smilint output for ./IPSEC-TUN-MON-MIB
| Message Severities |
|---|
| Severity | Count |
|---|
| error | 3 |
| change recommended | 91 |
| warning | 7 |
| Message Types |
|---|
| Type | Count |
|---|
| date-value (error) | 2 |
| date-year-2digits (warning) | 2 |
| group-membership (change recommended) | 91 |
| invalid-format (error) | 1 |
| notification-not-reversible (warning) | 4 |
| sequence-order (warning) | 1 |
Messages:
IPSEC-TUN-MON-MIB
1: -- extracted from draft-jenkins-ipsec-tun-mon-mib-00.txt
2: -- at Sat Oct 6 06:06:31 2001
3:
4: IPSEC-TUN-MON-MIB DEFINITIONS ::= BEGIN
5:
6: IMPORTS
7: MODULE-IDENTITY, OBJECT-TYPE, Counter32, Counter64, Unsigned32,
8: Gauge32, OBJECT-IDENTITY, experimental, NOTIFICATION-TYPE
9: FROM SNMPv2-SMI
10: TEXTUAL-CONVENTION, TruthValue FROM SNMPv2-TC
11: InetAddressType, InetAddress FROM INET-ADDRESS-MIB
12: IsakmpCookie FROM ISAKMP-DOI-IND-MON-MIB
13: ;
14:
15: ipsecTunMonModule MODULE-IDENTITY
16: LAST-UPDATED "0010041200Z"
16: warning -
warning: date specification `0010041200Z' contains a two-digit year representing `1900'
16: error -
date specification `0010041200Z' contains an illegal value
17: ORGANIZATION "IETF IPsec Working Group"
18: CONTACT-INFO
19: "Tim Jenkins
20: Catena Networks
21: 307 Legget Drive
22: Kanata, ON
23: Canada
24: K2K 3C8
25: +1 (613) 599-6430
26: tjenkins@catena.com "
27:
28: DESCRIPTION
29: "The MIB module to describe logical IPsec channel and tunnel
30: objects, and entity level objects and events associated with
31: these objects."
32: REVISION "0010041200Z"
32: warning -
warning: date specification `0010041200Z' contains a two-digit year representing `1900'
32: error -
date specification `0010041200Z' contains an illegal value
33: DESCRIPTION
34: "Initial revision."
35: -- ::= { ? }
36: -- bogus value currently in use
37: ::= { experimental 1010 }
38:
39: --
40: -- textual conventions
41: --
42:
43: IpsecChanOrTunType ::= TEXTUAL-CONVENTION
43: error -
invalid format specification `d'
44: DISPLAY-HINT "d"
45: STATUS current
46: DESCRIPTION
47: "A value indicating an implementation specific type for
48: channels and tunnels.
49: The values below are defined as examples only, and are not
50: intended to imply any specific support or capability."
51: SYNTAX INTEGER {
52: unknown(0),
53: permanent(1),
54: transient(2),
55: management(3)
56: }
57:
58: --
59: -- MIB root (trunk?)
60: --
61:
62: ipsecTunnelMonitorMIB OBJECT-IDENTITY
63: STATUS current
64: DESCRIPTION
65: "This is the base object identifier for all branches."
66: ::= { ipsecTunMonModule 1 }
67:
68: -- first level branches
69:
70: channelObjects OBJECT-IDENTITY
71: STATUS current
72: DESCRIPTION
73: "This is the base object identifier for all channel related
74: objects."
75: ::= { ipsecTunnelMonitorMIB 1 }
76:
77: tunnelObjects OBJECT-IDENTITY
78: STATUS current
79: DESCRIPTION
80: "This is the base object identifier for all tunnel related
81: objects."
82: ::= { ipsecTunnelMonitorMIB 2 }
83:
84:
85: -- second level branches
86:
87: channelTables OBJECT-IDENTITY
88: STATUS current
89: DESCRIPTION
90: "This is the base object identifier for all objects which are
91: tables for channels."
92: ::= { channelObjects 1 }
93:
94: channelStats OBJECT-IDENTITY
95: STATUS current
96: DESCRIPTION
97: "This is the base object identifier for all objects which are
98: global (non-error) counters for channels."
99: ::= { channelObjects 2 }
100:
101: channelErrors OBJECT-IDENTITY
102: STATUS current
103: DESCRIPTION
104: "This is the base object identifier for all objects which are
105: global error counters for channels."
106: ::= { channelObjects 3 }
107:
108: channelTraps OBJECT-IDENTITY
109: STATUS current
110: DESCRIPTION
111: "This is the base object identifier for all objects which are
112: traps for channels."
113: ::= { channelObjects 4 }
114:
115: channelTrapObjects OBJECT-IDENTITY
116: STATUS current
117: DESCRIPTION
118: "This is the base object identifier for objects which are
119: used as part of traps for channels."
120: ::= { channelObjects 5 }
121:
122: channelTrapControl OBJECT-IDENTITY
123: STATUS current
124: DESCRIPTION
125: "This is the base object identifier for all objects which are
126: trap controls for channel traps."
127: ::= { channelObjects 6 }
128:
129: channelGroups OBJECT-IDENTITY
130: STATUS current
131: DESCRIPTION
132: "This is the base object identifier for all objects which
133: describe the groups in the channel part of this MIB."
134: ::= { channelObjects 7 }
135:
136: channelConformance OBJECT-IDENTITY
137: STATUS current
138: DESCRIPTION
139: "This is the base object identifier for all objects which
140: describe the conformance in the channel part of this MIB."
141: ::= { channelObjects 8 }
142:
143: tunnelTables OBJECT-IDENTITY
144: STATUS current
145: DESCRIPTION
146: "This is the base object identifier for all objects which are
147: tables for tunnels."
148: ::= { tunnelObjects 1 }
149:
150: tunnelStats OBJECT-IDENTITY
151: STATUS current
152: DESCRIPTION
153: "This is the base object identifier for all objects which are
154: global (non-error) counters for tunnels."
155: ::= { tunnelObjects 2 }
156:
157: tunnelErrors OBJECT-IDENTITY
158: STATUS current
159: DESCRIPTION
160: "This is the base object identifier for all objects which are
161: global error counters for tunnels."
162: ::= { tunnelObjects 3 }
163:
164: tunnelTraps OBJECT-IDENTITY
165: STATUS current
166: DESCRIPTION
167: "This is the base object identifier for all objects which are
168: traps for tunnels."
169: ::= { tunnelObjects 4 }
170:
171: tunnelTrapObjects OBJECT-IDENTITY
172: STATUS current
173: DESCRIPTION
174: "This is the base object identifier for objects which are
175: used as part of traps for tunnels."
176: ::= { tunnelObjects 5 }
177:
178: tunnelTrapControl OBJECT-IDENTITY
179: STATUS current
180: DESCRIPTION
181: "This is the base object identifier for all objects which are
182: trap controls for tunnel traps."
183: ::= { tunnelObjects 6 }
184:
185: tunnelGroups OBJECT-IDENTITY
186: STATUS current
187: DESCRIPTION
188: "This is the base object identifier for all objects which
189: describe the groups in the tunnel part of this MIB."
190: ::= { tunnelObjects 7 }
191:
192: tunnelConformance OBJECT-IDENTITY
193: STATUS current
194: DESCRIPTION
195: "This is the base object identifier for all objects which
196: describe the conformance in the tunnel part of this MIB."
197: ::= { tunnelObjects 8 }
198:
199:
200: -- the IPsec Channel statistics group
201: --
202: -- a collection of object providing information about channels
203: -- created using IKE SAs
204:
205: currentChannels OBJECT-TYPE
205: change recommended -
warning: node `currentChannels' must be contained in at least one conformance group
206: SYNTAX Gauge32
207: MAX-ACCESS read-only
208: STATUS current
209: DESCRIPTION
210: "The total number of channels currently in existence in the
211: entity.
212:
213: This is the same as the number of rows in the channel table,
214: whether there are IKE SAs for each row or not."
215: ::= { channelStats 1 }
216:
217: totalChannels OBJECT-TYPE
217: change recommended -
warning: node `totalChannels' must be contained in at least one conformance group
218: SYNTAX Counter32
219: MAX-ACCESS read-only
220: STATUS current
221: DESCRIPTION
222: "The total number of channels created by the entity since
223: system boot.
224:
225: Channel creation is defined as the addition of a row to the
226: channel table, whether an IKE SA was created at the same time
227: or not."
228: ::= { channelStats 2 }
229:
230: deletedChannels OBJECT-TYPE
230: change recommended -
warning: node `deletedChannels' must be contained in at least one conformance group
231: SYNTAX Counter32
232: MAX-ACCESS read-only
233: STATUS current
234: DESCRIPTION
235: "The total number of channels deleted by the entity.
236:
237: Channel deletion is defined as the removal of a row from the
238: channel table, independent of the existence of the IKE SAs
239: that may have supported it.
240: Note that the sum of 'currentChannels' and 'deletedChannels'
241: is equal to 'totalChannels'."
242: ::= { channelStats 3 }
243:
244:
245: -- the IPsec Tunnel statistics group
246: --
247: -- a collection of objects providing information about tunnels
248: -- created using IPsec SA suites
249:
250: currentTunnels OBJECT-TYPE
250: change recommended -
warning: node `currentTunnels' must be contained in at least one conformance group
251: SYNTAX Gauge32
252: MAX-ACCESS read-only
253: STATUS current
254: DESCRIPTION
255: "The total number of tunnels currently in existence in the
256: entity.
257:
258: This is the same as the number of rows in the tunnel table,
259: whether there are IPsec SA suites for each row or not."
260: ::= { tunnelStats 1 }
261:
262: totalTunnels OBJECT-TYPE
262: change recommended -
warning: node `totalTunnels' must be contained in at least one conformance group
263: SYNTAX Counter32
264: MAX-ACCESS read-only
265: STATUS current
266: DESCRIPTION
267: "The total number of tunnels created by the entity since
268: system boot.
