Cisco Cisco Firepower Management Center 2000 Entwickleranleitung

Version 5.3

Sourcefire 3D System eStreamer Integration Guide

260

Understanding Discovery & Connection Data Structures

Host Discovery and Connection Data Blocks

Chapter 4

Policy Engine Control Message Data Block

The Policy Engine Control Message data block conveys the control message 

content for policy types. The Policy Engine Control Message data block has a 

block type of 54 in the series 1 group of blocks.
The following diagram shows the format of the Policy Engine Control Message 

data block: 

The 

 table describes the 

components of the Policy Engine Control Message data block.

Byte

0

1

2

3

Bit

0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31

Policy Engine Control Message Block Type (54)

Policy Engine Control Message Block Length

Type

Control  Message

String Block Type (0)

String Block Length

Control Message...

Policy Engine Control Message Data Block Fields 

Policy Engine 

Control 

Message 

Block Type

uint32

Initiates a Policy Engine Control Message data 

block. This value is always 54.

Policy Engine 

Control 

Message 

Length

uint32

Total number of bytes in the Policy Engine 

Control Message data block, including eight 

bytes for the policy engine control block type 

and length fields, plus the number of bytes of 

policy engine control data that follows.

Type

uint32

Indicates the type of policy for the event.

String Block 

Type

uint32

Initiates a String data block that contains the 

control message. This value is always 0.