2665 lines
114 KiB
Plaintext
2665 lines
114 KiB
Plaintext
-- =====================================================================================
|
|
-- Copyright (C) 2018 by HUAWEI TECHNOLOGIES. All rights reserved.
|
|
-- Description: The MIB module defines the IEEE802.1x protocol MIB objects.
|
|
-- IEEE802.1x protocol is mainly used to control the link layer access
|
|
-- and identity verification for wireless users.
|
|
-- Reference:
|
|
-- Version: V3.34
|
|
-- =====================================================================================
|
|
|
|
HUAWEI-8021X-EXT-MIB DEFINITIONS ::= BEGIN
|
|
|
|
IMPORTS
|
|
huaweiMgmt
|
|
FROM HUAWEI-MIB
|
|
dot1xPaePortNumber
|
|
FROM IEEE8021-PAE-MIB
|
|
Unsigned32, Integer32, Counter64, IpAddress, OBJECT-TYPE, MODULE-IDENTITY
|
|
FROM SNMPv2-SMI
|
|
ifIndex
|
|
FROM IF-MIB
|
|
DisplayString, RowStatus,MacAddress
|
|
FROM SNMPv2-TC
|
|
InetAddressType, InetAddress
|
|
FROM INET-ADDRESS-MIB;
|
|
|
|
|
|
hwPae8021xExt MODULE-IDENTITY
|
|
LAST-UPDATED "201808210000Z"
|
|
ORGANIZATION "Huawei Technologies Co.,Ltd."
|
|
CONTACT-INFO
|
|
"Huawei Industrial Base
|
|
Bantian, Longgang
|
|
Shenzhen 518129
|
|
People's Republic of China
|
|
Website: http://www.huawei.com
|
|
Email: support@huawei.com
|
|
"
|
|
DESCRIPTION
|
|
"The MIB module defines the IEEE802.1x protocol MIB objects.
|
|
IEEE802.1x protocol is mainly used to control the link layer access
|
|
and identity verification for wireless users."
|
|
|
|
-- Revision history
|
|
REVISION "201808210000Z"
|
|
DESCRIPTION "V3.34, modified the range and descriptions of hwDot1xQuietPeriodTime, hwDot1xAuthenTimeout, hwDot1xKeepaliveInterval, hwDot1xAuthRequestInterval,
|
|
hwDot1xSuppTimeout and hwDot1xReAuthInterval."
|
|
|
|
REVISION "201804040000Z"
|
|
DESCRIPTION "V3.33, added hwOntDot1xMaxRetryTimes,hwOntDot1xQuietPeriodSwitch,hwOntDot1xQuietPeriodTime,hwOntDot1xTxPeriodTime,hwOntDot1xPortUnicastTriggerSwitch
|
|
and hwOntDot1xPortMulticastTriggerSwitch."
|
|
|
|
REVISION "201803230000Z"
|
|
DESCRIPTION "V3.32, modified the descriptions of hwOntDot1xRadiusAuthorServerTable."
|
|
|
|
REVISION "201803200000Z"
|
|
DESCRIPTION "V3.31, modified the descriptions of hwOntDot1xRadiusAuthorServerTable."
|
|
|
|
REVISION "201802260000Z"
|
|
DESCRIPTION "V3.30, added hwOntDot1xRadiusAcctServerShareKey and hwOntDot1xRadiusSecondaryAcctServerShareKey."
|
|
|
|
REVISION "201802110000Z"
|
|
DESCRIPTION "V3.29, modified the descriptions of hwDot1xReAuthSwitch."
|
|
|
|
REVISION "201801150000Z"
|
|
DESCRIPTION "V3.28, modified the range of hwDot1xReAuthInterval."
|
|
|
|
REVISION "201712150000Z"
|
|
DESCRIPTION "V3.27, modified the descriptions of hwOntDot1xAcctInterimInterval,hwOntDot1xRadiusServerTimeOut,hwOntDot1xPortRetransmitInterval,hwOntDot1xReAuthPeriod."
|
|
|
|
REVISION "201711150000Z"
|
|
DESCRIPTION "V3.26, added hwOntDot1xRadiusAcctServerAddrType, hwOntDot1xRadiusAcctServerAddr, hwOntDot1xRadiusAcctServerPort, hwOntDot1xRadiusSecondaryAcctServerAddrType,hwOntDot1xRadiusSecondaryAcctServerAddr,
|
|
hwOntDot1xRadiusSecondaryAcctServerPort,hwOntDot1xAcctInterimInterval,hwOntDot1xVoiceDeviceControl.
|
|
added hwOntRadiusStatisticsReceivedAccountingResponseFrames, hwOntRadiusStatisticsReceivedDisconnectRequestFrames, hwOntRadiusStatisticsSentAccountingRequestFrames,
|
|
hwOntRadiusStatisticsRetransAccountingRequestFrames, hwOntRadiusStatisticsSentDisconnectAckFrames, hwOntRadiusStatisticsSentDisconnectNakFrames.
|
|
added new table hwOntDot1xRadiusAuthorServerTable."
|
|
|
|
REVISION "201703290000Z"
|
|
DESCRIPTION "V3.25, modified the default value of hwOntDot1xPortRetransmitInterval."
|
|
|
|
REVISION "201612210000Z"
|
|
DESCRIPTION "V3.24, added hwOntDot1xPortMacBypassSwitch, hwOntDot1xPortCriticalVlan and hwOntDot1xRadiusAssignVlan."
|
|
|
|
REVISION "201609090000Z"
|
|
DESCRIPTION "V3.23, modified the descriptions of hwDot1xAuthenTimeout, hwDot1xKeepaliveInterval, hwDot1xQuietPeriodTime, hwDot1xReAuthInterval, hwDot1xAuthRequestInterval and hwDot1xSuppTimeout."
|
|
|
|
REVISION "201608230000Z"
|
|
DESCRIPTION "V3.22, added hwDot1xAuthTimerEffectiveMode, hwDot1xAuthenTimeout, hwDot1xKeepaliveSwitch, hwDot1xKeepaliveRestranTimes, hwDot1xKeepaliveInterval, hwDot1xQuietPeriodTime, hwDot1xReAuthSwitch, hwDot1xReAuthInterval, hwDot1xAuthRequestInterval, hwDot1xRestransmitTimes and hwDot1xSuppTimeout."
|
|
|
|
REVISION "201605130000Z"
|
|
DESCRIPTION "V3.21, added hwDot1xGuestVlan and hwDot1xRestrictVlan."
|
|
|
|
REVISION "201602240000Z"
|
|
DESCRIPTION "V3.20, modified the default value of hwDot1xAuthHandshakeCount and hwDot1xAuthHandshakeInterval."
|
|
|
|
REVISION "201507270000Z"
|
|
DESCRIPTION "V3.19, added new table hwOntDot1xProfileTable, hwOntDot1xPortProfileTable, hwOntPortDot1xStatusTable, hwOntPortDot1xStatisticsTable and hwOntRadiusStatisticsTable."
|
|
|
|
REVISION "201105090000Z"
|
|
DESCRIPTION "V3.18, modified the range of hwDot1xTemplateIndex and hwDot1xPortFramePool."
|
|
|
|
REVISION "201011200000Z"
|
|
DESCRIPTION "V3.17, modified the descriptions of this MIB file and leaves."
|
|
|
|
REVISION "201007290000Z"
|
|
DESCRIPTION "V3.16, added hwDot1xMacConflictDetectStatus and format to the MIB
|
|
file."
|
|
|
|
REVISION "201007220000Z"
|
|
DESCRIPTION "V3.15, modified the descriptions of this MIB file and leaves."
|
|
|
|
REVISION "201003160000Z"
|
|
DESCRIPTION "V3.14, modified the version of this MIB file."
|
|
|
|
REVISION "200912281030Z"
|
|
DESCRIPTION "V3.11, modified datatype such as INTEGER to Integer32.
|
|
Moved DEFVAL into DESCRIPTION.
|
|
Modified the default values of dot1xAuthSuppTimeout and hwDot1xHandshakeCount
|
|
and added the descriptions of hwDot1xTemplateConfigEntry,hwDot1xPortConfigExtEntry
|
|
and hwDot1xPortAuthStatsExtEntry "
|
|
|
|
REVISION "200905210000Z"
|
|
DESCRIPTION "V3.09, changed 'anthenrization' to 'authentication' and 'infomation' to 'information'."
|
|
|
|
REVISION "200211290900Z"
|
|
DESCRIPTION "V2.00, reunification version based on the Fix-Net MIBs baseline by the MIB Standard community."
|
|
|
|
::= { huaweiMgmt 22 }
|
|
|
|
hwpaeExtMibObjects OBJECT IDENTIFIER ::= { hwPae8021xExt 1 }
|
|
|
|
hwdot1xPaeSystem OBJECT IDENTIFIER ::= { hwpaeExtMibObjects 1 }
|
|
|
|
hwdot1xAuthQuietPeriod OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Silence period of the system, preventing malicious attack. By
|
|
default, it is 60 seconds. DEFVAL { 60 }
|
|
"
|
|
REFERENCE
|
|
" 9.4.1, quietPeriod"
|
|
::= { hwdot1xPaeSystem 1 }
|
|
|
|
hwdot1xAuthTxPeriod OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Interval period of sending EAP_Request/Id packet. By default,30 seconds.DEFVAL { 30 }
|
|
"
|
|
REFERENCE
|
|
"
|
|
9.4.1, txPeriod
|
|
"
|
|
::= { hwdot1xPaeSystem 2 }
|
|
|
|
hwdot1xAuthSuppTimeout OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Interval period of waiting for the supplicant to response to EAPoL
|
|
packet.DEFVAL { 30 }
|
|
"
|
|
REFERENCE
|
|
"
|
|
9.4.1, suppTimeout
|
|
"
|
|
::= { hwdot1xPaeSystem 3 }
|
|
|
|
hwdot1xAuthServerTimeout OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Configure the period of waiting for the response of Server. By
|
|
default, it is 30 seconds.DEFVAL { 30 }
|
|
"
|
|
REFERENCE
|
|
"
|
|
9.4.1, serverTimeout
|
|
"
|
|
::= { hwdot1xPaeSystem 4 }
|
|
|
|
hwdot1xAuthMaxReq OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Maximum times of authentication.DEFVAL { 2 }"
|
|
REFERENCE
|
|
"
|
|
9.4.1, maxReq
|
|
"
|
|
::= { hwdot1xPaeSystem 5 }
|
|
|
|
hwdot1xAuthReAuthPeriod OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Configure the reauthentication period. By default, it is 3600
|
|
seconds.DEFVAL { 3600 }.
