1400 lines
39 KiB
Plaintext
1400 lines
39 KiB
Plaintext
--
|
|
-- *******************************************************************
|
|
-- FS-IPSEC2-MIB.mib
|
|
-- May 2010, humin
|
|
--
|
|
-- Copyright (c) 2009 by FS.COM Inc..
|
|
-- All rights reserved.
|
|
-- *******************************************************************
|
|
--
|
|
|
|
FS-IPSEC2-MIB DEFINITIONS ::= BEGIN
|
|
|
|
IMPORTS
|
|
OBJECT-GROUP, MODULE-COMPLIANCE, NOTIFICATION-GROUP
|
|
FROM SNMPv2-CONF
|
|
IpAddress, Integer32, Unsigned32, Gauge32, Counter32,
|
|
Counter64, OBJECT-TYPE, NOTIFICATION-TYPE
|
|
FROM SNMPv2-SMI
|
|
DisplayString, TimeStamp, TEXTUAL-CONVENTION
|
|
FROM SNMPv2-TC
|
|
fsMgmt
|
|
FROM FS-SMI;
|
|
|
|
fsIPSec2MibModule MODULE-IDENTITY
|
|
LAST-UPDATED "201112191637Z" -- December 19, 2011 at 16:37 GMT
|
|
ORGANIZATION
|
|
"Organization."
|
|
CONTACT-INFO
|
|
"Contact-info."
|
|
DESCRIPTION
|
|
"Description."
|
|
::= { fsMgmt 108 }
|
|
|
|
|
|
--
|
|
-- Textual conventions
|
|
--
|
|
|
|
FSIPSecNegoType ::= TEXTUAL-CONVENTION
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The type of key used by an IPSec Phase-2 Tunnel. invalidType(2147483647)
|
|
is defined as invalid value."
|
|
SYNTAX INTEGER
|
|
{
|
|
ike(1),
|
|
manual(2),
|
|
invalidType(2147483647)
|
|
}
|
|
|
|
FSEncapMode ::= TEXTUAL-CONVENTION
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The encapsulation mode used by an IPSec Phase-2 Tunnel."
|
|
SYNTAX INTEGER
|
|
{
|
|
tunnel(1),
|
|
transport(2),
|
|
invalidMode(2147483647)
|
|
}
|
|
|
|
FSEncryptAlgo ::= TEXTUAL-CONVENTION
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The encryption algorithm used in the IKE and IPSec negotiations.
|
|
invalidAlg(2147483647) is defined as invalid value."
|
|
SYNTAX INTEGER
|
|
{
|
|
none(0),
|
|
desCbc(2),
|
|
threedesCbc(3),
|
|
aesCbc(12),
|
|
sm1Cbc(128),
|
|
invalidAlg(2147483647)
|
|
}
|
|
|
|
FSAuthAlgo ::= TEXTUAL-CONVENTION
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The authentication algorithm used in the IKE negotiations.
|
|
invalidAlg(2147483647) is defined as invalid value."
|
|
SYNTAX INTEGER
|
|
{
|
|
none(0),
|
|
md5(2),
|
|
sha(3),
|
|
invalidAlg(2147483647)
|
|
}
|
|
|
|
FSDiffHellmanGrp ::= TEXTUAL-CONVENTION
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Diffie Hellman Group used in the IKE and IPSec negotiations.
|
|
invalidAlg(2147483647) is defined as invalid value."
|
|
SYNTAX INTEGER
|
|
{
|
|
modp768(1),
|
|
modp1024(2),
|
|
invalidMode(2147483647)
|
|
}
|
|
|
|
FSIPSecTunnelState ::= TEXTUAL-CONVENTION
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The state of IPSec tunnel."
|
|
SYNTAX INTEGER
|
|
{
|
|
establishing(1),
|
|
active(2),
|
|
expiring(3)
|
|
}
|
|
|
|
FSSaProtocol ::= TEXTUAL-CONVENTION
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The protocol of security association."
|
|
SYNTAX INTEGER
|
|
{
|
|
reserved(0),
|
|
isakmp(1),
|
|
ah(2),
|
|
esp(3)
|
|
}
|
|
|
|
FSTrafficType ::= TEXTUAL-CONVENTION
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The type of the data flow."
|
|
SYNTAX INTEGER
|
|
{
|
|
ipv4Addr(1),
|
|
ipv4AddrSubnet(2),
|
|
ipv6Addr(3),
|
|
ipv6AddrSubnet(4),
|
|
ipv4AddrRange(5),
|
|
ipv6AddrRange(6)
|
|
}
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1
|
|
-- December 19, 2011 at 16:37 GMT
|
|
--
|
|
-- Textual conventions
|
|
--
|
|
FSIPSec2NegoType ::= TEXTUAL-CONVENTION
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The type of key used by an IPSec Phase-2 Tunnel. invalidType(2147483647)
|
|
is defined as invalid value."
|
|
SYNTAX INTEGER
|
|
{
|
|
ike(1),
|
|
manual(2),
|
|
invalidType(2147483647)
|
|
}
|
|
|
|
FSIPSec2TunnelState ::= TEXTUAL-CONVENTION
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The state of IPSec tunnel."
