BIANCA-BRICK-IP-OLDACCESS-MIB

File: BIANCA-BRICK-IP-OLDACCESS-MIB.mib (20308 bytes)

Imported modules

RFC1155-SMI RFC-1212

Imported symbols

IpAddress Counter TimeTicks
OBJECT-TYPE

Defined Types

IpAllowEntry  
SEQUENCE    
  ipAllowProtocolMode INTEGER
  ipAllowProtocol INTEGER
  ipAllowSrcIfIndexMode INTEGER
  ipAllowSrcIfIndex INTEGER
  ipAllowSrcAddr IpAddress
  ipAllowSrcMask IpAddress
  ipAllowSrcPortMode INTEGER
  ipAllowSrcPort INTEGER
  ipAllowDstAddr IpAddress
  ipAllowDstMask IpAddress
  ipAllowDstPortMode INTEGER
  ipAllowDstPort INTEGER
  ipAllowSrcPortRange INTEGER
  ipAllowDstPortRange INTEGER

IpDenyEntry  
SEQUENCE    
  ipDenyProtocolMode INTEGER
  ipDenyProtocol INTEGER
  ipDenySrcIfIndexMode INTEGER
  ipDenySrcIfIndex INTEGER
  ipDenySrcAddr IpAddress
  ipDenySrcMask IpAddress
  ipDenySrcPortMode INTEGER
  ipDenySrcPort INTEGER
  ipDenyDstAddr IpAddress
  ipDenyDstMask IpAddress
  ipDenyDstPortMode INTEGER
  ipDenyDstPort INTEGER
  ipDenySrcPortRange INTEGER
  ipDenyDstPortRange INTEGER

Defined Values

org 1.3
OBJECT IDENTIFIER    

dod 1.3.6
OBJECT IDENTIFIER    

internet 1.3.6.1
OBJECT IDENTIFIER    

private 1.3.6.1.4
OBJECT IDENTIFIER    

enterprises 1.3.6.1.4.1
OBJECT IDENTIFIER    

bintec 1.3.6.1.4.1.272
OBJECT IDENTIFIER    

bibo 1.3.6.1.4.1.272.4
OBJECT IDENTIFIER    

biboipold 1.3.6.1.4.1.272.4.5
OBJECT IDENTIFIER    

ipAllowTable 1.3.6.1.4.1.272.4.5.1
The ipAllowTable defines all allowed IP packets. Each entry describes a subset of IP Packets, which are allowed to be processed. The overall set of allowed IP packets is the union of all subsets that are described in this table. If at least one entry is defined in the ipAllowTable, only IP datagrams which are allowed by the ipAllowTable are processed by the BRICK. All other packets are refused. Please note that the ipDenyTable overwrites the ipAllowTable. IP datagrams specified in the ipDenyTable are always refused, even if they are allowed by the ipAllowTable. Creating entries: Entries are created by setting the ipAllowProtocolMode and ipAllowSrcIfIndexMode objects in one operation (on one command line). Deleting entries: Entries are deleted by setting the ipAllowProtocolMode object to 'delete'.
OBJECT-TYPE    
  SEQUENCE OF  
    IpAllowEntry

ipAllowEntry 1.3.6.1.4.1.272.4.5.1.1
Tok_String
OBJECT-TYPE    
  IpAllowEntry  

ipAllowProtocolMode 1.3.6.1.4.1.272.4.5.1.1.1
Specifies whether or not the protocol field of the IP datagram header should be used to determine if the datagram belongs to the subset of the entry. dont-verify(1) = don't check the protocol field; verify(2) = check the protocol field; delete(3) = delete the entry from the table
OBJECT-TYPE    
  INTEGER dont-verify(1), verify(2), delete(3)  

ipAllowProtocol 1.3.6.1.4.1.272.4.5.1.1.2
If the ipAllowProtocolMode is set to 'verify', this object specifies the protocol of IP datagrams belonging to the subset described by this entry. Otherwise, this field has no meaning.
OBJECT-TYPE    
  INTEGER icmp(1), ggp(3), tcp(6), egp(8), pup(12), udp(17), hmp(20), xns-idp(22), rdp(27), ospf(89)  

ipAllowSrcIfIndexMode 1.3.6.1.4.1.272.4.5.1.1.3
This object specifies whether or not the originating interface of the IP datagram should be checked to determine whether a datagram belongs to the subset.
OBJECT-TYPE    
  INTEGER dont-verify(1), verify(2)  

ipAllowSrcIfIndex 1.3.6.1.4.1.272.4.5.1.1.4
If ipAllowSrcIfIndexMode is set to 'verify', then this object specifies the ifIndex of the datagrams belonging to the subset defined by this entry.
OBJECT-TYPE    
  INTEGER  

