FDRY-ACL-MIB

File: FDRY-ACL-MIB.mib (11495 bytes)

Imported modules

SNMPv2-SMI SNMPv2-TC IPV6-TC
FOUNDRY-SN-ROOT-MIB FOUNDRY-SN-SWITCH-GROUP-MIB

Imported symbols

MODULE-IDENTITY OBJECT-TYPE Unsigned32
TEXTUAL-CONVENTION RowStatus DisplayString
TruthValue Ipv6Address fdryAcl
FdryVlanIdOrNoneTC

Defined Types

RtrStatus  
Represents a status value such as disabled or enabled.
TEXTUAL-CONVENTION    
  INTEGER disabled(0), enabled(1)  

Action  
Represents a action value such as deny or permit.
TEXTUAL-CONVENTION    
  INTEGER deny(0), permit(1)  

Operator  
Represents a operators value, such as equal, not-equal, lesser than, greater than, range and undefined.
TEXTUAL-CONVENTION    
  INTEGER eq(0), neq(1), lt(2), gt(3), range(4), undefined(7)  

IpProtocol  
Represents a transport protocol value.
TEXTUAL-CONVENTION    
  Unsigned32 0..256  

FdryIpv6AclEntry  
SEQUENCE    
  fdryIpv6AclIndex Unsigned32
  fdryIpv6AclName DisplayString
  fdryIpv6AclAction Action
  fdryIpv6AclProtocol IpProtocol
  fdryIpv6AclSourceIp Ipv6Address
  fdryIpv6AclSourcePrefixLen Unsigned32
  fdryIpv6AclSourceOperator Operator
  fdryIpv6AclSourceOperand1 Unsigned32
  fdryIpv6AclSourceOperand2 Unsigned32
  fdryIpv6AclDestinationIp Ipv6Address
  fdryIpv6AclDestinationPrefixLen Unsigned32
  fdryIpv6AclDestinationOperator Operator
  fdryIpv6AclDestinationOperand1 Unsigned32
  fdryIpv6AclDestinationOperand2 Unsigned32
  fdryIpv6AclEstablished RtrStatus
  fdryIpv6AclLogOption TruthValue
  fdryIpv6AclComments DisplayString
  fdryIpv6AclRowStatus RowStatus
  fdryIpv6AclVlanId FdryVlanIdOrNoneTC
  fdryIpv6AclClauseString DisplayString

BrcdIpv6AccessListEntry  
SEQUENCE    
  brcdIpv6AccessListName DisplayString
  brcdIpv6AccessListNextIndex Unsigned32
  brcdIpv6AccessListRowStatus RowStatus

Defined Values

fdryAclMIB 1.3.6.1.4.1.1991.1.2.16.1
The Brocade proprietary MIB module for Ipv6 Access Control List. It has new tables for Ipv6 Access Control List. Copyright 1996-2010 Brocade Communications Systems, Inc. All rights reserved. This Brocade Communications Systems SNMP Management Information Base Specification embodies Brocade Communications Systems' confidential and proprietary intellectual property. Brocade Communications Systems retains all title and ownership in the Specification, including any revisions. This Specification is supplied AS IS, and Brocade Communications Systems makes no warranty, either express or implied, as to the use, operation, condition, or performance of the specification, and any unintended consequence it may on the user environment.
MODULE-IDENTITY    

fdryIpv6Acl 1.3.6.1.4.1.1991.1.2.16.1.1
OBJECT IDENTIFIER    

fdryIpv6AclTable 1.3.6.1.4.1.1991.1.2.16.1.1.1
Table of Ipv6 Access Control List filters
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    FdryIpv6AclEntry

fdryIpv6AclEntry 1.3.6.1.4.1.1991.1.2.16.1.1.1.1
An entry in the Ipv6 Access Control List filter table.
Status: current Access: not-accessible
OBJECT-TYPE    
  FdryIpv6AclEntry  

fdryIpv6AclIndex 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.1
The access control list item number for an entry. This is a unique number that identifies different Access list entries. This one has to be unique even though the name is not unique for a give access list with same or different source address, prefix length, destination address and destination prefix length, protocol type, action (permit/deny) type and the operator (neq, eq, gt and , lt).
Status: current Access: not-accessible
OBJECT-TYPE    
  Unsigned32  

fdryIpv6AclName 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.2
Access Control List name for an entry. This object is not writable on NI platforms.
Status: current Access: read-create
OBJECT-TYPE    
  DisplayString Size(0..199)  

fdryIpv6AclAction 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.3
Action to take if the ip packet matches with this access control list.
Status: current Access: read-create
OBJECT-TYPE    
  Action  

fdryIpv6AclProtocol 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.4
Transport protocols. 0 means any protocol.
Status: current Access: read-create
OBJECT-TYPE    
  IpProtocol  

fdryIpv6AclSourceIp 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.5
Source Ipv6 address.
Status: current Access: read-create
OBJECT-TYPE    
  Ipv6Address  

