Cisco Cisco Firepower Management Center 4000 开发者指南
4-4
FireSIGHT eStreamer Integration Guide
Chapter 4 Understanding Discovery & Connection Data Structures
Discovery and Connection Event Data Messages
47
55
1
Update Host Attribute
Current
48
55
1
Delete Host Attribute
Current
51
103
1
TCP Server Confidence
Update
Update
Legacy
52
103
1
UDP Server Confidence
Update
Update
Legacy
53
53
1
OS Confidence Update
Legacy
54
N/A
N/A
Fingerprint Metadata
Current
55
N/A
N/A
Client Application
Metadata
Metadata
Current
57
N/A
N/A
Vulnerability Metadata
Current
58
N/A
N/A
Criticality Metadata
Current
59
N/A
N/A
Network Protocol
Metadata
Metadata
Current
60
N/A
N/A
Attribute Metadata
Current
61
N/A
N/A
Scan Type Metadata
Current
63
N/A
N/A
Server Metadata
Current
71
144
1
Connection Statistics
Legacy
71
152
1
Connection Statistics
Legacy
71
154
1
Connection Statistics
Current
73
136
1
Connection Chunks
Current
74
N/A
N/A
User Set OS
Current
75
N/A
N/A
User Set Server
Current
76
83
1
User Delete Protocol
Current
77
60
1
User Delete Client
Application
Application
Current
78
78
1
User Delete Address
Current
79
77
1
User Delete Server
Current
80
80
1
User Set Valid
Vulnerabilities
Vulnerabilities
Current
81
80
1
User Set Invalid
Vulnerabilities
Vulnerabilities
Current
82
81
1
User Set Host Criticality
Current
83
55
1
User Set Attribute Value
Current
Table 4-1
Discovery and Connection Event Record Types (continued)
Record
Type
Type
Contains
Block Type Series
Block Type Series
Description
Record
Status
Status
Data Format Described in...