Changes that Immediately Restart the Snort Process
The following changes immediately restart the Snort process without going through the deploy process. How the restart affects traffic depends on how the target device handles traffic. See Snort Restart Traffic Behavior for more information.
-
Take any of the following actions involving applications or application detectors:
-
Activate or deactivate a system or custom application detector.
-
Delete an activated custom detector.
-
Save and Reactivate an activated custom detector.
-
Create a user-defined application.
The Snort process restarts on all managed devices.
A message warns you that continuing restarts the Snort process on all managed devices, and allows you to cancel.
A message warns you that continuing restarts the Snort process, and allows you to cancel; the restart occurs on any managed device in the current domain or in any of its child domains.
-
-
Create or break a Firepower Threat Defense high availability pair—Restarts the Snort process on the primary and secondary devices.
-
Create or break a Firepower Threat Defense high availability pair—A message warns you that continuing to create a high availability pair restarts the Snort process on the primary and secondary devices and allows you to cancel.
-
Install a vulnerability database (VDB) update.