183 lines
5.3 KiB
Plaintext
183 lines
5.3 KiB
Plaintext
|
|
BAY-STACK-ARP-INSPECTION-MIB DEFINITIONS ::= BEGIN
|
|
|
|
IMPORTS
|
|
NOTIFICATION-TYPE, OBJECT-TYPE, MODULE-IDENTITY
|
|
FROM SNMPv2-SMI
|
|
TruthValue, MacAddress
|
|
FROM SNMPv2-TC
|
|
InterfaceIndex
|
|
FROM IF-MIB
|
|
VlanIndex
|
|
FROM Q-BRIDGE-MIB
|
|
bayStackMibs
|
|
FROM SYNOPTICS-ROOT-MIB;
|
|
|
|
bayStackArpInspectionMib MODULE-IDENTITY
|
|
LAST-UPDATED "202011120000Z"
|
|
ORGANIZATION "Nortel Ltd."
|
|
CONTACT-INFO "nortel.com"
|
|
DESCRIPTION
|
|
"This MIB module is used for ARP inspection configuration
|
|
settings in Nortel's software and products."
|
|
|
|
REVISION "202011120000Z" -- Nov 12, 2020
|
|
DESCRIPTION "Ver 5: Add bsArpInspectionOrigin"
|
|
|
|
REVISION "201310110000Z" -- October 11, 2013
|
|
DESCRIPTION "Ver 4: Added MacAddress to IMPORTS."
|
|
|
|
REVISION "201307050000Z" -- July 5, 2013
|
|
DESCRIPTION "Ver 3: Added bsArpInspectionNotificationSourceMACAddr."
|
|
|
|
REVISION "200810300000Z" -- October 30, 2008
|
|
DESCRIPTION "Ver 2: Added bsaiArpPacketDroppedOnUntrustedPort."
|
|
|
|
REVISION "200606230000Z" -- June 23, 2006
|
|
DESCRIPTION "Ver 1: Initial version."
|
|
|
|
::= { bayStackMibs 18 }
|
|
|
|
bsArpInspectionNotifications
|
|
OBJECT IDENTIFIER ::= { bayStackArpInspectionMib 0 }
|
|
bsArpInspectionObjects
|
|
OBJECT IDENTIFIER ::= { bayStackArpInspectionMib 1 }
|
|
|
|
--
|
|
-- VLAN table
|
|
--
|
|
|
|
bsArpInspectionVlanTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF BsArpInspectionVlanEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to control ARP inspection settings per-VLAN."
|
|
::= { bsArpInspectionObjects 1 }
|
|
|
|
bsArpInspectionVlanEntry OBJECT-TYPE
|
|
SYNTAX BsArpInspectionVlanEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"An entry containing objects for controlling ARP inspection settings
|
|
for a VLAN."
|
|
INDEX { bsArpInspectionVlanId }
|
|
::= { bsArpInspectionVlanTable 1 }
|
|
|
|
BsArpInspectionVlanEntry ::=
|
|
SEQUENCE {
|
|
bsArpInspectionVlanId VlanIndex,
|
|
bsArpInspectionVlanEnabled TruthValue,
|
|
bsArpInspectionOrigin BITS
|
|
}
|
|
|
|
bsArpInspectionVlanId OBJECT-TYPE
|
|
SYNTAX VlanIndex
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The VLAN ID value of the VLAN."
|
|
::= { bsArpInspectionVlanEntry 1 }
|
|
|
|
bsArpInspectionVlanEnabled OBJECT-TYPE
|
|
SYNTAX TruthValue
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This object is used to control whether ARP inspection is enabled
|
|
for this VLAN."
|
|
::= { bsArpInspectionVlanEntry 2 }
|
|
|
|
bsArpInspectionOrigin OBJECT-TYPE
|
|
SYNTAX BITS {
|
|
config(0),
|
|
radius(1)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION "Indicates how arp inspection was enabled.
|
|
Supported values:
|
|
config - set by user
|
|
radius - set by radius atribute"
|
|
::= { bsArpInspectionVlanEntry 3 }
|
|
|
|
--
|
|
-- Interface table
|
|
--
|
|
|
|
bsArpInspectionIfTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF BsArpInspectionIfEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table is used to control ARP inspection settings per-interface."
|
|
::= { bsArpInspectionObjects 2 }
|
|
|
|
bsArpInspectionIfEntry OBJECT-TYPE
|
|
SYNTAX BsArpInspectionIfEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"An entry containing objects for controlling ARP inspection settings
|
|
for an interface."
|
|
INDEX { bsArpInspectionIfIndex }
|
|
::= { bsArpInspectionIfTable 1 }
|
|
|
|
BsArpInspectionIfEntry ::=
|
|
SEQUENCE {
|
|
bsArpInspectionIfIndex InterfaceIndex,
|
|
bsArpInspectionIfTrusted TruthValue
|
|
}
|
|
|
|
bsArpInspectionIfIndex OBJECT-TYPE
|
|
SYNTAX InterfaceIndex
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The ifIndex value of the interface."
|
|
::= { bsArpInspectionIfEntry 1 }
|
|
|
|
bsArpInspectionIfTrusted OBJECT-TYPE
|
|
SYNTAX TruthValue
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This object is used to control whether this interface is trusted
|
|
for ARP inspection purposes."
|
|
::= { bsArpInspectionIfEntry 2 }
|
|
|
|
-- ============================================================================
|
|
-- Notification Objects
|
|
-- ============================================================================
|
|
bsArpInspectionNotificationObjects
|
|
OBJECT IDENTIFIER ::= { bsArpInspectionObjects 3 }
|
|
|
|
bsArpInspectionNotificationSourceMACAddr OBJECT-TYPE
|
|
SYNTAX MacAddress
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This value indicates the source MAC Address of an ARP packet."
|
|
::= { bsArpInspectionNotificationObjects 1 }
|
|
|
|
--
|
|
-- Notifications
|
|
--
|
|
|
|
bsaiArpPacketDroppedOnUntrustedPort NOTIFICATION-TYPE
|
|
OBJECTS {
|
|
bsArpInspectionIfTrusted,
|
|
bsArpInspectionNotificationSourceMACAddr
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This notification is generated when an ARP packet is dropped on an
|
|
untrusted port dur to an invalid IP/MAC binding. The port is
|
|
identified by the instance of bsArpInspectionIfTrusted included in
|
|
the notification."
|
|
::= { bsArpInspectionNotifications 1 }
|
|
|
|
END
|
|
|