|
|
SYNTAX INTEGER
|
|
{
|
|
establishing(1),
|
|
active(2),
|
|
expiring(3)
|
|
}
|
|
|
|
|
|
--
|
|
-- Node definitions
|
|
--
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1
|
|
fsIPSec2Objects OBJECT IDENTIFIER ::= { fsIPSec2MibModule 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1
|
|
fsIPSec2TunnelTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSIPSec2TunnelEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IPSec Phase-2 Tunnel Table. There is one
|
|
entry in this table for each active IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2Objects 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1
|
|
fsIPSec2TunnelEntry OBJECT-TYPE
|
|
SYNTAX FSIPSec2TunnelEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Information about FSIPSec2TunnelTable."
|
|
INDEX { fsIPSec2TunIfIndex, fsIPSec2TunRemoteAddr, fsIPSec2TrafficLocalType, fsIPSec2TrafficLocalProtocol, fsIPSec2TrafficLocalAddr1,
|
|
fsIPSec2TrafficLocalAddr2, fsIPSec2TrafficLocalPort, fsIPSec2TrafficRemoteAddr1, fsIPSec2TrafficRemoteAddr2, fsIPSec2TrafficRemotePort
|
|
}
|
|
::= { fsIPSec2TunnelTable 1 }
|
|
|
|
|
|
FSIPSec2TunnelEntry ::=
|
|
SEQUENCE {
|
|
fsIPSec2TunIfIndex
|
|
Integer32,
|
|
fsIPSec2TunnelTrafficIndex
|
|
Integer32,
|
|
fsIPSec2TunIndex
|
|
Integer32,
|
|
fsIPSec2TunIKETunnelIndex
|
|
Integer32,
|
|
fsIPSec2TunnelAhOutSaIndex
|
|
Integer32,
|
|
fsIPSec2TunnelAhInSaIndex
|
|
Integer32,
|
|
fsIPSec2TunnelEspOutSaIndex
|
|
Integer32,
|
|
fsIPSec2TunnelEspInSaIndex
|
|
Integer32,
|
|
fsIPSec2TunLocalAddr
|
|
IpAddress,
|
|
fsIPSec2TunRemoteAddr
|
|
IpAddress,
|
|
fsIPSec2TunLocalHostname
|
|
DisplayString,
|
|
fsIPSec2TunRemoteHostname
|
|
DisplayString,
|
|
fsIPSec2TunKeyType
|
|
FSIPSec2NegoType,
|
|
fsIPSec2TunEncapMode
|
|
FSEncapMode,
|
|
fsIPSec2TunInitiator
|
|
INTEGER,
|
|
fsIPSec2TunLifeSize
|
|
Integer32,
|
|
fsIPSec2TunLifeTime
|
|
Integer32,
|
|
fsIPSec2TunRemainTime
|
|
Integer32,
|
|
fsIPSec2TunActiveTime
|
|
Integer32,
|
|
fsIPSec2TunCreateTime
|
|
TimeStamp,
|
|
fsIPSec2TunRemainSize
|
|
Integer32,
|
|
fsIPSec2TunTotalRefreshes
|
|
Counter32,
|
|
fsIPSec2TunCurrentSaInstances
|
|
Gauge32,
|
|
fsIPSec2TunInSaEncryptAlgo
|
|
FSEncryptAlgo,
|
|
fsIPSec2TunInSaAhAuthAlgo
|
|
FSAuthAlgo,
|
|
fsIPSec2TunInSaEspAuthAlgo
|
|
FSAuthAlgo,
|
|
fsIPSec2TunDiffHellmanGrp
|
|
FSDiffHellmanGrp,
|
|
fsIPSec2TunOutSaEncryptAlgo
|
|
FSEncryptAlgo,
|
|
fsIPSec2TunOutSaAhAuthAlgo
|
|
FSAuthAlgo,
|
|
fsIPSec2TunOutSaEspAuthAlgo
|
|
FSAuthAlgo,
|
|
fsIPSec2TunMapName
|
|
DisplayString,
|
|
fsIPSec2TunSeqNum
|
|
Integer32,
|
|
fsIPSec2TunStatus
|
|
FSIPSec2TunnelState
|
|
}
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.1
|
|
fsIPSec2TunIfIndex OBJECT-TYPE
|
|
SYNTAX Integer32 (1..2147483647)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The interface index( the ifIndex of ifTable )."
|
|
::= { fsIPSec2TunnelEntry 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.2
|
|
fsIPSec2TunnelTrafficIndex OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Description."
|
|
::= { fsIPSec2TunnelEntry 2 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.3
|
|
fsIPSec2TunIndex OBJECT-TYPE
|
|
SYNTAX Integer32 (1..2147483647)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The index of IPSec Phase-2 Tunnel Table. The value of
|
|
the index is a number which begins at one and is
|
|
incremented with each tunnel that is created. The
|
|
value of this object will wrap at 2,147,483,647."
