NETSCREEN-POLICY-MIB

File: NETSCREEN-POLICY-MIB.mib (17849 bytes)

Imported modules

NETSCREEN-SMI SNMPv2-SMI SNMPv2-TC

Imported symbols

netscreenPolicy Counter32 Integer32
MODULE-IDENTITY OBJECT-TYPE DisplayString

Defined Types

NsPlyEntry  
SEQUENCE    
  nsPlyId Integer32
  nsPlyVsys Integer32
  nsPlySrcZone DisplayString
  nsPlyDstZone DisplayString
  nsPlySrcAddr DisplayString
  nsPlyDstAddr DisplayString
  nsPlyService INTEGER
  nsPlyAction INTEGER
  nsPlyNat INTEGER
  nsPlyFixPort INTEGER
  nsPlyDipId Integer32
  nsPlyVpnTunnel DisplayString
  nsPlyL2tpTunnel DisplayString
  nsPlyAuth INTEGER
  nsPlyLogEnable INTEGER
  nsPlyCountEnable INTEGER
  nsPlyAlarmBPS Integer32
  nsPlyAlarmBPM Integer32
  nsPlySchedule DisplayString
  nsPlyTrafficShapeEnable INTEGER
  nsPlyTrafficPriority INTEGER
  nsPlyDSEnable INTEGER
  nsPlyActiveStatus INTEGER
  nsPlyName DisplayString
  nsPlyServiceName DisplayString

NsPlyMonEntry  
SEQUENCE    
  nsPlyMonId Integer32
  nsPlyMonVsys Integer32
  nsPlyMonPackPerSec Integer32
  nsPlyMonPackPerMin Integer32
  nsPlyMonTotalPacket Counter32
  nsPlyMonBytePerSec Integer32
  nsPlyMonBytePerMin Integer32
  nsPlyMonTotalByte Counter32
  nsPlyMonSessionPerSec Integer32
  nsPlyMonSessionPerMin Integer32
  nsPlyMonTotalSession Counter32

Defined Values

netscreenPolicyMibModule 1.3.6.1.4.1.3224.10.0
This module defines NetScreen private MIBs for Policy Monitoring
MODULE-IDENTITY    

nsPlyTable 1.3.6.1.4.1.3224.10.1
A firewall provides a network boundary with a single point of entry and exit-a choke point.You can screen and direct all that traffic through the implementation of a set of access policies. Access policies allow you to permit, deny, encrypt, authenticate, prioritize, schedule, and monitor the traffic attemption to cross your firewall. This table collects all the policy configuration information existing in NetScreen Device.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    NsPlyEntry

nsPlyEntry 1.3.6.1.4.1.3224.10.1.1
Each entry in the nsPlyTable holds a set of configuration parameters associatied with an instance of policy.
Status: current Access: not-accessible
OBJECT-TYPE    
  NsPlyEntry  

nsPlyId 1.3.6.1.4.1.3224.10.1.1.1
Each policy is identified by a unique policy ID.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32 0..2147483647  

nsPlyVsys 1.3.6.1.4.1.3224.10.1.1.2
Vitural system's name this polic entry belongs to.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32 0..2147483647  

nsPlySrcZone 1.3.6.1.4.1.3224.10.1.1.3
Traffic through a firewall means that traffic flows from one security zone to another. This object describes the source zone name traffic flow passes.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString Size(0..32)  

nsPlyDstZone 1.3.6.1.4.1.3224.10.1.1.4
Traffic through a firewall means that traffic flows from one security zone to another. This object describes the destination zone name traffic flow passes.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString Size(0..32)  

nsPlySrcAddr 1.3.6.1.4.1.3224.10.1.1.5
Addresses are objects that identify network devices such as hosts and networks by their location in relation to the firwall on which security zone.To create an access policy for specific addresses, you must first create entries for the relevant hosts and networks in the address book.Source IP address indicates the address in source zone, 0.0.0.0 means any address.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString Size(0..32)  

nsPlyDstAddr 1.3.6.1.4.1.3224.10.1.1.6
Addresses are objects that identify network devices such as hosts and networks by their location in relation to the firwall-on which security zone.To create an access policy for specific addresses, you must first create entries for the relevant hosts and networks in the address book.Source IP address indicates the address in destination zone, 0.0.0.0 means any address.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString Size(0..32)  

nsPlyService 1.3.6.1.4.1.3224.10.1.1.7
Sevices are objects that identify application protocols using layer 4 information such as standard and accepted TCP and UDP port numbers for application services like Telnet, FTP, SMTP and HTTP. This object indicates all the traffic service type this policy allows. 'Any' means all this policy allows all service go through. 'Other' could be a configured service or not in the list. See nsPlyServiceName for service name.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER any(0), aol(1), bgp(2), dpcp-relay(3), dns(4), finger(5), ftp(6), ftp-get(7), ftp-put(8), gopher(9), h323(10), http(11), https(12), icmp-info(13), icmp-timestamp(14), ike(15), imap(16), internet-locator-service(17), irc(18), l2tp(19), ldap(20), mail(21), netmeeting(22), nfs(23), nntp(24), ns-global(25), ns-global-pro(26), ntp(27), ospf(28), pc-anywhere(29), ping(30), pop3(31), pptp(32), real-media(33), rip(34), rlogin(35), snmp(36), ssh(37), syslog(38), talk(39), tcp-any(40), telnet(41), tftp(42), traceroute(43), udp-any(44), uucp(45), vdo-live(46), wais(47), winframe(48), x-windows(49), other(50)  

nsPlyAction 1.3.6.1.4.1.3224.10.1.1.8
Actions objects that describe what the firewall does to the traffic it receives. Permit allows the packet to pass the firewall. Deny blocks the packet from traversing the firewall. Tunnel encapsulates outgoing IP packets and decapsulates incoming IP packets.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER deny(0), permit(1), tunnel(2)  

nsPlyNat 1.3.6.1.4.1.3224.10.1.1.9
You can apply NAT at the interface level or at the policy level. With policy-based NAT, you can translate the source address on either incoming or outging network and VPN traffic. This object indicates if this is a policy-based NAT.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsPlyFixPort 1.3.6.1.4.1.3224.10.1.1.10
When in policy-based NAT, the new secure address can come from either a Dynamic IP or from a Mapped IP. This object indicates if poliy-based NAT uses fix port when working on NAT mode.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER no(0), yes(1)  

nsPlyDipId 1.3.6.1.4.1.3224.10.1.1.11
This object indicates the Dynamic ID chosen for NAT policy.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsPlyVpnTunnel 1.3.6.1.4.1.3224.10.1.1.12
VPN tunnel this access policy applies to.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString Size(0..32)  

nsPlyL2tpTunnel 1.3.6.1.4.1.3224.10.1.1.13
L2TP tunnel this access policy applies to.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString Size(0..32)  

nsPlyAuth 1.3.6.1.4.1.3224.10.1.1.14
This object indicates the selecting this option requires the user at the source address to authenticate his/her identiry by supplying a user name and password before traffic is allowed to graverw the firewall or enter the VPN tunnel.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsPlyLogEnable 1.3.6.1.4.1.3224.10.1.1.15
When you enable logging in an access policy, the NetScreen device logs all connections to which that paticular access policy applies.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsPlyCountEnable 1.3.6.1.4.1.3224.10.1.1.16
When you enable counting in an access plicy, the NetScreen device counts the total number of bytes of traffic to which this access policy applies and records the informaiton in historical graphs.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsPlyAlarmBPS 1.3.6.1.4.1.3224.10.1.1.17
User can set a threshold that triggers an alarm when the traffic permitted by the access policy exceeds a specified number of bytes per second.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsPlyAlarmBPM 1.3.6.1.4.1.3224.10.1.1.18
User can set a threshold that triggers an alarm when the traffic permitted by the access policy exceeds a specified number of bytes per Minute.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsPlySchedule 1.3.6.1.4.1.3224.10.1.1.19
By associating a schedule to an access policy, you can determine when the access policy is in effect.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString Size(0..32)  

nsPlyTrafficShapeEnable 1.3.6.1.4.1.3224.10.1.1.20
User can set parameters for the control and shaping of traffic for each access policy.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER off(0), on(1)  

nsPlyTrafficPriority 1.3.6.1.4.1.3224.10.1.1.21
Traffic priority for this policy.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER high(0), priority2nd(1), priority3rd(2), priority4th(3), priority5th(4), priority6th(5), priority7th(6), priorityLow(7)  

nsPlyDSEnable 1.3.6.1.4.1.3224.10.1.1.22
Differentiated Services is a system for tagging traffic at a position within a hierarchy of priority.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsPlyActiveStatus 1.3.6.1.4.1.3224.10.1.1.23
Show the status of one policy entry.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER inactive(0), inuse(1), hidden(2)  

nsPlyName 1.3.6.1.4.1.3224.10.1.1.24
policy name (optional)
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString Size(0..32)  

nsPlyServiceName 1.3.6.1.4.1.3224.10.1.1.25
Sevices name that identify application protocols using layer 4 information such as standard and accepted TCP and UDP port numbers for application services like Telnet, FTP, SMTP and HTTP. This object indicates all the traffic service type this policy allows. 'Any' means all this policy allows all service go through.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

nsPlyMonTable 1.3.6.1.4.1.3224.10.2
traffic information for the policy-based traffic.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    NsPlyMonEntry

nsPlyMonEntry 1.3.6.1.4.1.3224.10.2.1
An entry holds a set of traffic counters of a specific policy.
Status: current Access: not-accessible
OBJECT-TYPE    
  NsPlyMonEntry  

nsPlyMonId 1.3.6.1.4.1.3224.10.2.1.1
Policy Id, also used as index in this table
Status: current Access: read-only
OBJECT-TYPE    
  Integer32 0..2147483647  

nsPlyMonVsys 1.3.6.1.4.1.3224.10.2.1.2
vsys this policy belongs to
Status: current Access: read-only
OBJECT-TYPE    
  Integer32 0..2147483647  

nsPlyMonPackPerSec 1.3.6.1.4.1.3224.10.2.1.3
Packets go through this policy per second
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsPlyMonPackPerMin 1.3.6.1.4.1.3224.10.2.1.4
Packets go through this policy per minute
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsPlyMonTotalPacket 1.3.6.1.4.1.3224.10.2.1.5
total packets go through this policy
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsPlyMonBytePerSec 1.3.6.1.4.1.3224.10.2.1.6
Bytes go through this policy per second
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsPlyMonBytePerMin 1.3.6.1.4.1.3224.10.2.1.7
Bytes go through this policy per minute
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsPlyMonTotalByte 1.3.6.1.4.1.3224.10.2.1.8
Total bytes go through this policy
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsPlyMonSessionPerSec 1.3.6.1.4.1.3224.10.2.1.9
Sessions go through this policy per second
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsPlyMonSessionPerMin 1.3.6.1.4.1.3224.10.2.1.10
Sessions go through this policy per minute
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsPlyMonTotalSession 1.3.6.1.4.1.3224.10.2.1.11
Total Sessions go through this policy
Status: current Access: read-only
OBJECT-TYPE    
  Counter32