269:
270: Tunnel creation is defined as the addition of a row to the
271: tunnel table, whether an IPsec SA was created at the same
272: time or not."
273: ::= { tunnelStats 2 }
274:
275: deletedTunnels OBJECT-TYPE
275: change recommended -
warning: node `deletedTunnels' must be contained in at least one conformance group
276: SYNTAX Counter32
277: MAX-ACCESS read-only
278: STATUS current
279: DESCRIPTION
280: "The total number of tunnels deleted by the entity.
281:
282: Tunnel deletion is defined as the removal of a row from the
283: tunnel table, independent of the existence of the phase 2 SA
284: suites that may have supported it.
285:
286: Note that the sum of 'currentTunnels' and 'deletedTunnels'
287: should is to 'totalTunnels'."
288: ::= { tunnelStats 3 }
289:
290: -- the IPsec Control Channel MIB-Group
291: --
292: -- a collection of objects providing information about
293: -- IPsec's control channels
294:
295:
296: ipsecChannelTable OBJECT-TYPE
297: SYNTAX SEQUENCE OF IpsecChannelEntry
298: MAX-ACCESS not-accessible
299: STATUS current
300: DESCRIPTION
301: "The (conceptual) table containing information on control
302: channels.
303:
304: The number of rows in this table is, at a minimum, the same
305: as the number of IKE SAs that have the same phase 1 ID pairs.
306: Additional rows for channels without active phase 1 SAs may
307: also appear in the table.
308:
309: The maximum number of rows is implementation dependent."
310: ::= { channelTables 1 }
311:
312: ipsecChannelEntry OBJECT-TYPE
313: SYNTAX IpsecChannelEntry
314: MAX-ACCESS not-accessible
315: STATUS current
316: DESCRIPTION
317: "An entry (conceptual row) containing the information on a
318: particular control channel.
319:
320: A row in this table cannot be created or deleted by SNMP
321: operations on columns of the table."
322: INDEX {
323: ipsecChannelType,
324: ipsecChannelLocalEndpoint,
325: ipsecChannelRemoteEndpoint
326: }
327: ::= { ipsecChannelTable 1 }
328:
329: IpsecChannelEntry ::= SEQUENCE {
330: -- indices
331: ipsecChannelType IpsecChanOrTunType,
332: ipsecChannelLocalEndpoint Unsigned32,
333: ipsecChannelRemoteEndpoint Unsigned32,
334:
335: -- virtual channel status
336: ipsecChannelCurrentSAs Gauge32,
337: ipsecChannelTotalSAs Counter32,
338: ipsecChannelDeletedSAs Counter32,
339: ipsecChannelTimeUpSeconds Counter32, -- since SAs > 0
340: ipsecChannelTimeDownSeconds Counter32, -- since SAs = 0
341:
342: -- aggregate statistics (all SAs)
343: ipsecChannelInboundOctets Counter32,
344: ipsecChannelOutboundOctets Counter32,
345: ipsecChannelInboundPackets Counter32,
346: ipsecChannelOutboundPackets Counter32,
347:
348: -- aggregate error statistics
349: ipsecChannelReceiveErrors Counter32,
350: ipsecChannelSendErrors Counter32,
351:
352: -- IPsec tunnel (Phase 2) statistics
353: ipsecChannelCurrentTunnels Gauge32,
354: ipsecChannelTotalTunnels Counter32,
355: ipsecChannelDeletedTunnels Counter32,
356:
357: -- IPsec tunnel (Phase 2) statistics (aggregate)
358: ipsecChannelTunnelInboundOctets Counter64,
359: ipsecChannelTunnelOutboundOctets Counter64,
360: ipsecChannelTunnelInboundPackets Counter64,
361: ipsecChannelTunnelOutboundPackets Counter64,
362:
363: -- IPsec SA (Phase 2) error statistics (aggregate)
364: ipsecChannelTunnelReceiveErrors Counter32,
365: ipsecChannelTunnelSendErrors Counter32
366: }
367:
368:
369: ipsecChannelType OBJECT-TYPE
370: SYNTAX IpsecChanOrTunType
371: MAX-ACCESS not-accessible
372: STATUS current
373: DESCRIPTION
374: "The type of control channel represented by this row.
375:
376: This is an implementation dependent value, used to assist in
377: controlling how channels are sorted."
378: ::= { ipsecChannelEntry 1 }
379:
380: ipsecChannelLocalEndpoint OBJECT-TYPE
381: SYNTAX Unsigned32
382: MAX-ACCESS not-accessible
383: STATUS current
384: DESCRIPTION
385: "The index value of the row of the IKE Monitoring MIB's
386: endpoint table corresponding to the local endpoint."
387: ::= { ipsecChannelEntry 2 }
388:
389: ipsecChannelRemoteEndpoint OBJECT-TYPE
390: SYNTAX Unsigned32
391: MAX-ACCESS not-accessible
392: STATUS current
393: DESCRIPTION
394: "The index value of the row of the IKE Monitoring MIB's
395: endpoint table corresponding to the remote endpoint."
396: ::= { ipsecChannelEntry 3 }
397:
398: ipsecChannelCurrentSAs OBJECT-TYPE
398: change recommended -
warning: node `ipsecChannelCurrentSAs' must be contained in at least one conformance group
399: SYNTAX Gauge32
400: MAX-ACCESS read-only
401: STATUS current
402: DESCRIPTION
403: "The number of IKE SAs that are currently active that make up
404: this channel.
405:
406: This value may be 0 if the channel has not yet been set up,
407: or the implementation does not require the existence of IKE
408: SAs for the channel to exist, or if the channel is considered
409: a permanent entry in the table by the implementation.
410:
411: This value should not include SA establishment attempts in
412: progress."
413: ::= { ipsecChannelEntry 4 }
414:
415: ipsecChannelTotalSAs OBJECT-TYPE
415: change recommended -
warning: node `ipsecChannelTotalSAs' must be contained in at least one conformance group
416: SYNTAX Counter32
417: MAX-ACCESS read-only
418: STATUS current
419: DESCRIPTION
420: "The total number of IKE SAs that are part of this channel
421: that have been created in the entity since boot time.
422:
423: This value should not include failed SA establishment
424: attempts."
425: ::= { ipsecChannelEntry 5 }
426:
427: ipsecChannelDeletedSAs OBJECT-TYPE
427: change recommended -
warning: node `ipsecChannelDeletedSAs' must be contained in at least one conformance group
428: SYNTAX Counter32
429: MAX-ACCESS read-only
430: STATUS current
431: DESCRIPTION
432: "The total number of IKE SAs that are part of this channel
433: that have been deleted in the entity since boot time.
434:
435: The sum of 'ipsecChannelCurrentSAs' and this value should
436: equal ipsecChannelTotalSAs."
437: ::= { ipsecChannelEntry 6 }
438:
439: ipsecChannelTimeUpSeconds OBJECT-TYPE
439: change recommended -
warning: node `ipsecChannelTimeUpSeconds' must be contained in at least one conformance group
440: SYNTAX Counter32
441: UNITS "seconds"
442: MAX-ACCESS read-only
443: STATUS current
444: DESCRIPTION
445: "The total number of seconds since there has been at least
446: one valid IKE SA supporting the channel. In other words, the
447: number of seconds since the value of 'ipsecChannelCurrentSAs'
448: changed from 0 to any other value."
449: ::= { ipsecChannelEntry 7 }
450:
451: ipsecChannelTimeDownSeconds OBJECT-TYPE
451: change recommended -
warning: node `ipsecChannelTimeDownSeconds' must be contained in at least one conformance group
452: SYNTAX Counter32
453: UNITS "seconds"
454: MAX-ACCESS read-only
455: STATUS current
456: DESCRIPTION
457: "The total number of seconds since the last valid IKE SA
458: supporting the channel was deleted. In other words, the
459: number of seconds since the value of 'ipsecChannelCurrentSAs'
460: changed to 0 from any other value."
461: ::= { ipsecChannelEntry 8 }
462:
463: ipsecChannelInboundOctets OBJECT-TYPE
463: change recommended -
warning: node `ipsecChannelInboundOctets' must be contained in at least one conformance group
464: SYNTAX Counter32
465: UNITS "bytes"
466: MAX-ACCESS read-only
467: STATUS current
468: DESCRIPTION
469: "The amount of traffic measured in bytes received by the
470: channel. This is the sum of 'saInOctets' from the 'saEntry'
471: of each IKE SA in 'saTable' that is part of this channel."
472: ::= { ipsecChannelEntry 9 }
473:
474: ipsecChannelOutboundOctets OBJECT-TYPE
474: change recommended -
warning: node `ipsecChannelOutboundOctets' must be contained in at least one conformance group
475: SYNTAX Counter32
476: UNITS "bytes"
477: MAX-ACCESS read-only
478: STATUS current
479: DESCRIPTION
480: "The amount of traffic measured in bytes sent by the channel.
481: This is the sum of 'saOutOctets' from the 'saEntry' of each
482: IKE SA in 'saTable' that is part of this channel."
483: ::= { ipsecChannelEntry 10 }
484:
485: ipsecChannelInboundPackets OBJECT-TYPE
485: change recommended -
warning: node `ipsecChannelInboundPackets' must be contained in at least one conformance group
486: SYNTAX Counter32
487: MAX-ACCESS read-only
488: STATUS current
489: DESCRIPTION
490: "The total number of packets received by the channel. This is
491: the sum of 'saInPackets' from the 'saEntry' of each IKE SA in
492: 'saTable' that is part of this channel."
493: ::= { ipsecChannelEntry 11 }
494:
495: ipsecChannelOutboundPackets OBJECT-TYPE
495: change recommended -
warning: node `ipsecChannelOutboundPackets' must be contained in at least one conformance group
496: SYNTAX Counter32
497: MAX-ACCESS read-only
498: STATUS current
499: DESCRIPTION
500: "The total number of packets sent by the channel. This is the
501: sum of 'saOutPackets' from the 'saEntry' of each IKE SA in
502: 'saTable' that is part of this channel."