|
|
::= { fsIPSec2TunnelEntry 3 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.5
|
|
fsIPSec2TunIKETunnelIndex OBJECT-TYPE
|
|
SYNTAX Integer32 (1..2147483647)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The index of the associated IPSec Phase-1 IKE Tunnel
|
|
(IKETunIndex in the IKETunnelTable). 2147483647 is defined as
|
|
invalid value. "
|
|
::= { fsIPSec2TunnelEntry 5 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.6
|
|
fsIPSec2TunnelAhOutSaIndex OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Description."
|
|
::= { fsIPSec2TunnelEntry 6 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.7
|
|
fsIPSec2TunnelAhInSaIndex OBJECT-TYPE
|
|
SYNTAX Integer32 (1..2147483647)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The index of the associated IPSec Phase-1 IKE Tunnel
|
|
(IKETunIndex in the IKETunnelTable). 2147483647 is defined as
|
|
invalid value. "
|
|
::= { fsIPSec2TunnelEntry 7 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.8
|
|
fsIPSec2TunnelEspOutSaIndex OBJECT-TYPE
|
|
SYNTAX Integer32 (1..2147483647)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The index of the associated IPSec Phase-1 IKE Tunnel
|
|
(IKETunIndex in the IKETunnelTable). 2147483647 is defined as
|
|
invalid value. "
|
|
::= { fsIPSec2TunnelEntry 8 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.9
|
|
fsIPSec2TunnelEspInSaIndex OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Description."
|
|
::= { fsIPSec2TunnelEntry 9 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.10
|
|
fsIPSec2TunLocalAddr OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IP address of the local peer for the IPSec Phase-2
|
|
Tunnel. 0.0.0.0 is defined as invalid value."
|
|
::= { fsIPSec2TunnelEntry 10 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.11
|
|
fsIPSec2TunRemoteAddr OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IP address of the remote peer for the IPSec Phase-2
|
|
Tunnel. 0.0.0.0 is defined as invalid value."
|
|
::= { fsIPSec2TunnelEntry 11 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.12
|
|
fsIPSec2TunLocalHostname OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Hostname of the local peer for the IPSec Phase-2
|
|
Tunnel."
|
|
::= { fsIPSec2TunnelEntry 12 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.13
|
|
fsIPSec2TunRemoteHostname OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Hostname of the remote peer for the IPSec Phase-2
|
|
Tunnel. "
|
|
::= { fsIPSec2TunnelEntry 13 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.14
|
|
fsIPSec2TunKeyType OBJECT-TYPE
|
|
SYNTAX FSIPSec2NegoType
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The key negotiate mode used by the IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelEntry 14 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.15
|
|
fsIPSec2TunEncapMode OBJECT-TYPE
|
|
SYNTAX FSEncapMode
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The encapsulation mode used by the IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelEntry 15 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.16
|
|
fsIPSec2TunInitiator OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
local(1),
|
|
remote(2),
|
|
none(2147483647)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The initiator of this IPSec tunnel. Value none is used for manual
|
|
IPsec tunnel, for there is no initiator or responder in this method."
|
|
::= { fsIPSec2TunnelEntry 16 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.17
|
|
fsIPSec2TunLifeSize OBJECT-TYPE
|
|
SYNTAX Integer32 (1..2147483647)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The negotiated LifeSize of the IPSec Phase-2 Tunnel in kilobytes.
|
|
2147483647 is defined as invalid value."
|
|
::= { fsIPSec2TunnelEntry 17 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.18
|
|
fsIPSec2TunLifeTime OBJECT-TYPE
|
|
SYNTAX Integer32 (1..2147483647)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The negotiated LifeTime of the IPSec Phase-2 Tunnel in seconds.
|
|
2147483647 is defined as invalid value."
|
|
::= { fsIPSec2TunnelEntry 18 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.19
|
|
fsIPSec2TunRemainTime OBJECT-TYPE
|
|
SYNTAX Integer32 (0..2147483647)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The remain time of SA in seconds. 2147483647 is defined as invalid
|
|
value."
|
|
::= { fsIPSec2TunnelEntry 19 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.20
|
|
fsIPSec2TunActiveTime OBJECT-TYPE
|
|
SYNTAX Integer32 (0..2147483647)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The duration the IPSec Phase-2 Tunnel has been active in
|
|
hundredths of seconds. 2147483647 is defined as invalid value."
|
|
::= { fsIPSec2TunnelEntry 20 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.21
|
|
fsIPSec2TunCreateTime OBJECT-TYPE
|
|
SYNTAX TimeStamp
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Time Stamp when the IPSec Phase-2 Tunnel created."
|
|
::= { fsIPSec2TunnelEntry 21 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.23
|
|
fsIPSec2TunRemainSize OBJECT-TYPE
|
|
SYNTAX Integer32 (0..2147483647)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The remain LifeSize of SA in kilobytes. 2147483647 is defined as
|
|
invalid value."
|
|
::= { fsIPSec2TunnelEntry 23 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.24
|
|
fsIPSec2TunTotalRefreshes OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of security association refreshing performed."
|
|
::= { fsIPSec2TunnelEntry 24 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.25
|
|
fsIPSec2TunCurrentSaInstances OBJECT-TYPE
|
|
SYNTAX Gauge32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of security associations which are currently active
|
|
or expiring."
|
|
::= { fsIPSec2TunnelEntry 25 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.26
|
|
fsIPSec2TunInSaEncryptAlgo OBJECT-TYPE
|
|
SYNTAX FSEncryptAlgo
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The encryption algorithm used by the inbound security association
|
|
of the IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelEntry 26 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.27
|
|
fsIPSec2TunInSaAhAuthAlgo OBJECT-TYPE
|
|
SYNTAX FSAuthAlgo
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The authentication algorithm used by the inbound authentication
|
|
header (AH) security association of the IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelEntry 27 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.28
|
|
fsIPSec2TunInSaEspAuthAlgo OBJECT-TYPE
|
|
SYNTAX FSAuthAlgo
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The authentication algorithm used by the inbound encapsulation
|
|
security protocol(ESP) security association of the IPSec
|
|
Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelEntry 28 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.29
|
|
fsIPSec2TunDiffHellmanGrp OBJECT-TYPE
|
|
SYNTAX FSDiffHellmanGrp
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Diffie Hellman Group used by the security association of the
|
|
IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelEntry 29 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.30
|
|
fsIPSec2TunOutSaEncryptAlgo OBJECT-TYPE
|
|
SYNTAX FSEncryptAlgo
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The encryption algorithm used by the outbound security
|
|
association of the IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelEntry 30 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.31
|
|
fsIPSec2TunOutSaAhAuthAlgo OBJECT-TYPE
|
|
SYNTAX FSAuthAlgo
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The authentication algorithm used by the outbound
|
|
authentication header (AH) security association of
|
|
the IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelEntry 31 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.32
|
|
fsIPSec2TunOutSaEspAuthAlgo OBJECT-TYPE
|
|
SYNTAX FSAuthAlgo
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The authentication algorithm used by the outbound encapsulation
|
|
security protocol(ESP) security association of the IPSec
|
|
Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelEntry 32 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.33
|
|
fsIPSec2TunMapName OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Map name used by this IPSec tunnel."
|
|
::= { fsIPSec2TunnelEntry 33 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.34
|
|
fsIPSec2TunSeqNum OBJECT-TYPE
|
|
SYNTAX Integer32 (1..2147483647)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The sequence number of policy used by this IPSec tunnel."
|
|
::= { fsIPSec2TunnelEntry 34 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.1.1.35
|
|
fsIPSec2TunStatus OBJECT-TYPE
|
|
SYNTAX FSIPSec2TunnelState
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of the IPSec Tunnel."
|
|
::= { fsIPSec2TunnelEntry 35 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.2
|
|
fsIPSec2TunnelStatTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSIPSec2TunnelStatEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IPSec Phase-2 Tunnel Statistics Table. "
|
|
::= { fsIPSec2Objects 2 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.2.1
|
|
fsIPSec2TunnelStatEntry OBJECT-TYPE
|
|
SYNTAX FSIPSec2TunnelStatEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Information about FSIPSec2TunnelStatTable."
|
|
INDEX { fsIPSec2TunIndex }
|
|
::= { fsIPSec2TunnelStatTable 1 }
|
|
|
|
|
|
FSIPSec2TunnelStatEntry ::=
|
|
SEQUENCE {
|
|
fsIPSec2TunInOctets
|
|
Counter64,
|
|
fsIPSec2TunInDecompOctets
|
|
Counter64,
|
|
fsIPSec2TunInPkts
|
|
Counter64,
|
|
fsIPSec2TunInSpeed
|
|
Counter64,
|
|
fsIPSec2TunInDropPkts
|
|
Counter64,
|
|
fsIPSec2TunOutOctets
|
|
Counter64,
|
|
fsIPSec2TunOutUncompOctets
|
|
Counter64,
|
|
fsIPSec2TunOutPkts
|
|
Counter64,
|
|
fsIPSec2TunOutSpeed
|
|
Counter64,
|
|
fsIPSec2TunOutDropPkts
|
|
Counter64
|
|
}
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.2.1.1
|
|
fsIPSec2TunInOctets OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of octets received by this IPSec Phase-2 Tunnel.
|
|
This value is accumulated BEFORE determining whether or not the
|
|
packet should be decompressed."
|
|
::= { fsIPSec2TunnelStatEntry 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.2.1.2
|
|
fsIPSec2TunInDecompOctets OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of decompressed octets received by this IPSec
|
|
Phase-2 Tunnel. This value is accumulated AFTER the packet
|
|
is decompressed."
|
|
::= { fsIPSec2TunnelStatEntry 2 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.2.1.3
|
|
fsIPSec2TunInPkts OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of packets received by this IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelStatEntry 3 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.2.1.4
|
|
fsIPSec2TunInSpeed OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Speed(bps) of packets received by this IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelStatEntry 4 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.2.1.5
|
|
fsIPSec2TunInDropPkts OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of packets dropped during receiving process
|
|
by this IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelStatEntry 5 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.2.1.6
|
|
fsIPSec2TunOutOctets OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of octets sent by this IPSec Phase-2 Tunnel.
|
|
This value is accumulated AFTER determining whether or not
|
|
the packet should be compressed."
|
|
::= { fsIPSec2TunnelStatEntry 6 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.2.1.7
|
|
fsIPSec2TunOutUncompOctets OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of uncompressed octets sent by this IPSec Phase-2
|
|
Tunnel.This value is accumulated BEFORE the packet is compressed."
|
|
::= { fsIPSec2TunnelStatEntry 7 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.2.1.8
|
|
fsIPSec2TunOutPkts OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of packets sent by this IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelStatEntry 8 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.2.1.9
|
|
fsIPSec2TunOutSpeed OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Speed(bps) of packets sent by this IPSec Phase-2 Tunnel. "
|
|
::= { fsIPSec2TunnelStatEntry 9 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.2.1.10
|
|
fsIPSec2TunOutDropPkts OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of packets dropped during sending process
|
|
by this IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2TunnelStatEntry 10 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.3
|
|
fsIPSec2SaTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSIPSec2SaEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IPSec Phase-2 Security Protection Index Table. This table
|
|
contains an entry for each active and expiring security association."
|
|
::= { fsIPSec2Objects 3 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.3.1
|
|
fsIPSec2SaEntry OBJECT-TYPE
|
|
SYNTAX FSIPSec2SaEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Information about FSIPSec2SaTable."
|
|
INDEX { fsIPSec2SaIndex }
|
|
::= { fsIPSec2SaTable 1 }
|
|
|
|
|
|
FSIPSec2SaEntry ::=
|
|
SEQUENCE {
|
|
fsIPSec2SaIndex
|
|
Integer32,
|
|
fsIPSec2SaDirection
|
|
INTEGER,
|
|
fsIPSec2SaValue
|
|
Unsigned32,
|
|
fsIPSec2SaProtocol
|
|
FSSaProtocol,
|
|
fsIPSec2SaEncryptAlgo
|
|
FSEncryptAlgo,
|
|
fsIPSec2SaAuthAlgo
|
|
FSAuthAlgo,
|
|
fsIPSec2SaStatus
|
|
FSIPSec2TunnelState
|
|
}
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.3.1.1
|
|
fsIPSec2SaIndex OBJECT-TYPE
|
|
SYNTAX Integer32 (1..2147483647)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of the Sa associated with the Phase-2 Tunnel
|
|
Table. The value of this index is a number which begins
|
|
at one and is incremented with each Sa associated with
|
|
an IPSec Phase-2 Tunnel. The value of this object will
|
|
wrap at 2,147,483,647."
|
|
::= { fsIPSec2SaEntry 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.3.1.2
|
|
fsIPSec2SaDirection OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
in(1),
|
|
out(2)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The direction of the SA."
|
|
::= { fsIPSec2SaEntry 2 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.3.1.3
|
|
fsIPSec2SaValue OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4294967295)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value of the SPI."
|
|
::= { fsIPSec2SaEntry 3 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.3.1.4
|
|
fsIPSec2SaProtocol OBJECT-TYPE
|
|
SYNTAX FSSaProtocol
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The security protocol of the SA."
|
|
::= { fsIPSec2SaEntry 4 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.3.1.5
|
|
fsIPSec2SaEncryptAlgo OBJECT-TYPE
|
|
SYNTAX FSEncryptAlgo
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The encryption algorithm used by the security association
|
|
of the IPSec Phase-2 Tunnel."
|
|
::= { fsIPSec2SaEntry 5 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.3.1.6
|
|
fsIPSec2SaAuthAlgo OBJECT-TYPE
|
|
SYNTAX FSAuthAlgo
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The authentication algorithm used by the SA."
|
|
::= { fsIPSec2SaEntry 6 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.3.1.7
|
|
fsIPSec2SaStatus OBJECT-TYPE
|
|
SYNTAX FSIPSec2TunnelState
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of the SA."
|
|
::= { fsIPSec2SaEntry 7 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4
|
|
fsIPSec2TrafficTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSIPSec2TrafficEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IPSec Phase-2 Tunnel Traffic Table. "
|
|
::= { fsIPSec2Objects 4 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1
|
|
fsIPSec2TrafficEntry OBJECT-TYPE
|
|
SYNTAX FSIPSec2TrafficEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Information about FSIPSec2TrafficTable."
|
|
INDEX { fsIPSec2TunnelTrafficIndex }
|
|
::= { fsIPSec2TrafficTable 1 }
|
|
|
|
|
|
FSIPSec2TrafficEntry ::=
|
|
SEQUENCE {
|
|
fsIPSec2TrafficIndex
|
|
Integer32,
|
|
fsIPSec2TrafficLocalType
|
|
FSTrafficType,
|
|
fsIPSec2TrafficLocalAddr1
|
|
IpAddress,
|
|
fsIPSec2TrafficLocalAddr2
|
|
IpAddress,
|
|
fsIPSec2TrafficLocalProtocol
|
|
Integer32,
|
|
fsIPSec2TrafficLocalPort
|
|
Integer32,
|
|
fsIPSec2TrafficLocalHostname
|
|
DisplayString,
|
|
fsIPSec2TrafficRemoteType
|
|
FSTrafficType,
|
|
fsIPSec2TrafficRemoteAddr1
|
|
IpAddress,
|
|
fsIPSec2TrafficRemoteAddr2
|
|
IpAddress,
|
|
fsIPSec2TrafficRemoteProtocol
|
|
Integer32,
|
|
fsIPSec2TrafficRemotePort
|
|
Integer32,
|
|
fsIPSec2TrafficRemoteHostname
|
|
DisplayString
|
|
}
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.1
|
|
fsIPSec2TrafficIndex OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Description."
|
|
::= { fsIPSec2TrafficEntry 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.2
|
|
fsIPSec2TrafficLocalType OBJECT-TYPE
|
|
SYNTAX FSTrafficType
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The type of local peer. Possible values are: a single
|
|
IP address, or an IP address range, or an IP subnet."
|
|
::= { fsIPSec2TrafficEntry 2 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.3
|
|
fsIPSec2TrafficLocalAddr1 OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The first specification of local peer's IP address. If
|
|
the local peer type is single IP address, then this is the
|
|
value of the IP address. If the local peer type is IP subnet,
|
|
then this is the value of the subnet. If the local peer type
|
|
is IP address range, then this is the value of beginning IP
|
|
address of the range."
|
|
::= { fsIPSec2TrafficEntry 3 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.4
|
|
fsIPSec2TrafficLocalAddr2 OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The second specification of local peer's IP address. If the local
|
|
peer type is single IP address, then this is the value of the
|
|
IP address. If the local peer type is IP subnet, then this is
|
|
the value of the subnet mask. If the local peer type is IP
|
|
address range, then this is the value of ending IP address of
|
|
the range."
|
|
::= { fsIPSec2TrafficEntry 4 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.5
|
|
fsIPSec2TrafficLocalProtocol OBJECT-TYPE
|
|
SYNTAX Integer32 (0..255)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The protocol number of the local peer's traffic."
|
|
::= { fsIPSec2TrafficEntry 5 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.6
|
|
fsIPSec2TrafficLocalPort OBJECT-TYPE
|
|
SYNTAX Integer32 (0..65535)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The port number of the local peer's traffic."
|
|
::= { fsIPSec2TrafficEntry 6 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.7
|
|
fsIPSec2TrafficLocalHostname OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Hostname of local peer's IP address."
|
|
::= { fsIPSec2TrafficEntry 7 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.8
|
|
fsIPSec2TrafficRemoteType OBJECT-TYPE
|
|
SYNTAX FSTrafficType
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The type of remote peer. Possible values are: a single
|
|
IP address, or an IP address range, or an IP subnet."
|
|
::= { fsIPSec2TrafficEntry 8 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.9
|
|
fsIPSec2TrafficRemoteAddr1 OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The first specification of remote peer's IP address.
|
|
If the remote peer type is single IP address, then
|
|
this is the value of the IP address. If the remote
|
|
peer type is IP subnet, then this is the value
|
|
of the subnet. If the remote peer type is IP
|
|
address range, then this is the value of beginning
|
|
IP address of the range."
|
|
::= { fsIPSec2TrafficEntry 9 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.10
|
|
fsIPSec2TrafficRemoteAddr2 OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Single IP address, then this is the value of the IP
|
|
address. If the remote peer type is IP subnet,
|
|
then this is the value of the subnet mask. If the
|
|
remote peer type is IP address range, then this
|
|
is the value of ending IP address of the range."
|
|
::= { fsIPSec2TrafficEntry 10 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.11
|
|
fsIPSec2TrafficRemoteProtocol OBJECT-TYPE
|
|
SYNTAX Integer32 (0..255)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The protocol number of the remote peer's traffic."
|
|
::= { fsIPSec2TrafficEntry 11 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.12
|
|
fsIPSec2TrafficRemotePort OBJECT-TYPE
|
|
SYNTAX Integer32 (0..65535)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The port number of the remote peer's traffic."
|
|
::= { fsIPSec2TrafficEntry 12 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.4.1.13
|
|
fsIPSec2TrafficRemoteHostname OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Hostname of remote peer's IP address."
|
|
::= { fsIPSec2TrafficEntry 13 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.5
|
|
fsIPSec2GlobalStats OBJECT IDENTIFIER ::= { fsIPSec2Objects 5 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.5.1
|
|
fsIPSec2GlobalActiveTunnels OBJECT-TYPE
|
|
SYNTAX Gauge32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of currently active IPSec Phase-2 Tunnels."
|
|
::= { fsIPSec2GlobalStats 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.5.2
|
|
fsIPSec2GlobalActiveSas OBJECT-TYPE
|
|
SYNTAX Gauge32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of currently active or expiring IPSec Phase-2 SA."
|
|
::= { fsIPSec2GlobalStats 2 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.5.3
|
|
fsIPSec2GlobalInOctets OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of octets received by all current and previous
|
|
IPSec Phase-2 Tunnels. This value is accumulated BEFORE determining
|
|
whether or not the packet should be decompressed."
