BIANCA-BRICK-IP-OLDACCESS-MIB
File:
BIANCA-BRICK-IP-OLDACCESS-MIB.mib (20308 bytes)
Imported modules
Imported symbols
Defined Types
IpAllowEntry |
|
SEQUENCE |
|
|
|
|
ipAllowProtocolMode |
INTEGER |
|
|
ipAllowProtocol |
INTEGER |
|
|
ipAllowSrcIfIndexMode |
INTEGER |
|
|
ipAllowSrcIfIndex |
INTEGER |
|
|
ipAllowSrcAddr |
IpAddress |
|
|
ipAllowSrcMask |
IpAddress |
|
|
ipAllowSrcPortMode |
INTEGER |
|
|
ipAllowSrcPort |
INTEGER |
|
|
ipAllowDstAddr |
IpAddress |
|
|
ipAllowDstMask |
IpAddress |
|
|
ipAllowDstPortMode |
INTEGER |
|
|
ipAllowDstPort |
INTEGER |
|
|
ipAllowSrcPortRange |
INTEGER |
|
|
ipAllowDstPortRange |
INTEGER |
|
IpDenyEntry |
|
SEQUENCE |
|
|
|
|
ipDenyProtocolMode |
INTEGER |
|
|
ipDenyProtocol |
INTEGER |
|
|
ipDenySrcIfIndexMode |
INTEGER |
|
|
ipDenySrcIfIndex |
INTEGER |
|
|
ipDenySrcAddr |
IpAddress |
|
|
ipDenySrcMask |
IpAddress |
|
|
ipDenySrcPortMode |
INTEGER |
|
|
ipDenySrcPort |
INTEGER |
|
|
ipDenyDstAddr |
IpAddress |
|
|
ipDenyDstMask |
IpAddress |
|
|
ipDenyDstPortMode |
INTEGER |
|
|
ipDenyDstPort |
INTEGER |
|
|
ipDenySrcPortRange |
INTEGER |
|
|
ipDenyDstPortRange |
INTEGER |
|
Defined Values
org |
1.3 |
OBJECT IDENTIFIER |
|
|
|
dod |
1.3.6 |
OBJECT IDENTIFIER |
|
|
|
private |
1.3.6.1.4 |
OBJECT IDENTIFIER |
|
|
|
bintec |
1.3.6.1.4.1.272 |
OBJECT IDENTIFIER |
|
|
|
bibo |
1.3.6.1.4.1.272.4 |
OBJECT IDENTIFIER |
|
|
|
biboipold |
1.3.6.1.4.1.272.4.5 |
OBJECT IDENTIFIER |
|
|
|
ipAllowTable |
1.3.6.1.4.1.272.4.5.1 |
The ipAllowTable defines all allowed IP packets. Each
entry describes a subset of IP Packets, which are allowed
to be processed. The overall set of allowed IP packets is
the union of all subsets that are described in this table. If
at least one entry is defined in the ipAllowTable, only IP
datagrams which are allowed by the ipAllowTable are
processed by the BRICK. All other packets are refused.
Please note that the ipDenyTable overwrites the
ipAllowTable. IP datagrams specified in the ipDenyTable are
always refused, even if they are allowed by the
ipAllowTable.
Creating entries: Entries are created by setting the
ipAllowProtocolMode and ipAllowSrcIfIndexMode objects in
one operation (on one command line).
Deleting entries: Entries are deleted by setting the
ipAllowProtocolMode object to 'delete'. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
SEQUENCE OF |
|
|
|
|
IpAllowEntry |
|
ipAllowEntry |
1.3.6.1.4.1.272.4.5.1.1 |
Tok_String |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
IpAllowEntry |
|
|
ipAllowProtocolMode |
1.3.6.1.4.1.272.4.5.1.1.1 |
Specifies whether or not the protocol field of the IP
datagram header should be used to determine if the
datagram belongs to the subset of the entry.