503: ::= { ipsecChannelEntry 12 }
504:
505: ipsecChannelReceiveErrors OBJECT-TYPE
505: change recommended -
warning: node `ipsecChannelReceiveErrors' must be contained in at least one conformance group
506: SYNTAX Counter32
507: MAX-ACCESS read-only
508: STATUS current
509: DESCRIPTION
510: "The total number of receive errors incurred in the channel.
511: This is the sum of all receive errors from the 'saEntry' of
512: each IKE SA in 'saTable' that is part of this channel."
513: ::= { ipsecChannelEntry 13 }
514:
515: ipsecChannelSendErrors OBJECT-TYPE
515: change recommended -
warning: node `ipsecChannelSendErrors' must be contained in at least one conformance group
516: SYNTAX Counter32
517: MAX-ACCESS read-only
518: STATUS current
519: DESCRIPTION
520: "The total number of send errors incurred in the channel.
521: This is the sum of all send errors from the 'saEntry' of each
522: IKE SA in 'saTable' that is part of this channel."
523: ::= { ipsecChannelEntry 14 }
524:
525: ipsecChannelCurrentTunnels OBJECT-TYPE
525: change recommended -
warning: node `ipsecChannelCurrentTunnels' must be contained in at least one conformance group
526: SYNTAX Gauge32
527: MAX-ACCESS read-only
528: STATUS current
529: DESCRIPTION
530: "The number of IPsec tunnels that are currently active that
531: were created by this channel.
532:
533: This value should not include tunnel establishment attempts
534: that are in progress."
535: ::= { ipsecChannelEntry 15 }
536:
537: ipsecChannelTotalTunnels OBJECT-TYPE
537: change recommended -
warning: node `ipsecChannelTotalTunnels' must be contained in at least one conformance group
538: SYNTAX Counter32
539: MAX-ACCESS read-only
540: STATUS current
541: DESCRIPTION
542: "The total number of IPsec tunnels that have been created in
543: the entity by this channel since boot time.
544:
545: This value should not include failed tunnel establishment
546: attempts."
547: ::= { ipsecChannelEntry 16 }
548:
549: ipsecChannelDeletedTunnels OBJECT-TYPE
549: change recommended -
warning: node `ipsecChannelDeletedTunnels' must be contained in at least one conformance group
550: SYNTAX Counter32
551: MAX-ACCESS read-only
552: STATUS current
553: DESCRIPTION
554: "The total number of IPsec tunnels that have been deleted by
555: this channel in the entity since boot time.
556:
557: The sum of 'ipsecChannelCurrentTunnels' and this value should
558: equal 'ipsecChannelTotalTunnels'."
559: ::= { ipsecChannelEntry 17 }
560:
561: ipsecChannelTunnelInboundOctets OBJECT-TYPE
561: change recommended -
warning: node `ipsecChannelTunnelInboundOctets' must be contained in at least one conformance group
562: SYNTAX Counter64
563: UNITS "bytes"
564: MAX-ACCESS read-only
565: STATUS current
566: DESCRIPTION
567: "The amount of traffic measured in bytes received by all
568: tunnels created by the channel."
569: ::= { ipsecChannelEntry 18 }
570:
571: ipsecChannelTunnelOutboundOctets OBJECT-TYPE
571: change recommended -
warning: node `ipsecChannelTunnelOutboundOctets' must be contained in at least one conformance group
572: SYNTAX Counter64
573: UNITS "bytes"
574: MAX-ACCESS read-only
575: STATUS current
576: DESCRIPTION
577: "The amount of traffic measured in bytes sent by all tunnels
578: created by the channel."
579: ::= { ipsecChannelEntry 19 }
580:
581: ipsecChannelTunnelInboundPackets OBJECT-TYPE
581: change recommended -
warning: node `ipsecChannelTunnelInboundPackets' must be contained in at least one conformance group
582: SYNTAX Counter64
583: MAX-ACCESS read-only
584: STATUS current
585: DESCRIPTION
586: "The total number of packets received by all tunnels created
587: by the channel."
588: ::= { ipsecChannelEntry 20 }
589:
590: ipsecChannelTunnelOutboundPackets OBJECT-TYPE
590: change recommended -
warning: node `ipsecChannelTunnelOutboundPackets' must be contained in at least one conformance group
591: SYNTAX Counter64
592: MAX-ACCESS read-only
593: STATUS current
594: DESCRIPTION
595: "The total number of packets sent by all tunnels created by
596: the channel."
597: ::= { ipsecChannelEntry 21 }
598:
599: ipsecChannelTunnelReceiveErrors OBJECT-TYPE
599: change recommended -
warning: node `ipsecChannelTunnelReceiveErrors' must be contained in at least one conformance group
600: SYNTAX Counter32
601: MAX-ACCESS read-only
602: STATUS current
603: DESCRIPTION
604: "The total number of receive errors incurred in all tunnels
605: created by the channel."
606: ::= { ipsecChannelEntry 22 }
607:
608: ipsecChannelTunnelSendErrors OBJECT-TYPE
608: change recommended -
warning: node `ipsecChannelTunnelSendErrors' must be contained in at least one conformance group
609: SYNTAX Counter32
610: MAX-ACCESS read-only
611: STATUS current
612: DESCRIPTION
613: "The total number of send errors incurred in all tunnels
614: created the channel."
615: ::= { ipsecChannelEntry 23 }
616:
617:
618: -- the IPsec channel SA table
619: --
620: -- a table providing a reference to specific IKE SAs as used by
621: -- IPsec channels
622: ipsecChannelSaTable OBJECT-TYPE
623: SYNTAX SEQUENCE OF IpsecChannelSaEntry
624: MAX-ACCESS not-accessible
625: STATUS current
626: DESCRIPTION
627: "The (conceptual) table containing information on which IKE
628: SAs are used in channels.
629:
630: The number of rows is the same as the number of IKE SAs in
631: the entity.
632:
633: The maximum number of rows is implementation dependent."
634: ::= { channelTables 2 }
635:
636: ipsecChannelSaEntry OBJECT-TYPE
637: SYNTAX IpsecChannelSaEntry
638: MAX-ACCESS not-accessible
639: STATUS current
640: DESCRIPTION
641: "An entry (conceptual row) containing the identifiers of a
642: specific IKE SA.
643:
644: A row in this table cannot be created or deleted by SNMP
645: operations on columns of the table."
646: INDEX {
647: ipsecChannelType,
648: ipsecChannelLocalEndpoint,
649: ipsecChannelRemoteEndpoint,
650: ipsecChannelSaIndex
651: }
652: ::= { ipsecChannelSaTable 1 }
653:
654: IpsecChannelSaEntry ::= SEQUENCE {
655:
656: -- additional index to augment channel table
657: ipsecChannelSaIndex Unsigned32,
658:
659: -- the SA specifiers
660: ipsecChannelSaLocalIpAddrType InetAddressType,
661: ipsecChannelSaLocalIpAddress InetAddress,
662: ipsecChannelSaRemoteIpAddrType InetAddressType,
663: ipsecChannelSaRemoteIpAddress InetAddress,
664: ipsecChannelSaInitiatorCookie IsakmpCookie,
665: ipsecChannelSaResponderCookie IsakmpCookie
666: }
667:
668:
669: ipsecChannelSaIndex OBJECT-TYPE
670: SYNTAX Unsigned32 (1..16777215)
671: MAX-ACCESS not-accessible
672: STATUS current
673: DESCRIPTION
674: "A unique value, greater than zero, for each IKE SA in the
675: channel. It is recommended that values are assigned
676: contiguously starting from 1."
677: ::= { ipsecChannelSaEntry 1 }
678:
679: ipsecChannelSaLocalIpAddrType OBJECT-TYPE
679: change recommended -
warning: node `ipsecChannelSaLocalIpAddrType' must be contained in at least one conformance group
680: SYNTAX InetAddressType
681: MAX-ACCESS read-only
682: STATUS current
683: DESCRIPTION
684: "The type of the local address used to negotiate the IKE SA
685: in the channel. (The value of 'saIkeLocalIpAddressType' from
686: 'ikeMonModule' for this row.)"
687: ::= { ipsecChannelSaEntry 2 }
688:
689: ipsecChannelSaLocalIpAddress OBJECT-TYPE
689: change recommended -
warning: node `ipsecChannelSaLocalIpAddress' must be contained in at least one conformance group
690: SYNTAX InetAddress (SIZE(4|16|20))
691: MAX-ACCESS read-only
692: STATUS current
693: DESCRIPTION
694: "The local address used to negotiate the IKE SA in the
695: channel. (The value of 'saIkeLocalIpAddress' from
696: 'ikeMonModule' for this row.)"
697: ::= { ipsecChannelSaEntry 3 }
698:
699: ipsecChannelSaRemoteIpAddrType OBJECT-TYPE
699: change recommended -
warning: node `ipsecChannelSaRemoteIpAddrType' must be contained in at least one conformance group
700: SYNTAX InetAddressType
701: MAX-ACCESS read-only
702: STATUS current
703: DESCRIPTION
704: "The type of the remote address used to negotiate the IKE SA
705: in the channel. (The value of 'saIkeRemoteIpAddressType' from
706: 'ikeMonModule' for this row.)"
707: ::= { ipsecChannelSaEntry 4 }
708:
709: ipsecChannelSaRemoteIpAddress OBJECT-TYPE
709: change recommended -
warning: node `ipsecChannelSaRemoteIpAddress' must be contained in at least one conformance group
710: SYNTAX InetAddress (SIZE(4|16|20))
711: MAX-ACCESS read-only
712: STATUS current
713: DESCRIPTION
714: "The remote address used to negotiate the IKE SA in the
715: channel. (The value of 'saIkeRemoteIpAddress' from
716: 'ikeMonModule' for this row.)"
717: ::= { ipsecChannelSaEntry 5 }
718:
719: ipsecChannelSaInitiatorCookie OBJECT-TYPE
719: change recommended -
warning: node `ipsecChannelSaInitiatorCookie' must be contained in at least one conformance group
720: SYNTAX IsakmpCookie
721: MAX-ACCESS read-only
722: STATUS current
723: DESCRIPTION
724: "The value of the cookie used by the initiator for the IKE SA
725: in the channel. (The value of 'saIkeInitiatorCookie' from
726: 'ikeMonModule' for this row.)"
727: ::= { ipsecChannelSaEntry 6 }
728:
729: ipsecChannelSaResponderCookie OBJECT-TYPE
729: change recommended -
warning: node `ipsecChannelSaResponderCookie' must be contained in at least one conformance group
730: SYNTAX IsakmpCookie
731: MAX-ACCESS read-only
732: STATUS current
733: DESCRIPTION
734: "The value of the cookie used by the responder for the IKE SA
735: in the channel. (The value of 'saIkeResponderCookie' from
736: 'ikeMonModule' for this row.)"
737: ::= { ipsecChannelSaEntry 7 }
738:
739:
740:
741: -- the IPsec channel SA aggregates table
742: --
743: -- a table providing aggregate statistics for the user-defined
744: -- channel types
745:
746:
747: ipsecChanAggTable OBJECT-TYPE
748: SYNTAX SEQUENCE OF IpsecChanAggEntry
749: MAX-ACCESS not-accessible
750: STATUS current
751: DESCRIPTION
752: "The optional (conceptual) table containing information on
753: aggregate statistics for the channel types.
754:
755: The number of rows is the same as the number of channel types
756: supported by the entity.
757:
758: The maximum number of rows is implementation dependent."
759: ::= { channelTables 3 }
760:
761: ipsecChanAggEntry OBJECT-TYPE
762: SYNTAX IpsecChanAggEntry
763: MAX-ACCESS not-accessible
764: STATUS current
765: DESCRIPTION
766: "An entry (conceptual row) containing the aggregate
767: statistics for a specific channel type.
768: A row in this table cannot be created or deleted by SNMP
769: operations on columns of the table."
770: INDEX { ipsecChanAggType }
771: ::= { ipsecChanAggTable 1 }
772:
773: IpsecChanAggEntry ::= SEQUENCE {
774: -- index
775: ipsecChanAggType IpsecChanOrTunType,
776:
777: -- channel counts
778: ipsecChanAggCurrentChannels Gauge32,
779: ipsecChanAggTotalChannels Counter32,
780: ipsecChanAggDeletedChannels Counter32,
781:
782: -- aggregate statistics (all SAs)
783: ipsecChanAggInboundOctets Counter64,
784: ipsecChanAggOutboundOctets Counter64,
785: ipsecChanAggInboundPackets Counter64,
786: ipsecChanAggOutboundPackets Counter64,
787:
788: -- aggregate error statistics
789: ipsecChanAggReceiveErrors Counter32,
790: ipsecChanAggSendErrors Counter32,
791:
792: -- IPsec tunnel (Phase 2) statistics
793: ipsecChanAggCurrentTunnels Gauge32,
794: ipsecChanAggTotalTunnels Counter32,
795: ipsecChanAggDeletedTunnels Counter32,
796:
797: -- IPsec tunnel (Phase 2) statistics (aggregate)
798: ipsecChanAggTnlInboundOctets Counter64,
799: ipsecChanAggTnlOutboundOctets Counter64,
800: ipsecChanAggTnlInboundPackets Counter64,
801: ipsecChanAggTnlOutboundPackets Counter64,
802:
803: -- IPsec SA (Phase 2) error statistics (aggregate)
804: ipsecChanAggTnlReceiveErrors Counter32,
805: ipsecChanAggTnlSendErrors Counter32
806:
807: }
808:
809:
810: ipsecChanAggType OBJECT-TYPE
811: SYNTAX IpsecChanOrTunType
812: MAX-ACCESS not-accessible
813: STATUS current
814: DESCRIPTION
815: "The type of control channel for which this row aggregrates
816: statistics."
817: ::= { ipsecChanAggEntry 1 }
818:
819: ipsecChanAggCurrentChannels OBJECT-TYPE
819: change recommended -
warning: node `ipsecChanAggCurrentChannels' must be contained in at least one conformance group
820: SYNTAX Gauge32
821: MAX-ACCESS read-only
822: STATUS current
823: DESCRIPTION
824: "The number of channels that are currently active that are of
825: the specified type.
826:
827: This value should not include channel establishment attempts
828: in progress."
829: ::= { ipsecChanAggEntry 2 }
830:
831: ipsecChanAggTotalChannels OBJECT-TYPE
831: change recommended -
warning: node `ipsecChanAggTotalChannels' must be contained in at least one conformance group
832: SYNTAX Counter32
833: MAX-ACCESS read-only
834: STATUS current
835: DESCRIPTION
836: "The total number of channels of this type that have been
837: created in the entity since boot time.
838:
839: This value should not include failed channel establishment
840: attempts."
841: ::= { ipsecChanAggEntry 3 }
842:
843: ipsecChanAggDeletedChannels OBJECT-TYPE
843: change recommended -
warning: node `ipsecChanAggDeletedChannels' must be contained in at least one conformance group
844: SYNTAX Counter32
845: MAX-ACCESS read-only
846: STATUS current
847: DESCRIPTION
848: "The total number of channels of this type that have been
849: deleted in the entity since boot time.
850:
851: The sum of 'ipsecChanAggCurrentChannels' and this value
852: should equal 'ipsecChanAggTotalChannels'."
853: ::= { ipsecChanAggEntry 4 }
854:
855: ipsecChanAggInboundOctets OBJECT-TYPE
855: change recommended -
warning: node `ipsecChanAggInboundOctets' must be contained in at least one conformance group
856: SYNTAX Counter64
857: UNITS "bytes"
858: MAX-ACCESS read-only
859: STATUS current
860: DESCRIPTION
861: "The total amount of traffic measured in bytes received by
862: all channels of this type. This is the sum of
863: 'ipsecChannelInboundOctets' from the 'ipsecChannelEntry' of
864: each channel in 'ipsecChannelTable' that is of this type."
865: ::= { ipsecChanAggEntry 5 }
866:
867: ipsecChanAggOutboundOctets OBJECT-TYPE
867: change recommended -
warning: node `ipsecChanAggOutboundOctets' must be contained in at least one conformance group
868: SYNTAX Counter64
869: UNITS "bytes"
870: MAX-ACCESS read-only
871: STATUS current
872: DESCRIPTION
873: "The total amount of traffic measured in bytes sent by all
874: channels of this type. This is the sum of
875: 'ipsecChannelOutboundOctets' from the 'ipsecChannelEntry' of
876: each channel in 'ipsecChannelTable' that is of this type."
877: ::= { ipsecChanAggEntry 6 }
878:
879: ipsecChanAggInboundPackets OBJECT-TYPE
879: change recommended -
warning: node `ipsecChanAggInboundPackets' must be contained in at least one conformance group
880: SYNTAX Counter64
881: MAX-ACCESS read-only
882: STATUS current
883: DESCRIPTION
884: "The total number of packets received by all channels of this
885: type. This is the sum of 'ipsecChannelInboundPackets' from
886: the 'ipsecChannelEntry' of each channel in
887: 'ipsecChannelTable' that is of this type."
888: ::= { ipsecChanAggEntry 7 }
889:
890: ipsecChanAggOutboundPackets OBJECT-TYPE
890: change recommended -
warning: node `ipsecChanAggOutboundPackets' must be contained in at least one conformance group
891: SYNTAX Counter64
892: MAX-ACCESS read-only
893: STATUS current
894: DESCRIPTION
895: "The total number of packets sent by all channels of this
896: type. This is the sum of 'ipsecChannelOutboundPackets' from
897: the 'ipsecChannelEntry' of each channel in
898: 'ipsecChannelTable' that is of this type."
899: ::= { ipsecChanAggEntry 8 }
900:
901: ipsecChanAggReceiveErrors OBJECT-TYPE
901: change recommended -
warning: node `ipsecChanAggReceiveErrors' must be contained in at least one conformance group
902: SYNTAX Counter32
903: MAX-ACCESS read-only
904: STATUS current
905: DESCRIPTION
906: "The total number of receive errors incurred by all channels
907: of this type. This is the sum of 'ipsecChannelReceiveErrors'
908: from the 'ipsecChannelEntry' of each channel in
909: 'ipsecChannelTable' that is of this type."
910: ::= { ipsecChanAggEntry 9 }
911:
912: ipsecChanAggSendErrors OBJECT-TYPE
912: change recommended -
warning: node `ipsecChanAggSendErrors' must be contained in at least one conformance group
913: SYNTAX Counter32
914: MAX-ACCESS read-only
915: STATUS current
916: DESCRIPTION
917: "The total number of send errors incurred by all channels of
918: this type. This is the sum of 'ipsecChannelSendErrors' from
919: the 'ipsecChannelEntry' of each channel in
920: 'ipsecChannelTable' that is of this type."
921: ::= { ipsecChanAggEntry 10 }
922:
923: ipsecChanAggCurrentTunnels OBJECT-TYPE
923: change recommended -
warning: node `ipsecChanAggCurrentTunnels' must be contained in at least one conformance group
924: SYNTAX Gauge32
925: MAX-ACCESS read-only
926: STATUS current
927: DESCRIPTION
928: "The current number of active IPsec tunnels that have been
929: created by all channels of this type. This is the sum of
930: 'ipsecChannelCurrentTunnels' from the 'ipsecChannelEntry' of
931: each channel in 'ipsecChannelTable' that is of this type."
