Cisco Cisco Firepower Management Center 4000 Entwickleranleitung

Monitor Rule 1

uint32

The ID of the first monitor rule associated with the connection 
event.

Monitor Rule 2

uint32

The ID of the second monitor rule associated with the connection 
event.

Monitor Rule 3

uint32

The ID of the third monitor rule associated with the connection 
event.

Monitor Rule 4

uint32

The ID of the fourth monitor rule associated with the connection 
event.

Monitor Rule 5

uint32

The ID of the fifth monitor rule associated with the connection 
event.

Monitor Rule 6

uint32

The ID of the sixth monitor rule associated with the connection 
event.

Monitor Rule 7

uint32

The ID of the seventh monitor rule associated with the connection 
event.

Monitor Rule 8

uint32

The ID of the eighth monitor rule associated with the connection 
event.

Security 
Intelligence 
Source/ 
Destination

uint8

Whether the source or destination IP address matched the IP 
blacklist.

Security 
Intelligence Layer

uint8

The IP layer that matched the IP blacklist.

File Event Count

uint16

Value used to distinguish between file events that happen during 
the same second.

Intrusion Event 
Count

uint16

Value used to distinguish between intrusion events that happen 
during the same second.

Initiator Country

uint16

Code for the country of the initiating host.

Responder 
Country

uint16

Code for the country of the responding host.

IOC Number

uint16

ID Number of the compromise associated with this event.

Source 
Autonomous 
System

uint32

Autonomous system number of the source, either origin or peer.

Destination 
Autonomous 
System

uint32

Autonomous system number of the destination, either origin or 
peer.

SNMP Input

uint16

SNMP index of the input interface.

SNMP Output

uint16

SNMP index of the output interface.

Source TOS

uint8

Type of Service byte setting for the incoming interface.

Destination TOS

uint8

Type of Service byte setting for the outgoing interface.

Source Mask

uint8

Source address prefix mask.