TPLINK-ACL-RULE-MIB DEFINITIONS ::= BEGIN IMPORTS TPRowStatus FROM TPLINK-TC-MIB OBJECT-TYPE,MODULE-IDENTITY,IpAddress,NOTIFICATION-TYPE FROM SNMPv2-SMI tplinkMgmt FROM TPLINK-MIB tplinkAclMIBObjects FROM TPLINK-ACL-MIB; tpAclRuleConfigure OBJECT IDENTIFIER ::= {tplinkAclMIBObjects 1} tplinkAclNotifications OBJECT IDENTIFIER ::= {tplinkAclMIBObjects 2} --MAC RULE LIST tpMacRuleTable OBJECT-TYPE SYNTAX SEQUENCE OF TPMACRULEENTRY MAX-ACCESS not-accessible STATUS current DESCRIPTION "A list of L2 MAC ACL rule entries. Here you can add MAC ACL rules for further ACL configuration." ::= { tpAclRuleConfigure 1 } tpMacRuleEntry OBJECT-TYPE SYNTAX TPMACRULEENTRY MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry contains of the information of MAC ACL." INDEX { tpMacAclId,tpMacRuleId } ::= { tpMacRuleTable 1 } TPMACRULEENTRY ::= SEQUENCE { tpMacAclId INTEGER, tpMacRuleId INTEGER, tpMacAclName OCTET STRING, tpMacSecOperation INTEGER, tpMacCounterLogging INTEGER, tpMacSmacAddress OCTET STRING, tpMacSmacMask OCTET STRING, tpMacDmacAddress OCTET STRING, tpMacDmacMask OCTET STRING, tpMacVlanId INTEGER, tpMacEtherType INTEGER, tpMacPri INTEGER, tpMacTimeSegment OCTET STRING, tpMacRuleStatus TPRowStatus } tpMacAclId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "MAC ACL ID." ::= { tpMacRuleEntry 1 } tpMacRuleId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "MAC ACL rule ID." ::= { tpMacRuleEntry 2 } tpMacAclName OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "MAC ACL name, NULL string will give this ACL a default name as 'ACL_n', n stands for ACL ID. The first rule created in an ACL entry will set the ACL name field, however the following rules can never change the ACL name anymore." ::= {tpMacRuleEntry 3} tpMacSecOperation OBJECT-TYPE SYNTAX INTEGER {permit(0),deny(1)} MAX-ACCESS read-create STATUS current DESCRIPTION "MAC ACL Security Operation." ::= {tpMacRuleEntry 4} tpMacCounterLogging OBJECT-TYPE SYNTAX INTEGER {disable(0),enable(1)} MAX-ACCESS read-create STATUS current DESCRIPTION "MAC ACL rule counter logging operation." ::={tpMacRuleEntry 5} tpMacSmacAddress OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Source MAC address, string length setting to zero means that the source MAC address is disabled." ::= {tpMacRuleEntry 6} tpMacSmacMask OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Source Mac Mask, string length setting to zero means that every bit of the mask is 1." ::= {tpMacRuleEntry 7} tpMacDmacAddress OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Destination MAC address, string length setting to zero means that the destination MAC address is disabled." ::= {tpMacRuleEntry 8} tpMacDmacMask OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Destination Mac Mask, string length setting to zero means that every bit of the mask is 1." ::= {tpMacRuleEntry 9} tpMacVlanId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "VLAN ID, 0-4094, value '0' means that the vid field is disabled." ::= {tpMacRuleEntry 10} tpMacEtherType OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "Ethernet protocol type, 0x0-0x10000. Value '65536' or '0x10000' means that the EtherType field is disabled." ::= {tpMacRuleEntry 11} tpMacPri OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "802.1P priority, 0-8, value '8' means that the priority field is disabled." ::= {tpMacRuleEntry 12} tpMacTimeSegment OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "MAC ACL time segment name(max length: 16), the time segment name must be configured previously and string length setting to zero means that this field is disabled." ::= {tpMacRuleEntry 13} tpMacRuleStatus OBJECT-TYPE SYNTAX TPRowStatus MAX-ACCESS read-create STATUS current DESCRIPTION "the following two values are states: these values may be read or written active(1), notInService(2), the following value is a state: this value may be read, but not written notReady(3), the following three values are actions: these values may be written, but are never read createAndGo(4), createAndWait(5), destroy(6)" ::= {tpMacRuleEntry 14} --IP RULE LIST tpIpRuleTable OBJECT-TYPE SYNTAX SEQUENCE OF TPIPRULEENTRY MAX-ACCESS not-accessible STATUS current DESCRIPTION "A list of IP rule entries. Here you can add IP ACL rules for further ACL configuration." ::= {tpAclRuleConfigure 2} tpIpRuleEntry OBJECT-TYPE SYNTAX TPIPRULEENTRY MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry contains of the information of IP ACL." INDEX {tpIpAclId,tpIpRuleId} ::= {tpIpRuleTable 1} TPIPRULEENTRY ::= SEQUENCE { tpIpAclId INTEGER, tpIpRuleId INTEGER, tpIpAclName OCTET STRING, tpIpSecOperation INTEGER, tpIpCounterLogging INTEGER, tpIpFragment INTEGER, tpIpSipAddress IpAddress, tpIpSipMask IpAddress, tpIpDipAddress IpAddress, tpIpDipMask IpAddress, tpIpProtocol INTEGER, tpIpTcpFlag INTEGER, tpIpSourcePort INTEGER, tpIpSourcePortMask OCTET STRING, tpIpDestPort INTEGER, tpIpDestPortMask OCTET STRING, tpIpDscp INTEGER, tpIpTos INTEGER, tpIpPre INTEGER, tpIpTimeSegment OCTET STRING, tpIpRuleStatus TPRowStatus } tpIpAclId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "IP ACL ID." ::= {tpIpRuleEntry 1} tpIpRuleId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "IP ACL rule ID." ::= {tpIpRuleEntry 2} tpIpAclName OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "IP ACL name, NULL string will give this ACL a default name as 'ACL_n', n stands for ACL ID." ::= {tpIpRuleEntry 3} tpIpSecOperation OBJECT-TYPE SYNTAX INTEGER {permit(0),deny(1)} MAX-ACCESS read-create STATUS current DESCRIPTION "IP ACL Security Operation." ::= {tpIpRuleEntry 4} tpIpCounterLogging OBJECT-TYPE SYNTAX INTEGER {disable(0),enable(1)} MAX-ACCESS read-create STATUS current DESCRIPTION "IP ACL rule counter logging operation." ::={tpIpRuleEntry 5} tpIpFragment OBJECT-TYPE SYNTAX INTEGER {disable(0),enable(1)} MAX-ACCESS read-create STATUS current DESCRIPTION "IP fragment, conflicts with all the L4 feature." ::= {tpIpRuleEntry 6} tpIpSipAddress OBJECT-TYPE SYNTAX IpAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Source IP address, value '0.0.0.0' means that the source IP address is disabled." ::= {tpIpRuleEntry 7} tpIpSipMask OBJECT-TYPE SYNTAX IpAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Source IP Mask, value '0.0.0.0' or zero length means that the mask is 255.255.255.255." ::= {tpIpRuleEntry 8} tpIpDipAddress OBJECT-TYPE SYNTAX IpAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Destination IP address, value '0.0.0.0' means that the Destination IP address is disabled." ::= {tpIpRuleEntry 9} tpIpDipMask OBJECT-TYPE SYNTAX IpAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Destination IP Mask, value '0.0.0.0' or zero length means that the mask is 255.255.255.255." ::= {tpIpRuleEntry 10} tpIpProtocol OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "L4 protocol type, 0-255, value '0' means this field is disabled. This field conflicts with the TCP Flags or the source/destination port numbers when it is not the value '6'(TCP), or '17'(UDP)." ::= {tpIpRuleEntry 11} tpIpTcpFlag OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IP TCP flag, this field is described as a bit-map structure: There are 12 bits of this field, the higher 6 bits show us whether these TCP flags are enabled(1) or disabled(0). The lower 6 bits show us the 6 kind of TCP flags' value (0-1). From the highest bit(bit11) to the lowest bit(0), each bit stands for a TCP flag: bit11 & bit5 -- URG flag bit10 & bit4 -- ACK flag bit9 & bit3 -- PSH flag bit8 & bit2 -- RST flag bit7 & bit1 -- SYN flag bit6 & bit0 -- FIN flag" ::= {tpIpRuleEntry 12} tpIpSourcePort OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IP TCP/UDP source port, 0-65536, value '65536' means that this field is disabled." ::= {tpIpRuleEntry 13} tpIpSourcePortMask OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "IP TCP/UDP source port mask, 0000-ffff, 4 hex number, NULL string will set this mask to a default value ffff." ::= {tpIpRuleEntry 14} tpIpDestPort OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IP TCP/UDP destination port, 0-65536, value '65536' means that this field is disabled." ::= {tpIpRuleEntry 15} tpIpDestPortMask OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "IP TCP/UDP destination port mask, 0000-ffff, 4 hex number, NULL string will set this mask to a default value ffff." ::= {tpIpRuleEntry 16} tpIpDscp OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IP DSCP, 0-64, value '64' means this field is disabled. conflicts with the Tos and Pre." ::= {tpIpRuleEntry 17} tpIpTos OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IP type of service(ToS), 0-16, value '16' means this field is disabled." ::= {tpIpRuleEntry 18} tpIpPre OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IP pre, 0-8, value '8' means this field is disabled." ::= {tpIpRuleEntry 19} tpIpTimeSegment OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "IP ACL time segment name(max length: 16), the time segment name must be configured previously and string length setting to zero means that this field is disabled." ::= {tpIpRuleEntry 20} tpIpRuleStatus OBJECT-TYPE SYNTAX TPRowStatus MAX-ACCESS read-create STATUS current DESCRIPTION "the following two values are states: these values may be read or written active(1), notInService(2), the following value is a state: this value may be read, but not written notReady(3), the following three values are actions: these values may be written, but are never read createAndGo(4), createAndWait(5), destroy(6)" ::= {tpIpRuleEntry 21} --CombRuleList tpCombRuleTable OBJECT-TYPE SYNTAX SEQUENCE OF TPCOMBRULEENTRY MAX-ACCESS not-accessible STATUS current DESCRIPTION "A list of combined MAC+IP rule entries. Here you can add combined ACL rules for further ACL configuration." ::= {tpAclRuleConfigure 3} tpCombRuleEntry OBJECT-TYPE SYNTAX TPCOMBRULEENTRY MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry contains of the information of Combined ACL." INDEX {tpCombAclId,tpCombRuleId} ::= {tpCombRuleTable 1} TPCOMBRULEENTRY ::= SEQUENCE { tpCombAclId INTEGER, tpCombRuleId INTEGER, tpCombAclName OCTET STRING, tpCombSecOperation INTEGER, tpCombCounterLogging INTEGER, tpCombSmacAddress OCTET STRING, tpCombSmacMask OCTET STRING, tpCombDmacAddress OCTET STRING, tpCombDmacMask OCTET STRING, tpCombVlanId INTEGER, tpCombEtherType INTEGER, tpCombPri INTEGER, tpCombSipAddress IpAddress, tpCombSipMask IpAddress, tpCombDipAddress IpAddress, tpCombDipMask IpAddress, tpCombDscp INTEGER, tpCombTos INTEGER, tpCombPre INTEGER, tpCombFragment INTEGER, tpCombProtocol INTEGER, tpCombSourcePort INTEGER, tpCombSourcePortMask OCTET STRING, tpCombDestPort INTEGER, tpCombDestPortMask OCTET STRING, tpCombTcpFlag INTEGER, tpCombTimeSegment OCTET STRING, tpCombRuleStatus TPRowStatus } tpCombAclId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "Combined MAC+IP ACL ID." ::= {tpCombRuleEntry 1} tpCombRuleId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "Combined ACL rule ID." ::= {tpCombRuleEntry 2} tpCombAclName OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Combined ACL name, NULL string will give this ACL a default name as 'ACL_n', n stands for ACL ID." ::= {tpCombRuleEntry 3} tpCombSecOperation OBJECT-TYPE SYNTAX INTEGER {permit(0),deny(1)} MAX-ACCESS read-create STATUS current DESCRIPTION "Combined ACL Security Operation." ::= {tpCombRuleEntry 4} tpCombCounterLogging OBJECT-TYPE SYNTAX INTEGER {disable(0),enable(1)} MAX-ACCESS read-create STATUS current DESCRIPTION "Combined ACL rule counter logging operation." ::={tpCombRuleEntry 