932: ::= { ipsecChanAggEntry 11 }
933:
934: ipsecChanAggTotalTunnels OBJECT-TYPE
934: change recommended -
warning: node `ipsecChanAggTotalTunnels' must be contained in at least one conformance group
935: SYNTAX Counter32
936: MAX-ACCESS read-only
937: STATUS current
938: DESCRIPTION
939: "The total number of IPsec tunnels that have been created by
940: all channels of this type. This is the sum of
941: 'ipsecChannelTotalTunnels' from the 'ipsecChannelEntry' of
942: each channel in 'ipsecChannelTable' that is of this type."
943: ::= { ipsecChanAggEntry 12 }
944:
945: ipsecChanAggDeletedTunnels OBJECT-TYPE
945: change recommended -
warning: node `ipsecChanAggDeletedTunnels' must be contained in at least one conformance group
946: SYNTAX Counter32
947: MAX-ACCESS read-only
948: STATUS current
949: DESCRIPTION
950: "The total number of IPsec tunnels that have been deleted by
951: all channels of this type. This is the sum of
952: 'ipsecChannelDeletedTunnels' from the 'ipsecChannelEntry' of
953: each channel in 'ipsecChannelTable' that is of this type.
954:
955: The sum of 'ipsecChanAggCurrentTunnels' and this value should
956: equal 'ipsecChanAggTotalTunnels'."
957: ::= { ipsecChanAggEntry 13 }
958:
959: ipsecChanAggTnlInboundOctets OBJECT-TYPE
959: change recommended -
warning: node `ipsecChanAggTnlInboundOctets' must be contained in at least one conformance group
960: SYNTAX Counter64
961: UNITS "bytes"
962: MAX-ACCESS read-only
963: STATUS current
964: DESCRIPTION
965: "The amount of traffic measured in bytes received by all
966: tunnels created by all channels of this type. This is the sum
967: of 'ipsecChannelTunnelInboundOctets' from the
968: 'ipsecChannelEntry' of each channel in 'ipsecChannelTable'
969: that is of this type."
970: ::= { ipsecChanAggEntry 14 }
971:
972: ipsecChanAggTnlOutboundOctets OBJECT-TYPE
972: change recommended -
warning: node `ipsecChanAggTnlOutboundOctets' must be contained in at least one conformance group
973: SYNTAX Counter64
974: UNITS "bytes"
975: MAX-ACCESS read-only
976: STATUS current
977: DESCRIPTION
978: "The amount of traffic measured in bytes sent by all tunnels
979: created by all channels of this type. This is the sum of
980: 'ipsecChannelTunnelOutboundOctets' from the
981: 'ipsecChannelEntry' of each channel in 'ipsecChannelTable'
982: that is of this type."
983: ::= { ipsecChanAggEntry 15 }
984:
985: ipsecChanAggTnlInboundPackets OBJECT-TYPE
985: change recommended -
warning: node `ipsecChanAggTnlInboundPackets' must be contained in at least one conformance group
986: SYNTAX Counter64
987: MAX-ACCESS read-only
988: STATUS current
989: DESCRIPTION
990: "The total number of packets received by all tunnels created
991: by all channels of this type. This is the sum of
992: 'ipsecChannelTunnelInboundPackets' from the
993: 'ipsecChannelEntry' of each channel in 'ipsecChannelTable'
994: that is of this type."
995: ::= { ipsecChanAggEntry 16 }
996:
997: ipsecChanAggTnlOutboundPackets OBJECT-TYPE
997: change recommended -
warning: node `ipsecChanAggTnlOutboundPackets' must be contained in at least one conformance group
998: SYNTAX Counter64
999: MAX-ACCESS read-only
1000: STATUS current
1001: DESCRIPTION
1002: "The total number of packets sent by all tunnels created by
1003: all channels of this type. This is the sum of
1004: 'ipsecChannelTunnelOutboundPackets' from the
1005: 'ipsecChannelEntry' of each channel in 'ipsecChannelTable'
1006: that is of this type."
1007: ::= { ipsecChanAggEntry 17 }
1008:
1009: ipsecChanAggTnlReceiveErrors OBJECT-TYPE
1009: change recommended -
warning: node `ipsecChanAggTnlReceiveErrors' must be contained in at least one conformance group
1010: SYNTAX Counter32
1011: MAX-ACCESS read-only
1012: STATUS current
1013: DESCRIPTION
1014: "The total number of receive errors incurred in all tunnels
1015: created by all channels of this type. This is the sum of
1016: 'ipsecChannelTunnelReceiveErrors' from the
1017: 'ipsecChannelEntry' of each channel in 'ipsecChannelTable'
1018: that is of this type."
1019: ::= { ipsecChanAggEntry 18 }
1020:
1021: ipsecChanAggTnlSendErrors OBJECT-TYPE
1021: change recommended -
warning: node `ipsecChanAggTnlSendErrors' must be contained in at least one conformance group
1022: SYNTAX Counter32
1023: MAX-ACCESS read-only
1024: STATUS current
1025: DESCRIPTION
1026: "The total number of send errors incurred in all tunnels
1027: created by all channels of this type. This is the sum of
1028: 'ipsecChannelTunnelSendErrors' from the 'ipsecChannelEntry'
1029: of each channel in 'ipsecChannelTable' that is of this type."
1030: ::= { ipsecChanAggEntry 19 }
1031:
1032:
1033: -- the IPsec Tunnel MIB-Group
1034: --
1035: -- a collection of objects providing information about
1036: -- IPsec SA suite-based virtual tunnels
1037:
1038:
1039: ipsecTunnelTable OBJECT-TYPE
1040: SYNTAX SEQUENCE OF IpsecTunnelEntry
1041: MAX-ACCESS not-accessible
1042: STATUS current
1043: DESCRIPTION
1044: "The (conceptual) table containing information on IPsec SA
1045: suite-based tunnels.
1046:
1047: The number of rows is, at a minimum, the same as the number
1048: of IPsec SA suites in the entity that have identical
1049: selectors. Additional rows for tunnels without active IPsec
1050: SA suites may also appear in the table.
1051:
1052: The maximum number of rows is implementation dependent."
1053: ::= { tunnelTables 1 }
1054:
1055: ipsecTunnelEntry OBJECT-TYPE
1056: SYNTAX IpsecTunnelEntry
1057: MAX-ACCESS not-accessible
1058: STATUS current
1059: DESCRIPTION
1060: "An entry (conceptual row) containing the information on a
1061: particular tunnel.
1062:
1063: A row in this table cannot be created or deleted by SNMP
1064: operations on columns of the table."
1065: INDEX { ipsecTunnelType, ipsecTunnelId }
1066: ::= { ipsecTunnelTable 1 }
1067:
1068: IpsecTunnelEntry ::= SEQUENCE {
1068: warning -
warning: SEQUENCE element #7 `ipsecTunnelRemoteEndpoint' does not match order of columnar objects under `ipsecTunnelEntry'
1069: ipsecTunnelType IpsecChanOrTunType,
1070: ipsecTunnelId Unsigned32,
1071:
1072: -- tunnel endpoints
1073: ipsecTunnelLocalIpAddrType InetAddressType,
1074: ipsecTunnelLocalIpAddress InetAddress,
1075: ipsecTunnelRemoteIpAddrType InetAddressType,
1076: ipsecTunnelRemoteIpAddress InetAddress,
1077:
1078: -- creator identifiers
1079: ipsecTunnelRemoteEndpoint Unsigned32,
1080: ipsecTunnelLocalEndpoint Unsigned32,
1081:
1082: -- operational statistics
1083: ipsecTunnelCurrentSaSuites Gauge32,
1084: ipsecTunnelTotalSaSuites Counter32,
1085: ipsecTunnelDeletedSaSuites Counter32,
1086: ipsecTunnelTimeUpSeconds Counter32, -- since suites > 0
1087: ipsecTunnelTimeDownSeconds Counter32, -- since suites = 0
1088:
1089: -- aggregate statistics
1090: ipsecTunnelTotalInboundOctets Counter64,
1091: ipsecTunnelTotalOutboundOctets Counter64,
1092: ipsecTunnelTotalInboundPackets Counter64,
1093: ipsecTunnelTotalOutboundPackets Counter64,
1094:
1095: -- aggregate error statistics
1096: ipsecTunnelSendErrors Counter32,
1097: ipsecTunnelReceiveErrors Counter32
1098:
1099: }
1100:
1101: ipsecTunnelType OBJECT-TYPE
1102: SYNTAX IpsecChanOrTunType
1103: MAX-ACCESS not-accessible
1104: STATUS current
1105: DESCRIPTION
1106: "The type of tunnel represented by this row.
1107: This is an implementation dependent value, used to assist in
1108: controlling how tunnels are sorted."
1109: ::= { ipsecTunnelEntry 1 }
1110:
1111: ipsecTunnelId OBJECT-TYPE
1112: SYNTAX Unsigned32
1113: MAX-ACCESS not-accessible
1114: STATUS current
1115: DESCRIPTION
1116: "The index value of the selector table row that contains the
1117: selectors that are the identity of this tunnel.
1118:
1119: Specifically, this is the value of 'selectorIndex' from the
1120: appropriate row ('selectorEntry') from the table
1121: 'selectorTable' from the MIB 'ipsecMonModule'.
1122: (NOTE: Should this be an OBJECT IDENTIFIER instead?)"
1123: ::= { ipsecTunnelEntry 2 }
1124:
1125: ipsecTunnelLocalIpAddrType OBJECT-TYPE
1125: change recommended -
warning: node `ipsecTunnelLocalIpAddrType' must be contained in at least one conformance group
1126: SYNTAX InetAddressType
1127: MAX-ACCESS read-only
1128: STATUS current
1129: DESCRIPTION
1130: "The type of address used by the local endpoint of the
1131: tunnel."
