328 lines
11 KiB
Plaintext
328 lines
11 KiB
Plaintext
-- ****************************************************************************
|
|
-- ****************************************************************************
|
|
-- Copyright(c) 2004 Mediatrix Telecom, Inc.
|
|
-- NOTICE:
|
|
-- This document contains information that is confidential and proprietary
|
|
-- to Mediatrix Telecom, Inc.
|
|
-- Mediatrix Telecom, Inc. reserves all rights to this document as well as
|
|
-- to the Intellectual Property of the document and the technology and
|
|
-- know-how that it includes and represents.
|
|
-- This publication cannot be reproduced, neither in whole nor in part in
|
|
-- any form whatsoever without written prior approval by
|
|
-- Mediatrix Telecom, Inc.
|
|
-- Mediatrix Telecom, Inc. reserves the right to revise this publication
|
|
-- and make changes at any time and without the obligation to notify any
|
|
-- person and/or entity of such revisions and/or changes.
|
|
-- ****************************************************************************
|
|
-- ****************************************************************************
|
|
|
|
MX-WEB-MIB
|
|
DEFINITIONS ::= BEGIN
|
|
|
|
IMPORTS
|
|
MODULE-IDENTITY,
|
|
OBJECT-TYPE,
|
|
Unsigned32,
|
|
Integer32
|
|
FROM SNMPv2-SMI
|
|
MODULE-COMPLIANCE,
|
|
OBJECT-GROUP
|
|
FROM SNMPv2-CONF
|
|
MxEnableState,
|
|
MxActivationState,
|
|
MxIpHostName,
|
|
MxIpAddress,
|
|
MxIpPort,
|
|
MxAdvancedIpPort,
|
|
MxIpSubnetMask,
|
|
MxDigitMap
|
|
FROM MX-TC
|
|
MxUInt64,
|
|
MxFloat32,
|
|
MxIpHostNamePort,
|
|
MxIpAddr,
|
|
MxIpAddrPort,
|
|
MxIpAddrMask,
|
|
MxUri,
|
|
MxUrl
|
|
FROM MX-TC2
|
|
mediatrixServices
|
|
FROM MX-SMI2;
|
|
|
|
webMIB MODULE-IDENTITY
|
|
LAST-UPDATED "1910210000Z"
|
|
ORGANIZATION " Mediatrix Telecom, Inc. "
|
|
CONTACT-INFO " Mediatrix Telecom, Inc.
|
|
4229, Garlock Street
|
|
Sherbrooke (Quebec)
|
|
Canada
|
|
Phone: (819) 829-8749
|
|
"
|
|
DESCRIPTION " Web Service
|
|
|
|
The Web service allows the administrator to manage the unit
|
|
using HTTP(S) web pages.
|
|
"
|
|
::= { mediatrixServices 1200 }
|
|
|
|
webMIBObjects OBJECT IDENTIFIER ::= { webMIB 1 }
|
|
|
|
-- ****************************************************************************
|
|
|
|
-- Group:Server
|
|
|
|
-- Contains parameters to handle the server behavior.
|
|
-- ****************************************************************************
|
|
|
|
serverGroup OBJECT IDENTIFIER
|
|
::= { webMIBObjects 100 }
|
|
-- Scalar:HTTP Mode
|
|
|
|
httpMode OBJECT-TYPE
|
|
SYNTAX INTEGER { secure(100) , unsecure(200) , both(300) }
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION " HTTP Mode
|
|
|
|
Defines the HTTP mode(s) to which the Web server should
|
|
listen.
|
|
|
|
* Secure: The Web server only accepts requests using HTTPS.
|
|
Requests using HTTP are ignored.
|
|
* Unsecure: The Web server only accepts requests using HTTP.
|
|
Requests using HTTPS are ignored.
|
|
* Both: The Web server accepts requests using HTTP or HTTPS.
|
|
|
|
The Web server configured in 'Secure' or 'Both' modes listens
|
|
to HTTPS requests only if a server certificate with 'server
|
|
authentication' extended key usage is present on the unit.
|
|
|
|
"
|
|
DEFVAL { both }
|
|
::= { serverGroup 50 }
|
|
|
|
-- Scalar:Port
|
|
|
|
serverPort OBJECT-TYPE
|
|
SYNTAX MxIpPort
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION " Port
|
|
|
|
Listening port of the HTTP server.
|
|
"
|
|
DEFVAL { 80 }
|
|
::= { serverGroup 100 }
|
|
|
|
-- Scalar:Secure port
|
|
|
|
secureServerPort OBJECT-TYPE
|
|
SYNTAX MxIpPort
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION " Secure port
|
|
|
|
Listening port of the HTTPS server.
