CIE1000-PSEC-MIB

File: CIE1000-PSEC-MIB.mib (19896 bytes)

Imported modules

SNMPv2-CONF SNMPv2-SMI SNMPv2-TC
CISCO-IE1000-MIB CIE1000-TC

Imported symbols

NOTIFICATION-GROUP MODULE-COMPLIANCE OBJECT-GROUP
NOTIFICATION-TYPE MODULE-IDENTITY OBJECT-TYPE
TEXTUAL-CONVENTION cie1000SwitchMgmt CIE1000DisplayString
CIE1000InterfaceIndex CIE1000Unsigned16 Unsigned32
MacAddress TruthValue

Defined Types

CIE1000PsecLimitActionType  
This enumeration defines the Action type in psec function.
TEXTUAL-CONVENTION    
  INTEGER none(0), trap(1), shutdown(2), trapShutdown(3)  

CIE1000PsecStateType  
This enumeration defines the state of Psec config.
TEXTUAL-CONVENTION    
  INTEGER forwarding(0), blocked(1)  

CIE1000PsecConfigPortEntry  
SEQUENCE    
  cie1000PsecConfigPortIfIndex CIE1000InterfaceIndex
  cie1000PsecConfigPortEnabled TruthValue
  cie1000PsecConfigPortLimit Unsigned32
  cie1000PsecConfigPortAction CIE1000PsecLimitActionType

CIE1000PsecStatusPortEntry  
SEQUENCE    
  cie1000PsecStatusPortIfIndex CIE1000InterfaceIndex
  cie1000PsecStatusPortUsers Unsigned32
  cie1000PsecStatusPortLimitReached TruthValue
  cie1000PsecStatusPortShutdown TruthValue
  cie1000PsecStatusPortMacCount Unsigned32

CIE1000PsecStatusPortTrapsEntry  
SEQUENCE    
  cie1000PsecStatusPortTrapsIfIndex CIE1000InterfaceIndex
  cie1000PsecStatusPortTrapsUsers Unsigned32
  cie1000PsecStatusPortTrapsLimitReached TruthValue
  cie1000PsecStatusPortTrapsShutdown TruthValue
  cie1000PsecStatusPortTrapsMacCount Unsigned32

CIE1000PsecControlPortReopenEntry  
SEQUENCE    
  cie1000PsecControlPortReopenIfIndex CIE1000InterfaceIndex
  cie1000PsecControlPortReopenPortReOpen TruthValue

CIE1000PsecStatisticsPortEntry  
SEQUENCE    
  cie1000PsecStatisticsPortIfIndex CIE1000InterfaceIndex
  cie1000PsecStatisticsPortAgeOrHold CIE1000DisplayString
  cie1000PsecStatisticsPortCreationTime CIE1000DisplayString
  cie1000PsecStatisticsPortState CIE1000PsecStateType
  cie1000PsecStatisticsPortMacId MacAddress
  cie1000PsecStatisticsPortVlanId CIE1000Unsigned16

Defined Values

cie1000PsecMib 1.3.6.1.4.1.9.9.832.1.66
This is a private version of the Port Security MIB
MODULE-IDENTITY    

cie1000PsecMibObjects 1.3.6.1.4.1.9.9.832.1.66.1
OBJECT IDENTIFIER    

cie1000PsecConfig 1.3.6.1.4.1.9.9.832.1.66.1.2
OBJECT IDENTIFIER    

cie1000PsecConfigGlobals 1.3.6.1.4.1.9.9.832.1.66.1.2.1
OBJECT IDENTIFIER    

cie1000PsecConfigGlobalsEnabled 1.3.6.1.4.1.9.9.832.1.66.1.2.1.1
Globally enable/disable aging of secured entries. This doesn't affect aging of addresses secured by other modules.
Status: current Access: read-write
OBJECT-TYPE    
  TruthValue  

cie1000PsecConfigGlobalsEnableAging 1.3.6.1.4.1.9.9.832.1.66.1.2.1.2
If aging is globally enabled, this is the aging period in seconds. Valid range is [10; 10000000] seconds(max is around 115 days).
Status: current Access: read-write
OBJECT-TYPE    
  TruthValue  