|
|
"
|
|
REFERENCE
|
|
"
|
|
9.4.1, reAuthPeriod
|
|
"
|
|
::= { hwdot1xPaeSystem 6 }
|
|
|
|
hwdot1xPaeAuthenticator OBJECT IDENTIFIER ::= { hwpaeExtMibObjects 2 }
|
|
|
|
hwdot1xAuthConfigExtTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF Hwdot1xAuthConfigExtEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"It is an extension of the public MIB table dot1xAuthConfigTable, with certain
|
|
leaves added for describing the configuration of the object of the port
|
|
authenticator. The index of this table is dot1xPaePortNumber.
|
|
"
|
|
REFERENCE
|
|
"
|
|
9.4.1 Authenticator Configuration
|
|
"
|
|
::= { hwdot1xPaeAuthenticator 1 }
|
|
|
|
hwdot1xAuthConfigExtEntry OBJECT-TYPE
|
|
SYNTAX Hwdot1xAuthConfigExtEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"It is an extension of the public MIB table dot1xAuthConfigTable, with certain
|
|
leaves added for describing the configuration of the object of the port
|
|
authenticator. The index of this entry is dot1xPaePortNumber.
|
|
"
|
|
INDEX { dot1xPaePortNumber }
|
|
::= { hwdot1xAuthConfigExtTable 1 }
|
|
|
|
Hwdot1xAuthConfigExtEntry ::=
|
|
SEQUENCE {
|
|
hwdot1xpaeportAuthAdminStatus
|
|
INTEGER,
|
|
hwdot1xpaeportControlledType
|
|
INTEGER,
|
|
hwdot1xpaeportMaxUserNum
|
|
Integer32,
|
|
hwdot1xpaeportUserNumNow
|
|
Integer32,
|
|
hwdot1xpaeportClearStatistics
|
|
INTEGER,
|
|
hwDot1xAuthHandshakeSwitch
|
|
INTEGER,
|
|
hwDot1xAuthHandshakeCount
|
|
Integer32,
|
|
hwDot1xAuthHandshakeInterval
|
|
Integer32,
|
|
hwDot1xAuthIfEAPEnd
|
|
INTEGER,
|
|
hwDot1xAuthTimerEffectiveMode
|
|
BITS
|
|
}
|
|
|
|
hwdot1xpaeportAuthAdminStatus OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
enabled(1),
|
|
disabled(2)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates he switch of port protocol, enabling or disenabling port 8021X.
|
|
Options:
|
|
1. enabled(1) -indicates port 8021X is enabled
|
|
2. disabled(2) -indicates port 8021X is disabled
|
|
"
|
|
DEFVAL { 2 }
|
|
::= { hwdot1xAuthConfigExtEntry 1 }
|
|
|
|
hwdot1xpaeportControlledType OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
port(1),
|
|
mac(2)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Port Access Control type, base port access control or base MAC
|
|
access control.
|
|
Options:
|
|
1. port(1) -base port access control
|
|
2. mac(2) -base MAC access control
|
|
"
|
|
DEFVAL { 2 }
|
|
::= { hwdot1xAuthConfigExtEntry 2 }
|
|
|
|
hwdot1xpaeportMaxUserNum OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the maximum number of online users in a port.
|
|
"
|
|
DEFVAL { 256 }
|
|
::= { hwdot1xAuthConfigExtEntry 3 }
|
|
|
|
hwdot1xpaeportUserNumNow OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the number of online users in a port now.
|
|
"
|
|
::= { hwdot1xAuthConfigExtEntry 4 }
|
|
|
|
hwdot1xpaeportClearStatistics OBJECT-TYPE
|
|
SYNTAX INTEGER { clear(1) }
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates clear various Statistics viz.
|
|
Options:
|
|
1. clear(1) -indicates clearing various statistics viz
|
|
"
|
|
::= { hwdot1xAuthConfigExtEntry 5 }
|
|
|
|
hwDot1xAuthHandshakeSwitch OBJECT-TYPE
|
|
SYNTAX INTEGER {open(1),close(0)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the status of the handshake function.
|
|
Options:
|
|
1. open(1) -indicates the handshake function is enabled
|
|
2. close(0) -indicates the handshake function is disabled
|
|
Default: close(0)
|
|
"
|
|
DEFVAL { 0 }
|
|
::= { hwdot1xAuthConfigExtEntry 6 }
|
|
|
|
hwDot1xAuthHandshakeCount OBJECT-TYPE
|
|
SYNTAX Integer32 (0..10)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the permitted handshake failures.
|
|
Range: 0-10
|
|
The value 0 is meaningless in current version.
|
|
Default: 3
|
|
"
|
|
DEFVAL { 3 }
|
|
::= { hwdot1xAuthConfigExtEntry 7 }
|
|
|
|
hwDot1xAuthHandshakeInterval OBJECT-TYPE
|
|
SYNTAX Integer32 (1..1800)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the handshake interval.
|
|
Unit: second
|
|
Range: 1-1800
|
|
Default: 15s
|
|
"
|
|
DEFVAL { 15 }
|
|
::= { hwdot1xAuthConfigExtEntry 8 }
|
|
|
|
hwDot1xAuthIfEAPEnd OBJECT-TYPE
|
|
SYNTAX INTEGER{eapEnd(1),eapRelay(2)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates which EAP authentication mode is adopted for port or virtual port.
|
|
In the 802.1x function, the authentication packet can be processed in two modes: EAP end and EAP relay.
|
|
Options:
|
|
1. eapEnd(1) -indicates the EAP authentication mode is eapEnd
|
|
2. eapRelay(2) -indicates the EAP authentication mode is eapRelay
|
|
Default: eapReplay(2)
|
|
"
|
|
DEFVAL {2}
|
|
::= { hwdot1xAuthConfigExtEntry 9 }
|
|
|
|
hwDot1xAuthTimerEffectiveMode OBJECT-TYPE
|
|
SYNTAX BITS
|
|
{
|
|
bAuthenTimeout(0),
|
|
bKeepaliveSwitch(1),
|
|
bKeepaliveRestranTimes(2),
|
|
bKeepaliveInterval(3),
|
|
bQuietPeriodTime(4),
|
|
bReAuthSwitch(5),
|
|
bReAuthInterval(6),
|
|
bRequestInterval(7),
|
|
bRestransmitTimes(8),
|
|
bSuppTimeout(9),
|
|
bDefreserved10(10),
|
|
bDefreserved11(11),
|
|
bDefreserved12(12),
|
|
bDefreserved13(13),
|
|
bDefreserved14(14),
|
|
bDefreserved15(15),
|
|
bDefreserved16(16),
|
|
bDefreserved17(17),
|
|
bDefreserved18(18),
|
|
bDefreserved19(19),
|
|
bDefreserved20(20),
|
|
bDefreserved21(21),
|
|
bDefreserved22(22),
|
|
bDefreserved23(23),
|
|
bDefreserved24(24),
|
|
bDefreserved25(25),
|
|
bDefreserved26(26),
|
|
bDefreserved27(27),
|
|
bDefreserved28(28),
|
|
bDefreserved29(29),
|
|
bDefreserved30(30),
|
|
bDefreserved31(31)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the effective mode of the current timer parameters, that is, whether the current timer parameters that take effect are configured globally or based on the flow or port.
|
|
Options:
|
|
1. bAuthenTimeout(0) -Indicates the effective mode of the timeout time for the system to wait for the response packet from the authentication server.
|
|
2. bKeepaliveSwitch(1) -Indicates the effective mode of the handshake function.
|
|
3. bKeepaliveRestranTimes(2) -Indicates the effective mode of the number of handshake failures.
|
|
4. bKeepaliveInterval(3) -Indicates the effective mode of the handshake interval.
|
|
5. bQuietPeriodTime(4) -Indicates the effective mode of the quiet period.
|
|
6. bReAuthSwitch(5) -Indicates the effective mode of the re-authentication function.
|
|
7. bReAuthInterval(6) -Indicates the effective mode of the re-authentication interval.
|
|
8. bRequestInterval(7) -Indicates the effective mode of the timeout time for the system to wait for the response from the client during authentication.
|
|
9. bRestransmitTimes(8) -Indicates the effective mode of the times of re-transmitting packets to the client.
|
|
10. bSuppTimeout(9) -Indicates the effective mode of the timeout time for the system to wait for the response from the client.
|
|
Other bits are reserved. For each bit, when the corresponding bit of hwDot1xAuthTimerEffectiveMode is 1,
|
|
1 indicates that the current timer parameters are configured based on the flow and port. 0 indicates that the current timer parameters are configured globally.
|
|
Default: 0
|
|
"
|
|
::= { hwdot1xAuthConfigExtEntry 10 }
|
|
|
|
hwDot1xMibObjects OBJECT IDENTIFIER ::= { hwpaeExtMibObjects 3 }
|
|
|
|
hwDHCPTripperStatus OBJECT-TYPE
|
|
SYNTAX INTEGER { enabled(1), disabled(2) }
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The device processes the DHCP DISCOVER and DHCP REQUEST packets only after
|
|
the DHCP-trigger authentication function is enabled. Otherwise, the device
|
|
does not process the DHCP DISCOVER or DHCP REQUEST packet. After the
|
|
DHCP-trigger authentication function is enabled, the device triggers the
|
|
authentication when receiving the DHCP DISCOVER and DHCP REQUEST packets.
|
|
Indicates the status of the DHCP-trigger authentication function of the device.
|
|
Options:
|
|
1. enabled(1) -indicates the DHCP-trigger authentication function is enabled
|
|
2. disabled(2) -indicates the DHCP-trigger authentication function is disabled
|
|
Default: disable(2)
|
|
"
|
|
|
|
::= { hwDot1xMibObjects 1 }
|
|
|
|
|
|
hwDot1xTemplateConfigTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF HwDot1xTemplateConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"It is used to configure the profile used to control the user authentication
|
|
through 802.1x. Profile 1 exists permanently, and it cannot be created or deleted.
|
|
Other profiles can be created or deleted. The index of this table is hwDot1xTemplateIndex.
|
|
This table supports only the profile mode. To create a profile, set hwDot1xTempRowStatus
|
|
to createAndGo(4). The index is the ID of the profile to be created. To delete a profile,
|
|
set hwDot1xTempRowStatus to destroy(6). The index is the ID of the profile to be deleted.
|
|
"
|
|
::= { hwDot1xMibObjects 2 }
|
|
|
|
hwDot1xTemplateConfigEntry OBJECT-TYPE
|
|
SYNTAX HwDot1xTemplateConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"It is used to configure the profile used to control the user authentication
|
|
through 802.1x. Profile 1 exists permanently, and it cannot be created or deleted.
|
|
Other profiles can be created or deleted. The index of this entry is hwDot1xTemplateIndex.
|
|
This table supports only the profile mode. To create a profile, set hwDot1xTempRowStatus
|
|
to createAndGo(4). The index is the ID of the profile to be created. To delete a profile,
|
|
set hwDot1xTempRowStatus to destroy(6). The index is the ID of the profile to be deleted.