5} tpCombSmacAddress OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Source MAC address, string length setting to zero means that the source MAC address is disabled." ::= {tpCombRuleEntry 6} tpCombSmacMask OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Source MAC Mask, string length setting to zero means that every bit of the mask is 1." ::= {tpCombRuleEntry 7} tpCombDmacAddress OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Destination MAC address, string length setting to zero means that the destination MAC address is disabled." ::= {tpCombRuleEntry 8} tpCombDmacMask OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Destination MAC Mask, string length setting to zero means that every bit of the mask is 1." ::= {tpCombRuleEntry 9} tpCombVlanId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "VLAN ID, 0-4094, value '0' means that the vid field is disabled." ::= {tpCombRuleEntry 10} tpCombEtherType OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "Ethernet protocol type, 0x0-0x10000. Value '65536' or '0x10000' means that the EtherType field is disabled." ::= {tpCombRuleEntry 11} tpCombPri OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "802.1P priority, 0-8, value '8' means that the priority field is disabled." ::= {tpCombRuleEntry 12} tpCombSipAddress OBJECT-TYPE SYNTAX IpAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Source IP address, value '0.0.0.0' means that the source IP address is disabled." ::= {tpCombRuleEntry 13} tpCombSipMask OBJECT-TYPE SYNTAX IpAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Source IP mask, value '0.0.0.0' or zero length means that the mask is 255.255.255.255." ::= {tpCombRuleEntry 14} tpCombDipAddress OBJECT-TYPE SYNTAX IpAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Destination IP address, value '0.0.0.0' means that the destination IP address is disabled." ::= {tpCombRuleEntry 15} tpCombDipMask OBJECT-TYPE SYNTAX IpAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Destination IP mask, value '0.0.0.0' or zero length means that the mask is 255.255.255.255." ::= {tpCombRuleEntry 16} tpCombDscp OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IP DSCP, 0-64, value '64' means this field is disabled. conflicts with the Tos and Pre." ::= {tpCombRuleEntry 17} tpCombTos OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IP type of service(ToS), 0-16, value '16' means this field is disabled." ::= {tpCombRuleEntry 18} tpCombPre OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IP pre, 0-8, value '8' means this field is disabled." ::= {tpCombRuleEntry 19} tpCombFragment OBJECT-TYPE SYNTAX INTEGER {disable(0),enable(1)} MAX-ACCESS read-create STATUS current DESCRIPTION "IP fragment, conflicts with all the L4 feature." ::= {tpCombRuleEntry 20} tpCombProtocol OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "L4 protocol type, 0-255, value '0' means this field is disabled. This field conflicts with the TCP Flags or the source/destination port numbers when it is not the value '6'(TCP), or '17'(UDP)." ::= {tpCombRuleEntry 21} tpCombSourcePort OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IP TCP/UDP source port, 0-65536, value '65536' means that this field is disabled." ::= {tpCombRuleEntry 22} tpCombSourcePortMask OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "IP TCP/UDP source port mask, 0000-ffff, 4 hex number, NULL string will set this mask to a default value ffff." ::= {tpCombRuleEntry 23} tpCombDestPort OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IP TCP/UDP destination port, 0-65536, value '65536' means that this field is disabled." ::= {tpCombRuleEntry 24} tpCombDestPortMask OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "IP TCP/UDP destination port mask, 0000-ffff, 4 hex number, NULL string will set this mask to a default value ffff." ::= {tpCombRuleEntry 