cie1000PsecConfigGlobalsAgingPeriodSecs 1.3.6.1.4.1.9.9.832.1.66.1.2.1.3
If aging is globally enabled, this is the aging period in seconds. Valid range is [10; 10000000] seconds(max is around 115 days).
Status: current Access: read-write
OBJECT-TYPE    
  Unsigned32  

cie1000PsecConfigPortTable 1.3.6.1.4.1.9.9.832.1.66.1.2.2
This is a table of port configuration per session
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    CIE1000PsecConfigPortEntry

cie1000PsecConfigPortEntry 1.3.6.1.4.1.9.9.832.1.66.1.2.2.1
Each session has a set of parameters
Status: current Access: not-accessible
OBJECT-TYPE    
  CIE1000PsecConfigPortEntry  

cie1000PsecConfigPortIfIndex 1.3.6.1.4.1.9.9.832.1.66.1.2.2.1.1
Logical interface number of the physical port.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  CIE1000InterfaceIndex  

cie1000PsecConfigPortEnabled 1.3.6.1.4.1.9.9.832.1.66.1.2.2.1.2
Controls whether Port Security Limit Control is enabled for this port.
Status: current Access: read-write
OBJECT-TYPE    
  TruthValue  

cie1000PsecConfigPortLimit 1.3.6.1.4.1.9.9.832.1.66.1.2.2.1.3
Maximum number of MAC addresses allowed on this port.Valid values = [PSEC_LIMIT_MIN; PSEC_LIMIT_MAX].
Status: current Access: read-write
OBJECT-TYPE    
  Unsigned32  

cie1000PsecConfigPortAction 1.3.6.1.4.1.9.9.832.1.66.1.2.2.1.4
Action to take if number of MAC addresses exceeds the limit. NONE(0) Do nothing, except disallowing further clients. TRAP(1) Send an SNMP trap notification. SHUTDOWN(2) Shut-down the port. TRAP_AND_SHUTDOWN(3) Send an SNMP trap notification and shut-down the port.
Status: current Access: read-write
OBJECT-TYPE    
  CIE1000PsecLimitActionType  

cie1000PsecStatus 1.3.6.1.4.1.9.9.832.1.66.1.3
OBJECT IDENTIFIER    

cie1000PsecStatusPortTable 1.3.6.1.4.1.9.9.832.1.66.1.3.1
This is a table of port configuration per session
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    CIE1000PsecStatusPortEntry

cie1000PsecStatusPortEntry 1.3.6.1.4.1.9.9.832.1.66.1.3.1.1
Each session has a set of parameters
Status: current Access: not-accessible
OBJECT-TYPE    
  CIE1000PsecStatusPortEntry  

cie1000PsecStatusPortIfIndex 1.3.6.1.4.1.9.9.832.1.66.1.3.1.1.1
Logical interface number of the physical port.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  CIE1000InterfaceIndex  

cie1000PsecStatusPortUsers 1.3.6.1.4.1.9.9.832.1.66.1.3.1.1.2
Bit masks to indicate what users currently use port security on this port. Where bit 0 - port security limit, bit 1 - 802.1x, bit 2 - voice VLAN.
Status: current Access: read-only
OBJECT-TYPE    
  Unsigned32  

cie1000PsecStatusPortLimitReached 1.3.6.1.4.1.9.9.832.1.66.1.3.1.1.3
TRUE if the limit is reached on the port, FALSE otherwise.
Status: current Access: read-only
OBJECT-TYPE    
  TruthValue  

cie1000PsecStatusPortShutdown 1.3.6.1.4.1.9.9.832.1.66.1.3.1.1.4
TRUE if the port is shut down, FALSE otherwise.
Status: current Access: read-only
OBJECT-TYPE    
  TruthValue  

cie1000PsecStatusPortMacCount 1.3.6.1.4.1.9.9.832.1.66.1.3.1.1.5
Number of MAC addresses currently assigned to this port. The number does NOT include the number of entries that are held due to a H/W failure or S/W failure.
Status: current Access: read-only
OBJECT-TYPE    
  Unsigned32  

cie1000PsecStatusPortTrapsTable 1.3.6.1.4.1.9.9.832.1.66.1.3.2
This is a table of port configuration per session
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    CIE1000PsecStatusPortTrapsEntry

