Cisco Cisco Firepower Management Center 4000 开发者指南
Version 5.3
Sourcefire 3D System eStreamer Integration Guide
474
Understanding Legacy Data Structures
Legacy Intrusion Data Structures
Appendix B
The
Intrusion Event (IPv6) Record Fields
table describes each intrusion event
record data field.
Interface Ingress UUID, continued
Interface Ingress UUID, continued
Interface Ingress UUID, continued
Interface Egress UUID
Interface Egress UUID, continued
Interface Egress UUID, continued
Interface Egress UUID, continued
Security Zone Ingress UUID
Security Zone Ingress UUID, continued
Security Zone Ingress UUID, continued
Security Zone Ingress UUID, continued
Security Zone Egress UUID
Security Zone Egress UUID, continued
Security Zone Egress UUID, continued
Security Zone Egress UUID, continued
Intrusion Event (IPv6) Record Fields
F
IELD
D
ATA
T
YPE
D
ESCRIPTION
Device ID
unit32
Contains the identification number of the
detecting device. You can obtain the managed
device name by requesting Version 3 or 4
metadata. See
on page 99 for more information.
Event ID
uint32
Event identification number.
Event Second
uint32
UNIX timestamp (seconds since 01/01/1970) of
the event’s detection.
Event
Microsecond
uint32
Microsecond (one millionth of a second)
increment of the timestamp of the event’s
detection.