Cisco Cisco Firepower Management Center 4000 Guida Dello Sviluppatore

String Block Length

uint32

Number of bytes in the String data block for the client 
application version, including eight bytes for the string block 
type and length, plus the number of bytes in the version.

Client Application 
Version

string

Client application version.

Monitor Rule 1

uint32

The ID of the first monitor rule associated with the connection 
event.

Monitor Rule 2

uint32

The ID of the second monitor rule associated with the 
connection event.

Monitor  Rule  3

uint32

The ID of the third monitor rule associated with the connection 
event.

Monitor Rule 4

uint32

The ID of the fourth monitor rule associated with the 
connection event.

Monitor Rule 5

uint32

The ID of the fifth monitor rule associated with the connection 
event.

Monitor  Rule  6

uint32

The ID of the sixth monitor rule associated with the connection 
event.

Monitor Rule 7

uint32

The ID of the seventh monitor rule associated with the 
connection event.

Monitor Rule 8

uint32

The ID of the eighth monitor rule associated with the 
connection event.

Security Intelligence 
Source/ Destination

uint8

Whether the source or destination IP address matched the IP 
blacklist.

Security Intelligence 
Layer

uint8

The IP layer that matched the IP blacklist.

File Event Count

uint16

Value used to distinguish between file events that happen 
during the same second.

Intrusion Event Count uint16

Value used to distinguish between intrusion events that happen 
during the same second.

Initiator Country

uint16

Code for the country of the initiating host.

Responder Country

uint16

Code for the country of the responding host.