ContentInspectionEvent |
|
Content inspection events, these events report that
something was found in the application payload. The
details entry in the event can report on what was
found (eg., virus, company private info., etc), what it
was found in (eg., html, win32 executable, e-mail), and
what was done with it (eg., the quarantine location).
other : A content inspection event. Used to indicate
that some content inspection has occurred that
is not covered by the other content inspection
enumerations.
okay : The check of the content was okay, nothing 'bad'
was found.
error : There was an error while checking the content.
found : Something was found that the content inspection
engine has determined merits attention.
clean : The content inspection engine has found something
that violates the security policy and has
neutralized the content in the data flow.
reject : The content inspection engine has found something
that violates the security policy and has discarded
the content.
saved : The content inspection engine has found something
that violates the security policy and has stored
it in a quarentine storage area. |
TEXTUAL-CONVENTION |
|
|
|
|
INTEGER |
other(1), okay(2), error(3), found(4), clean(5), reject(6), saved(7) |
|
HwFwBasicEventsEntry |
|
SEQUENCE |
|
|
|
|
hwFwBasicEventIndex |
Unsigned32 |
|
|
hwFwBasicEventTime |
SnmpAdminString |
|
|
hwFwBasicSecurityEventType |
SecurityEvent |
|
|
hwFwBasicEventDescription |
SnmpAdminString |
|
|
hwFwBasicEventDetailsTableRow |
Unsigned32 |
|
HwFwNetEventsEntry |
|
SEQUENCE |
|
|
|
|
hwFwNetEventIndex |
Unsigned32 |
|
|
hwFwNetEventInterface |
InterfaceIndexOrZero |
|
|
hwFwNetEventSrcVrfName |
DisplayString |
|
|
hwFwNetEventSrcIpAddress |
IpAddress |
|
|
hwFwNetEventInsideSrcIpAddress |
IpAddress |
|
|
hwFwNetEventDstVrfName |
DisplayString |
|
|
hwFwNetEventDstIpAddress |
IpAddress |
|
|
hwFwNetEventInsideDstIpAddress |
IpAddress |
|
|
hwFwNetEventSrcIpPort |
Integer32 |
|
|
hwFwNetEventInsideSrcIpPort |
Integer32 |
|
|
hwFwNetEventDstIpPort |
Integer32 |
|
|
hwFwNetEventInsideDstIpPort |
Integer32 |
|
|
hwFwNetEventService |
Services |
|
|
hwFwNetEventServiceInformation |
SnmpAdminString |
|
|
hwFwNetEventIdentity |
SnmpAdminString |
|
|
hwFwNetEventDescription |
SnmpAdminString |
|
HwFwConnectionStatEntry |
|
SEQUENCE |
|
|
|
|
hwFwConnectionStatService |
Services |
|
|
hwFwConnectionStatType |
ConnectionStat |
|
|
hwFwConnectionStatDescription |
SnmpAdminString |
|
|
hwFwConnectionStatCount |
Counter32 |
|
HwFwInterZoneEntry |
|
SEQUENCE |
|
|
|
|
hwFwInterZoneIndex |
Unsigned32 |
|
|
hwFwInterZoneName |
OCTET STRING |
|
|
hwFwInterZoneEnable |
TruthValue |
|
|
hwFwInterZonePktFltInDefaultRule |
PktFltDefaultRule |
|
|
hwFwInterZonePktFltInAcl |
Unsigned32 |
|
|
hwFwInterZonePktFltInMacAcl |
Unsigned32 |
|
|
hwFwInterZonePktFltOutDefaultRule |
PktFltDefaultRule |
|
|
hwFwInterZonePktFltOutAcl |
Unsigned32 |
|
|
hwFwInterZonePktFltOutMacAcl |
Unsigned32 |
|
|
hwFwInterZoneAspf |
AspfProto |
|
|
hwFwInterZoneSessLogInAcl |
Unsigned32 |
|
|
hwFwInterZoneSessLogOutAcl |
Unsigned32 |
|
hwFwBasicEventsEntry |
1.3.6.1.4.1.2011.5.25.222.1.1.2.3.2.1 |
An entry in the table, containing general information
about an event. This table will always be sparse, i.e.,
each row will instanciate only a subet of the columnar
objects. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
HwFwBasicEventsEntry |
|
|
hwFwNetEventsEntry |
1.3.6.1.4.1.2011.5.25.222.1.1.2.4.1 |
An entry in the table, containing detailed information
about an event. Note that this table may be sparse.
If Network Address Translation is not enabled
hwFwNetEventInsideSrcIpAddress and
hwFwNetEventInsideDstIpAddress will not be instantiated
in the row. If Port Address Translation is not enabled
hwFwNetEventInsideSrcIpPort and
hwFwNetEventInsideDstIpPort will not be instantiated
in the row. Entries are added to this table at the
same time that events are added to the hwFwBasicEventsTable.
These two tables may be configured to be different
sizes so there may not be a one-to-one correspondence
between rows in the two tables. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
HwFwNetEventsEntry |
|
|
hwFwConnectionStatEntry |
1.3.6.1.4.1.2011.5.25.222.1.2.2.2.1 |
An entry in the table, containing information about a
firewall statistic. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
HwFwConnectionStatEntry |
|
|
hwFwZoneEntry |
1.3.6.1.4.1.2011.5.25.222.1.2.3.2.1 |
An entry in the table, containing information about a
firewall zone. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
HwFwZoneEntry |
|
|
hwFwInterZoneEntry |
1.3.6.1.4.1.2011.5.25.222.1.2.4.2.1 |
An entry in the table, containing information about a
firewall Interzone. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
HwFwInterZoneEntry |
|
|
hwFirewallMIBLogGroup |
1.3.6.1.4.1.2011.5.25.222.3.2.7 |
This is the firewall log group. |
Status: current |
Access: read-only |
OBJECT-GROUP |
|
|
|