25} tpCombTcpFlag OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IP TCP flag, this field is described as a bit-map structure: There are 12 bits of this field, the higher 6 bits show us whether these TCP flags are enabled(1) or disabled(0). The lower 6 bits show us the 6 kind of TCP flags' value (0-1). From the highest bit(bit11) to the lowest bit(0), each bit stands for a TCP flag: bit11 & bit5 -- URG flag bit10 & bit4 -- ACK flag bit9 & bit3 -- PSH flag bit8 & bit2 -- RST flag bit7 & bit1 -- SYN flag bit6 & bit0 -- FIN flag" ::= {tpCombRuleEntry 26} tpCombTimeSegment OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Combined ACL time segment name(max length: 16), the time segment name must be configured previously and string length setting to zero means that this field is disabled." ::= {tpCombRuleEntry 27} tpCombRuleStatus OBJECT-TYPE SYNTAX TPRowStatus MAX-ACCESS read-create STATUS current DESCRIPTION "the following two values are states: these values may be read or written active(1), notInService(2), the following value is a state: this value may be read, but not written notReady(3), the following three values are actions: these values may be written, but are never read createAndGo(4), createAndWait(5), destroy(6)" ::= {tpCombRuleEntry 28} --IPv6 Rule List tpIPv6RuleTable OBJECT-TYPE SYNTAX SEQUENCE OF TPIPV6RULEENTRY MAX-ACCESS not-accessible STATUS current DESCRIPTION "A list of IPv6 rule entries. Here you can add IPv6 ACL rules for further ACL configuration." ::= {tpAclRuleConfigure 4} tpIPv6RuleEntry OBJECT-TYPE SYNTAX TPIPV6RULEENTRY MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry contains of the information of IPv6 ACL." INDEX {tpIPv6AclId,tpIPv6RuleId} ::= {tpIPv6RuleTable 1} TPIPV6RULEENTRY ::= SEQUENCE { tpIPv6AclId INTEGER, tpIPv6RuleId INTEGER, tpIPv6AclName OCTET STRING, tpIPv6SecOperation INTEGER, tpIPv6CounterLogging INTEGER, tpIPv6TrafficClass INTEGER, tpIPv6FlowLabel INTEGER, tpIPv6SipAddress OCTET STRING, tpIPv6SipMask OCTET STRING, tpIPv6DipAddress OCTET STRING, tpIPv6DipMask OCTET STRING, tpIPv6Protocol INTEGER, tpIPv6SourcePort INTEGER, tpIPv6DestPort INTEGER, tpIPv6TimeSegment OCTET STRING, tpIPv6RuleStatus TPRowStatus } tpIPv6AclId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "IPv6 ACL ID." ::= {tpIPv6RuleEntry 1} tpIPv6RuleId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "IPv6 ACL rule ID." ::= {tpIPv6RuleEntry 2} tpIPv6AclName OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "IPv6 ACL name, NULL string will give this ACL a default name as 'ACL_n', n stands for ACL ID." ::= {tpIPv6RuleEntry 3} tpIPv6SecOperation OBJECT-TYPE SYNTAX INTEGER {permit(0),deny(1)} MAX-ACCESS read-create STATUS current DESCRIPTION "IPv6 ACL Security Operation." ::= {tpIPv6RuleEntry 4} tpIPv6CounterLogging OBJECT-TYPE SYNTAX INTEGER {disable(0),enable(1)} MAX-ACCESS read-create STATUS current DESCRIPTION "IPv6 ACL rule counter logging operation." ::={tpIPv6RuleEntry 5} tpIPv6TrafficClass OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "Traffic Class DSCP, 0-64, value '64' means that this field is disabled." ::= {tpIPv6RuleEntry 6} tpIPv6FlowLabel OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IPv6 Flow Label, 0x0-0x100000, value '0x100000' or '1048576' means that this field is disabled." ::= {tpIPv6RuleEntry 7} tpIPv6SipAddress OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "IPv6 source IP address, only upper 64 bits supported; the all-zero address means that the source IPv6 address is disabled." ::= {tpIPv6RuleEntry 8} tpIPv6SipMask OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "IPv6 source IP mask, 64 bits, format: ffff:ffff:ffff:ffff; zero length means that every bit of the mask is 1." ::= {tpIPv6RuleEntry 9} tpIPv6DipAddress OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "IPv6 destination IP