|
|
::= { fsIPSec2GlobalStats 3 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.5.4
|
|
fsIPSec2GlobalInPkts OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of packets received by all current and
|
|
previous IPSec Phase-2 Tunnels."
|
|
::= { fsIPSec2GlobalStats 4 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.5.5
|
|
fsIPSec2GlobalInSpeed OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total speed(bps) of packets received by all current and
|
|
previous IPSec Phase-2 Tunnels."
|
|
::= { fsIPSec2GlobalStats 5 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.5.6
|
|
fsIPSec2GlobalInDrops OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of packets dropped during receiving
|
|
process by all current and previous IPSec Phase-2
|
|
Tunnels. "
|
|
::= { fsIPSec2GlobalStats 6 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.5.7
|
|
fsIPSec2GlobalOutOctets OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of octets sent by all current and previous
|
|
IPSec Phase-2 Tunnels. This value is accumulated AFTER
|
|
determining whether or not the packet should be compressed."
|
|
::= { fsIPSec2GlobalStats 7 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.5.8
|
|
fsIPSec2GlobalOutPkts OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of packets sent by all current and previous
|
|
IPSec Phase-2 Tunnels."
|
|
::= { fsIPSec2GlobalStats 8 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.5.9
|
|
fsIPSec2GlobalOutSpeed OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total speed(bps) of packets sent by all current and previous
|
|
IPSec Phase-2 Tunnels."
|
|
::= { fsIPSec2GlobalStats 9 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.5.10
|
|
fsIPSec2GlobalOutDrops OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of packets dropped during sending process
|
|
by all current and previous IPSec Phase-2 Tunnels."
|
|
::= { fsIPSec2GlobalStats 10 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.6
|
|
fsIPSec2TrapObject OBJECT IDENTIFIER ::= { fsIPSec2Objects 6 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.6.1
|
|
fsIPSec2MapName OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IPSec map name with a trap."
|
|
::= { fsIPSec2TrapObject 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.6.2
|
|
fsIPSec2SeqNum OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IPSec map sequence number with a trap."
|
|
::= { fsIPSec2TrapObject 2 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.6.3
|
|
fsIPSec2SpiValue OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The SPI value associated with a trap."
|
|
::= { fsIPSec2TrapObject 3 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.7
|
|
fsIPSec2Trap OBJECT IDENTIFIER ::= { fsIPSec2Objects 7 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.7.1
|
|
fsIPSec2Notifications OBJECT IDENTIFIER ::= { fsIPSec2Trap 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.7.1.1
|
|
fsIPSec2TunnelStart NOTIFICATION-TYPE
|
|
OBJECTS { fsIPSec2TunIfIndex, fsIPSec2TunRemoteAddr, fsIPSec2TrafficLocalType, fsIPSec2TrafficLocalAddr1, fsIPSec2TrafficLocalAddr2,
|
|
fsIPSec2TrafficLocalProtocol, fsIPSec2TrafficLocalPort, fsIPSec2TrafficRemoteAddr1, fsIPSec2TrafficRemoteAddr2, fsIPSec2TrafficRemotePort
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This notification is generated when an IPSec Phase-2
|
|
Tunnel is created."
|
|
::= { fsIPSec2Notifications 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.1.7.1.2
|
|
fsIPSec2TunnelStop NOTIFICATION-TYPE
|
|
OBJECTS { fsIPSec2TunIfIndex, fsIPSec2TunRemoteAddr, fsIPSec2TrafficLocalType, fsIPSec2TrafficLocalAddr1, fsIPSec2TrafficLocalAddr2,
|
|
fsIPSec2TrafficLocalProtocol, fsIPSec2TrafficLocalPort, fsIPSec2TrafficRemoteAddr1, fsIPSec2TrafficRemoteAddr2, fsIPSec2TrafficRemotePort
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This notification is generated when an IPSec Phase-2
|
|
Tunnel is deleted."
