NETSCREEN-IDS-MIB

File: NETSCREEN-IDS-MIB.mib (23857 bytes)

Imported modules

NETSCREEN-SMI SNMPv2-SMI

Imported symbols

netscreenIDS Counter32 Integer32
MODULE-IDENTITY OBJECT-TYPE

Defined Types

NsIdsAttkMonEntry  
SEQUENCE    
  nsIdsAttkMonIfIdx Integer32
  nsIdsAttkMonVsys Integer32
  nsIdsAttkMonSynAttk Counter32
  nsIdsAttkMonTearDrop Counter32
  nsIdsAttkMonSrcRoute Counter32
  nsIdsAttkMonPingDeath Counter32
  nsIdsAttkMonAddrSpoof Counter32
  nsIdsAttkMonLand Counter32
  nsIdsAttkMonIcmpFlood Counter32
  nsIdsAttkMonUdpFlood Counter32
  nsIdsAttkMonWinnuke Counter32
  nsIdsAttkMonPortScan Counter32
  nsIdsAttkMonIpSweep Counter32
  nsAttkMonSynFrag Counter32
  nsAttkMonTcpNoFlag Counter32
  nsAttkMonIpUnknownProt Counter32
  nsAttkMonIpOptBad Counter32
  nsAttkMonIpOptRecord Counter32
  nsAttkMonIpOptTimestamp Counter32
  nsAttkMonIpOptSCHT Counter32
  nsAttkMonIpOptLSR Counter32
  nsAttkMonIpOptSSR Counter32
  nsAttkMonIpOptStream Counter32
  nsAttkMonIcmpFrag Counter32
  nsAttkMonIcmpLarge Counter32
  nsAttkMonTcpSynFin Counter32
  nsAttkMonTcpFinNoAck Counter32
  nsAttkMonHttpMalUrl Counter32
  nsAttkMonSessMalNum Counter32
  nsAttkMonSynAckAck Counter32
  nsAttkMonIpFrag Counter32
  nsIdsAttkMonIfInfo Integer32

NsIdsProtectSetEntry  
SEQUENCE    
  nsIdsProtectZoneIdx Integer32
  nsIdsDetectPingOfDeath INTEGER
  nsIdsDetectTearDrop INTEGER
  nsIdsDetectWinNuke INTEGER
  nsIdsFilterIpSrcRoute INTEGER
  nsIdsDetectPortScan INTEGER
  nsIdsDetectAddrSweep INTEGER
  nsIdsDetectLand INTEGER
  nsIdsBlockComponent INTEGER
  nsIdsDetectIpSpoof INTEGER
  nsIdsDetectSyn INTEGER
  nsIdsDetectIcmpFlood INTEGER
  nsIdsDetectUdpFlood INTEGER
  nsIdsDetectSynFrag INTEGER
  nsIdsDetectTcpNoFlag INTEGER
  nsIdsDetectIpUnknownProt INTEGER
  nsIdsDetectIpOptBad INTEGER
  nsIdsDetectIpOptRecord INTEGER
  nsIdsDetectIpOptTimestamp INTEGER
  nsIdsDetectIpOptSCHT INTEGER
  nsIdsDetectIpOptLSR INTEGER
  nsIdsDetectIpOptSSR INTEGER
  nsIdsDetectIpOptStream INTEGER
  nsIdsDetectIcmpFrag INTEGER
  nsIdsDetectIcmpLarge INTEGER
  nsIdsDetectTcpSynFin INTEGER
  nsIdsDetectTcpFinNoAck INTEGER
  nsIdsHttpMalUrl INTEGER
  nsIdsSessMalNum INTEGER
  nsIdsDetectSynAckAck INTEGER
  nsIdsDetectIpFrag INTEGER

NsIdsProtectThreshEntry  
SEQUENCE    
  nsIdsProtectThreshZoneIdx Integer32
  nsIdsSynAttackThresh Integer32
  nsIdsSynAttackTimeout Integer32
  nsIdsSynAttackAlmTh Integer32
  nsIdsSynAttackQueSize Integer32
  nsIdsSynAttackAgeTime Integer32
  nsIdsIcmpFloodThresh Integer32
  nsIdsUdpFloodThresh Integer32
  nsIdsPortScanThresh Integer32
  nsIdsIpSweepThresh Integer32
  nsIdsSynAckAckThres Integer32