fdryIpv6AclSourcePrefixLen 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.6
Source IPv6 address prefix length.
Status: current Access: read-create
OBJECT-TYPE    
  Unsigned32  

fdryIpv6AclSourceOperator 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.7
Type of comparison to perform. for now, this only applys to tcp or udp to compare the port number
Status: current Access: read-create
OBJECT-TYPE    
  Operator  

fdryIpv6AclSourceOperand1 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.8
For now this only refers to transport protocol port number.
Status: current Access: read-create
OBJECT-TYPE    
  Unsigned32 0..65535  

fdryIpv6AclSourceOperand2 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.9
For now this only refers to transport protocol port number.
Status: current Access: read-create
OBJECT-TYPE    
  Unsigned32 0..65535  

fdryIpv6AclDestinationIp 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.10
Destination Ipv6 address.
Status: current Access: read-create
OBJECT-TYPE    
  Ipv6Address  

fdryIpv6AclDestinationPrefixLen 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.11
Destination IPv6 address prefix length.
Status: current Access: read-create
OBJECT-TYPE    
  Unsigned32  

fdryIpv6AclDestinationOperator 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.12
Type of comparison to perform. for now, this only applys to tcp or udp to compare the port number
Status: current Access: read-create
OBJECT-TYPE    
  Operator  

fdryIpv6AclDestinationOperand1 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.13
For now this only refers to transport protocol port number.
Status: current Access: read-create
OBJECT-TYPE    
  Unsigned32 0..65535  

fdryIpv6AclDestinationOperand2 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.14
For now this only refers to transport protocol port number.
Status: current Access: read-create
OBJECT-TYPE    
  Unsigned32 0..65535  

fdryIpv6AclEstablished 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.15
Enable/Disable the filtering of established TCP packets of which the ACK or RESET flag is on. This additional filter only applies to TCP transport protocol.
Status: current Access: read-create
OBJECT-TYPE    
  RtrStatus  

fdryIpv6AclLogOption 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.16
Log flag, should be set to one to enable logging
Status: current Access: read-create
OBJECT-TYPE    
  TruthValue  

fdryIpv6AclComments 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.17
Remark description of individual Access Control List entry.
Status: current Access: read-create
OBJECT-TYPE    
  DisplayString Size(0..255)  

fdryIpv6AclRowStatus 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.18
To create or delete a access list entry.
Status: current Access: read-create
OBJECT-TYPE    
  RowStatus  

fdryIpv6AclVlanId 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.19
Optional VLAN ID to match against that of the incoming packet. By default, the VLAN ID field is ignored during the match. In this case, value 0 is returned.
Status: current Access: read-create
OBJECT-TYPE    
  FdryVlanIdOrNoneTC  

fdryIpv6AclClauseString 1.3.6.1.4.1.1991.1.2.16.1.1.1.1.20
Returns the equivalent filter clause string.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

brcdIpv6AccessListTable 1.3.6.1.4.1.1991.1.2.16.1.1.2
Table of Ipv6 Access Control List. This table only supports IPv6 ACLs with name length less than or equal to 110 characters SNMP walk operation will skip the entries if the IPv6 ACL name is greater than 110 characters.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    BrcdIpv6AccessListEntry

brcdIpv6AccessListEntry 1.3.6.1.4.1.1991.1.2.16.1.1.2.1
An entry in the Ipv6 Access Control List table.
Status: current Access: not-accessible
OBJECT-TYPE    
  BrcdIpv6AccessListEntry  

brcdIpv6AccessListName 1.3.6.1.4.1.1991.1.2.16.1.1.2.1.1
Name of the IPv6 Access Control List. From SNMP the length of the IPv6 ACL name is restricted to 110 characters although from CLI it can be 200 characters, due to SNMP restriction on sub OID length to be 128 for Index objects. SNMP get/getnext will skip the IPv6 ACLs with more than 110 characters in it. SNMP set request will be rejected if the IPv6 ACL name length is more than 110 characters.
Status: current Access: not-accessible
OBJECT-TYPE    
  DisplayString Size(1..110)  

brcdIpv6AccessListNextIndex 1.3.6.1.4.1.1991.1.2.16.1.1.2.1.2
When read provides the encoded Index - combination of IPv6 ACL id and next available filter id - which can be used as index while creating access list filter entry in the fdryIpv6AclTable.
Status: current Access: read-only
OBJECT-TYPE    
  Unsigned32  

brcdIpv6AccessListRowStatus 1.3.6.1.4.1.1991.1.2.16.1.1.2.1.3
To create or delete a Ipv6 access list entry. The supported values are createAndGo(4) to create an entry in this table and destroy(6) to delete an entry from this table. Value of active(1) will be always returned for SNMP Get/GetNext operations.
Status: current Access: read-create
OBJECT-TYPE    
  RowStatus