Introduction
This document describes the features, bug fixes, and behavior changes, if any, in Cisco Secure Workload software patch 3.7.1.59. This patch is associated with Cisco Secure Workload Software Release 3.7.1.5, the details of which can be found here. As best practice, we recommend that you patch a cluster to the latest available patch version before performing a major version upgrade.
For more information, see Cisco Secure Workload Upgrade Guide.
Release Information
Version: 3.7.1.59
Date: October 27, 2023
Compatibility Information
For supported operating systems, external systems, and connectors for Secure Workload agents, see Compatibility Matrix.
Known Behaviors
Verified Scalability Limits
The following tables provide the scalability limits for Cisco Secure Workload (39-RU), Cisco Secure Workload M (8-RU), and Cisco Secure Workload Cloud:
|
Configurable Option |
Scale |
|---|---|
|
Number of workloads |
Up to 25,000 (VM or bare-metal). Up to 50,000 (2x) when all the sensors are in conversation mode. |
|
Flow features per second |
Up to 2 million. |
|
Configurable Option |
Scale |
|---|---|
|
Number of workloads |
Up to 5,000 (VM or bare-metal). Up to 10,000 (2x) when all the sensors are in conversation mode. |
|
Flow features per second |
Up to 500,000. |
|
Configurable Option |
Scale |
|---|---|
|
Number of workloads |
Up to 1,000 (VM or bare-metal). |
|
Flow features per second |
Up to 70,000. |
|
Number of hardware agent enabled Cisco Nexus 9000 series switches |
Not supported. |
 Note |
Supported scale is based on whichever parameter reaches the limit first. |
Resolved and Open Issues
The resolved and open issues for this release are accessible through the Cisco Bug Search Tool. This web-based tool provides you with access to the Cisco bug tracking system, which maintains information about issues and vulnerabilities in this product and other Cisco hardware and software products.
For more information about the Cisco Bug Search Tool, see the Bug Search Tool Help & FAQ.
Note |
You must have a Cisco.com account to log in and access the Cisco Bug Search Tool. If you do not have one, you can register for an account. |
Resolved Issues
|
Identifier |
Headline |
|---|---|
|
FMC-CSW orchestrator: CSW pushes ipv6 hop by hop if protocol is set to any |
Open Issues
|
Identifier |
Headline |
|---|---|
|
AIX 7.x once enforcement is enabled, agent not able to connect to CSW Cluster due to fragmentation |
|
|
Agent Installer Script Downloaded From 3.6 Release Will Not Download Sensor from 3.7 Release |
|
|
Change error message on Investigate Traffic queries that are timing out |
|
|
Data for SW Status Upgrade chart for software agents in pending status is missing |
|
|
vNIC is hung up on a baremetal server (eNIC version on BM should be upgraded) |
|
|
Missing permissions for Azure segmentation |
|
|
Druid segment load queue could go high on 3.7 due to 2GB+ segment size |
|
|
Live and Enforcement policy analysis - hover over the table for scopes column and text chopped off |
Related Documentation
|
Document |
Description |
|---|---|
|
Cisco Secure Workload Cluster Deployment Guide |
Describes the physical configuration, site preparation, and cabling of a single- and dual-rack installation for Cisco Secure Workload (39-RU) platform and Cisco Secure Workload M (8-RU). Cisco Tetration (Secure Workload) M5 Cluster Hardware Deployment Guide |
|
Cisco Secure Workload Virtual Deployment Guide |
Describes the deployment of Cisco Secure Workload virtual appliances (formerly known as Tetration-V). Cisco Secure Workload Virtual (Tetration-V) Deployment Guide |
|
Cisco Secure Workload Platform Datasheet |
|
|
Secure Workload Documentation |
|
|
Latest Threat Data Sources |
Contact Cisco
If you cannot resolve an issue using the online resources listed above, contact Cisco TAC:
-
Email Cisco TAC: tac@cisco.com
-
Call Cisco TAC (North America): 1.408.526.7209 or 1.800.553.2447
-
Call Cisco TAC (worldwide): Cisco Worldwide Support Contacts
Feedback