Cisco Cisco Firepower Management Center 4000 Entwickleranleitung

Version 5.3

Sourcefire 3D System eStreamer Integration Guide

662

Understanding Legacy Data Structures

Legacy Host Data Structures

Appendix B

Full Host Profile Data Block 4.9 - 4.10.x

The Full Host Profile data block contains a full set of data describing one host. The 

eStreamer server generates and transmits Full Host Profile data blocks in host 

request data messages, which it sends in response to host request messages 

submitted by the client. The full host profile data block for 4.9 - 4.10.x has the 

format shown in the following graphic. Note that the graphic shows all fields in 

the record, but the content details of nested data blocks are omitted. For 

information about the fields in the encapsulated blocks, see the subsections of 

this guide that described the data block in question. The Full Host Profile Data 

Block for version 4.9 to 4.10.x has a data block type value of 92.

An asterisk(*) next to a data block name in the following diagram 

indicates that multiple instances of the data block may occur.

List Block 

Length

uint32

Number of bytes in the List data block, including 

the list header and all encapsulated data blocks.

Attribute Value 

Data Blocks *

variable

List of Attribute Value data blocks. See 

 on page 253 for a description 

of this data block.

Full Host Profile Data Block 4.8 (Continued)

Byte

0

1

2

3

Bit

0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31

Full Host Profile Data Block (92)

Data Block Length

IP Address

Hops

Generic List Block Type (31)

Generic List Block 

Type, continued

Generic List Block Length