Cisco Cisco Firepower Management Center 4000 Guía Del Desarrollador
Version 5.3
Sourcefire 3D System eStreamer Integration Guide
662
Understanding Legacy Data Structures
Legacy Host Data Structures
Appendix B
Full Host Profile Data Block 4.9 - 4.10.x
The Full Host Profile data block contains a full set of data describing one host. The
eStreamer server generates and transmits Full Host Profile data blocks in host
request data messages, which it sends in response to host request messages
submitted by the client. The full host profile data block for 4.9 - 4.10.x has the
format shown in the following graphic. Note that the graphic shows all fields in
the record, but the content details of nested data blocks are omitted. For
information about the fields in the encapsulated blocks, see the subsections of
this guide that described the data block in question. The Full Host Profile Data
Block for version 4.9 to 4.10.x has a data block type value of 92.
IMPORTANT!
An asterisk(*) next to a data block name in the following diagram
indicates that multiple instances of the data block may occur.
List Block
Length
uint32
Number of bytes in the List data block, including
the list header and all encapsulated data blocks.
Attribute Value
Data Blocks *
variable
List of Attribute Value data blocks. See
on page 253 for a description
of this data block.
Full Host Profile Data Block 4.8 (Continued)
F
IELD
D
ATA
T
YPE
D
ESCRIPTION
Byte
0
1
2
3
Bit
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31
Full Host Profile Data Block (92)
Data Block Length
IP Address
Hops
Generic List Block Type (31)
Generic List Block
Type, continued
Generic List Block Length