|
|
::= { fsIPSec2Notifications 2 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.2
|
|
fsIPSec2Conformance OBJECT IDENTIFIER ::= { fsIPSec2MibModule 2 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.2.1
|
|
fsIPSec2Compliances OBJECT IDENTIFIER ::= { fsIPSec2Conformance 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.2.1.1
|
|
fsIPSec2Compliance MODULE-COMPLIANCE
|
|
STATUS current
|
|
DESCRIPTION
|
|
" "
|
|
MODULE -- this module
|
|
MANDATORY-GROUPS { fsIPSec2TunnelTableGroup, fsIPSec2TunnelStatGroup, fsIPSec2SaGroup, fsIPSec2TrafficTableGroup, fsIPSec2GlobalStatsGroup,
|
|
fsIPSec2TrapObjectGroup, fsIPSec2TrapGroup }
|
|
::= { fsIPSec2Compliances 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.2.2
|
|
fsIPSec2Groups OBJECT IDENTIFIER ::= { fsIPSec2Conformance 2 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.2.2.1
|
|
fsIPSec2TunnelTableGroup OBJECT-GROUP
|
|
OBJECTS { fsIPSec2TunIfIndex, fsIPSec2TunLocalAddr, fsIPSec2TunRemoteAddr, fsIPSec2TunLocalHostname, fsIPSec2TunRemoteHostname,
|
|
fsIPSec2TunKeyType, fsIPSec2TunEncapMode, fsIPSec2TunInitiator, fsIPSec2TunLifeSize, fsIPSec2TunLifeTime,
|
|
fsIPSec2TunRemainTime, fsIPSec2TunActiveTime, fsIPSec2TunCreateTime, fsIPSec2TunRemainSize, fsIPSec2TunTotalRefreshes,
|
|
fsIPSec2TunCurrentSaInstances, fsIPSec2TunInSaEncryptAlgo, fsIPSec2TunInSaAhAuthAlgo, fsIPSec2TunInSaEspAuthAlgo, fsIPSec2TunDiffHellmanGrp,
|
|
fsIPSec2TunOutSaEncryptAlgo, fsIPSec2TunOutSaAhAuthAlgo, fsIPSec2TunOutSaEspAuthAlgo, fsIPSec2TunMapName, fsIPSec2TunSeqNum,
|
|
fsIPSec2TunStatus, fsIPSec2TunInOctets, fsIPSec2TunInDecompOctets, fsIPSec2TunInPkts, fsIPSec2TunInSpeed,
|
|
fsIPSec2TunInDropPkts, fsIPSec2TunOutOctets, fsIPSec2TunOutUncompOctets, fsIPSec2TunOutPkts, fsIPSec2TunOutSpeed,
|
|
fsIPSec2TunOutDropPkts }
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The group contains the IPSec tunnel's property information."
|
|
::= { fsIPSec2Groups 1 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.2.2.2
|
|
fsIPSec2TunnelStatGroup OBJECT-GROUP
|
|
OBJECTS { fsIPSec2TunInOctets, fsIPSec2TunInDecompOctets, fsIPSec2TunInPkts, fsIPSec2TunInSpeed, fsIPSec2TunInDropPkts,
|
|
fsIPSec2TunOutOctets, fsIPSec2TunOutUncompOctets, fsIPSec2TunOutPkts, fsIPSec2TunOutSpeed, fsIPSec2TunOutDropPkts
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The group contains the IPSec tunnel's statistic information."
|
|
::= { fsIPSec2Groups 2 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.2.2.3
|
|
fsIPSec2SaGroup OBJECT-GROUP
|
|
OBJECTS { fsIPSec2SaIndex, fsIPSec2SaDirection, fsIPSec2SaValue, fsIPSec2SaProtocol, fsIPSec2SaEncryptAlgo,
|
|
fsIPSec2SaAuthAlgo, fsIPSec2SaStatus }
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The group contains the SA's property information."
|
|
::= { fsIPSec2Groups 3 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.2.2.4
|
|
fsIPSec2TrafficTableGroup OBJECT-GROUP
|
|
OBJECTS { fsIPSec2TrafficLocalType, fsIPSec2TrafficLocalAddr1, fsIPSec2TrafficLocalAddr2, fsIPSec2TrafficLocalProtocol, fsIPSec2TrafficLocalPort,
|
|
fsIPSec2TrafficRemoteAddr1, fsIPSec2TrafficRemoteAddr2, fsIPSec2TrafficRemotePort, fsIPSec2TrafficLocalHostname, fsIPSec2TrafficRemoteType,
|
|
fsIPSec2TrafficRemoteProtocol, fsIPSec2TrafficRemoteHostname }
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The group contains the property information of the
|
|
data flow protected by IPSec tunnel."
|
|
::= { fsIPSec2Groups 4 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.2.2.5
|
|
fsIPSec2GlobalStatsGroup OBJECT-GROUP
|
|
OBJECTS { fsIPSec2GlobalActiveTunnels, fsIPSec2GlobalActiveSas, fsIPSec2GlobalInOctets, fsIPSec2GlobalInPkts, fsIPSec2GlobalInSpeed,
|
|
fsIPSec2GlobalInDrops, fsIPSec2GlobalOutOctets, fsIPSec2GlobalOutPkts, fsIPSec2GlobalOutSpeed, fsIPSec2GlobalOutDrops
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The group contains all of the IPSec tunnel's statistic
|
|
information."
|
|
::= { fsIPSec2Groups 5 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.2.2.6
|
|
fsIPSec2TrapObjectGroup OBJECT-GROUP
|
|
OBJECTS { fsIPSec2MapName, fsIPSec2SeqNum, fsIPSec2SpiValue }
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The group contains all of trap objects of IPSec tunnels."
|
|
::= { fsIPSec2Groups 6 }
|
|
|
|
|
|
-- 1.3.6.1.4.1.52642.1.1.10.2.108.2.2.7
|
|
fsIPSec2TrapGroup NOTIFICATION-GROUP
|
|
NOTIFICATIONS { fsIPSec2TunnelStart, fsIPSec2TunnelStop }
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The group contains all of trap of IPSec tunnels."
|
|
::= { fsIPSec2Groups 7 }
|
|
|
|
|
|
|
|
END
|
|
|
|
--
|
|
-- FS-IPSEC2-MIB.mib
|
|
--
|