ipAllowSrcAddr 1.3.6.1.4.1.272.4.5.1.1.5
This object specifies the set of IP addresses of datagrams that belong to the subset defined by this entry.
OBJECT-TYPE    
  IpAddress  

ipAllowSrcMask 1.3.6.1.4.1.272.4.5.1.1.6
This object specifies the set of IP addresses of data grams that belong to the subset defined by this entry.
OBJECT-TYPE    
  IpAddress  

ipAllowSrcPortMode 1.3.6.1.4.1.272.4.5.1.1.7
This object specifies the range of source port numbers of IP datagrams belonging to the subset. ignore(1) = All ports: 0 ..65535; specific(2) = a specific port number i.e. ipAllowScrPort; clients(3) = clientports: 1024 .. 4999, 32768..65535; server(4) = server ports: 0..1023 5000..32767; unpriv(5) = unprivileged ports: 1024..65535; priv(6) = privileged ports: 0..1023
OBJECT-TYPE    
  INTEGER ignore(1), specific(2), clients(3), server(4), unpriv(5), priv(6)  

ipAllowSrcPort 1.3.6.1.4.1.272.4.5.1.1.8
If ipAllowSrcPortMode is set to 'specific', then this object contains a specific port number. Otherwise this object is not used.
OBJECT-TYPE    
  INTEGER 0..65535  

ipAllowDstAddr 1.3.6.1.4.1.272.4.5.1.1.9
This object specifies the set of IP addresses of datagrams that belong to the subset defined by this entry.
OBJECT-TYPE    
  IpAddress  

ipAllowDstMask 1.3.6.1.4.1.272.4.5.1.1.10
This object specifies the set of IP addresses of datagrams that belong to the subset defined by this entry.
OBJECT-TYPE    
  IpAddress  

ipAllowDstPortMode 1.3.6.1.4.1.272.4.5.1.1.11
This object specifies the range of destination port numbers of IP datagrams belonging to the subset. ignore(1) = All ports: 0..65535; specific(2) = a specific port number i.e. ipAllowDstPort; clients(3) = client ports: 1024..4999, 32768..65535; server(4) = server ports. 0..1023, 5000..32767; unpriv(5) = unprivileged ports: 1024..65535; priv(6) = privileged ports: 0..1023
OBJECT-TYPE    
  INTEGER ignore(1), specific(2), clients(3), server(4), unpriv(5), priv(6)  

ipAllowDstPort 1.3.6.1.4.1.272.4.5.1.1.12
If ipAllowDstPortMode is set to 'specific', then this object contains a specific port number. Otherwise this object is not used.
OBJECT-TYPE    
  INTEGER 0..65535  

ipAllowSrcPortRange 1.3.6.1.4.1.272.4.5.1.1.13
This object can be used together with ipAllowSrcPort to apply the rule to a port range, instead of a single port. When ipAllowSrcPortMode is set to specific and this object is not set to -1, than the rule applies to the Range of ports from ipAllowSrcPort to ipAllowSrcPortRange. When this object is set to -1, the rule applies only to port ipAllowSrcPort.
OBJECT-TYPE    
  INTEGER -1..65535  

ipAllowDstPortRange 1.3.6.1.4.1.272.4.5.1.1.14
This object can be used together with ipAllowDstPort to apply the rule to a port range, instead of a single port. When ipAllowDstPortMode is set to specific and this object is not set to -1, than the rule applies to the Range of ports from ipAllowDstPort to ipAllowDstPortRange. When this object is set to -1, the rule applies only to port ipAllowDstPort.
OBJECT-TYPE    
  INTEGER -1..65535  

ipDenyTable 1.3.6.1.4.1.272.4.5.2
The ipDenyTable defines all IP packets to be denied. Each entry describes a subset of IP Packets, which are denied processing. The overall set of denied IP packets is the union of all subsets that are described in this table. The ipDenyTable overwrites the ipAllowTable. IP datagrams specified in the ipDenyTable are always refused, even if they are allowed by the ipAllowTable. Creating entries: Entries are created by setting the ipDenyProtocolMode and ipDenySrcIfIndexMode objects in one operation (i.e. on one command line). Deleting entries: Entries are deleted by setting the ipDenyProtocolMode object to 'delete'.
OBJECT-TYPE    
  SEQUENCE OF  
    IpDenyEntry

ipDenyEntry 1.3.6.1.4.1.272.4.5.2.1
Tok_String
OBJECT-TYPE    
  IpDenyEntry  

ipDenyProtocolMode 1.3.6.1.4.1.272.4.5.2.1.1
Specifies whether or not the protocol field of the IP datagram header should be used to determine if the datagram belongs to the subset of this entry. dont-verify(1) = don't check the protocol field; verify(2) = check the protocol field; delete(3) = delete the entry from the table
OBJECT-TYPE    
  INTEGER dont-verify(1), verify(2), delete(3)  