1132: ::= { ipsecTunnelEntry 3 }
1133:
1134: ipsecTunnelLocalIpAddress OBJECT-TYPE
1134: change recommended -
warning: node `ipsecTunnelLocalIpAddress' must be contained in at least one conformance group
1135: SYNTAX InetAddress (SIZE(4|16|20))
1136: MAX-ACCESS read-only
1137: STATUS current
1138: DESCRIPTION
1139: "The address used by the local endpoint of the tunnel."
1140: ::= { ipsecTunnelEntry 4 }
1141:
1142: ipsecTunnelRemoteIpAddrType OBJECT-TYPE
1142: change recommended -
warning: node `ipsecTunnelRemoteIpAddrType' must be contained in at least one conformance group
1143: SYNTAX InetAddressType
1144: MAX-ACCESS read-only
1145: STATUS current
1146: DESCRIPTION
1147: "The type of address used by the remote endpoint of the
1148: tunnel."
1149: ::= { ipsecTunnelEntry 5 }
1150:
1151: ipsecTunnelRemoteIpAddress OBJECT-TYPE
1151: change recommended -
warning: node `ipsecTunnelRemoteIpAddress' must be contained in at least one conformance group
1152: SYNTAX InetAddress (SIZE(4|16|20))
1153: MAX-ACCESS read-only
1154: STATUS current
1155: DESCRIPTION
1156: "The address used by the remote endpoint of the tunnel."
1157: ::= { ipsecTunnelEntry 6 }
1158:
1159: ipsecTunnelLocalEndpoint OBJECT-TYPE
1159: change recommended -
warning: node `ipsecTunnelLocalEndpoint' must be contained in at least one conformance group
1160: SYNTAX Unsigned32
1161: MAX-ACCESS read-only
1162: STATUS current
1163: DESCRIPTION
1164: "The index of the local endpoint that negotiated this tunnel.
1165:
1166: It is the value of 'endpointIndex' from the correct row
1167: ('IkeEndpointEntry') of the 'ikeEndpointTable' from
1168: 'ikeMonModule'.
1169: (NOTE: Should this be an OBJECT IDENTIFIER instead?)"
1170: ::= { ipsecTunnelEntry 7 }
1171:
1172: ipsecTunnelRemoteEndpoint OBJECT-TYPE
1172: change recommended -
warning: node `ipsecTunnelRemoteEndpoint' must be contained in at least one conformance group
1173: SYNTAX Unsigned32
1174: MAX-ACCESS read-only
1175: STATUS current
1176: DESCRIPTION
1177: "The index of the remote endpoint that negotiated this
1178: tunnel.
1179:
1180: It is the value of 'endpointIndex' from the correct row
1181: ('IkeEndpointEntry') of the 'ikeEndpointTable' from
1182: 'ikeMonModule'."
1183: ::= { ipsecTunnelEntry 8 }
1184:
1185: ipsecTunnelCurrentSaSuites OBJECT-TYPE
1185: change recommended -
warning: node `ipsecTunnelCurrentSaSuites' must be contained in at least one conformance group
1186: SYNTAX Gauge32
1187: MAX-ACCESS read-only
1188: STATUS current
1189: DESCRIPTION
1190: "The number of phase 2 SA suites that are currently active
1191: that make up this tunnel.
1192:
1193: This value may be 0 if the tunnel has not yet been set up, or
1194: the implementation does not require the existence of phase 2
1195: SA suites for the tunnel to exist, or if the tunnel is
1196: considered a permanent entry in the table by the
1197: implementation.
1198:
1199: This value should not include phase 2 SA suite establishment
1200: attempts in progress."
1201: ::= { ipsecTunnelEntry 9 }
1202:
1203: ipsecTunnelTotalSaSuites OBJECT-TYPE
1203: change recommended -
warning: node `ipsecTunnelTotalSaSuites' must be contained in at least one conformance group
1204: SYNTAX Counter32
1205: MAX-ACCESS read-only
1206: STATUS current
1207: DESCRIPTION
1208: "The total number of phase 2 SA suites that are part of this
1209: tunnel that have been created in the entity since boot time.
1210:
1211: This value should not include failed phase 2 SA suite
1212: establishment attempts."
1213: ::= { ipsecTunnelEntry 10 }
1214:
1215: ipsecTunnelDeletedSaSuites OBJECT-TYPE
1215: change recommended -
warning: node `ipsecTunnelDeletedSaSuites' must be contained in at least one conformance group
1216: SYNTAX Counter32
1217: MAX-ACCESS read-only
1218: STATUS current
1219: DESCRIPTION
1220: "The total number of phase 2 SA suites that are part of this
1221: channel that have been deleted in the entity since boot time.
1222:
1223: The sum of 'ipsecTunnelCurrentSaSuites' and this value should
1224: equal 'ipsecTunnelTotalSaSuites'."
1225: ::= { ipsecTunnelEntry 11 }
1226:
1227: ipsecTunnelTimeUpSeconds OBJECT-TYPE
1227: change recommended -
warning: node `ipsecTunnelTimeUpSeconds' must be contained in at least one conformance group
1228: SYNTAX Counter32
1229: UNITS "seconds"
1230: MAX-ACCESS read-only
1231: STATUS current
1232: DESCRIPTION
1233: "The total number of seconds since there has been at least
1234: one valid phase 2 SA suite supporting the channel. In other
1235: words, the number of seconds since the value of
1236: 'ipsecTunnelCurrentSaSuites' changed from 0 to any other
1237: value."
1238: ::= { ipsecTunnelEntry 12 }
1239:
1240: ipsecTunnelTimeDownSeconds OBJECT-TYPE
1240: change recommended -
warning: node `ipsecTunnelTimeDownSeconds' must be contained in at least one conformance group
1241: SYNTAX Counter32
1242: UNITS "seconds"
1243: MAX-ACCESS read-only
1244: STATUS current
1245: DESCRIPTION
1246: "The total number of seconds since the last valid phase 2 SA
1247: suite supporting the channel was deleted. In other words, the
1248: number of seconds since the value of
1249: 'ipsecTunnelCurrentSaSuites' changed to 0 from any other
1250: value."
1251: ::= { ipsecTunnelEntry 13 }
1252:
1253: ipsecTunnelTotalInboundOctets OBJECT-TYPE
1253: change recommended -
warning: node `ipsecTunnelTotalInboundOctets' must be contained in at least one conformance group
1254: SYNTAX Counter64
1255: UNITS "bytes"
1256: MAX-ACCESS read-only
1257: STATUS current
1258: DESCRIPTION
1259: "The total amount of traffic measured in bytes received by
1260: the tunnel. This is the sum of 'suiteInUserOctets' from the
1261: 'suiteEntry' of each phase 2 SA suite in 'suiteTable' that is
1262: part of this tunnel."
1263: ::= { ipsecTunnelEntry 14 }
1264:
1265: ipsecTunnelTotalOutboundOctets OBJECT-TYPE
1265: change recommended -
warning: node `ipsecTunnelTotalOutboundOctets' must be contained in at least one conformance group
1266: SYNTAX Counter64
1267: UNITS "bytes"
1268: MAX-ACCESS read-only
1269: STATUS current
1270: DESCRIPTION
1271: "The total amount of traffic measured in bytes sent by the
1272: tunnel. This is the sum of 'suiteOutUserOctets' from the
1273: 'suiteEntry' of each phase 2 SA suite in 'suiteTable' that is
1274: part of this tunnel."
1275: ::= { ipsecTunnelEntry 15 }
1276:
1277: ipsecTunnelTotalInboundPackets OBJECT-TYPE
1277: change recommended -
warning: node `ipsecTunnelTotalInboundPackets' must be contained in at least one conformance group
1278: SYNTAX Counter64
1279: MAX-ACCESS read-only
1280: STATUS current
1281: DESCRIPTION
1282: "The total number of packets received by the tunnel. This is
1283: the sum of 'suiteInPackets' from the 'suiteEntry' of each
1284: phase 2 SA suite in 'suiteTable' that is part of this
1285: tunnel."
1286: ::= { ipsecTunnelEntry 16 }
1287:
1288: ipsecTunnelTotalOutboundPackets OBJECT-TYPE
1288: change recommended -
warning: node `ipsecTunnelTotalOutboundPackets' must be contained in at least one conformance group
1289: SYNTAX Counter64
1290: MAX-ACCESS read-only
1291: STATUS current
1292: DESCRIPTION
1293: "The total number of packets sent by the tunnel. This is the
1294: sum of 'suiteOutPackets' from the 'suiteEntry' of each phase
1295: 2 SA suite in 'suiteTable' that is part of this tunnel."
1296: ::= { ipsecTunnelEntry 17 }
1297:
1298: ipsecTunnelSendErrors OBJECT-TYPE
1298: change recommended -
warning: node `ipsecTunnelSendErrors' must be contained in at least one conformance group
1299: SYNTAX Counter32
1300: MAX-ACCESS read-only
1301: STATUS current
1302: DESCRIPTION
1303: "The total number of send errors in the tunnel. This is the
1304: sum of 'suiteSendErrors' from the 'suiteEntry' of each phase
1305: 2 SA suite in 'suiteTable' that is part of this tunnel."
1306: ::= { ipsecTunnelEntry 18 }
1307:
1308: ipsecTunnelReceiveErrors OBJECT-TYPE
1308: change recommended -
warning: node `ipsecTunnelReceiveErrors' must be contained in at least one conformance group
1309: SYNTAX Counter32
1310: MAX-ACCESS read-only
1311: STATUS current
1312: DESCRIPTION
1313: "The total number of receive errors in the tunnel. This is
1314: the sum of 'suiteReceiveErrors' from the 'suiteEntry' of each
1315: phase 2 SA suite in 'suiteTable' that is part of this
1316: tunnel."
