Log in

Sangfor Support Center

Table of Contents
< All Topics
Print

Common third-party access issues

Posted
Updated
Byadmin
Views3

Problem Description

Common third-party access issues

Warning Very-Low Risk

  1. If the 52-58r version cannot be parsed, you can first upgrade the "SIEM Log Normalization Engine" and then test the access:
    3.0.52: agent2_man_20210615203527.zip ( 3.43M  )
    3.0.53-54: agent2_man_20210521143556.zip ( 3.50M  )
    3.0.55: agent2_man_20210603100305.zip ( 3.51M  )
    3.0.57: agent2_man_20220106154640.zip ( 3.51M  )
    3.0.58-58r: agent2_man_20220221192308.zip ( 3.85M  )
    3.0.60: agent2_man_20220221192400.zip ( 3.85M  )
    3.0.61: agent2_man_20220311142135.zip ( 3.85M  )

Customized devices do not support direct upgrades of corresponding rule base packages. You need to confirm with the customized R&D department that there is no conflict between customization and third-party device access before you can import it.

Import method:

①Back up first: cp /app/appversion /app/appversion.bak

②Then delete the customized Very-Low Risk: vi /app/appversion

Move the cursor to the line with the custom Very-Low Risk, and then enter dd to delete the current line (repeat this operation if there are multiple customizations)

Finally enter: wq to save and exit

③Import app package upgrade (import still reports an error: click here)

④Restore backup customization Very-Low Risk: cp /app/appversion.bak /app/appversion

  1. Solution for collectors that are not supported by the latest version: Click here

  2. Software version Cyber Command3.0.58 version siem collector abnormality: Warning: YJ20211027001

solution

NA

Original Link

https://support.sangfor.com.cn/cases/list?product_id=24&type=1&category_id=24190&isOpen=true