|
|
"
|
|
DEFVAL { 443 }
|
|
::= { serverGroup 200 }
|
|
|
|
-- Scalar:HTTPS cipher suite
|
|
|
|
httpsCipherSuite OBJECT-TYPE
|
|
SYNTAX INTEGER { cS1(100) , cS2(200) , cS3(300) }
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION " HTTPS cipher suite
|
|
|
|
Defines the allowed cipher suites for the network security
|
|
settings to which the Web server should listen when using the
|
|
HTTPS
|
|
|
|
* CS1:
|
|
+ TLS_DHE_RSA_WITH_AES_256_CBC_SHA
|
|
+ TLS_DHE_DSS_WITH_AES_256_CBC_SHA
|
|
+ TLS_RSA_WITH_AES_256_CBC_SHA
|
|
+ TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
|
|
+ TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
|
|
+ TLS_RSA_WITH_3DES_EDE_CBC_SHA
|
|
+ TLS_DHE_RSA_WITH_AES_128_CBC_SHA
|
|
+ TLS_DHE_DSS_WITH_AES_128_CBC_SHA
|
|
+ TLS_RSA_WITH_AES_128_CBC_SHA
|
|
+ TLS_RSA_WITH_RC4_128_SHA
|
|
+ TLS_RSA_WITH_RC4_128_MD5
|
|
* CS2:
|
|
+ TLS_RSA_WITH_AES_128_CBC_SHA
|
|
+ TLS_RSA_WITH_AES_256_CBC_SHA
|
|
+ TLS_RSA_WITH_3DES_EDE_CBC_SHA
|
|
+ TLS_DHE_RSA_WITH_AES_128_CBC_SHA
|
|
+ TLS_DHE_RSA_WITH_AES_256_CBC_SHA
|
|
+ TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
|
|
* CS3:
|
|
+ TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
|
|
+ TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
|
|
+ TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
|
|
+ TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
|
|
+ TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
|
|
+ TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384
|
|
+ TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384
|
|
+ TLS_RSA_WITH_AES_256_GCM_SHA384
|
|
+ TLS_RSA_WITH_AES_256_CBC_SHA256
|
|
+ TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
|
|
+ TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
|
|
+ TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
|
|
+ TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256
|
|
+ TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256
|
|
+ TLS_RSA_WITH_AES_128_GCM_SHA256
|
|
+ TLS_RSA_WITH_AES_128_CBC_SHA256
|
|
|
|
Any connection attempts to the web server using a cipher that
|
|
is not allowed by the cipher suite will result in a failure to
|
|
establish the connection.
|
|
|
|
"
|
|
DEFVAL { cS1 }
|
|
::= { serverGroup 300 }
|
|
|
|
-- Scalar:TLS version
|
|
|
|
tlsVersion OBJECT-TYPE
|
|
SYNTAX INTEGER { sSLv3(100) , tLSv1(200) , tLSv1-1(300) , tLSv1-2
|
|
(400) }
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION " TLS version
|
|
|
|
Defines the allowed TLS versions for the network security
|
|
settings when using the HTTPS.
|
|
|
|
* SSLv3: Allow SSL version 3 and all TLS versions.
|
|
* TLSv1: Allow TLS versions 1 and up.
|
|
* TLSv1_1: Allow TLS versions 1.1 and up.
|
|
* TLSv1_2: Allow TLS versions 1.2 and up.
|
|
|
|
Any connection attempts to the web server using a TLS version
|
|
that is not allowed will result in a failure to establish the
|
|
connection.
|
|
|
|
"
|
|
DEFVAL { tLSv1 }
|
|
::= { serverGroup 400 }
|
|
|
|
-- End of group:Server
|
|
|
|
-- ********************************************************************
|
|
|
|
-- Group:Statistics
|
|
|
|
-- ********************************************************************
|
|
|
|
statisticsGroup OBJECT IDENTIFIER
|
|
::= { webMIBObjects 10000 }
|
|
-- Scalar:Number of Requests
|
|
|
|
statsRequest OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION " Number of Requests
|
|
|
|
Number of Requests handled by the service.
|
|
"
|
|
::= { statisticsGroup 100 }
|
|
|
|
-- Scalar:Number of redirections
|
|
|
|
statsRedirect OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION " Number of redirections
|
|
|
|
Number of redirections handled by the service.
|
|
"
|
|
::= { statisticsGroup 200 }
|
|
|
|
-- Scalar:Number of Errors
|
|
|
|
statsError OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION " Number of Errors
|
|
|
|
Number of Errors handled by the service.
|
|
"
|
|
::= { statisticsGroup 300 }
|
|
|
|
-- End of group:Statistics
|
|
|
|
-- ****************************************************************************
|
|
|
|
-- Group:Notification Messages Configuration
|
|
|
|
-- ****************************************************************************
|
|
|
|
notificationsGroup OBJECT IDENTIFIER
|
|
::= { webMIBObjects 60010 }
|
|
-- Scalar:Minimal Severity of Notification
|
|
|
|
minSeverity OBJECT-TYPE
|
|
SYNTAX INTEGER { disable(0) , debug(100) , info(200) , warning(300) ,
|
|
error(400) , critical (500) }
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION " Minimal Severity of Notification
|
|
|
|
Sets the minimal severity to issue a notification message
|
|
incoming from this service.
|
|
|
|
* Disable: No notification is issued.
|
|
* Debug: All notification messages are issued.
|
|
* Info: Notification messages with a 'Informational' and
|
|
higher severity are issued.
|
|
* Warning: Notification messages with a 'Warning' and higher
|
|
severity are issued.
|
|
* Error: Notification messages with an 'Error' and higher
|
|
severity are issued.
|
|
* Critical: Notification messages with a 'Critical' severity
|
|
are issued.
|
|
|
|
"
|
|
DEFVAL { warning }
|
|
::= { notificationsGroup 100 }
|
|
|
|
-- End of group:Notification Messages Configuration
|
|
|
|
-- ****************************************************************************
|
|
|
|
-- Group:Configuration Settings
|
|
|
|
-- ****************************************************************************
|
|
|
|
configurationGroup OBJECT IDENTIFIER
|
|
::= { webMIBObjects 60020 }
|
|
-- Scalar:Need Restart
|
|
|
|
needRestartInfo OBJECT-TYPE
|
|
SYNTAX INTEGER { no(0) , yes(100) }
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION " Need Restart
|
|
|
|
Indicates if the service needs to be restarted for the
|
|
configuration to fully take effect.
|
|
|
|
* Yes: Service needs to be restarted.
|
|
* No: Service does not need to be restarted.
|
|
|
|
Services can be restarted by using the
|
|
Scm.ServiceCommands.Restart command.
|
|
|
|
"
|
|
::= { configurationGroup 100 }
|
|
|
|
-- End of group:Configuration Settings
|
|
|
|
END
|