|
|
"
|
|
INDEX { hwDot1xTemplateIndex }
|
|
::= { hwDot1xTemplateConfigTable 1 }
|
|
|
|
HwDot1xTemplateConfigEntry ::=
|
|
SEQUENCE {
|
|
hwDot1xTemplateIndex
|
|
Integer32,
|
|
hwDot1xHandshakeSwitch
|
|
INTEGER,
|
|
hwDot1xHandshakeCount
|
|
Integer32,
|
|
hwDot1xHandshakeInterval
|
|
Integer32,
|
|
hwDot1xIfEAPEnd
|
|
INTEGER,
|
|
hwDot1xTempIfUsed
|
|
INTEGER,
|
|
hwDot1xTempRowStatus
|
|
RowStatus
|
|
}
|
|
|
|
hwDot1xTemplateIndex OBJECT-TYPE
|
|
SYNTAX Integer32(0..256)
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the profile ID.
|
|
Range: 1-256
|
|
"
|
|
::= { hwDot1xTemplateConfigEntry 1 }
|
|
|
|
hwDot1xHandshakeSwitch OBJECT-TYPE
|
|
SYNTAX INTEGER {open(1),close(0)}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the status of the handshake function.
|
|
Options:
|
|
1. open(1) -indicates the handshake function is enabled
|
|
2. close(0) -indicates the handshake function is disabled
|
|
Default: close(0)
|
|
"
|
|
::= { hwDot1xTemplateConfigEntry 2 }
|
|
|
|
hwDot1xHandshakeCount OBJECT-TYPE
|
|
SYNTAX Integer32 (0..10)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the permitted handshake failures.
|
|
Range: 0-10
|
|
Default: 0
|
|
"
|
|
DEFVAL { 0 }
|
|
::= { hwDot1xTemplateConfigEntry 3 }
|
|
|
|
hwDot1xHandshakeInterval OBJECT-TYPE
|
|
SYNTAX Integer32 (1..1800)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the handshake interval.
|
|
Unit: second
|
|
Range: 1-1800
|
|
Default: 15s
|
|
"
|
|
DEFVAL { 20 }
|
|
::= { hwDot1xTemplateConfigEntry 4 }
|
|
|
|
hwDot1xIfEAPEnd OBJECT-TYPE
|
|
SYNTAX INTEGER{eapEnd(1),eapRelay(2)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates which EAP authentication mode is adopted for the specified 802.1x profile.
|
|
In the 802.1x function, the authentication packet can be processed in two modes:
|
|
EAP end and EAP relay.
|
|
Options:
|
|
1. eapEnd(1) -indicates the EAP end authentication mode. If local user authenticates on
|
|
DSLAM directly, it does not need to communicate with the remote RADIUS server.
|
|
If the user is not local user, it must be authenticated on the remote RADIUS
|
|
server.
|
|
2. eapRelay(2) -the user must be authenticated on the remote RADIUS server
|
|
Default: eapReplay(2)
|
|
"
|
|
DEFVAL {2}
|
|
::= { hwDot1xTemplateConfigEntry 5 }
|
|
|
|
hwDot1xTempIfUsed OBJECT-TYPE
|
|
SYNTAX INTEGER {used(1),unused(0)}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates whether the profile is used. When a profile is not used,
|
|
the profile can be deleted.
|
|
Options:
|
|
1. used(1) -indicates the profile is used
|
|
2. unused(0) -indicates the profile is not used
|
|
Default: unused(0)
|
|
"
|
|
::= {hwDot1xTemplateConfigEntry 6 }
|
|
|
|
hwDot1xTempRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the operation type of the table.
|
|
Options:
|
|
1. active(1) -indicates query operation
|
|
2. createAndGo(4) -indicates creating a profile
|
|
3. destroy(6) -indicates deleting a profile
|
|
"
|
|
::= {hwDot1xTemplateConfigEntry 7 }
|
|
|
|
hwDot1xPortConfigExtTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF HwDot1xPortConfigExtEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"It is an extension table of dot1xPaePortTable and is used for describing
|
|
the authorization mode and authentication status of the port. The index
|
|
of this table is dot1xPaePortNumber (defined in dot1xPaePortTable). This
|
|
version supports authentication based on the port or service port; therefore,
|
|
dot1xPaePortNumber indicates the ID of a port or service port. When the
|
|
input value exceeds the maximum ID of the service port, dot1xPaePortNumber
|
|
is treated as ifIndex. The range of the service port IDs depends on the version.
|
|
This table supports the creation of the port table. After the port table
|
|
is created, the 802.1x authentication is bound to the port.
|
|
The create operation is as follows:
|
|
Specify the ID of the port to which the 802.1x authentication needs to be bound.
|
|
Set hwDot1xPortRowStatus to createAndGo(4), and issue the set operation.
|
|
Optionally specify hwDot1xPortMacControl. However, if the ID of the port is
|
|
the ID of the service port, hwDot1xPortMacControl cannot be specified.
|
|
hwDot1xPortMacControl cannot be issued independently, and it must be issued
|
|
together with hwDot1xPortRowStatus during the create operation.
|
|
"
|
|
::= { hwDot1xMibObjects 3 }
|
|
|
|
hwDot1xPortConfigExtEntry OBJECT-TYPE
|
|
SYNTAX HwDot1xPortConfigExtEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"It is an extension table of dot1xPaePortTable and is used for describing
|
|
the authorization mode and authentication status of the port. The index
|
|
of this entry is dot1xPaePortNumber (defined in dot1xPaePortTable). This
|
|
version supports authentication based on the port or service port; therefore,
|
|
dot1xPaePortNumber indicates the ID of a port or service port. When the
|
|
input value exceeds the maximum ID of the service port, dot1xPaePortNumber
|
|
is treated as ifIndex. The range of the service port IDs depends on the version.
|
|
This table supports the creation of the port table. After the port table
|
|
is created, the 802.1x authentication is bound to the port.
|
|
The create operation is as follows:
|
|
Specify the ID of the port to which the 802.1x authentication needs to be bound.
|
|
Set hwDot1xPortRowStatus to createAndGo(4), and issue the set operation.
|
|
Optionally specify hwDot1xPortMacControl. However, if the ID of the port is
|
|
the ID of the service port, hwDot1xPortMacControl cannot be specified.
|
|
hwDot1xPortMacControl cannot be issued independently, and it must be issued
|
|
together with hwDot1xPortRowStatus during the create operation.
|
|
"
|
|
INDEX { dot1xPaePortNumber }
|
|
::= { hwDot1xPortConfigExtTable 1 }
|
|
|
|
HwDot1xPortConfigExtEntry ::=
|
|
SEQUENCE {
|
|
hwDot1xPortControlType
|
|
INTEGER,
|
|
hwDot1xPortBindFlag
|
|
INTEGER,
|
|
hwDot1xPortAuthMode
|
|
INTEGER,
|
|
hwDot1xPortAuthState
|
|
INTEGER,
|
|
hwDot1xPortUserName
|
|
OCTET STRING,
|
|
hwDot1xPortFramePool
|
|
DisplayString,
|
|
hwDot1xPortRowStatus
|
|
RowStatus,
|
|
hwDot1xPortMacControl
|
|
INTEGER,
|
|
hwDot1xGuestVlan
|
|
Integer32,
|
|
hwDot1xRestrictVlan
|
|
Integer32
|
|
}
|
|
|
|
hwDot1xPortControlType OBJECT-TYPE
|
|
SYNTAX INTEGER{physicalPort(1),servicePort(2)}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the control type of the port. The port can be controlled in the
|
|
following two ways: physical port control and service port control.
|
|
Options:
|
|
1. physicalPort(1) -physical port control
|
|
2. servicePort(2) -service port control
|
|
"
|
|
::= { hwDot1xPortConfigExtEntry 1 }
|
|
|
|
hwDot1xPortBindFlag OBJECT-TYPE
|
|
SYNTAX INTEGER{binding(1)}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates that the 802.1x authentication is bound to the port.
|
|
Options:
|
|
1. binding(1) -indicates the 802.1x authentication is bound to the port
|
|
"
|
|
::= { hwDot1xPortConfigExtEntry 2 }
|
|
|
|
hwDot1xPortAuthMode OBJECT-TYPE
|
|
SYNTAX INTEGER{forceUnauthorized(1),auto(2),forceAuthorized(3)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the control parameters of the controlled port. A port has three
|
|
authorization control modes: force-authorized mode, force-unauthorized mode,
|
|
and auto mode. According to different networks, different port control modes
|
|
can be selected. By default, a port is in the unauthorized state, and users
|
|
connected to the port cannot access network resources. If the authentication
|
|
passes, the port state switches to the authorized state and users can access
|
|
the network resources.
|
|
Options:
|
|
1. forceUnauthorized(1) -indicates force-authorized mode
|
|
2. auto(2) -auto mode
|
|
3. forceAuthorized(3) -indicates force-unauthorized mode
|
|
Default: auto(2)
|
|
"
|
|
DEFVAL { 2 }
|
|
::= { hwDot1xPortConfigExtEntry 3 }
|
|
|
|
hwDot1xPortAuthState OBJECT-TYPE
|
|
SYNTAX INTEGER {auth(1),unAuth(2)}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the port authentication status.
|
|
Options:
|
|
1. auth(1) -indicates the port is authenticated
|
|
2. unAuth(2) -indicates the port is not authenticated
|
|
Default: unauth(2)
|
|
"
|
|
::= { hwDot1xPortConfigExtEntry 4 }
|
|
|
|
hwDot1xPortUserName OBJECT-TYPE
|
|
SYNTAX OCTET STRING(SIZE(0..64))
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the user name bound to the port.
|
|
"
|
|
::= { hwDot1xPortConfigExtEntry 5 }
|
|
|
|
hwDot1xPortFramePool OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE(0..255))
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the address pool of the port binding.
|
|
"
|
|
::= { hwDot1xPortConfigExtEntry 6 }
|
|
|
|
hwDot1xPortRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the operation type of the port table: binding the port to the 802.1x
|
|
authentication, and unbinding the port from the 802.1x authentication.
|
|
Options:
|
|
1. active(1) -indicates query operation
|
|
2. createAndGo(4) -indicates binding a port to the 802.1x authentication
|
|
3. destroy(6) -indicates unbinding a port from the 802.1x authentication
|
|
"
|
|
::= { hwDot1xPortConfigExtEntry 7}
|
|
|
|
hwDot1xPortMacControl OBJECT-TYPE
|
|
SYNTAX INTEGER{enable(1),disable(2)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates whether to enable the MAC-based control function. This leaf can be
|
|
issued with parameters during the create operation. This function supports
|
|
port-based rather than service-port-based configuration. When hwDot1xPortMacControl
|
|
is set to enable(1), only the packets whose source MAC address is the MAC address
|
|
of the authorized user can reach the network side. This leaf does not support the
|
|
modify operation.
