Cisco Cisco Firepower Management Center 2000 Guía Del Desarrollador
B-139
FireSIGHT eStreamer Integration Guide
Appendix B Understanding Legacy Data Structures
Legacy Host Data Structures
List Block
Length
Length
uint32
Number of bytes in the list. This number includes the eight bytes of
the list block type and length fields, plus the length of all
encapsulated Full Server data blocks.
the list block type and length fields, plus the length of all
encapsulated Full Server data blocks.
(TCP) Full Server
Data Blocks *
Data Blocks *
variable
List of Full Server data blocks conveying data about the TCP services
on the host. See
on the host. See
for
a description of this data block.
List Block Type
uint32
Initiates a List data block comprising Full Server data blocks
conveying UDP service data. This value is always
conveying UDP service data. This value is always
11
.
List Block
Length
Length
uint32
Number of bytes in the list. This number includes the eight bytes of
the list block type and length fields, plus the length of all
encapsulated Full Server data blocks.
the list block type and length fields, plus the length of all
encapsulated Full Server data blocks.
(UDP) Full
Server Data
Blocks *
Server Data
Blocks *
variable
List of Full Server data blocks conveying data about the UDP
sub-servers on the host. See
sub-servers on the host. See
for a description of this data block.
List Block Type
uint32
Initiates a List data block comprising Protocol data blocks conveying
network protocol data. This value is always
network protocol data. This value is always
11
.
List Block
Length
Length
uint32
Number of bytes in the list. This number includes the eight bytes of
the list block type and length fields, plus the length of all
encapsulated Protocol data blocks.
the list block type and length fields, plus the length of all
encapsulated Protocol data blocks.
(Network)
Protocol Data
Blocks *
Protocol Data
Blocks *
variable
List of Protocol data blocks conveying data about the network
protocols on the host. See
protocols on the host. See
description of this data block.
List Block Type
uint32
Initiates a List data block comprising Protocol data blocks conveying
transport protocol data. This value is always
transport protocol data. This value is always
11
.
List Block
Length
Length
uint32
Number of bytes in the list. This number includes the eight bytes of
the list block type and length fields, plus the length of all
encapsulated Protocol data blocks.
the list block type and length fields, plus the length of all
encapsulated Protocol data blocks.
(Transport)
Protocol Data
Blocks *
Protocol Data
Blocks *
variable
List of Protocol data blocks conveying data about the transport
protocols on the host. See
protocols on the host. See
description of this data block.
List Block Type
uint32
Initiates a List data block containing Host MAC Address data blocks.
This value is always
This value is always
11
.
List Block
Length
Length
uint32
Number of bytes in the list, including the list header and all
encapsulated Host MAC Address data blocks.
encapsulated Host MAC Address data blocks.
Host MAC
Address Data
Blocks *
Address Data
Blocks *
variable
for a description of this data block.
Last Seen
uint32
UNIX timestamp that represents the last time the system detected
host activity.
host activity.
Table B-31
Full Host Profile Record 5.0 - 5.0.2 Fields (continued)
Field
Data Type
Description