browse
On Monday September 17, 2018, Cisco Umbrella will release Umbrella Insights Virtual Appliance (VA) version 2.3 to the stage release track.
On Thursday September 20, 2018, Cisco Umbrella will release Umbrella Insights Virtual Appliance version 2.3 to the first wave of the production track.
On Thursday September 27, 2018, Cisco Umbrella will release Umbrella Insights Virtual Appliance version 2.3 to the second and third wave of the production track.
On Monday October 8, 2018, Cisco Umbrella will release Umbrella Insights Virtual Appliance version 2.3 to the final wave of the production track.
Customer VAs may upgrade over a period of days as opposed to consecutively upgrading one after another. To receive this upgrade, ensure that your firewall is configured to enable access to disthost.umbrella.com.
In accordance with Cisco policy, a list of open source software modules used in the VA is attached to these release notes. It contains licenses and notices for open source software used in this product.
As a reminder, two VAs must be configured in order to upgrade automatically during these windows.
CHANGE SUMMARY (2.2.1 to 2.3)
- Support for Community String option for SNMP v2c authentication
- Support for polling connectivity stats on the VA using SNMP v2c and SNMP v3
- Support for configuring an Anycast IP address on a VA and enabling Anycast using the BGP routing protocol
- Mitigation for FragmentSmack vulnerability in the VA’s Linux kernel https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-ip-fragment
CHANGE SUMMARY (2.2 to 2.3)
- Support for polling health stats of the VA (CPU, memory and disk) and connectivity stats over SNMP v2c and v3 with authentication
- Fix for performance issues observed on VA 2.2. A VA with one CPU, 512 MB RAM should now be able to support approximately 1100 queries per second at around 85% CPU utilization. This number scales almost linearly with the number of CPUs on the VA up to four CPUs.
- Support for configuring an Anycast IP address on a VA and enabling Anycast using the BGP routing protocol
- Mitigation for FragmentSmack vulnerability in the VA’s Linux kernel https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-ip-fragment
Instructions to configure Anycast addressing on your VA are available at https://docs.umbrella.com/deployment-umbrella/docs/configure-anycast
Instructions to monitor your VA using SNMP are available at https://docs.umbrella.com/deployment-umbrella/docs/appendix-c-enable-snmp-monitoring