|
|
Options:
|
|
1. enable(1) -indicates the MAC-based control function is enabled
|
|
2. disable(2) -indicates the MAC-based control function is disabled
|
|
Default: disable(2)
|
|
"
|
|
::= { hwDot1xPortConfigExtEntry 8}
|
|
|
|
hwDot1xGuestVlan OBJECT-TYPE
|
|
SYNTAX Integer32 (-1 | 1..4093)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x guest VLAN.
|
|
Range: -1, 1-4093, -1 indicates an invalid value, a value between 1 and 4093 indicates the VLAN ID.
|
|
"
|
|
::= { hwDot1xPortConfigExtEntry 9}
|
|
|
|
hwDot1xRestrictVlan OBJECT-TYPE
|
|
SYNTAX Integer32 (-1 | 1..4093)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x restrict VLAN.
|
|
Range: -1, 1-4093, -1 indicates an invalid value, a value between 1 and 4093 indicates the VLAN ID.
|
|
"
|
|
::= { hwDot1xPortConfigExtEntry 10 }
|
|
|
|
hwDot1xPortAuthStatsExtTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF HwDot1xPortAuthStatsExtEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"It is an extension of the public MIB table dot1xAuthStatsEntry, with certain leaves
|
|
added for describing the packet statistics of the port. The index of this table is
|
|
dot1xPaePortNumber (defined in dot1xPaePortTable). The following tables list the
|
|
leaves of this table.
|
|
Only hwDot1xPortClearStatistics in this table supports the modify operation.
|
|
The modification process is as follows:
|
|
Specify the ID of the port to be modified.
|
|
Set hwDot1xPortClearStatistics to the required value. The option is clear(1).
|
|
Therefore, directly perform the set operation.
|
|
"
|
|
::= { hwDot1xMibObjects 4 }
|
|
|
|
hwDot1xPortAuthStatsExtEntry OBJECT-TYPE
|
|
SYNTAX HwDot1xPortAuthStatsExtEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"It is an extension of the public MIB table dot1xAuthStatsEntry, with certain leaves
|
|
added for describing the packet statistics of the port. The index of this entry is
|
|
dot1xPaePortNumber (defined in dot1xPaePortTable). The following tables list the
|
|
leaves of this table.
|
|
Only hwDot1xPortClearStatistics in this table supports the modify operation.
|
|
The modification process is as follows:
|
|
Specify the ID of the port to be modified.
|
|
Set hwDot1xPortClearStatistics to the required value. The option is clear(1).
|
|
Therefore, directly perform the set operation.
|
|
"
|
|
INDEX { dot1xPaePortNumber }
|
|
::= { hwDot1xPortAuthStatsExtTable 1 }
|
|
|
|
HwDot1xPortAuthStatsExtEntry ::=
|
|
SEQUENCE {
|
|
hwDot1xAuthSuccessTimes
|
|
Integer32,
|
|
hwDot1xAuthFailureTimes
|
|
Integer32,
|
|
hwDot1xEapolFailurePacketsTx
|
|
Integer32,
|
|
hwDot1xEapolSuccessPacketsTx
|
|
Integer32,
|
|
hwDot1xNoSupportPacketsRx
|
|
Integer32,
|
|
hwDot1xPortClearStatistics
|
|
INTEGER
|
|
}
|
|
|
|
hwDot1xAuthSuccessTimes OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the number of authentication successes.
|
|
"
|
|
::= { hwDot1xPortAuthStatsExtEntry 1}
|
|
|
|
hwDot1xAuthFailureTimes OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the number of authentication failures.
|
|
"
|
|
::= { hwDot1xPortAuthStatsExtEntry 2}
|
|
|
|
hwDot1xEapolFailurePacketsTx OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the number of the transmitted Eapol-Failure packets.
|
|
"
|
|
::= { hwDot1xPortAuthStatsExtEntry 3}
|
|
|
|
hwDot1xEapolSuccessPacketsTx OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the number of the transmitted Eapol-Success packets.
|
|
"
|
|
::= { hwDot1xPortAuthStatsExtEntry 4}
|
|
|
|
hwDot1xNoSupportPacketsRx OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the number of the unsupported EAPoL packets that are received.
|
|
"
|
|
::= { hwDot1xPortAuthStatsExtEntry 5}
|
|
|
|
hwDot1xPortClearStatistics OBJECT-TYPE
|
|
SYNTAX INTEGER {clear(1)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Clears the port statistics.
|
|
Options:
|
|
1. clear(1) -indicates clearing the port statistics
|
|
"
|
|
::= { hwDot1xPortAuthStatsExtEntry 6}
|
|
|
|
hwDot1xAutoDetect OBJECT-TYPE
|
|
SYNTAX INTEGER { enabled(1), disabled(2) }
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the status of the auto-detect function of the device. After the 802.1x
|
|
auto-detect function is enabled, the system automatically detects the port status
|
|
and requests the user authentication.
|
|
Options:
|
|
1. enabled(1) -indicates the auto-detect function of the device is enabled
|
|
2. disabled(2) -indicates the auto-detect function of the device is disabled
|
|
Default: disable(2)
|
|
"
|
|
::= { hwDot1xMibObjects 5 }
|
|
|
|
hwDot1xIntermittentBlinkingProtection OBJECT-TYPE
|
|
SYNTAX INTEGER { enabled(1), disabled(2) }
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the intermittent blinking protection function, which is used to reduce
|
|
the duration of service interruption caused by port intermittent blinking. After
|
|
the intermittent blinking protection function is enabled, the system does not force
|
|
the 802.1x user to go offline when the port is down. In this case, if the handshake
|
|
function is already enabled, the system detects the user by using the handshake
|
|
mechanism; if the handshake function is disabled, the system waits for the duration
|
|
of keepalive interval x number of handshake failures, and then forces the user to
|
|
go offline if the port is still down. After the intermittent blinking protection
|
|
function is enabled, the count of user online duration may be incorrect. Therefore,
|
|
this function is applicable to the provisioning of services with the monthly flat
|
|
rate rather than in the duration-based charging mode.
|
|
Indicates the status of the intermittent blinking protection function of the device.
|
|
Options:
|
|
1. enabled(1) -indicates the intermittent blinking protection function is enabled
|
|
2. disabled(2) -indicates the intermittent blinking protection function is disabled
|
|
Default: disable(2)
|
|
"
|
|
::= { hwDot1xMibObjects 6 }
|
|
|
|
hwDot1xGlobalMacControlStatus OBJECT-TYPE
|
|
SYNTAX INTEGER { enabled(1), disabled(2) }
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Whether the global mac control is enabled in the device.
|
|
Enable indicate that global mac control enable in the device;
|
|
Disabled indicate that global mac control disable in the device.
|
|
DEFVAL { 2 }
|
|
Options:
|
|
1. enabled(1) -indicates the global mac control is enabled
|
|
2. disabled(2) -indicates the global mac control is disabled
|
|
"
|
|
::= { hwDot1xMibObjects 7 }
|
|
|
|
hwDot1xMacPortInfoTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF HwDot1xMacPortInfoEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table describes the port information of 802.1x,
|
|
The index of this table is mac address.
|
|
"
|
|
::= { hwDot1xMibObjects 8 }
|
|
|
|
hwDot1xMacPortInfoEntry OBJECT-TYPE
|
|
SYNTAX HwDot1xMacPortInfoEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table describes the port information of 802.1x,
|
|
The index of this entry is mac address.
|
|
"
|
|
INDEX { hwDot1xMacPortInfoMacAddress }
|
|
::= { hwDot1xMacPortInfoTable 1 }
|
|
|
|
HwDot1xMacPortInfoEntry ::=
|
|
SEQUENCE {
|
|
hwDot1xMacPortInfoMacAddress
|
|
MacAddress,
|
|
hwDot1xMacPortInfoAuthState
|
|
Unsigned32,
|
|
hwDot1xMacPortInfoAuthType
|
|
Unsigned32
|
|
}
|
|
|
|
hwDot1xMacPortInfoMacAddress OBJECT-TYPE
|
|
SYNTAX MacAddress
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Mac address.
|
|
"
|
|
::= { hwDot1xMacPortInfoEntry 1 }
|
|
|
|
hwDot1xMacPortInfoAuthState OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Authentication state.
|
|
"
|
|
::= { hwDot1xMacPortInfoEntry 2 }
|
|
|
|
hwDot1xMacPortInfoAuthType OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Authentication Type.
|
|
"
|
|
::= { hwDot1xMacPortInfoEntry 3 }
|
|
|
|
hwDot1xMacPortStatTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF HwDot1xMacPortStatEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table describes the port statistics of 802.1x,
|
|
The index of this table is mac address.
|
|
"
|
|
::= { hwDot1xMibObjects 9 }
|
|
|
|
hwDot1xMacPortStatEntry OBJECT-TYPE
|
|
SYNTAX HwDot1xMacPortStatEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table describes the port statistics of 802.1x,
|
|
The index of this entry is mac address.
|
|
"
|
|
INDEX { hwDot1xMacPortInfoMacAddress }
|
|
::= { hwDot1xMacPortStatTable 1 }
|
|
|
|
HwDot1xMacPortStatEntry ::=
|
|
SEQUENCE {
|
|
hwDot1xMacPortStatAuthSuccessTimes
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthFailureTimes
|
|
Unsigned32,
|
|
hwDot1xMacPortStatEapolFailurePacketsTx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatEapolSuccessPacketsTx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatNoSupportPacketsRx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatClearStatistics
|
|
INTEGER,
|
|
hwDot1xMacPortStatAuthEapolFramesRx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthEapolFramesTx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthEapolStartFramesRx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthEapolLogoffFramesRx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthEapolRespIdFramesRx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthEapolRespFramesRx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthEapolReqIdFramesTx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthEapolReqFramesTx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthInvalidEapolFramesRx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthEapLengthErrorFramesRx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthLastEapolFrameVersion
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthEapolKeyFramesRx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthEapolKeyFramesTx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthEapolPeapFramesRx
|
|
Unsigned32,
|
|
hwDot1xMacPortStatAuthEapolPeapFramesTx
|
|
Unsigned32
|
|
}
|
|
|
|
hwDot1xMacPortStatAuthSuccessTimes OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Authentication success times
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 1}
|
|
|
|
hwDot1xMacPortStatAuthFailureTimes OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Authentication Failure times
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 2}
|
|
|
|
hwDot1xMacPortStatEapolFailurePacketsTx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The numbers of the Eapol-Failure Packets which has been send by the port
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 3}
|
|
|
|
hwDot1xMacPortStatEapolSuccessPacketsTx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The numbers of the Eapol-Success Packets which has been send by the port
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 4}
|
|
|
|
hwDot1xMacPortStatNoSupportPacketsRx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The numbers of the Eapol packets which are not supported have been
|
|
received in this port
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 5}
|
|
|
|
hwDot1xMacPortStatClearStatistics OBJECT-TYPE
|
|
SYNTAX INTEGER {clear(1)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Clear the information of the packets statistics in this port
|
|
Options:
|
|
1. clear(1) -indicates clearing the information of the packets statistics in this port
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 6}
|
|
|
|
hwDot1xMacPortStatAuthEapolFramesRx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of valid EAPOL frames of any type
|
|
that has been received by this Authenticator.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 7 }
|
|
|
|
hwDot1xMacPortStatAuthEapolFramesTx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL frames of any type
|
|
that has been transmitted by this Authenticator.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 8 }
|
|
|
|
hwDot1xMacPortStatAuthEapolStartFramesRx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL Start frames that have
|
|
been received by this Authenticator.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 9 }
|
|
|
|
hwDot1xMacPortStatAuthEapolLogoffFramesRx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL Logoff frames that have
|
|
been received by this Authenticator.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 10 }
|
|
|
|
hwDot1xMacPortStatAuthEapolRespIdFramesRx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAP Resp/Id frames that have
|
|
been received by this Authenticator.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 11 }
|
|
|
|
hwDot1xMacPortStatAuthEapolRespFramesRx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of valid EAP Response frames
|
|
(other than Resp/Id frames) that have been
|
|
received by this Authenticator.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 12 }
|
|
|
|
hwDot1xMacPortStatAuthEapolReqIdFramesTx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAP Req/Id frames that have been
|
|
transmitted by this Authenticator.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 13 }
|
|
|
|
hwDot1xMacPortStatAuthEapolReqFramesTx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAP Request frames
|
|
(other than Rq/Id frames) that have been
|
|
transmitted by this Authenticator.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 14 }
|
|
|
|
hwDot1xMacPortStatAuthInvalidEapolFramesRx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL frames that have been
|
|
received by this Authenticator in which the
|
|
frame type is not recognized.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 15 }
|
|
|
|
hwDot1xMacPortStatAuthEapLengthErrorFramesRx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL frames that have been received
|
|
by this Authenticator in which the Packet Body
|
|
Length field is invalid.