ipDenyProtocol 1.3.6.1.4.1.272.4.5.2.1.2
If the ipDenyProtocolMode is set to 'verify', this object specifies the protocol of IP datagrams belonging to the subset described by this entry. Otherwise, this field has no meaning.
OBJECT-TYPE    
  INTEGER icmp(1), ggp(3), tcp(6), egp(8), pup(12), udp(17), hmp(20), xns-idp(22), rdp(27), ospf(89)  

ipDenySrcIfIndexMode 1.3.6.1.4.1.272.4.5.2.1.3
This object specifies whether or not the originating interface of the IP datagram should be checked to determine whether a datagram belongs to this subset.
OBJECT-TYPE    
  INTEGER dont-verify(1), verify(2)  

ipDenySrcIfIndex 1.3.6.1.4.1.272.4.5.2.1.4
If ipDenySrcIfIndexMode is set to 'verify', then this object specifies the ifIndex of the datagrams belonging to the subset defined by this entry.
OBJECT-TYPE    
  INTEGER  

ipDenySrcAddr 1.3.6.1.4.1.272.4.5.2.1.5
If ipDenySrcIfIndexMode is set to 'verify', then this object specifies the ifIndex of the datagrams belonging to the subset defined by this entry.
OBJECT-TYPE    
  IpAddress  

ipDenySrcMask 1.3.6.1.4.1.272.4.5.2.1.6
This object specifies the set of IP addresses of datagrams that belong to the subset defined by this entry.
OBJECT-TYPE    
  IpAddress  

ipDenySrcPortMode 1.3.6.1.4.1.272.4.5.2.1.7
This object specifies the range of source port numbers of IP datagrams belonging to this subset. ignore(1) = All ports: 0..65535; specific(2) = a specific port number i.e. ipAllowDstPort; clients(3) = client ports: 1024..4999, 32768..65535; server(4) = server ports. 0..1023, 5000..32767; unpriv(5) = unprivileged ports: 1024..65535; priv(6) = privileged ports: 0..1023
OBJECT-TYPE    
  INTEGER ignore(1), specific(2), clients(3), server(4), unpriv(5), priv(6)  

ipDenySrcPort 1.3.6.1.4.1.272.4.5.2.1.8
If ipDenySrcPortMode is set to 'specific', then this object contains a specific port number. Otherwise this object is not used.
OBJECT-TYPE    
  INTEGER 0..65535  

ipDenyDstAddr 1.3.6.1.4.1.272.4.5.2.1.9
This object specifies the set of IP addresses of datagrams that belong to the subset defined by this entry.
OBJECT-TYPE    
  IpAddress  

ipDenyDstMask 1.3.6.1.4.1.272.4.5.2.1.10
This object specifies the set of IP addresses of datagrams that belong to the subset defined by this entry.
OBJECT-TYPE    
  IpAddress  

ipDenyDstPortMode 1.3.6.1.4.1.272.4.5.2.1.11
This object specifies the range of destination port numbers of IP datagrams belonging to the subset. ignore(1) = All ports: 0..65535; specific(2) = a specific port number i.e. ipAllowDstPort; clients(3) = client ports: 1024..4999, 32768..65535; server(4) = server ports. 0..1023, 5000..32767; unpriv(5) = unprivileged ports: 1024..65535; priv(6) = privileged ports: 0..1023
OBJECT-TYPE    
  INTEGER ignore(1), specific(2), clients(3), server(4), unpriv(5), priv(6)  

ipDenyDstPort 1.3.6.1.4.1.272.4.5.2.1.12
If ipDenyDstPortMode is set to 'specific', then this object contains a specific port number. Otherwise this object is not used.
OBJECT-TYPE    
  INTEGER 0..65535  

ipDenySrcPortRange 1.3.6.1.4.1.272.4.5.2.1.13
This object can be used together with ipDenySrcPort to apply the rule to a port range, instead of a single port. When ipDenySrcPortMode is set to specific and this object is not set to -1, than the rule applies to the Range of ports from ipDenySrcPort to ipDenySrcPortRange. When this object is set to -1, the rule applies only to port ipDenySrcPort.
OBJECT-TYPE    
  INTEGER -1..65535  

ipDenyDstPortRange 1.3.6.1.4.1.272.4.5.2.1.14
This object can be used together with ipDenyDstPort to apply the rule to a port range, instead of a single port. When ipDenyDstPortMode is set to specific and this object is not set to -1, than the rule applies to the Range of ports from ipDenyDstPort to ipDenyDstPortRange. When this object is set to -1, the rule applies only to port ipDenyDstPort.
OBJECT-TYPE    
  INTEGER -1..65535