1317: ::= { ipsecTunnelEntry 19 }
1318:
1319:
1320: -- the IPsec SA Suite MIB-Group
1321: --
1322: -- a collection of objects providing information about
1323: -- IPsec SA suites used in virtual tunnels
1324:
1325:
1326: ipsecTunnelSuiteTable OBJECT-TYPE
1327: SYNTAX SEQUENCE OF IpsecTunnelSuiteEntry
1328: MAX-ACCESS not-accessible
1329: STATUS current
1330: DESCRIPTION
1331: "The (conceptual) table containing information on IPsec SA
1332: suites.
1333:
1334: The number of rows is the same as the number of IPsec SA
1335: suites in the entity.
1336:
1337: The maximum number of rows is implementation dependent."
1338: ::= { tunnelTables 2 }
1339:
1340: ipsecTunnelSuiteEntry OBJECT-TYPE
1341: SYNTAX IpsecTunnelSuiteEntry
1342: MAX-ACCESS not-accessible
1343: STATUS current
1344: DESCRIPTION
1345: "An entry (conceptual row) containing the identifiers to a
1346: particular SA suite.
1347:
1348: A row in this table cannot be created or deleted by SNMP
1349: operations on columns of the table."
1350:
1351: INDEX {
1352: ipsecTunnelType,
1353: ipsecTunnelId,
1354: ipsecTunnelSuiteIndex
1355: }
1356: ::= { ipsecTunnelSuiteTable 1 }
1357:
1358: IpsecTunnelSuiteEntry ::= SEQUENCE {
1359:
1360: -- additional index
1361: ipsecTunnelSuiteIndex Unsigned32,
1362:
1363: -- identifier of suite
1364: ipsecTunnelSuiteReference OBJECT IDENTIFIER
1365: }
1366:
1367: ipsecTunnelSuiteIndex OBJECT-TYPE
1368: SYNTAX Unsigned32 (1..16777215)
1369: MAX-ACCESS not-accessible
1370: STATUS current
1371: DESCRIPTION
1372: "A unique value, greater than zero, for each SA suite in the
1373: tunnel. It is recommended that values are assigned
1374: contiguously starting from 1."
1375: ::= { ipsecTunnelSuiteEntry 1 }
1376:
1377: ipsecTunnelSuiteReference OBJECT-TYPE
1377: change recommended -
warning: node `ipsecTunnelSuiteReference' must be contained in at least one conformance group
1378: SYNTAX OBJECT IDENTIFIER
1379: MAX-ACCESS read-only
1380: STATUS current
1381: DESCRIPTION
1382: "The object identifier of the IPsec SA suite row that
1383: represents the IPsec SA suite in the tunnel.
1384:
1385: Specifically, the value of this object is the object
1386: identifier of 'suiteIndex' of the appropriate row
1387: ('SuiteEntry') in 'suiteTable' from 'ikeMonModule'."
1388: ::= { ipsecTunnelSuiteEntry 2 }
1389:
1390:
1391:
1392: -- the IPsec tunnel aggregates table
1393: --
1394: -- a table providing aggregate statistics for the user-defined
1395: -- tunnel types
1396:
1397:
1398: ipsecTunAggTable OBJECT-TYPE
1399: SYNTAX SEQUENCE OF IpsecTunAggEntry
1400: MAX-ACCESS not-accessible
1401: STATUS current
1402: DESCRIPTION
1403: "The optional (conceptual) table containing information on
1404: aggregate statistics for the tunnel types.
1405:
1406: The number of rows is the same as the number of tunnel types
1407: supported by the entity.
1408:
1409: The maximum number of rows is implementation dependent."
1410: ::= { tunnelTables 3 }
1411:
1412: ipsecTunAggEntry OBJECT-TYPE
1413: SYNTAX IpsecTunAggEntry
1414: MAX-ACCESS not-accessible
1415: STATUS current
1416: DESCRIPTION
1417: "An entry (conceptual row) containing the aggregate
1418: statistics for a specific tunnel type.
1419:
1420: A row in this table cannot be created or deleted by SNMP
1421: operations on columns of the table."
1422: INDEX { ipsecTunnelType }
1423: ::= { ipsecTunAggTable 1 }
1424:
1425: IpsecTunAggEntry ::= SEQUENCE {
1426:
1427: -- tunnel counts of this type
1428: ipsecTunAggCurrentTunnels Gauge32,
1429: ipsecTunAggTotalTunnels Counter32,
1430: ipsecTunAggDeletedTunnels Counter32,
1431:
1432: -- aggregate statistics
1433: ipsecTunAggInboundOctets Counter64,
1434: ipsecTunAggOutboundOctets Counter64,
1435: ipsecTunAggInboundPackets Counter64,
1436: ipsecTunAggOutboundPackets Counter64,
1437:
1438: -- aggregate error statistics
1439: ipsecTunAggSendErrors Counter32,
1440: ipsecTunAggReceiveErrors Counter32
1441: }
1442:
1443:
1444: ipsecTunAggCurrentTunnels OBJECT-TYPE
1444: change recommended -
warning: node `ipsecTunAggCurrentTunnels' must be contained in at least one conformance group
1445: SYNTAX Gauge32
1446: MAX-ACCESS read-only
1447: STATUS current
1448: DESCRIPTION
1449: "The number of tunnels that are currently active that are of
1450: the specified type.
1451:
1452: This value should not include tunnel establishment attempts
1453: in progress."
1454: ::= { ipsecTunAggEntry 1 }
1455:
1456: ipsecTunAggTotalTunnels OBJECT-TYPE
1456: change recommended -
warning: node `ipsecTunAggTotalTunnels' must be contained in at least one conformance group
1457: SYNTAX Counter32
1458: MAX-ACCESS read-only
1459: STATUS current
1460: DESCRIPTION
1461: "The total number of tunnels of this type that have been
1462: created in the entity since boot time.
1463:
1464: This value should not include failed tunnel establishment
1465: attempts."
1466: ::= { ipsecTunAggEntry 2 }
1467:
1468: ipsecTunAggDeletedTunnels OBJECT-TYPE
1468: change recommended -
warning: node `ipsecTunAggDeletedTunnels' must be contained in at least one conformance group
1469: SYNTAX Counter32
1470: MAX-ACCESS read-only
1471: STATUS current
1472: DESCRIPTION
1473: "The total number of tunnels of this type that have been
1474: deleted in the entity since boot time.
1475:
1476: The sum of 'ipsecTunAggCurrentTunnels' and this value should
1477: equal 'ipsecTunAggTotalTunnels'."
1478: ::= { ipsecTunAggEntry 3 }
1479:
1480: ipsecTunAggInboundOctets OBJECT-TYPE
1480: change recommended -
warning: node `ipsecTunAggInboundOctets' must be contained in at least one conformance group
1481: SYNTAX Counter64
1482: UNITS "bytes"
1483: MAX-ACCESS read-only
1484: STATUS current
1485: DESCRIPTION
1486: "The total amount of traffic measured in bytes received by
1487: all tunnels of this type. This is the sum of
1488: 'ipsecTunnelInboundOctets' from the 'ipsecTunnelEntry' of
1489: each tunnel in 'ipsecTunnelTable' that is of this type."
1490: ::= { ipsecTunAggEntry 4 }
1491:
1492: ipsecTunAggOutboundOctets OBJECT-TYPE
1492: change recommended -
warning: node `ipsecTunAggOutboundOctets' must be contained in at least one conformance group
1493: SYNTAX Counter64
1494: UNITS "bytes"
1495: MAX-ACCESS read-only
1496: STATUS current
1497: DESCRIPTION
1498: "The total amount of traffic measured in bytes sent by all
1499: tunnels of this type. This is the sum of
1500: 'ipsecTunnelOutboundOctets' from the 'ipsecTunnelEntry' of
1501: each tunnel in 'ipsecTunnelTable' that is of this type."
1502: ::= { ipsecTunAggEntry 5 }
1503:
1504: ipsecTunAggInboundPackets OBJECT-TYPE
1504: change recommended -
warning: node `ipsecTunAggInboundPackets' must be contained in at least one conformance group
1505: SYNTAX Counter64
1506: MAX-ACCESS read-only
1507: STATUS current
1508: DESCRIPTION
1509: "The total number of packets received by all tunnels of this
1510: type. This is the sum of 'ipsecTunnelInboundPackets' from the
1511: 'ipsecTunnelEntry' of each tunnel in 'ipsecTunnelTable' that
1512: is of this type."
1513: ::= { ipsecTunAggEntry 6 }
1514:
1515: ipsecTunAggOutboundPackets OBJECT-TYPE
1515: change recommended -
warning: node `ipsecTunAggOutboundPackets' must be contained in at least one conformance group
1516: SYNTAX Counter64
1517: MAX-ACCESS read-only
1518: STATUS current
1519: DESCRIPTION
1520: "The total number of packets sent by all tunnels of this
1521: type. This is the sum of 'ipsecTunnelOutboundPackets' from
1522: the 'ipsecTunnelEntry' of each tunnel in 'ipsecTunnelTable'
1523: that is of this type."
1524: ::= { ipsecTunAggEntry 7 }
1525:
1526: ipsecTunAggSendErrors OBJECT-TYPE
1526: change recommended -
warning: node `ipsecTunAggSendErrors' must be contained in at least one conformance group
1527: SYNTAX Counter32
1528: MAX-ACCESS read-only
1529: STATUS current
1530: DESCRIPTION
1531: "The total number of send errors incurred by all tunnels of
1532: this type. This is the sum of 'ipsecTunnelSendErrors' from
1533: the 'ipsecTunnelEntry' of each tunnel in 'ipsecTunnelTable'
1534: that is of this type."
1535: ::= { ipsecTunAggEntry 8 }
1536:
1537: ipsecTunAggReceiveErrors OBJECT-TYPE
1537: change recommended -
warning: node `ipsecTunAggReceiveErrors' must be contained in at least one conformance group
1538: SYNTAX Counter32
1539: MAX-ACCESS read-only
1540: STATUS current
1541: DESCRIPTION
1542: "The total number of receive errors incurred by all tunnels
1543: of this type. This is the sum of 'ipsecTunnelReceiveErrors'
1544: from the 'ipsecTunnelEntry' of each tunnel in
1545: 'ipsecTunnelTable' that is of this type."
