Cisco Cisco Firepower Management Center 4000 Entwickleranleitung

The 

 table contains information on the sub-servers for a server detected on 

the hosts in your monitored network. 

For more information, see the following sections:

The following table describes the fields you can access in the 

 table. 

You cannot perform joins on the 

 table.

host_id

ID number of the host.

port

The port used by the server.

protocol

The traffic protocol: 

TCP

 or 

UDP

.

service_name

One of:

the server on the host that is associated with the triggering event

none

 or blank if data for an identification is unavailable

pending

 if additional data is required

unknown

 if the system cannot identify the server based on known server fingerprints

source_type

The source of the identity of the server: 

User

 - name of the user who entered the data via the web user interface

Application

 - imported from another application via the host input feature

Scanner

 - added through NMAP or imported via the host input feature with a source type 

of Scanner

rna

 - detected by the FireSIGHT System, either by a discovery event, port match, or 

pattern match

NetFlow

 - the data was exported by a NetFlow-enabled device

sub_service_name

The sub-server detected on the host.

sub_service_vendor

The vendor of the sub-server detected on the host.

sub_service_version

The version of the sub-server detected on the host.

vendor

The vendor of the server detected on the host.

version

The version of the server detected on the host.