address, only upper 64 bits supported; the all-zero address means that the destination IPv6 address is disabled." ::= {tpIPv6RuleEntry 10} tpIPv6DipMask OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "IPv6 destination IP mask, 64 bits, format: ffff:ffff:ffff:ffff; zero length means that every bit of the mask is 1." ::= {tpIPv6RuleEntry 11} tpIPv6Protocol OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IPv6 Protocol, 0-255, value '0' means that this field is disabled." ::= {tpIPv6RuleEntry 12} tpIPv6SourcePort OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IPv6 L4 source port, 0-65536, value '65536' means that this field is disabled." ::= {tpIPv6RuleEntry 13} tpIPv6DestPort OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "IPv6 L4 destination port, 0-65536, value '65536' means that this field is disabled." ::= {tpIPv6RuleEntry 14} tpIPv6TimeSegment OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "IPv6 ACL time segment name(max length: 16), the time segment name must be configured previously and string length setting to zero means that this field is disabled." ::= {tpIPv6RuleEntry 15} tpIPv6RuleStatus OBJECT-TYPE SYNTAX TPRowStatus MAX-ACCESS read-create STATUS current DESCRIPTION "the following two values are states: these values may be read or written active(1), notInService(2), the following value is a state: this value may be read, but not written notReady(3), the following three values are actions: these values may be written, but are never read createAndGo(4), createAndWait(5), destroy(6)" ::= {tpIPv6RuleEntry 16} --PktCntnt Rule List tpPktCntntOffsetProfile OBJECT IDENTIFIER ::= {tpAclRuleConfigure 5} tpPktCntntOffset0 OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL chunk0 offset(0-31), the offset value will be set into the switch only after all the 4 chunks' offset being configured." ::= {tpPktCntntOffsetProfile 1} tpPktCntntOffset1 OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL chunk1 offset(0-31)." ::= {tpPktCntntOffsetProfile 2} tpPktCntntOffset2 OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL chunk2 offset(0-31)." ::= {tpPktCntntOffsetProfile 3} tpPktCntntOffset3 OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL chunk3 offset(0-31)." ::= {tpPktCntntOffsetProfile 4} tpPktCntntRuleTable OBJECT-TYPE SYNTAX SEQUENCE OF TPPKTCNTNTRULEENTRY MAX-ACCESS not-accessible STATUS current DESCRIPTION "A list of Packet Content rule entries. Here you can add Packet Content ACL rules for further ACL configuration." ::= {tpAclRuleConfigure 6} tpPktCntntRuleEntry OBJECT-TYPE SYNTAX TPPKTCNTNTRULEENTRY MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry contains of the information of Packet Content ACL." INDEX {tpPktCntntAclId,tpPktCntntRuleId} ::= {tpPktCntntRuleTable 1} TPPKTCNTNTRULEENTRY ::= SEQUENCE { tpPktCntntAclId INTEGER, tpPktCntntRuleId INTEGER, tpPktCntntAclName OCTET STRING, tpPktCntntSecOperation INTEGER, tpPktCntntCounterLogging INTEGER, tpPktCntntChunkValue0 OCTET STRING, tpPktCntntChunkMask0 OCTET STRING, tpPktCntntChunkValue1 OCTET STRING, tpPktCntntChunkMask1 OCTET STRING, tpPktCntntChunkValue2 OCTET STRING, tpPktCntntChunkMask2 OCTET STRING, tpPktCntntChunkValue3 OCTET STRING, tpPktCntntChunkMask3 OCTET STRING, tpPktCntntTimeSegment OCTET STRING, tpPktCntntRuleStatus TPRowStatus } tpPktCntntAclId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "Packet Content ACL ID." ::= {tpPktCntntRuleEntry 1} tpPktCntntRuleId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "Packet Content ACL rule ID." ::= {tpPktCntntRuleEntry 2} tpPktCntntAclName OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Packet content ACL name, NULL string will give this ACL a default name as 'ACL_n', n stands for ACL ID." ::= {tpPktCntntRuleEntry 3} tpPktCntntSecOperation OBJECT-TYPE SYNTAX INTEGER {permit(0),deny(1)} MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL Security Operation." ::= {tpPktCntntRuleEntry 4} tpPktCntntCounterLogging OBJECT-TYPE SYNTAX INTEGER {disable(0),enable(1)} MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL rule counter logging operation." ::={tpPktCntntRuleEntry 5} tpPktCntntChunkValue0 OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL chunk0 value(32bit), a hex string such as eafff3, this maximum value of a chunk is 0xffffffff." ::= { tpPktCntntRuleEntry 6 } tpPktCntntChunkMask0 OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL chunk0 mask(32bit), an 8 hex string such as ffffffff, if mask is set to NULL(zero length), it means ffffffff." ::= { tpPktCntntRuleEntry 7 } tpPktCntntChunkValue1 OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL chunk1 value(32bit)." ::= { tpPktCntntRuleEntry 8 } tpPktCntntChunkMask1 OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL chunk1 mask(32bit)." ::= { tpPktCntntRuleEntry 9 } tpPktCntntChunkValue2 OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL chunk2 value(32bit)." ::= { tpPktCntntRuleEntry 10 } tpPktCntntChunkMask2 OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL chunk2 mask(32bit)." ::= { tpPktCntntRuleEntry 11 } tpPktCntntChunkValue3 OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL chunk3 value(32bit)." ::= { tpPktCntntRuleEntry 12 } tpPktCntntChunkMask3 OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL chunk3 mask(32bit)." ::= { tpPktCntntRuleEntry 13 } tpPktCntntTimeSegment OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-create STATUS current DESCRIPTION "Packet Content ACL time segment name(max length: 16), the time segment name must be configured previously and string length setting to zero means that this field is disabled." ::= { tpPktCntntRuleEntry 14 } tpPktCntntRuleStatus OBJECT-TYPE SYNTAX TPRowStatus MAX-ACCESS read-create STATUS current DESCRIPTION "the following two values are states: these values may be read or written active(1), notInService(2), the following value is a state: this value may be read, but not written notReady(3), the following three values are actions: these values may be written, but are never read createAndGo(4), createAndWait(5), destroy(6)" ::= { tpPktCntntRuleEntry 15 } tpAclRuleCounterTable OBJECT-TYPE SYNTAX SEQUENCE OF TPACLRULECOUNTERENTRY MAX-ACCESS not-accessible STATUS current DESCRIPTION "A list of ACL rule counter entries. Here you can view the matched packets counter of the specified ACL rule." ::= {tpAclRuleConfigure 7} tpAclRuleCounterEntry OBJECT-TYPE SYNTAX TPACLRULECOUNTERENTRY MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry contains of the matched counter of an ACL rule." INDEX {tpAclCounterAclId,tpAclCounterRuleId} ::= {tpAclRuleCounterTable 1} TPACLRULECOUNTERENTRY ::= SEQUENCE { tpAclCounterAclId INTEGER, tpAclCounterRuleId INTEGER, tpAclCounterLoggingEnable INTEGER, tpAclCounterNum INTEGER } tpAclCounterAclId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "The ACL ID." ::= {tpAclRuleCounterEntry 1} tpAclCounterRuleId OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "The ACL rule ID." ::= {tpAclRuleCounterEntry 2} tpAclCounterLoggingEnable OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "The counter logging enable/disable status of the specified ACL rule." ::= {tpAclRuleCounterEntry 3} tpAclCounterNum OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "The matched packets counter of the specified ACL rule." ::= {tpAclRuleCounterEntry 4} tpAclLoggingCounter NOTIFICATION-TYPE OBJECTS { tpAclCounterAclId, tpAclCounterRuleId, tpAclCounterNum } STATUS current DESCRIPTION "ACL matched counter notification. Note that if you need this notification, the 'logging' must be set enable. The transmission of ACL counte notifications are throttled by the agent every 5 minutes." ::= {tplinkAclNotifications 1} END