Cisco Cisco Firepower Management Center 2000 Guia Do Programador

Correlation Block Length

Device ID

(Correlation) Event Second

Event ID

Policy ID

Rule ID

Priority

Event

Description

String Block Type (0)

String Block Length

Description...

Event Type

Event Device ID

Signature ID

Signature Generator ID

(Trigger) Event Second

(Trigger) Event Microsecond

Event ID

Event Defined Mask

Event Impact Flags

IP Protocol

Network Protocol

Source IP

Source OS Fprt 

UUID

Source Host Type

Source VLAN ID

Source OS Fprt UUID

Source OS Fingerprint UUID, continued

Source OS Fingerprint UUID, continued

Source OS Fingerprint UUID, continued

Source OS Fingerprint UUID, continued

Source Criticality

Source Criticality, 

cont

Source User ID

Byte

0

1

2

3

Bit

0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31