Cisco Cisco Firepower Management Center 4000 개발자 가이드
Version 5.3
Sourcefire 3D System eStreamer Integration Guide
86
Understanding Intrusion and Correlation Data Structures
Intrusion Event and Metadata Record Types
Chapter 3
The
table describes the fields in the Correlation
Policy record.
Name Length
Name...
Description Length
Description...
Correlation Policy
UU
ID
Correlation Policy UUID
Correlation Policy UUID, continued
Correlation Policy UUID, continued
Correlation Policy UUID, continued
Co
rrelation
Policy
Rev
ision UUID
Correlation Policy Revision UUID
Correlation Policy Revision UUID, continued
Correlation Policy Revision UUID, continued
Correlation Policy Revision UUID, continued
Correlation Policy Record Fields
F
IELD
D
ATA
T
YPE
D
ESCRIPTION
Correlation
Policy ID
uint32
The correlation policy ID number.
Name Length
uint16
The number of bytes included in the
correlation policy name.
Name
string
The name of the correlation policy that
triggered the event.
Description
Length
uint16
The number of bytes included in the
correlation policy description.
Description
string
The description of the correlation policy that
triggered the event.