specified as a known fixed release?
If not when can we expect to see 10.1.2-036 released? as this update is not showing up under system upgrade.

Appliances:
Cisco WSA S370
Cisco WSA S170

Release notes:
10.5.1
https://www.cisco.com/c/dam/en/us/td/docs/security/wsa/wsa_10-0/WSA_10-5-x_Release_Notes.pdf

10.1.2
https://www.cisco.com/c/dam/en/us/td/docs/security/wsa/wsa_10-0/WSA_10x_Release_Notes.pdf

Handy Putra · ‎12-27-2017

Hi,

SMBv2, will be included in the Refresh 10.1.2 version that will be available tentatively on Jan 2018. Similarly 10.5.2 version will also include SMBv2 as well that should also be available tentatively on Jan 2018

View solution in original post

Ken Stieers · ‎12-20-2017

I wouldn't go to 10.5.1-296. I've got 3 outstanding issues.

Every time someone downloads a file, and it doesn't need to go to AMP, it throws an alert

Can't load ECC root cert to get it to talk to ISE

If your policy allows access to sites with expired certs, the WSA breaks it if configured to decrypt that traffic.

Handy Putra · ‎12-27-2017

Hi,

SMBv2, will be included in the Refresh 10.1.2 version that will be available tentatively on Jan 2018. Similarly 10.5.2 version will also include SMBv2 as well that should also be available tentatively on Jan 2018