ENTERASYS-VLAN-AUTHORIZATION-MIB
File:
ENTERASYS-VLAN-AUTHORIZATION-MIB.mib (11955 bytes)
Imported modules
Imported symbols
Defined Types
VlanAuthEgressStatus |
|
The possible egress configurations which may be applied
in response to a successful authentication.
none(1) No egress manipulation will be made.
tagged(2) The authenticating port will be added to the
current egress for the VLAN-ID returned.
untagged(3) The authenticating port will be added to the
current untagged egress for the VLAN-ID
returned.
dynamic(4) The authenticating port will use information
returned in the authentication response to
modify the current egress lists. |
TEXTUAL-CONVENTION |
|
|
|
|
INTEGER |
none(1), tagged(2), untagged(3), dynamic(4) |
|
EtsysVlanAuthorizationEntry |
|
SEQUENCE |
|
|
|
|
etsysVlanAuthorizationStatus |
EnabledStatus |
|
|
etsysVlanAuthorizationAdminEgress |
VlanAuthEgressStatus |
|
|
etsysVlanAuthorizationOperEgress |
VlanAuthEgressStatus |
|
|
etsysVlanAuthorizationVlanID |
Integer32 |
|
Defined Values
etsysVlanAuthorizationMIB |
1.3.6.1.4.1.5624.1.2.48 |
This MIB module defines a portion of the SNMP MIB under
Enterasys Networks' enterprise OID pertaining to proprietary
extensions to the IETF Q-BRIDGE-MIB, as specified in RFC2674,
pertaining to VLAN authorization, as specified in RFC3580.
Specifically, the enabling and disabling of support for the
VLAN Tunnel-Type attribute returned from a RADIUS authentication,
and how that attribute is applied to the port which initiated
the authentication. |
MODULE-IDENTITY |
|
|
|
etsysVlanAuthorizationEnable |
1.3.6.1.4.1.5624.1.2.48.1.1.1 |
The enable/disable state for the VLAN authorization feature.
When disabled, no modifications to the VLAN attributes
related to packet switching should be enforced. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
EnabledStatus |
|
|
etsysVlanAuthorizationEntry |
1.3.6.1.4.1.5624.1.2.48.1.2.1.1 |
A list of extensions that support the management of
proprietary features for each port of a transparent
bridge. This is indexed by dot1dBasePort. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
EtsysVlanAuthorizationEntry |
|
|
etsysVlanAuthorizationStatus |
1.3.6.1.4.1.5624.1.2.48.1.2.1.1.1 |
The enabled/disabled status for the application of VLAN
authorization on this port, if disabled, the information
returned in the VLAN-Tunnel-Type from the authentication
will not be applied to the port (although it should be
represented in this table). If enabled, those results
will be applied to the port. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
EnabledStatus |
|
|
etsysVlanAuthorizationAdminEgress |
1.3.6.1.4.1.5624.1.2.48.1.2.1.1.2 |
Controls the modification of the current vlan egress
list (of the vlan returned in the VLAN-Tunnel-Type,
and reported by etsysVlanAuthorizationVlanID) upon
successful authentication in the following manner:
none(1) No egress manipulation will be made.
tagged(2) The authenticating port will be added to the
current egress for the VLAN-ID returned.
untagged(3) The authenticating port will be added to the
current untagged egress for the VLAN-ID
returned.
dynamic(4) The authenticating port will use information
returned in the authentication response to
modify the current egress lists. This value
is supported only if the device supports a
mechanism through which the egress status may
be returned through the RADIUS response.
Should etsysVlanAuthorizationEnable become disabled,
etsysVlanAuthorizationStatus become disabled for a port,
or should etsysVlanAuthorizationVlanID become 0 or 4095,
all effect on the port egress MUST be removed. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
VlanAuthEgressStatus |
|
|
etsysVlanAuthorizationOperEgress |
1.3.6.1.4.1.5624.1.2.48.1.2.1.1.3 |
Reports the current state of modification to the current vlan
egress list (of the vlan returned in the VLAN-Tunnel-Type)
upon successful authentication, if etsysVlanAuthorizationStatus
is enabled, in the following manner:
none(1) No egress manipulation will be made.
tagged(2) The authenticating port will be added to the
current egress for the VLAN-ID returned.
untagged(3) The authenticating port will be added to the
current untagged egress for the VLAN-ID
returned.
The purpose of this leaf is to report, specifically when
etsysVlanAuthorizationAdminEgress has been set to dynamic(4),
the currently enforced egress modification. If the port is
unauthenticated, or no VLAN-ID has been applied, this leaf
should return none(1). |
Status: current |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
VlanAuthEgressStatus |
|
|
etsysVlanAuthorizationVlanID |
1.3.6.1.4.1.5624.1.2.48.1.2.1.1.4 |
The 12 bit VLAN identifier for a given port, used to override
the PVID of the given port, obtained as a result of an
authentication.
A value of zero indicates that there is no authenticated VLAN
ID for the given port. Should a port become unauthenticated
this value MUST be returned to zero.
A value of 4095 indicates that a the port has been
authenticated, but that the VLAN returned could not be applied
to the port (possibly because of resource constraints or
misconfiguration). In this instance, the original PVID should
still be applied.
Should the feature become disabled or the session terminate,
all effect on the Port VLAN ID MUST be removed. |
Status: current |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
Integer32 |
0 | 1..4094 | 4095 |
|
etsysVlanAuthorizationGroup |
1.3.6.1.4.1.5624.1.2.48.2.1.1 |
A collection of objects relating to VLAN Authorization. |
Status: current |
Access: read-only |
OBJECT-GROUP |
|
|
|
etsysVlanAuthorizationCompliance |
1.3.6.1.4.1.5624.1.2.48.2.2.1 |
The compliance statement for devices that support the
Enterasys VLAN Authorization MIB. |
Status: current |
Access: read-only |
MODULE-COMPLIANCE |
|
|
|