|
|
"
|
|
|
|
::= { hwDot1xMacPortStatEntry 16 }
|
|
|
|
hwDot1xMacPortStatAuthLastEapolFrameVersion OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The protocol version number carried in the
|
|
most recently received EAPOL frame.
|
|
"
|
|
|
|
::= { hwDot1xMacPortStatEntry 17 }
|
|
|
|
hwDot1xMacPortStatAuthEapolKeyFramesRx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL key frames that have been received
|
|
by this Authenticator.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 18 }
|
|
|
|
hwDot1xMacPortStatAuthEapolKeyFramesTx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL key frames that have been sent
|
|
by this Authenticator.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 19 }
|
|
|
|
hwDot1xMacPortStatAuthEapolPeapFramesRx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL peap frames that have been received
|
|
by this Authenticator.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 20 }
|
|
|
|
hwDot1xMacPortStatAuthEapolPeapFramesTx OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL peap frames that have been sent
|
|
by this Authenticator.
|
|
"
|
|
::= { hwDot1xMacPortStatEntry 21 }
|
|
|
|
hwDot1xMacConflictDetectStatus OBJECT-TYPE
|
|
SYNTAX INTEGER { enabled(1), disabled(2) }
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the status of the mac-conflict-detect function of the device. After the
|
|
802.1x mac-conflict-detect function is enabled, the system detects the mac conflicts.
|
|
Options:
|
|
1. enabled(1) -indicates the mac-conflict-detect of the device is enabled
|
|
2. disabled(2) -indicates the mac-conflict-detect of the device is disabled
|
|
Default: disable(2)
|
|
"
|
|
::= { hwDot1xMibObjects 10 }
|
|
|
|
hwDot1xAuthenTimeout OBJECT-TYPE
|
|
SYNTAX Integer32(100..600)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value, in seconds, of the serverTimeout constant currently in use by the Backend Authentication state machine.
|
|
Unit: second
|
|
"
|
|
::= { hwDot1xMibObjects 11 }
|
|
|
|
hwDot1xKeepaliveSwitch OBJECT-TYPE
|
|
SYNTAX INTEGER {open(1),close(0)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the status of the handshake function.
|
|
Options:
|
|
1. open(1) -indicates the handshake function is enabled
|
|
2. close(0) -indicates the handshake function is disabled
|
|
Default: close(0)
|
|
"
|
|
::= { hwDot1xMibObjects 12 }
|
|
|
|
hwDot1xKeepaliveRestranTimes OBJECT-TYPE
|
|
SYNTAX Integer32 (1..10)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the permitted handshake failures.
|
|
Range: 1-10
|
|
Default: 3
|
|
"
|
|
::= { hwDot1xMibObjects 13 }
|
|
|
|
hwDot1xKeepaliveInterval OBJECT-TYPE
|
|
SYNTAX Integer32 (1..1800)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the handshake interval.
|
|
Unit: second
|
|
"
|
|
::= { hwDot1xMibObjects 14 }
|
|
|
|
hwDot1xQuietPeriodTime OBJECT-TYPE
|
|
SYNTAX Integer32(10..240)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value, in seconds, of the quietPeriod constant currently in use by the Authenticator PAE state machine.
|
|
Unit: second
|
|
"
|
|
::= { hwDot1xMibObjects 15 }
|
|
|
|
hwDot1xReAuthSwitch OBJECT-TYPE
|
|
SYNTAX INTEGER {true(1),false(2)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The enable/disable control used by the Reauthentication Timer state machine.
|
|
Options:
|
|
1. true(1) - indicates the reauthentication function is enabled
|
|
2. false(2) - indicates the reauthentication function is disabled
|
|
Default: true(1)
|
|
"
|
|
::= {hwDot1xMibObjects 16 }
|
|
|
|
hwDot1xReAuthInterval OBJECT-TYPE
|
|
SYNTAX Integer32(60..86400)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value, in seconds, of the reAuthPeriod constant currently in use by the Reauthentication Timer state machine.
|
|
Unit: second
|
|
"
|
|
::= {hwDot1xMibObjects 17 }
|
|
|
|
hwDot1xAuthRequestInterval OBJECT-TYPE
|
|
SYNTAX Integer32(10..240)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value, in seconds, of the txPeriod constant currently in use by the Authenticator PAE state machine.
|
|
Unit: second
|
|
"
|
|
::= {hwDot1xMibObjects 18 }
|
|
|
|
hwDot1xRestransmitTimes OBJECT-TYPE
|
|
SYNTAX Integer32(1..10)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value of the maxReq constant currently in use by the Backend Authentication state machine.
|
|
Range: 1-10
|
|
Default: 3
|
|
"
|
|
::= {hwDot1xMibObjects 19 }
|
|
|
|
hwDot1xSuppTimeout OBJECT-TYPE
|
|
SYNTAX Integer32(10..2400)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value, in seconds, of the suppTimeout constant currently in use by the Backend Authentication state machine.
|
|
Unit: second
|
|
"
|
|
::= {hwDot1xMibObjects 20 }
|
|
|
|
hwOntDot1xMibObjects OBJECT IDENTIFIER ::= { hwpaeExtMibObjects 4 }
|
|
|
|
hwOntDot1xProfileTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF HwOntDot1xProfileEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to manage the 802.1x profile and global configuration data of the profile.
|
|
The index of this table is hwOntDot1xProfileName.
|
|
"
|
|
::= { hwOntDot1xMibObjects 1 }
|
|
|
|
hwOntDot1xProfileEntry OBJECT-TYPE
|
|
SYNTAX HwOntDot1xProfileEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to manage the 802.1x profile and global configuration data of the profile.
|
|
The index of this entry is hwOntDot1xProfileName.
|
|
"
|
|
INDEX { hwOntDot1xProfileName }
|
|
::= { hwOntDot1xProfileTable 1 }
|
|
|
|
HwOntDot1xProfileEntry ::=
|
|
SEQUENCE {
|
|
hwOntDot1xProfileName
|
|
OCTET STRING,
|
|
hwOntDot1xRadiusAuthServerIP
|
|
IpAddress,
|
|
hwOntDot1xRadiusAuthServerPort
|
|
Integer32,
|
|
hwOntDot1xRadiusSecondaryAuthServerIP
|
|
IpAddress,
|
|
hwOntDot1xRadiusSecondaryAuthServerPort
|
|
Integer32,
|
|
hwOntDot1xRadiusAuthSharedKey
|
|
OCTET STRING,
|
|
hwOntDot1xRadiusSecondaryAuthSharedKey
|
|
OCTET STRING,
|
|
hwOntDot1xRadiusUserNameFormat
|
|
INTEGER,
|
|
hwOntDot1xRadiusServerTimeOut
|
|
Integer32,
|
|
hwOntDot1xRadiusServerRetransmitTimes
|
|
Integer32,
|
|
hwOntDot1xProfileBindNum
|
|
Integer32,
|
|
hwOntDot1xProfileCommit
|
|
INTEGER,
|
|
hwOntDot1xRadiusAcctServerAddrType
|
|
InetAddressType,
|
|
hwOntDot1xRadiusAcctServerAddr
|
|
InetAddress,
|
|
hwOntDot1xRadiusAcctServerPort
|
|
Integer32,
|
|
hwOntDot1xRadiusSecondaryAcctServerAddrType
|
|
InetAddressType,
|
|
hwOntDot1xRadiusSecondaryAcctServerAddr
|
|
InetAddress,
|
|
hwOntDot1xRadiusSecondaryAcctServerPort
|
|
Integer32,
|
|
hwOntDot1xAcctInterimInterval
|
|
Integer32,
|
|
hwOntDot1xVoiceDeviceControl
|
|
INTEGER,
|
|
hwOntDot1xRadiusAcctServerShareKey
|
|
OCTET STRING,
|
|
hwOntDot1xRadiusSecondaryAcctServerShareKey
|
|
OCTET STRING,
|
|
hwOntDot1xMaxRetryTimes
|
|
Integer32,
|
|
hwOntDot1xQuietPeriodSwitch
|
|
INTEGER,
|
|
hwOntDot1xQuietPeriodTime
|
|
Integer32,
|
|
hwOntDot1xTxPeriodTime
|
|
Integer32,
|
|
hwOntDot1xProfileRowStatus
|
|
RowStatus
|
|
}
|
|
|
|
hwOntDot1xProfileName OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE(1..32))
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"802.1x profile name.
|
|
Range: a string of 1-32 characters.
|
|
"
|
|
::= { hwOntDot1xProfileEntry 1 }
|
|
|
|
hwOntDot1xRadiusAuthServerIP OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The ip address of primary radius authentication server.
|
|
"
|
|
::= { hwOntDot1xProfileEntry 2 }
|
|
|
|
hwOntDot1xRadiusAuthServerPort OBJECT-TYPE
|
|
SYNTAX Integer32 (0..65535)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The port of primary radius authentication server.
|
|
"
|
|
::= { hwOntDot1xProfileEntry 3 }
|
|
|
|
hwOntDot1xRadiusSecondaryAuthServerIP OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The ip address of secondary radius authentication server.