1546: ::= { ipsecTunAggEntry 9 }
1547:
1548:
1549:
1550: --
1551: -- table to find tunnels based on the tunnel identifiers
1552: --
1553:
1554: tunnelBySelectorsTable OBJECT-TYPE
1555: SYNTAX SEQUENCE OF TunnelBySelectorsEntry
1556: MAX-ACCESS not-accessible
1557: STATUS current
1558: DESCRIPTION
1559: "The (conceptual) table that sorts the tunnels by the
1560: selectors.
1561:
1562: The number of rows in this table is the same as the number of
1563: tunnels in the entity."
1564: ::= { tunnelTables 4 }
1565:
1566: tunnelBySelectorsEntry OBJECT-TYPE
1567: SYNTAX TunnelBySelectorsEntry
1568: MAX-ACCESS not-accessible
1569: STATUS current
1570: DESCRIPTION
1571: "An entry (conceptual row) referencing a particular tunnel.
1572:
1573: A row in this table cannot be created or deleted by SNMP
1574: operations on columns of the table."
1575: INDEX {
1576: tunnelBySelectorsHash,
1577: tunnelBySelectorsIndex
1578: }
1579: ::= { tunnelBySelectorsTable 1 }
1580:
1581: TunnelBySelectorsEntry ::= SEQUENCE {
1582: -- index
1583: tunnelBySelectorsHash OCTET STRING,
1584: tunnelBySelectorsIndex Unsigned32,
1585:
1586: -- real tunnel identifiers
1587: tunnelBySelectorsId Unsigned32,
1588:
1589: -- tunnel reference
1590: tunnelBySelectorsType IpsecChanOrTunType,
1591: tunnelBySelectorsRef OBJECT IDENTIFIER
1592: }
1593:
1594: tunnelBySelectorsHash OBJECT-TYPE
1595: SYNTAX OCTET STRING (SIZE(4))
1596: MAX-ACCESS not-accessible
1597: STATUS current
1598: DESCRIPTION
1599: "The hash result of the full identifer of the tunnel. Precise
1600: definition to be completed."
1601: ::= { tunnelBySelectorsEntry 1 }
1602:
1603: tunnelBySelectorsIndex OBJECT-TYPE
1604: SYNTAX Unsigned32 (1..16777215)
1605: MAX-ACCESS not-accessible
1606: STATUS current
1607: DESCRIPTION
1608: "A unique value, greater than zero, for each tunnel in the
1609: table where the hash results of the tunnel identifiers
1610: collide. It is recommended that values are assigned
1611: contiguously starting from 1."
1612: ::= { tunnelBySelectorsEntry 2 }
1613:
1614: tunnelBySelectorsId OBJECT-TYPE
1614: change recommended -
warning: node `tunnelBySelectorsId' must be contained in at least one conformance group
1615: SYNTAX Unsigned32
1616: MAX-ACCESS read-only
1617: STATUS current
1618: DESCRIPTION
1619: "The identifier of the tunnel.
1620:
1621: The value of this object is the index of the selector
1622: ('selectorIndex') row ('SelectorEntry') from the
1623: 'selectorTable' that identifies this tunnel."
1624: ::= { tunnelBySelectorsEntry 3 }
1625:
1626: tunnelBySelectorsType OBJECT-TYPE
1626: change recommended -
warning: node `tunnelBySelectorsType' must be contained in at least one conformance group
1627: SYNTAX IpsecChanOrTunType
1628: MAX-ACCESS read-only
1629: STATUS current
1630: DESCRIPTION
1631: "The type assigned to the tunnel for which this row refers."
1632: ::= { tunnelBySelectorsEntry 4 }
1633:
1634: tunnelBySelectorsRef OBJECT-TYPE
1634: change recommended -
warning: node `tunnelBySelectorsRef' must be contained in at least one conformance group
1635: SYNTAX OBJECT IDENTIFIER
1636: MAX-ACCESS read-only
1637: STATUS current
1638: DESCRIPTION
1639: "The object identifier of 'tunnelIndex' in the row
1640: ('tunnelEntry') of the 'tunnelTable' to which this row
1641: refers."
1642: ::= { tunnelBySelectorsEntry 5 }
1643:
1644:
1645:
1646: --
1647: -- trap parameters, traps and control
1648: --
1649:
1650: channelTrapLocalEndpoint OBJECT-TYPE
1650: change recommended -
warning: node `channelTrapLocalEndpoint' must be contained in at least one conformance group
1651: SYNTAX Unsigned32
1652: MAX-ACCESS accessible-for-notify
1653: STATUS current
1654: DESCRIPTION
1655: "The index to an endpoint that is the local endpoint of a
1656: channel in a trap."
1657: ::= { channelTrapObjects 1 }
1658:
1659: channelTrapRemoteEndpoint OBJECT-TYPE
1659: change recommended -
warning: node `channelTrapRemoteEndpoint' must be contained in at least one conformance group
1660: SYNTAX Unsigned32
1661: MAX-ACCESS accessible-for-notify
1662: STATUS current
1663: DESCRIPTION
1664: "The index to an endpoint that is the remote endpoint of a
1665: channel in a trap."
1666: ::= { channelTrapObjects 2 }
1667:
1668: tunnelTrapIdentifier OBJECT-TYPE
1668: change recommended -
warning: node `tunnelTrapIdentifier' must be contained in at least one conformance group
1669: SYNTAX Unsigned32
1670: MAX-ACCESS accessible-for-notify
1671: STATUS current
1672: DESCRIPTION
1673: "The index to a selector that is the identifier of a tunnel
1674: in a trap."
1675: ::= { tunnelTrapObjects 1 }
1676:
1677:
1678: channelUpTrapEnable OBJECT-TYPE
1678: change recommended -
warning: node `channelUpTrapEnable' must be contained in at least one conformance group
1679: SYNTAX TruthValue
1680: MAX-ACCESS read-write
1681: STATUS current
1682: DESCRIPTION
1683: "Indicates whether channelUp traps should be generated."
1684: DEFVAL { false }
1685: ::= { channelTrapControl 1 }
1686:
1687: channelDownTrapEnable OBJECT-TYPE
1687: change recommended -
warning: node `channelDownTrapEnable' must be contained in at least one conformance group
1688: SYNTAX TruthValue
1689: MAX-ACCESS read-write
1690: STATUS current
1691: DESCRIPTION
1692: "Indicates whether channelDown traps should be generated."
1693: DEFVAL { false }
1694: ::= { channelTrapControl 2 }
1695:
1696: channelUp NOTIFICATION-TYPE
1696: warning -
warning: notification `channelUp' is not reverse mappable
1696: change recommended -
warning: notification `channelUp' must be contained in at least one conformance group
1697: OBJECTS
1698: {
1699: channelTrapLocalEndpoint,
1700: channelTrapRemoteEndpoint
1701: }
1702: STATUS current
1703: DESCRIPTION
1704: "The specified channel is now up. (In other words, the number
1705: of current IKE SAs supporting the channel has changed from
1706: zero to a non-zero value.)"
1707: ::= { channelTraps 1 }
1708:
1709: channelDown NOTIFICATION-TYPE
1709: warning -
warning: notification `channelDown' is not reverse mappable
1709: change recommended -
warning: notification `channelDown' must be contained in at least one conformance group
1710: OBJECTS
1711: {
1712: channelTrapLocalEndpoint,
1713: channelTrapRemoteEndpoint
1714: }
1715: STATUS current
1716: DESCRIPTION
1717: "The specified channel is now down. (In other words, the
1718: number of current IKE SAs supporting the channel has changed
1719: to zero from a non-zero value.)"
1720: ::= { channelTraps 2 }
1721:
1722: tunnelUpTrapEnable OBJECT-TYPE
1722: change recommended -
warning: node `tunnelUpTrapEnable' must be contained in at least one conformance group
1723: SYNTAX TruthValue
1724: MAX-ACCESS read-write
1725: STATUS current
1726: DESCRIPTION
1727: "Indicates whether tunnelUp traps should be generated."
1728: DEFVAL { false }
1729: ::= { tunnelTrapControl 1 }
1730:
1731: tunnelDownTrapEnable OBJECT-TYPE
1731: change recommended -
warning: node `tunnelDownTrapEnable' must be contained in at least one conformance group
1732: SYNTAX TruthValue
1733: MAX-ACCESS read-write
1734: STATUS current
1735: DESCRIPTION
1736: "Indicates whether tunnelDown traps should be generated."
1737: DEFVAL { false }
1738: ::= { tunnelTrapControl 2 }
1739:
1740: tunnelUp NOTIFICATION-TYPE
1740: warning -
warning: notification `tunnelUp' is not reverse mappable
1740: change recommended -
warning: notification `tunnelUp' must be contained in at least one conformance group
1741: OBJECTS
1742: {
1743: tunnelTrapIdentifier
1744: }
1745: STATUS current
1746: DESCRIPTION
1747: "The specified tunnel is now up. (In other words, the number
1748: of current phase 2 SA suites supporting the tunnel has
1749: changed from zero to a non-zero value.)"
1750: ::= { tunnelTraps 1 }
1751:
1752: tunnelDown NOTIFICATION-TYPE
1752: warning -
warning: notification `tunnelDown' is not reverse mappable
1752: change recommended -
warning: notification `tunnelDown' must be contained in at least one conformance group
1753: OBJECTS
1754: {
1755: tunnelTrapIdentifier
1756: }
1757: STATUS current
1758: DESCRIPTION
1759: "The specified tunnel is now down. (In other words, the
1760: number of current phase 2 SA suites supporting the tunnel has
1761: changed to zero from a non-zero value.)"
1762: ::= { tunnelTraps 2 }
1763:
1764:
1765: END