About Content Updates
The system can obtain content updates from the internet. We recommend you schedule or enable automatic content updates whenever possible. Some updates are auto-enabled by the initial setup process or when you enable the related feature. After initial setup, we recommend you review all auto-updates and adjust them if necessary.
|
Component |
Description |
Details |
|---|---|---|
|
Vulnerability database (VDB) |
The Cisco vulnerability database (VDB) is a database of known vulnerabilities to which hosts may be susceptible, as well as fingerprints for operating systems, clients, and applications. The system uses the VDB to help determine whether a particular host increases your risk of compromise. |
Schedule: As a scheduled task. Uninstall: Starting with VDB 357, you can install any VDB as far back as the baseline VDB for the Firewall Management Center. |
|
Geolocation database (GeoDB) |
The Cisco geolocation database (GeoDB) maps IP addresses to countries/continents. |
Schedule: From its own update page Uninstall: No. |
|
Intrusion rules (SRU/LSP) |
Intrusion rule updates provide new and updated intrusion rules and preprocessor rules, modified states for existing rules, and modified default intrusion policy settings. Rule updates may also delete rules, provide new rule categories and default variables, and modify default variable values. |
Schedule: From its own update page. Uninstall: No. |
|
Security Intelligence feeds |
Security Intelligence feeds are collections of IP addresses, domain names, and URLs that you can use to quickly filter traffic that matches an entry. |
Schedule: From the object manager. Uninstall: No. |
|
URL categories and reputations |
URL filtering allows you to control access to websites based on the URL’s general classification (category) and risk level (reputation). |
Schedule: When you configure integrations/cloud services, or as a scheduled task. Uninstall: No. |