dont-verify(1) = don't check the protocol field;
verify(2) = check the protocol field;
delete(3) = delete the entry from the table |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
dont-verify(1), verify(2), delete(3) |
|
ipAllowProtocol |
1.3.6.1.4.1.272.4.5.1.1.2 |
If the ipAllowProtocolMode is set to 'verify', this object
specifies the protocol of IP datagrams belonging to the
subset described by this entry. Otherwise, this field has
no meaning. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
icmp(1), ggp(3), tcp(6), egp(8), pup(12), udp(17), hmp(20), xns-idp(22), rdp(27), ospf(89) |
|
ipAllowSrcIfIndexMode |
1.3.6.1.4.1.272.4.5.1.1.3 |
This object specifies whether or not the originating
interface of the IP datagram should be checked to
determine whether a datagram belongs to the subset. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
dont-verify(1), verify(2) |
|
ipAllowSrcIfIndex |
1.3.6.1.4.1.272.4.5.1.1.4 |
If ipAllowSrcIfIndexMode is set to 'verify', then this
object specifies the ifIndex of the datagrams belonging to
the subset defined by this entry. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|
ipAllowSrcAddr |
1.3.6.1.4.1.272.4.5.1.1.5 |
This object specifies the set of IP addresses of
datagrams that belong to the subset defined by
this entry. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
IpAddress |
|
|
ipAllowSrcMask |
1.3.6.1.4.1.272.4.5.1.1.6 |
This object specifies the set of IP addresses of data
grams that belong to the subset defined by this entry. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
IpAddress |
|
|
ipAllowSrcPortMode |
1.3.6.1.4.1.272.4.5.1.1.7 |
This object specifies the range of source port numbers
of IP datagrams belonging to the subset.
ignore(1) = All ports: 0 ..65535;
specific(2) = a specific port number
i.e. ipAllowScrPort;
clients(3) = clientports: 1024 .. 4999,
32768..65535;
server(4) = server ports: 0..1023
5000..32767;
unpriv(5) = unprivileged ports:
1024..65535;
priv(6) = privileged ports:
0..1023 |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
ignore(1), specific(2), clients(3), server(4), unpriv(5), priv(6) |
|
ipAllowSrcPort |
1.3.6.1.4.1.272.4.5.1.1.8 |
If ipAllowSrcPortMode is set to 'specific', then this
object contains a specific port number. Otherwise this
object is not used. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
0..65535 |
|
ipAllowDstAddr |
1.3.6.1.4.1.272.4.5.1.1.9 |
This object specifies the set of IP addresses of
datagrams that belong to the subset defined by this entry. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
IpAddress |
|
|
ipAllowDstMask |
1.3.6.1.4.1.272.4.5.1.1.10 |
This object specifies the set of IP addresses of
datagrams that belong to the subset defined by
this entry. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
IpAddress |
|
|
ipAllowDstPortMode |
1.3.6.1.4.1.272.4.5.1.1.11 |
This object specifies the range of destination port
numbers of IP datagrams belonging to the subset.
ignore(1) = All ports: 0..65535;
specific(2) = a specific port number
i.e. ipAllowDstPort;
clients(3) = client ports: 1024..4999,
32768..65535;
server(4) = server ports. 0..1023,
5000..32767;
unpriv(5) = unprivileged ports:
1024..65535;
priv(6) = privileged ports:
0..1023 |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
ignore(1), specific(2), clients(3), server(4), unpriv(5), priv(6) |
|
ipAllowDstPort |
1.3.6.1.4.1.272.4.5.1.1.12 |
If ipAllowDstPortMode is set to 'specific', then this
object contains a specific port number. Otherwise this
object is not used. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
0..65535 |
|
ipAllowSrcPortRange |
1.3.6.1.4.1.272.4.5.1.1.13 |
This object can be used together with ipAllowSrcPort to
apply the rule to a port range, instead of a single port.
When ipAllowSrcPortMode is set to specific and this
object is not set to -1, than the rule applies to the
Range of ports from ipAllowSrcPort to ipAllowSrcPortRange.
When this object is set to -1, the rule applies only to
port ipAllowSrcPort. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
-1..65535 |
|
ipAllowDstPortRange |
1.3.6.1.4.1.272.4.5.1.1.14 |
This object can be used together with ipAllowDstPort to
apply the rule to a port range, instead of a single port.
When ipAllowDstPortMode is set to specific and this
object is not set to -1, than the rule applies to the
Range of ports from ipAllowDstPort to ipAllowDstPortRange.
When this object is set to -1, the rule applies only to
port ipAllowDstPort. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
-1..65535 |
|
ipDenyTable |
1.3.6.1.4.1.272.4.5.2 |
The ipDenyTable defines all IP packets to be denied. Each
entry describes a subset of IP Packets, which are denied
processing. The overall set of denied IP packets is the
union of all subsets that are described in this table. The
ipDenyTable overwrites the ipAllowTable. IP datagrams
specified in the ipDenyTable are always refused, even if
they are allowed by the ipAllowTable.
Creating entries: Entries are created by setting the
ipDenyProtocolMode and ipDenySrcIfIndexMode objects in
one operation (i.e. on one command line).
