Руководство Разработчика для Cisco Cisco Firepower Management Center 4000
4-149
FireSIGHT eStreamer Integration Guide
Chapter 4 Understanding Discovery & Connection Data Structures
Host Discovery and Connection Data Blocks
Generic List
Block Type
Block Type
uint32
Initiates a Generic List data block comprising Operating System
Fingerprint data blocks conveying fingerprint data identified using a
client fingerprint. This value is always
Fingerprint data blocks conveying fingerprint data identified using a
client fingerprint. This value is always
31
.
Generic List
Block Length
Block Length
uint32
Number of bytes in the Generic List data block, including the list
header and all encapsulated Operating System Fingerprint data
blocks.
header and all encapsulated Operating System Fingerprint data
blocks.
Operating
System
Fingerprint
(Client
Fingerprint) Data
Blocks *
System
Fingerprint
(Client
Fingerprint) Data
Blocks *
variable
Operating System Fingerprint data blocks containing information
about the operating system on a host identified using a client
fingerprint. See
about the operating system on a host identified using a client
fingerprint. See
for a description of this data block.
Generic List
Block Type
Block Type
uint32
Initiates a Generic List data block comprising Operating System
Fingerprint data blocks conveying fingerprint data identified using an
SMB fingerprint. This value is always
Fingerprint data blocks conveying fingerprint data identified using an
SMB fingerprint. This value is always
31
.
Generic List
Block Length
Block Length
uint32
Number of bytes in the Generic List data block, including the list
header and all encapsulated Operating System Fingerprint data
blocks.
header and all encapsulated Operating System Fingerprint data
blocks.
Operating
System
Fingerprint
(SMB
Fingerprint) Data
Blocks *
System
Fingerprint
(SMB
Fingerprint) Data
Blocks *
variable
Operating System Fingerprint data blocks containing information
about the operating system on a host identified using an SMB
fingerprint. See
about the operating system on a host identified using an SMB
fingerprint. See
for a description of this data block.
Generic List
Block Type
Block Type
uint32
Initiates a Generic List data block comprising Operating System
Fingerprint data blocks conveying fingerprint data identified using a
DHCP fingerprint. This value is always
Fingerprint data blocks conveying fingerprint data identified using a
DHCP fingerprint. This value is always
31
.
Generic List
Block Length
Block Length
uint32
Number of bytes in the Generic List data block, including the list
header and all encapsulated Operating System Fingerprint data
blocks.
header and all encapsulated Operating System Fingerprint data
blocks.
Operating
System
Fingerprint
(DHCP
Fingerprint) Data
Blocks *
System
Fingerprint
(DHCP
Fingerprint) Data
Blocks *
variable
Operating System Fingerprint data blocks containing information
about the operating system on a host identified using a DHCP
fingerprint. See
about the operating system on a host identified using a DHCP
fingerprint. See
for a description of this data block.
Generic List
Block Type
Block Type
uint32
Initiates a Generic List data block comprising Operating System
Fingerprint data blocks conveying fingerprint data identified using a
mobile device fingerprint. This value is always
Fingerprint data blocks conveying fingerprint data identified using a
mobile device fingerprint. This value is always
31
.
Generic List
Block Length
Block Length
uint32
Number of bytes in the Generic List data block, including the list
header and all encapsulated Operating System Fingerprint data
blocks.
header and all encapsulated Operating System Fingerprint data
blocks.
Table 4-81
Host Profile Data Block 5.2+ Fields (continued)
Field
Data Type
Description