Symantec 10521146 - Network Security 7120 Administration Manual page 336

336 SQL reference
Using MySQL tables
Table B-4 MySQL Event Table
Field Name
hdrInfo
ident
ifID
ifName
incidentID
mappedType
module
nodeName
nodeNum
outcome
pldEnd
pldStt
poolID
poolName
prot
pyld
Type Description
text Indicates the TCP/IP header information OR full
packet.
varchar(33) Indicates the unique identifier for each type of
message.
varchar(33) Indicates the ID of the interface (interfaceID
from the topology table) where this event was
detected.
varchar(65) Indicates the name of the interface where this
event was detected. For example: hme0
varchar(33) Indicates a unique string identifier that identifies
the incident to which this event belongs.
varchar(128) Indicates the mapped type of the event/incident
corresponding to type
varchar(33) Indicates the module name where this event was
generated.
varchar(255) Indicates the hostname of the software or
appliance node, corresponding to nodeNum
integer Indicates the Network Security node number
where the incident originated.
integer Indicates that the event was blocked if integer is
1.
integer Identifies the ending index of the region in
payload where the anomaly was detected.
integer Identifies the starting index of the region in
payload where the anomaly was detected.
varchar(33) Indicates the ID of the interface group where this
event was detected.
varchar(41) Indicates the name of the interface group where
this event was detected.
varchar(33) Indicates the protocol, either IP, TCP, UDP, or
ICMP.
text Indicates the portion of the packet that triggered
this event.
Notes
Base-64 encoded.
Used internally
Used internally
Used internally
Base-64 encoded