Deleting entries: Entries are deleted by setting the
ipDenyProtocolMode object to 'delete'. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
SEQUENCE OF |
|
|
|
|
IpDenyEntry |
|
ipDenyEntry |
1.3.6.1.4.1.272.4.5.2.1 |
Tok_String |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
IpDenyEntry |
|
|
ipDenyProtocolMode |
1.3.6.1.4.1.272.4.5.2.1.1 |
Specifies whether or not the protocol field of the IP
datagram header should be used to determine if the
datagram belongs to the subset of this entry.
dont-verify(1) = don't check the protocol field;
verify(2) = check the protocol field;
delete(3) = delete the entry from the table |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
dont-verify(1), verify(2), delete(3) |
|
ipDenyProtocol |
1.3.6.1.4.1.272.4.5.2.1.2 |
If the ipDenyProtocolMode is set to 'verify', this object
specifies the protocol of IP datagrams belonging to the
subset described by this entry. Otherwise, this field has
no meaning. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
icmp(1), ggp(3), tcp(6), egp(8), pup(12), udp(17), hmp(20), xns-idp(22), rdp(27), ospf(89) |
|
ipDenySrcIfIndexMode |
1.3.6.1.4.1.272.4.5.2.1.3 |
This object specifies whether or not the originating
interface of the IP datagram should be checked to
determine whether a datagram belongs to this subset. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
dont-verify(1), verify(2) |
|
ipDenySrcIfIndex |
1.3.6.1.4.1.272.4.5.2.1.4 |
If ipDenySrcIfIndexMode is set to 'verify', then this
object specifies the ifIndex of the datagrams belonging to the
subset defined by this entry. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|
ipDenySrcAddr |
1.3.6.1.4.1.272.4.5.2.1.5 |
If ipDenySrcIfIndexMode is set to 'verify', then this
object specifies the ifIndex of the datagrams belonging to the
subset defined by this entry. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
IpAddress |
|
|
ipDenySrcMask |
1.3.6.1.4.1.272.4.5.2.1.6 |
This object specifies the set of IP addresses of
datagrams that belong to the subset defined by this entry. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
IpAddress |
|
|
ipDenySrcPortMode |
1.3.6.1.4.1.272.4.5.2.1.7 |
This object specifies the range of source port numbers
of IP datagrams belonging to this subset.
ignore(1) = All ports: 0..65535;
specific(2) = a specific port number
i.e. ipAllowDstPort;
clients(3) = client ports: 1024..4999,
32768..65535;
server(4) = server ports. 0..1023,
5000..32767;
unpriv(5) = unprivileged ports:
1024..65535;
priv(6) = privileged ports:
0..1023 |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
ignore(1), specific(2), clients(3), server(4), unpriv(5), priv(6) |
|
ipDenySrcPort |
1.3.6.1.4.1.272.4.5.2.1.8 |
If ipDenySrcPortMode is set to 'specific', then this
object contains a specific port number. Otherwise this
object is not used. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
0..65535 |
|
ipDenyDstAddr |
1.3.6.1.4.1.272.4.5.2.1.9 |
This object specifies the set of IP addresses of
datagrams that belong to the subset defined by this entry. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
IpAddress |
|
|
ipDenyDstMask |
1.3.6.1.4.1.272.4.5.2.1.10 |
This object specifies the set of IP addresses of
datagrams that belong to the subset defined by this entry. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
IpAddress |
|
|
ipDenyDstPortMode |
1.3.6.1.4.1.272.4.5.2.1.11 |
This object specifies the range of destination port
numbers of IP datagrams belonging to the subset.
ignore(1) = All ports: 0..65535;
specific(2) = a specific port number
i.e. ipAllowDstPort;
clients(3) = client ports: 1024..4999,
32768..65535;
server(4) = server ports. 0..1023,
5000..32767;
unpriv(5) = unprivileged ports:
1024..65535;
priv(6) = privileged ports:
0..1023 |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
ignore(1), specific(2), clients(3), server(4), unpriv(5), priv(6) |
|
ipDenyDstPort |
1.3.6.1.4.1.272.4.5.2.1.12 |
If ipDenyDstPortMode is set to 'specific', then this
object contains a specific port number. Otherwise this
object is not used. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
0..65535 |
|
ipDenySrcPortRange |
1.3.6.1.4.1.272.4.5.2.1.13 |
This object can be used together with ipDenySrcPort to
apply the rule to a port range, instead of a single port.
When ipDenySrcPortMode is set to specific and this
object is not set to -1, than the rule applies to the
Range of ports from ipDenySrcPort to ipDenySrcPortRange.
When this object is set to -1, the rule applies only to
port ipDenySrcPort. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
-1..65535 |
|
ipDenyDstPortRange |
1.3.6.1.4.1.272.4.5.2.1.14 |
This object can be used together with ipDenyDstPort to
apply the rule to a port range, instead of a single port.
When ipDenyDstPortMode is set to specific and this
object is not set to -1, than the rule applies to the
Range of ports from ipDenyDstPort to ipDenyDstPortRange.
When this object is set to -1, the rule applies only to
port ipDenyDstPort. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
-1..65535 |
|