cie1000PsecStatusPortTrapsEntry 1.3.6.1.4.1.9.9.832.1.66.1.3.2.1
Each session has a set of parameters
Status: current Access: not-accessible
OBJECT-TYPE    
  CIE1000PsecStatusPortTrapsEntry  

cie1000PsecStatusPortTrapsIfIndex 1.3.6.1.4.1.9.9.832.1.66.1.3.2.1.1
Logical interface number of the physical port.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  CIE1000InterfaceIndex  

cie1000PsecStatusPortTrapsUsers 1.3.6.1.4.1.9.9.832.1.66.1.3.2.1.2
Bit masks to indicate what users currently use port security on this port. Where bit 0 - port security limit, bit 1 - 802.1x, bit 2 - voice VLAN.
Status: current Access: read-only
OBJECT-TYPE    
  Unsigned32  

cie1000PsecStatusPortTrapsLimitReached 1.3.6.1.4.1.9.9.832.1.66.1.3.2.1.3
TRUE if the limit is reached on the port, FALSE otherwise.
Status: current Access: read-only
OBJECT-TYPE    
  TruthValue  

cie1000PsecStatusPortTrapsShutdown 1.3.6.1.4.1.9.9.832.1.66.1.3.2.1.4
TRUE if the port is shut down, FALSE otherwise.
Status: current Access: read-only
OBJECT-TYPE    
  TruthValue  

cie1000PsecStatusPortTrapsMacCount 1.3.6.1.4.1.9.9.832.1.66.1.3.2.1.5
Number of MAC addresses currently assigned to this port. The number does NOT include the number of entries that are held due to a H/W failure or S/W failure.
Status: current Access: read-only
OBJECT-TYPE    
  Unsigned32  

cie1000PsecControl 1.3.6.1.4.1.9.9.832.1.66.1.4
OBJECT IDENTIFIER    

cie1000PsecControlPortReopenTable 1.3.6.1.4.1.9.9.832.1.66.1.4.1
This is a table to re-open port and move it to ready state, if it was being disabled after limit was reached.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    CIE1000PsecControlPortReopenEntry

cie1000PsecControlPortReopenEntry 1.3.6.1.4.1.9.9.832.1.66.1.4.1.1
Each session has a set of parameters
Status: current Access: not-accessible
OBJECT-TYPE    
  CIE1000PsecControlPortReopenEntry  

cie1000PsecControlPortReopenIfIndex 1.3.6.1.4.1.9.9.832.1.66.1.4.1.1.1
Logical interface number of the physical port.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  CIE1000InterfaceIndex  

cie1000PsecControlPortReopenPortReOpen 1.3.6.1.4.1.9.9.832.1.66.1.4.1.1.2
Set to true to reopen after it is shutdown
Status: current Access: read-write
OBJECT-TYPE    
  TruthValue  

cie1000PsecStatistics 1.3.6.1.4.1.9.9.832.1.66.1.5
OBJECT IDENTIFIER    

cie1000PsecStatisticsPortTable 1.3.6.1.4.1.9.9.832.1.66.1.5.1
This is a table of port statistics per session
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    CIE1000PsecStatisticsPortEntry

cie1000PsecStatisticsPortEntry 1.3.6.1.4.1.9.9.832.1.66.1.5.1.1
Each session has a set of parameters
Status: current Access: not-accessible
OBJECT-TYPE    
  CIE1000PsecStatisticsPortEntry  

cie1000PsecStatisticsPortIfIndex 1.3.6.1.4.1.9.9.832.1.66.1.5.1.1.1
Logical interface number of the physical port.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  CIE1000InterfaceIndex  

cie1000PsecStatisticsPortAgeOrHold 1.3.6.1.4.1.9.9.832.1.66.1.5.1.1.5
Down-counter used in block and ageing process.
Status: current Access: read-only
OBJECT-TYPE    
  CIE1000DisplayString Size(0..14)  

cie1000PsecStatisticsPortCreationTime 1.3.6.1.4.1.9.9.832.1.66.1.5.1.1.6
Time when this entry was orignally added.
Status: current Access: read-only
OBJECT-TYPE    
  CIE1000DisplayString Size(0..24)  

