📄️ eStreamer
Cisco's event streaming protocol used by Firepower Management Center (FMC) to send events to export security event data, intrusion alerts, connection logs, and other network telemetry in real-time. It enables integration with external SIEMs and analytics platforms, providing deep visibility into network security events.
📄️ IPFIX
The IP Flow Information Export is an IETF-standardized protocol for exporting flow-based traffic data from routers, switches, and other network devices. It is an evolution of NetFlow, offering greater flexibility by supporting custom fields and templates for diverse network monitoring, security, and analytics applications. IPFIX allows vendors to define and export additional data types beyond traditional NetFlow fields.
📄️ Kafka
Binary Layout
📄️ NATS
NATS protocol for lightweight messaging:
📄️ NetFlow
A network protocol developed by Cisco for collecting, analyzing, and monitoring network traffic. It captures metadata about IP traffic flows, providing insights into bandwidth usage, security threats, and network performance. NetFlow records include key details such as source and destination IPs, ports, protocol types, and timestamps.
📄️ RabbitMQ
Advanced Message Queuing Protocol (AMQP) 0-9-1 frame structure:
📄️ Redis
Redis Serialization Protocol (RESP) for client-server communication:
📄️ sFlow
sFlow (Sampled Flow) is a network monitoring protocol designed for high-speed networks. Unlike NetFlow and IPFIX, which capture complete flow records, sFlow uses packet sampling to provide scalable and efficient traffic analysis. It operates by embedding monitoring agents in network devices that randomly sample packets and send them to a central collector for analysis.
📄️ SMTP
Simple Mail Transfer Protocol for email transmission:
📄️ Syslog
Standard protocol for system logging:
📄️ TFTP
Trivial File Transfer Protocol for simple file transfers: