-- extracted from draft-glenn-id-notification-mib-04.txt -- at Sat Nov 25 16:04:48 2000 INTRUSION-DETECTION-ALERT-MIB DEFINITIONS ::= BEGIN IMPORTS MODULE-IDENTITY, Counter32, Gauge32, OBJECT-TYPE, OBJECT-IDENTITY, IpAddress, mib-2 FROM SNMPv2-SMI DateAndTime, TimeStamp FROM SNMPv2-TC SnmpAdminString FROM SNMP-FRAMEWORK-MIB MODULE-COMPLIANCE, OBJECT-GROUP FROM SNMPv2-CONF URLString FROM NETWORK-SERVICES-MIB; idMIB MODULE-IDENTITY LAST-UPDATED "200011200000Z" -- 20th November 2000 ORGANIZATION "IETF Intrusion Detection Message Exchange Format Working Group" CONTACT-INFO " Glenn Mansfield Postal: Cyber Solutions Inc. 6-6-3, Minami Yoshinari Aoba-ku, Sendai, Japan 989-3204. Tel: +81-22-303-4012 Fax: +81-22-303-4015 E-mail: glenn@cysols.com Working Group E-mail: idwg-public@zurich.ibm.com To subscribe: idwg-public-request@zurich.ibm.com" DESCRIPTION " The MIB for Intrusion Detection Messages." REVISION "200007250000Z" -- 25th July 2000 DESCRIPTION "First draft of the idMIB" REVISION "200011160000Z" -- 16th November 2000 DESCRIPTION "Revised to reflect the structure of the objects in the XML-DTD. Syntactic nits removed." REVISION "200011200000Z" -- 20th November 2000 DESCRIPTION "Syntactic nits removed." ::= { mib-2 1 } -- to be assigned by IANA idAlertObjects OBJECT-IDENTITY STATUS current DESCRIPTION " This is the base object for the objects used in the alert notifications." ::= {idMIB 1} -- idAlertTable: The Table of Alerts. Each row represents an Alert. -- AlertID is the key to the table idAlertTable OBJECT-TYPE SYNTAX SEQUENCE OF IdAlertEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION " Each row of this table contains information about an alert indexed by idAlertID." ::= { idAlertObjects 1 } idAlertEntry OBJECT-TYPE SYNTAX IdAlertEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION " Entry containing information pertaining to an alert." INDEX { idAlertID} ::= { idAlertTable 1 } IdAlertEntry ::= SEQUENCE { idAlertVersion INTEGER, idAlertID INTEGER, idAlertImpact INTEGER } idAlertVersion OBJECT-TYPE SYNTAX SnmpAdminString MAX-ACCESS read-only STATUS current DESCRIPTION " The version of the class hierarchy used in defining the alert." ::= {idAlertEntry 1} idAlertID OBJECT-TYPE SYNTAX INTEGER (1..2147483647) MAX-ACCESS read-only STATUS current DESCRIPTION " The AlertID uniquely identifies each alert generated by an analyzer." ::= {idAlertEntry 2} -- will be enumerated to represent the allowed types idAlertImpact OBJECT-TYPE SYNTAX INTEGER MAX-ACCESS read-only STATUS current DESCRIPTION "An indication of the impact of the (potential) impact of the event on the system." ::= {idAlertEntry 3} idTimeTable OBJECT-TYPE SYNTAX SEQUENCE OF IdTimeEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION " Each row of this table contains information about the time of an alert indexed by idAlertID." ::= { idAlertObjects 2 } idTimeEntry OBJECT-TYPE SYNTAX IdTimeEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION " Entry containing information pertaining to the time an alert was generated." INDEX { idAlertID} ::= { idTimeTable 1 } IdTimeEntry ::= SEQUENCE { idTimeOffset SnmpAdminString, idTimeNtpStamp SnmpAdminString, idTimeDate SnmpAdminString, idTimeTime SnmpAdminString } idTimeOffset OBJECT-TYPE SYNTAX SnmpAdminString MAX-ACCESS read-only STATUS current DESCRIPTION " Specifies the offset from Coordinated Universal Time UTC, formerly referred to as Greenwich Mean Time that the and