Carbon Black Cloud: Linux sensor reporting wrong netconn direction
Article ID: 287716
Updated On:
Products
Carbon Black Cloud Endpoint Standard (formerly Cb Defense)
Carbon Black Cloud Enterprise EDR (formerly Cb Threathunter)
Issue/Introduction
- Netconn events reported as the wrong direction (inbound vs outbound)
- Timestamp of netconn may be associated with a time when the sensor or endpoint was restarted
- Endpoint may handle a very large volume of network traffic
Environment
- Carbon Black Cloud Sensor: 2.13.1 and prior supported releases
- Linux: All Supported Versions
Cause
Product Issue: CBC-15399
Resolution
Upgrade to sensor version 2.13.2 which includes a fix for CBC-15399
Feedback
Yes
No
Powered by