cie1000PsecStatisticsPortState 1.3.6.1.4.1.9.9.832.1.66.1.5.1.1.7
Current State of a entry, expected state can be either FORWARDING or BLOCKED.
Status: current Access: read-only
OBJECT-TYPE    
  CIE1000PsecStateType  

cie1000PsecStatisticsPortMacId 1.3.6.1.4.1.9.9.832.1.66.1.5.1.1.8
The MAC address that this is all about.
Status: current Access: read-only
OBJECT-TYPE    
  MacAddress  

cie1000PsecStatisticsPortVlanId 1.3.6.1.4.1.9.9.832.1.66.1.5.1.1.9
The VID that this is all about.
Status: current Access: read-only
OBJECT-TYPE    
  CIE1000Unsigned16  

cie1000PsecTrap 1.3.6.1.4.1.9.9.832.1.66.1.6
OBJECT IDENTIFIER    

cie1000PsecTrapLimitExceeded 1.3.6.1.4.1.9.9.832.1.66.1.6.1
This trap signals that a row has been added. The index(es) and value(s) of the row is included in the trap.
Status: current Access: read-only
NOTIFICATION-TYPE    

cie1000PsecTrapMod 1.3.6.1.4.1.9.9.832.1.66.1.6.2
This trap signals that one or more of the objects included in the trap has been updated.
Status: current Access: read-only
NOTIFICATION-TYPE    

cie1000PsecTrapLimitRecovered 1.3.6.1.4.1.9.9.832.1.66.1.6.3
This trap signals that a row has been deleted. The index(es) of the row is included in the trap.
Status: current Access: read-only
NOTIFICATION-TYPE    

cie1000PsecMibConformance 1.3.6.1.4.1.9.9.832.1.66.2
OBJECT IDENTIFIER    

cie1000PsecMibCompliances 1.3.6.1.4.1.9.9.832.1.66.2.1
OBJECT IDENTIFIER    

cie1000PsecMibGroups 1.3.6.1.4.1.9.9.832.1.66.2.2
OBJECT IDENTIFIER    

cie1000PsecConfigGlobalsInfoGroup 1.3.6.1.4.1.9.9.832.1.66.2.2.1
A collection of objects.
Status: current Access: read-only
OBJECT-GROUP    

cie1000PsecConfigPortTableInfoGroup 1.3.6.1.4.1.9.9.832.1.66.2.2.2
A collection of objects.
Status: current Access: read-only
OBJECT-GROUP    

cie1000PsecStatusPortTableInfoGroup 1.3.6.1.4.1.9.9.832.1.66.2.2.3
A collection of objects.
Status: current Access: read-only
OBJECT-GROUP    

cie1000PsecStatusPortTrapsInfoGroup 1.3.6.1.4.1.9.9.832.1.66.2.2.4
A collection of objects.
Status: current Access: read-only
OBJECT-GROUP    

cie1000PsecControlPortReopenTableInfoGroup 1.3.6.1.4.1.9.9.832.1.66.2.2.5
A collection of objects.
Status: current Access: read-only
OBJECT-GROUP    

cie1000PsecStatisticsPortTableInfoGroup 1.3.6.1.4.1.9.9.832.1.66.2.2.6
A collection of objects.
Status: current Access: read-only
OBJECT-GROUP    

cie1000PsecTrapLimitExceededInfoGroup 1.3.6.1.4.1.9.9.832.1.66.2.2.7
Information group containing a trap.
Status: current Access: read-only
NOTIFICATION-GROUP    

cie1000PsecTrapModInfoGroup 1.3.6.1.4.1.9.9.832.1.66.2.2.8
Information group containing a trap.
Status: current Access: read-only
NOTIFICATION-GROUP    

cie1000PsecTrapLimitRecoveredInfoGroup 1.3.6.1.4.1.9.9.832.1.66.2.2.9
Information group containing a trap.
Status: current Access: read-only
NOTIFICATION-GROUP    

cie1000PsecMibCompliance 1.3.6.1.4.1.9.9.832.1.66.2.1.1
The compliance statement for the implementation.
Status: current Access: read-only
MODULE-COMPLIANCE