|
|
"
|
|
::= { hwOntDot1xProfileEntry 4 }
|
|
|
|
hwOntDot1xRadiusSecondaryAuthServerPort OBJECT-TYPE
|
|
SYNTAX Integer32 (0..65535)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The port of secondary radius authentication server.
|
|
"
|
|
::= { hwOntDot1xProfileEntry 5 }
|
|
|
|
hwOntDot1xRadiusAuthSharedKey OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (0..25))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The shared-key of primary redius server.
|
|
"
|
|
::= { hwOntDot1xProfileEntry 6 }
|
|
|
|
hwOntDot1xRadiusSecondaryAuthSharedKey OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (0..25))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The shared-key of secondary redius server.
|
|
"
|
|
::= { hwOntDot1xProfileEntry 7 }
|
|
|
|
hwOntDot1xRadiusUserNameFormat OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
domainincluded(1),
|
|
nodomainincluded(2)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"User name format in the radius packet.
|
|
Options:
|
|
1. domainincluded(1) -Indicates that a user name contains a domain name.
|
|
2. nodomainincluded(2) -Indicates that a user name uses the original name.
|
|
Defaule: domain-included(1)
|
|
"
|
|
DEFVAL { includingdomain }
|
|
::= { hwOntDot1xProfileEntry 8 }
|
|
|
|
hwOntDot1xRadiusServerTimeOut OBJECT-TYPE
|
|
SYNTAX Integer32 (1..20)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The retransmit timeout period of radius server.
|
|
Unit: second
|
|
Default: 5
|
|
"
|
|
::= { hwOntDot1xProfileEntry 9 }
|
|
|
|
hwOntDot1xRadiusServerRetransmitTimes OBJECT-TYPE
|
|
SYNTAX Integer32 (1..5)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The times of radius packet retransmit.
|
|
Default: 3
|
|
"
|
|
::= { hwOntDot1xProfileEntry 10 }
|
|
|
|
hwOntDot1xProfileBindNum OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The binding times of the profile.
|
|
"
|
|
::= { hwOntDot1xProfileEntry 11 }
|
|
|
|
hwOntDot1xProfileCommit OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
commitExecute(1),
|
|
invalid(-1)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates whether the profile-mode configuration of 802.1x is available.
|
|
Options:
|
|
1. commitExecute(1) - indicates to perform the commit operation.
|
|
2. invalid(-1) - indicates the invalid state.
|
|
"
|
|
DEFVAL { invalid }
|
|
::= { hwOntDot1xProfileEntry 12 }
|
|
|
|
hwOntDot1xRadiusAcctServerAddrType OBJECT-TYPE
|
|
SYNTAX InetAddressType
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the address type of primary radius accounting server."
|
|
::= { hwOntDot1xProfileEntry 13 }
|
|
|
|
hwOntDot1xRadiusAcctServerAddr OBJECT-TYPE
|
|
SYNTAX InetAddress
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the ip address of primary radius accounting server"
|
|
::= { hwOntDot1xProfileEntry 14 }
|
|
|
|
hwOntDot1xRadiusAcctServerPort OBJECT-TYPE
|
|
SYNTAX Integer32 (0..65535)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the port of primary radius accounting server."
|
|
::= { hwOntDot1xProfileEntry 15 }
|
|
|
|
hwOntDot1xRadiusSecondaryAcctServerAddrType OBJECT-TYPE
|
|
SYNTAX InetAddressType
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the address type of secondary radius accounting server."
|
|
::= { hwOntDot1xProfileEntry 16 }
|
|
|
|
hwOntDot1xRadiusSecondaryAcctServerAddr OBJECT-TYPE
|
|
SYNTAX InetAddress
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the ip address of secondary radius accounting server."
|
|
::= { hwOntDot1xProfileEntry 17 }
|
|
|
|
hwOntDot1xRadiusSecondaryAcctServerPort OBJECT-TYPE
|
|
SYNTAX Integer32 (0..65535)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the port of secondary radius accounting server."
|
|
::= { hwOntDot1xProfileEntry 18 }
|
|
|
|
hwOntDot1xAcctInterimInterval OBJECT-TYPE
|
|
SYNTAX Integer32 (0..60)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates interim interval of accounting.
|
|
Unit: minute
|
|
Default: 0 -Indicates that real-time accounting is not performed."
|
|
::= { hwOntDot1xProfileEntry 19 }
|
|
|
|
hwOntDot1xVoiceDeviceControl OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
auto(1),
|
|
forceauthorized(2)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the authentication control mode of the 802.1X voice device.
|
|
Options:
|
|
1. auto (1) -Indicates that the control mode of the voice device is in automatic identification.
|
|
2. forceauthorized(2) -Indicates that the control mode of the voice device is in forced authorization.
|
|
Default: auto(1)"
|
|
::= { hwOntDot1xProfileEntry 20 }
|
|
|
|
hwOntDot1xRadiusAcctServerShareKey OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (0..25))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The shared-key of primary accounting radius server.
|
|
"
|
|
::= { hwOntDot1xProfileEntry 21 }
|
|
|
|
hwOntDot1xRadiusSecondaryAcctServerShareKey OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (0..25))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The shared-key of secondary accounting radius server.
|
|
"
|
|
::= { hwOntDot1xProfileEntry 22 }
|
|
|
|
hwOntDot1xMaxRetryTimes OBJECT-TYPE
|
|
SYNTAX Integer32 (1..10)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates Maximum number of times that the ONT sends authentication requests to 802.1x users.
|
|
Default: 3 "
|
|
::= { hwOntDot1xProfileEntry 23 }
|
|
|
|
hwOntDot1xQuietPeriodSwitch OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
enable(1),
|
|
disable(2)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates 802.1x quiet function of the ONT.
|
|
Options:
|
|
1. enable (1) -Indicates 802.1x quiet function of the ONT is enabled.
|
|
2. disable (2) -Indicates 802.1x quiet function of the ONT is disabled.
|
|
Default: enable(1)"
|
|
::= { hwOntDot1xProfileEntry 24}
|
|
|
|
hwOntDot1xQuietPeriodTime OBJECT-TYPE
|
|
SYNTAX Integer32 (1..3600)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates 802.1x quiet period of the ONT.
|
|
Unit: second
|
|
Default: 60"
|
|
::= { hwOntDot1xProfileEntry 25 }
|
|
|
|
hwOntDot1xTxPeriodTime OBJECT-TYPE
|
|
SYNTAX Integer32 (1..120)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates period for the ONT to transmit authentication requests.
|
|
Unit: second
|
|
Default: 3"
|
|
::= { hwOntDot1xProfileEntry 26 }
|
|
|
|
hwOntDot1xProfileRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Row admin status, only support CreateAndGo(4),Destory(6),Active(1).
|
|
Options:
|
|
1. active(1) -indicates query operation
|
|
2. createAndGo(4) -indicates creating operation
|
|
3. destroy(6) -indicates deleting operation
|
|
"
|
|
::= { hwOntDot1xProfileEntry 255 }
|
|
|
|
hwOntDot1xPortProfileTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF HwOntDot1xPortProfileEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to manage the port configuration data of the 802.1x profile.
|
|
The indexes of this table are hwOntDot1xPortProfName, hwOntDot1xOntPhyType, hwOntDot1xOntPhyIndex.
|
|
"
|
|
::= { hwOntDot1xMibObjects 2 }
|
|
|
|
hwOntDot1xPortProfileEntry OBJECT-TYPE
|
|
SYNTAX HwOntDot1xPortProfileEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to manage the port configuration data of the 802.1x profile.
|
|
The indexes of this entry are hwOntDot1xPortProfName, hwOntDot1xOntPhyType, hwOntDot1xOntPhyIndex.
|
|
"
|
|
INDEX { hwOntDot1xPortProfName, hwOntDot1xOntPhyType, hwOntDot1xOntPhyIndex }
|
|
::= { hwOntDot1xPortProfileTable 1 }
|
|
|
|
HwOntDot1xPortProfileEntry ::=
|
|
SEQUENCE {
|
|
hwOntDot1xPortProfName
|
|
OCTET STRING,
|
|
hwOntDot1xOntPhyType
|
|
INTEGER,
|
|
hwOntDot1xOntPhyIndex
|
|
Integer32,
|
|
hwOntDot1xPortSwitch
|
|
INTEGER,
|
|
hwOntDot1xPortControl
|
|
INTEGER,
|
|
hwOntDot1xPortAuthenticationMethod
|
|
INTEGER,
|
|
hwOntDot1xPortGuestVlan
|
|
Integer32,
|
|
hwOntDot1xPortRestrictVlan
|
|
Integer32,
|
|
hwOntDot1xPortKeepaliveSwitch
|
|
INTEGER,
|
|
hwOntDot1xPortRetransmitTimes
|
|
Integer32,
|
|
hwOntDot1xPortRetransmitInterval
|
|
Integer32,
|
|
hwOntDot1xPortMacBypassSwitch
|
|
INTEGER,
|
|
hwOntDot1xPortCriticalVlan
|
|
Integer32,
|
|
hwOntDot1xPortUnicastTriggerSwitch
|
|
INTEGER,
|
|
hwOntDot1xPortMulticastTriggerSwitch
|
|
INTEGER,
|
|
hwOntDot1xPortRowStatus
|
|
RowStatus
|
|
}
|
|
|
|
hwOntDot1xPortProfName OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE(1..32))
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the ont dot1x profile name.
|
|
Range: a string of 1-32 characters.
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 1 }
|
|
|
|
hwOntDot1xOntPhyType OBJECT-TYPE
|
|
SYNTAX INTEGER{eth(47)}
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the port type of the ONT.
|
|
Options:
|
|
1. eth(47) - ETH
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 2 }
|
|
|
|
hwOntDot1xOntPhyIndex OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the ONT port index.
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 3 }
|
|
|
|
hwOntDot1xPortSwitch OBJECT-TYPE
|
|
SYNTAX INTEGER {enable(1),disable(2)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x switch.
|
|
Options:
|
|
1. enable(1) - indicates that the 802.1x switch is enabled.
|
|
2. disable(2) - indicates that the 802.1x switch is disabled.
|
|
Default: disable(2)
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 4 }
|
|
|
|
hwOntDot1xPortControl OBJECT-TYPE
|
|
SYNTAX INTEGER {auto(1),forceauthorized(2),forceunauthorized(3)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x port control.
|
|
Options:
|
|
1. auto(1) - indicates that the 802.1x control is auto.
|
|
2. forceauthorized(2) - indicates that the 802.1x control is force-authorized.
|
|
3. forceunauthorized(3) - indicates that the 802.1x control is force-unauthorized.
|
|
Default: auto(1)
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 5 }
|
|
|
|
hwOntDot1xPortAuthenticationMethod OBJECT-TYPE
|
|
SYNTAX INTEGER {eap(1),chap(2),pap(3)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x authentication method.
|
|
Options:
|
|
1. eap(1) - indicates that the 802.1x authentication method is eap.
|
|
2. chap(2) - indicates that the 802.1x authentication method is chap.
|
|
3. pap(3) - indicates that the 802.1x authentication method is pap.
|
|
Default: chap(2)
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 6 }
|
|
|
|
hwOntDot1xPortGuestVlan OBJECT-TYPE
|
|
SYNTAX Integer32 (-1 | 0..4095)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x guest VLAN.
|
|
Range: -1, 0-4095, -1 indicates an invalid value, a value between 0 and 4095 indicates the VLAN ID.
