Cisco Cisco Firepower Management Center 2000 Guida Dello Sviluppatore
Version 5.3
Sourcefire 3D System eStreamer Integration Guide
350
Understanding Discovery & Connection Data Structures
Host Discovery and Connection Data Blocks
Chapter 4
Operating
System
Fingerprint
(IPv6 DHCP
Fingerprint)
Data Blocks *
variable
Operating System Fingerprint data blocks
containing information about the operating
system on a host identified using an IPv6
DHCP fingerprint. See
on page 339 for a
description of this data block.
Generic List
Block Type
uint32
Initiates a Generic List data block comprising
Operating System Fingerprint data blocks
conveying fingerprint data identified using a
user agent fingerprint. This value is always 31.
Generic List
Block Length
uint32
Number of bytes in the Generic List data block,
including the list header and all encapsulated
Operating System Fingerprint data blocks.
Operating
System
Fingerprint
(User Agent
Fingerprint)
Data Blocks *
variable
Operating System Fingerprint data blocks
containing information about the operating
system on a host identified using a user agent
fingerprint. See
on page 339 for a description
of this data block.
List Block Type
uint32
Initiates a List data block comprising Server
data blocks conveying TCP server data. This
value is always 11.
List Block
Length
uint32
Number of bytes in the list. This number
includes the eight bytes of the list block type
and length fields, plus all encapsulated Server
data blocks.
This field is followed by zero or more Server
This field is followed by zero or more Server
data blocks.
TCP Server
Data Blocks
variable
Host server data blocks describing a TCP
server. See
page 312 for a description of this data block.
List Block Type
uint32
Initiates a List data block comprising Server
data blocks conveying UDP server data. This
value is always 11.
Host Profile Data Block 5.2+ Fields (Continued)
F
IELD
D
ATA
T
YPE
D
ESCRIPTION