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 7 }
|
|
|
|
hwOntDot1xPortRestrictVlan OBJECT-TYPE
|
|
SYNTAX Integer32 (-1 | 0..4095)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x restrict VLAN.
|
|
Range: -1, 0-4095, -1 indicates an invalid value, a value between 0 and 4095 indicates the VLAN ID.
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 8 }
|
|
|
|
hwOntDot1xPortKeepaliveSwitch OBJECT-TYPE
|
|
SYNTAX INTEGER {enable(1),disable(2)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x keepalive switch.
|
|
Options:
|
|
1. enable(1) - indicates that the 802.1x keepalive switch is enabled.
|
|
2. disable(2) - indicates that the 802.1x keepalive switch is disabled.
|
|
Default: disable(2)
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 9 }
|
|
|
|
hwOntDot1xPortRetransmitTimes OBJECT-TYPE
|
|
SYNTAX Integer32 (1..10)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x keepalive retransmit times.
|
|
Range: 1-10
|
|
Default: 3
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 10 }
|
|
|
|
hwOntDot1xPortRetransmitInterval OBJECT-TYPE
|
|
SYNTAX Integer32 (1..1800)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x keepalive interval.
|
|
Unit: second
|
|
Range: 1-1800
|
|
Default: 15
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 11 }
|
|
|
|
hwOntDot1xPortMacBypassSwitch OBJECT-TYPE
|
|
SYNTAX INTEGER {enable(1),disable(2)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the MacBypass switch.
|
|
Options:
|
|
1. enable(1) - indicates that the MacBypass switch is enabled.
|
|
2. disable(2) - indicates that the MacBypass switch is disabled.
|
|
Default: disable(2)
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 12 }
|
|
|
|
hwOntDot1xPortCriticalVlan OBJECT-TYPE
|
|
SYNTAX Integer32 (-1 | 0..4095)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x critical VLAN.
|
|
Range: -1, 0-4095, -1 indicates an invalid value, a value between 0 and 4095 indicates the VLAN ID.
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 13 }
|
|
|
|
hwOntDot1xPortUnicastTriggerSwitch OBJECT-TYPE
|
|
SYNTAX INTEGER {enable(1),disable(2)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x unicast trigger switch.
|
|
Options:
|
|
1. enable(1) - indicates that the unicast trigger switch switch is enabled.
|
|
2. disable(2) - indicates that the unicast trigger switch switch is disabled.
|
|
Default: enable(1)
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 14 }
|
|
|
|
hwOntDot1xPortMulticastTriggerSwitch OBJECT-TYPE
|
|
SYNTAX INTEGER {enable(1),disable(2)}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x multicast trigger switch.
|
|
Options:
|
|
1. enable(1) - indicates that the multicast trigger switch is enabled.
|
|
2. disable(2) - indicates that the multicast trigger switch is disabled.
|
|
Default: disable(2)
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 15 }
|
|
|
|
hwOntDot1xPortRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the operation type of the port table: binding the port to the 802.1x
|
|
authentication, and unbinding the port from the 802.1x authentication.
|
|
Options:
|
|
1. active(1) -indicates query operation
|
|
2. createAndGo(4) -indicates binding a port to the 802.1x authentication
|
|
3. destroy(6) -indicates unbinding a port from the 802.1x authentication
|
|
"
|
|
::= { hwOntDot1xPortProfileEntry 255}
|
|
|
|
hwOntPortDot1xStatusTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF HwOntPortDot1xStatusEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to query 802.1x status of ONT ports.
|
|
The indexes of this table are ifIndex, hwOntDot1xOntId, hwOntDot1xOntPhyType, hwOntDot1xOntPhyIndex.
|
|
"
|
|
::= { hwOntDot1xMibObjects 3 }
|
|
|
|
hwOntPortDot1xStatusEntry OBJECT-TYPE
|
|
SYNTAX HwOntPortDot1xStatusEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to query 802.1x status of ONT ports.
|
|
The indexes of this entry are ifIndex, hwOntDot1xOntId, hwOntDot1xOntPhyType, hwOntDot1xOntPhyIndex.
|
|
"
|
|
INDEX { ifIndex, hwOntDot1xOntId, hwOntDot1xOntPhyType, hwOntDot1xOntPhyIndex }
|
|
::= { hwOntPortDot1xStatusTable 1 }
|
|
|
|
HwOntPortDot1xStatusEntry ::=
|
|
SEQUENCE {
|
|
hwOntDot1xOntId
|
|
Integer32,
|
|
hwOntDot1xAuthResult
|
|
INTEGER,
|
|
hwOntDot1xAuthenticatorPAEState
|
|
INTEGER,
|
|
hwOntDot1xPortBackendAuthState
|
|
INTEGER,
|
|
hwOntDot1xReAuthPeriod
|
|
Integer32,
|
|
hwOntDot1xReAuthSwitch
|
|
INTEGER,
|
|
hwOntDot1xRadiusAssignVlan
|
|
Integer32
|
|
}
|
|
|
|
hwOntDot1xOntId OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This object indicates the ONT ID of the port
|
|
"
|
|
::= { hwOntPortDot1xStatusEntry 1 }
|
|
|
|
hwOntDot1xAuthResult OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
authorized(1),
|
|
unauthorized(2),
|
|
invalid(-1)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x authentication state.
|
|
Options:
|
|
1. authorized(1) - Indicates the 802.1x authentication state is authorized.
|
|
2. unauthorized(2) - Indicates the 802.1x authentication state is unauthorized.
|
|
3. invalid(-1) - Indicates the invalid state.
|
|
"
|
|
::= { hwOntPortDot1xStatusEntry 2 }
|
|
|
|
hwOntDot1xAuthenticatorPAEState OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
initialize(1),
|
|
disconnected(2),
|
|
connecting(3),
|
|
authenticating(4),
|
|
authenticated(5),
|
|
aborting(6),
|
|
held(7),
|
|
forceauth(8),
|
|
forceunauth(9),
|
|
restart(10),
|
|
invalid(-1)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x authenticator PAE state.
|
|
Options:
|
|
1.initialize(1) -Indicates that 802.1x authenticator PAE state is initialize.
|
|
2.disconnected(2) -Indicates that 802.1x authenticator PAE state is disconnected.
|
|
3.connecting(3) -Indicates that 802.1x authenticator PAE state is connecting.
|
|
4.authenticating(4) -Indicates that 802.1x authenticator PAE state is authenticating.
|
|
5.authenticated(5) -Indicates that 802.1x authenticator PAE state is authenticated.
|
|
6.aborting(6) -Indicates that 802.1x authenticator PAE state is aborting.
|
|
7.held(7) -Indicates that 802.1x authenticator PAE state is held.
|
|
8.forceauth(8) -Indicates that 802.1x authenticator PAE state is forceauth.
|
|
9.forceunauth(9) -Indicates that 802.1x authenticator PAE state is forceunauth.
|
|
10.restart(10) -Indicates that 802.1x authenticator PAE state is restart.
|
|
11.invalid(-1) -Indicates the invalid state.
|
|
"
|
|
::= { hwOntPortDot1xStatusEntry 3 }
|
|
|
|
hwOntDot1xPortBackendAuthState OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
request(1),
|
|
response(2),
|
|
success(3),
|
|
fail(4),
|
|
timeout(5),
|
|
idle(6),
|
|
initialize(7),
|
|
ignore(8),
|
|
invalid(-1)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x backend authentication state.
|
|
Options:
|
|
1.request(1) -Indicates that 802.1x backend authentication state is request.
|
|
2.response(2) -Indicates that 802.1x backend authentication state is response.
|
|
3.success(3) -Indicates that 802.1x backend authentication state is success.
|
|
4.fail(4) -Indicates that 802.1x backend authentication state is fail.
|
|
5.timeout(5) -Indicates that 802.1x backend authentication state is timeout.
|
|
6.idle(6) -Indicates that 802.1x backend authentication state is idle.
|
|
7.initialize(7) -Indicates that 802.1x backend authentication state is initialize.
|
|
8.ignore(8) -Indicates that 802.1x backend authentication state is ignore.
|
|
9.invalid(-1) -Indicates the invalid state.
|
|
"
|
|
::= { hwOntPortDot1xStatusEntry 4 }
|
|
|
|
hwOntDot1xReAuthPeriod OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x re-authentication period(s).
|
|
Unit: second
|
|
"
|
|
::= { hwOntPortDot1xStatusEntry 5 }
|
|
|
|
hwOntDot1xReAuthSwitch OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
enable(1),
|
|
disable(2),
|
|
invalid(-1)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the 802.1x re-authentication switch.
|
|
Options:
|
|
1. enable(1) -Indicates that 802.1x re-authentication switch is enable.
|
|
2. disable(2) -Indicates that 802.1x re-authentication switch is disable.
|
|
3. invalid(-1) -Indicates the invalid state.
|
|
"
|
|
::= { hwOntPortDot1xStatusEntry 6 }
|
|
|
|
hwOntDot1xRadiusAssignVlan OBJECT-TYPE
|
|
SYNTAX Integer32 (-1 | 0..4095)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the VLAN by radius server assigned.
|
|
Range: -1, 0-4095, -1 indicates an invalid value, a value between 0 and 4095 indicates the VLAN ID.
|
|
"
|
|
::= { hwOntPortDot1xStatusEntry 7 }
|
|
|
|
hwOntPortDot1xStatisticsTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF HwOntPortDot1xStatisticsEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to query and clear 802.1x packet statistics of ONT ports.
|
|
The indexes of this table are ifIndex , hwOntDot1xOntId , hwOntDot1xOntPhyType, hwOntDot1xOntPhyIndex.
|
|
"
|
|
::= { hwOntDot1xMibObjects 4 }
|
|
|
|
hwOntPortDot1xStatisticsEntry OBJECT-TYPE
|
|
SYNTAX HwOntPortDot1xStatisticsEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to query and clear 802.1x packet statistics of ONT ports.
|
|
The indexes of this entry are ifIndex , hwOntDot1xOntId , hwOntDot1xOntPhyType, hwOntDot1xOntPhyIndex.
|
|
"
|
|
INDEX { ifIndex, hwOntDot1xOntId, hwOntDot1xOntPhyType, hwOntDot1xOntPhyIndex }
|
|
::= { hwOntPortDot1xStatisticsTable 1 }
|
|
|
|
HwOntPortDot1xStatisticsEntry ::=
|
|
SEQUENCE {
|
|
hwOntPortDot1xStatisticsReceivedFrames
|
|
Counter64,
|
|
hwOntPortDot1xStatisticsReceivedStartFrames
|
|
Counter64,
|
|
hwOntPortDot1xStatisticsReceivedLogOffFrames
|
|
Counter64,
|
|
hwOntPortDot1xStatisticsReceivedInvalidFrames
|
|
Counter64,
|
|
hwOntPortDot1xStatisticsReceivedResponseIdentityFrames
|
|
Counter64,
|
|
hwOntPortDot1xStatisticsReceivedResponseChallengeFrames
|
|
Counter64,
|
|
hwOntPortDot1xStatisticsReceivedLengthErrorFrames
|
|
Counter64,
|
|
hwOntPolPortDot1xStatisticsSentInitialRequestFrames
|
|
Counter64,
|
|
hwOntPolPortDot1xStatisticsSentRequestFrames
|
|
Counter64,
|
|
hwOntPortDot1xStatisticsSentSuccessFrames
|
|
Counter64,
|
|
hwOntPortDot1xStatisticsSentFailureFrames
|
|
Counter64,
|
|
hwOntPortDot1xStatisticsClear
|
|
INTEGER
|
|
}
|
|
|
|
hwOntPortDot1xStatisticsReceivedFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received EAPoL frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntPortDot1xStatisticsEntry 1 }
|
|
|
|
hwOntPortDot1xStatisticsReceivedStartFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received EAPoL start frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntPortDot1xStatisticsEntry 2 }
|
|
|
|
hwOntPortDot1xStatisticsReceivedLogOffFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received EAPoL logoff frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntPortDot1xStatisticsEntry 3 }
|
|
|
|
hwOntPortDot1xStatisticsReceivedInvalidFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received EAPoL Invalid frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntPortDot1xStatisticsEntry 4 }
|
|
|
|
hwOntPortDot1xStatisticsReceivedResponseIdentityFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received EAPoL response/identity frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntPortDot1xStatisticsEntry 5 }
|
|
|
|
hwOntPortDot1xStatisticsReceivedResponseChallengeFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received EAPoL response/challenge frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntPortDot1xStatisticsEntry 6 }
|
|
|
|
hwOntPortDot1xStatisticsReceivedLengthErrorFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received EAPoL length error frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntPortDot1xStatisticsEntry 7 }
|
|
|
|
hwOntPolPortDot1xStatisticsSentInitialRequestFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total sent EAPoL initial request frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntPortDot1xStatisticsEntry 8 }
|
|
|
|
hwOntPolPortDot1xStatisticsSentRequestFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total sent EAPoL request frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntPortDot1xStatisticsEntry 9 }
|
|
|
|
hwOntPortDot1xStatisticsSentSuccessFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total sent EAPoL success frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntPortDot1xStatisticsEntry 10 }
|
|
|
|
hwOntPortDot1xStatisticsSentFailureFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total sent EAPoL failure frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntPortDot1xStatisticsEntry 11 }
|
|
|
|
hwOntPortDot1xStatisticsClear OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
clear(1),
|
|
invalid(-1)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the statistics clear.
|
|
Options:
|
|
1. clear(1) -indicates to perform the clear operation.
|
|
2. invalid(-1) -indicates the invalid state.
|
|
"
|
|
::= { hwOntPortDot1xStatisticsEntry 12}
|
|
|
|
hwOntRadiusStatisticsTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF HwOntRadiusStatisticsEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to query and clear radius packet statistics of ONT.
|
|
The indexes of this table are ifIndex , hwOntDot1xOntId.
|
|
"
|
|
::= { hwOntDot1xMibObjects 5 }
|
|
|
|
hwOntRadiusStatisticsEntry OBJECT-TYPE
|
|
SYNTAX HwOntRadiusStatisticsEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to query and clear radius packet statistics of ONT.
|
|
The indexes of this entry are ifIndex , hwOntDot1xOntId.
|
|
"
|
|
INDEX { ifIndex, hwOntDot1xOntId }
|
|
::= { hwOntRadiusStatisticsTable 1 }
|
|
|
|
HwOntRadiusStatisticsEntry ::=
|
|
SEQUENCE {
|
|
hwOntRadiusStatisticsReceivedAccessChallengeFrames
|
|
Counter64,
|
|
hwOntRadiusStatisticsReceivedAccessAcceptFrames
|
|
Counter64,
|
|
hwOntRadiusStatisticsReceivedAccessRejectFrames
|
|
Counter64,
|
|
hwOntRadiusStatisticsReceivedInvalidFrames
|
|
Counter64,
|
|
hwOntRadiusStatisticsSentAccessRequestFrames
|
|
Counter64,
|
|
hwOntRadiusStatisticsRetransAccessRequestFrames
|
|
Counter64,
|
|
hwOntRadiusStatisticsClear
|
|
INTEGER,
|
|
hwOntRadiusStatisticsReceivedAccountingResponseFrames
|
|
Counter64,
|
|
hwOntRadiusStatisticsReceivedDisconnectRequestFrames
|
|
Counter64,
|
|
hwOntRadiusStatisticsSentAccountingRequestFrames
|
|
Counter64,
|
|
hwOntRadiusStatisticsRetransAccountingRequestFrames
|
|
Counter64,
|
|
hwOntRadiusStatisticsSentDisconnectAckFrames
|
|
Counter64,
|
|
hwOntRadiusStatisticsSentDisconnectNakFrames
|
|
Counter64
|
|
|
|
}
|
|
|
|
hwOntRadiusStatisticsReceivedAccessChallengeFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received access-challenge frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 1 }
|
|
|
|
hwOntRadiusStatisticsReceivedAccessAcceptFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received access-accept frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 2 }
|
|
|
|
hwOntRadiusStatisticsReceivedAccessRejectFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received access-accept frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 3 }
|
|
|
|
hwOntRadiusStatisticsReceivedInvalidFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received invalid frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 4 }
|
|
|
|
hwOntRadiusStatisticsSentAccessRequestFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received access-reject frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 5 }
|
|
|
|
hwOntRadiusStatisticsRetransAccessRequestFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total sent access-request frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 6 }
|
|
|
|
hwOntRadiusStatisticsClear OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
clear(1),
|
|
invalid(-1)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the statistics clear.
|
|
Options:
|
|
1. clear(1) -indicates to perform the clear operation.
|
|
2. invalid(-1) -indicates the invalid state.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 7 }
|
|
|
|
hwOntRadiusStatisticsReceivedAccountingResponseFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received accounting-response frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 8 }
|
|
|
|
hwOntRadiusStatisticsReceivedDisconnectRequestFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total received disconnect-request frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 9 }
|
|
|
|
hwOntRadiusStatisticsSentAccountingRequestFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total sent accounting-request frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 10 }
|
|
|
|
hwOntRadiusStatisticsRetransAccountingRequestFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total retransmission accounting-request frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 11 }
|
|
|
|
hwOntRadiusStatisticsSentDisconnectAckFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total sent disconnect-ack frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 12 }
|
|
|
|
hwOntRadiusStatisticsSentDisconnectNakFrames OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the total sent disconnect-nak frames.
|
|
0xffffffffffffffff indicates an invalid value.
|
|
"
|
|
::= { hwOntRadiusStatisticsEntry 13 }
|
|
|
|
hwOntDot1xRadiusAuthorServerTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF HwOntDot1xRadiusAuthorServerEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to manage the Radius authorization server of 802.1x profile.
|
|
The indexes of this table are hwOntDot1xRadiusAuthorServerProfName, hwOntDot1xRadiusAuthorServerID.
|
|
"
|
|
::= { hwOntDot1xMibObjects 6 }
|
|
|
|
hwOntDot1xRadiusAuthorServerEntry OBJECT-TYPE
|
|
SYNTAX HwOntDot1xRadiusAuthorServerEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to manage the Radius authorization server of 802.1x profile.
|
|
The indexes of this entry are hwOntDot1xRadiusAuthorServerProfName, hwOntDot1xRadiusAuthorServerID.
|
|
"
|
|
INDEX { hwOntDot1xRadiusAuthorServerProfName, hwOntDot1xRadiusAuthorServerID}
|
|
::= { hwOntDot1xRadiusAuthorServerTable 1 }
|
|
|
|
HwOntDot1xRadiusAuthorServerEntry ::=
|
|
SEQUENCE {
|
|
hwOntDot1xRadiusAuthorServerProfName
|
|
OCTET STRING,
|
|
hwOntDot1xRadiusAuthorServerID
|
|
Integer32,
|
|
hwOntDot1xRadiusAuthorServerAddrType
|
|
InetAddressType,
|
|
hwOntDot1xRadiusAuthorServerAddr
|
|
InetAddress,
|
|
hwOntDot1xRadiusAuthorServerSharedKey
|
|
OCTET STRING,
|
|
hwOntDot1xRadiusAuthorServerRowStatus
|
|
RowStatus
|
|
}
|
|
|
|
hwOntDot1xRadiusAuthorServerProfName OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE(1..32))
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"802.1x profile name.
|
|
Range: a string of 1-32 characters.
|
|
"
|
|
::= { hwOntDot1xRadiusAuthorServerEntry 1 }
|
|
|
|
hwOntDot1xRadiusAuthorServerID OBJECT-TYPE
|
|
SYNTAX Integer32 (0..15)
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the ID of radius authorization server.
|
|
"
|
|
::= { hwOntDot1xRadiusAuthorServerEntry 2 }
|
|
|
|
hwOntDot1xRadiusAuthorServerAddrType OBJECT-TYPE
|
|
SYNTAX InetAddressType
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the address type of radius authorization server.
|
|
Options:
|
|
1. IPv4(1) -indicates the address type is IPv4
|
|
"
|
|
::= { hwOntDot1xRadiusAuthorServerEntry 3 }
|
|
|
|
hwOntDot1xRadiusAuthorServerAddr OBJECT-TYPE
|
|
SYNTAX InetAddress
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the ip address of radius authorization server.
|
|
"
|
|
::= { hwOntDot1xRadiusAuthorServerEntry 4 }
|
|
|
|
hwOntDot1xRadiusAuthorServerSharedKey OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (0..25))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates the shared-kye of radius authorization server.
|
|
Range: a string of 1-25 characters.
|
|
"
|
|
::= { hwOntDot1xRadiusAuthorServerEntry 5 }
|
|
|
|
hwOntDot1xRadiusAuthorServerRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Row admin status, only support CreateAndGo(4),Destory(6),Active(1).
|
|
Options:
|
|
1. active(1) -indicates query operation
|
|
2. createAndGo(4) -indicates creating operation
|
|
3. destroy(6) -indicates deleting operation
|
|
"
|
|
::= { hwOntDot1xRadiusAuthorServerEntry 255 }
|
|
|
|
END
|