Defined Values

nsIdsProtect 1.3.6.1.4.1.3224.3.1
This module defines NetScreen private MIBs DI Setting.
MODULE-IDENTITY    

nsIdsProtectSetTable 1.3.6.1.4.1.3224.3.1.1
NetScreen ScreenOS can allow DI protection on each of NetScreen device's physical interface. This table collects the DI protection configuration on each physical interface.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    NsIdsProtectSetEntry

nsIdsProtectSetEntry 1.3.6.1.4.1.3224.3.1.1.1
Hold the DI setting attribute.
Status: current Access: not-accessible
OBJECT-TYPE    
  NsIdsProtectSetEntry  

nsIdsProtectZoneIdx 1.3.6.1.4.1.3224.3.1.1.1.1
unique zone id.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32 0..2147483647  

nsIdsDetectPingOfDeath 1.3.6.1.4.1.3224.3.1.1.1.2
Detect Ping of Death.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectTearDrop 1.3.6.1.4.1.3224.3.1.1.1.3
Detect Tear Drop Attack.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectWinNuke 1.3.6.1.4.1.3224.3.1.1.1.4
Detect Win Nuke Attack.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsFilterIpSrcRoute 1.3.6.1.4.1.3224.3.1.1.1.5
Detect Filter IP Source Route Option attack.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectPortScan 1.3.6.1.4.1.3224.3.1.1.1.6
Detect Port Scan Death attack.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectAddrSweep 1.3.6.1.4.1.3224.3.1.1.1.7
Detect Address Sweep Attack.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectLand 1.3.6.1.4.1.3224.3.1.1.1.8
Detect Land Attack.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsBlockComponent 1.3.6.1.4.1.3224.3.1.1.1.9
Block Java/ActiveX/ZIP/EXE Component.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIpSpoof 1.3.6.1.4.1.3224.3.1.1.1.10
Detect IP Spoofing attack.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectSyn 1.3.6.1.4.1.3224.3.1.1.1.11
Detect SYN attack.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIcmpFlood 1.3.6.1.4.1.3224.3.1.1.1.12
Detect ICMP Flood attack.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectUdpFlood 1.3.6.1.4.1.3224.3.1.1.1.13
Detect UDP Flood attack.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectSynFrag 1.3.6.1.4.1.3224.3.1.1.1.14
Detect SYN fragment
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectTcpNoFlag 1.3.6.1.4.1.3224.3.1.1.1.15
Detect TCP without flag set.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIpUnknownProt 1.3.6.1.4.1.3224.3.1.1.1.16
Detect Unknown protocol IP packet.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIpOptBad 1.3.6.1.4.1.3224.3.1.1.1.17
Detect IP bad option.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIpOptRecord 1.3.6.1.4.1.3224.3.1.1.1.18
Detect IP record option.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIpOptTimestamp 1.3.6.1.4.1.3224.3.1.1.1.19
Detect IP timestamp option.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIpOptSCHT 1.3.6.1.4.1.3224.3.1.1.1.20
Detect IP security option.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIpOptLSR 1.3.6.1.4.1.3224.3.1.1.1.21
Detect Loose source route.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIpOptSSR 1.3.6.1.4.1.3224.3.1.1.1.22
Detect strict source route.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIpOptStream 1.3.6.1.4.1.3224.3.1.1.1.23
Detect IP stream option.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIcmpFrag 1.3.6.1.4.1.3224.3.1.1.1.24
Detect ICMP fragment.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIcmpLarge 1.3.6.1.4.1.3224.3.1.1.1.25
Detect large ICMP packet.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectTcpSynFin 1.3.6.1.4.1.3224.3.1.1.1.26
Detect TCP syn fin both set.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectTcpFinNoAck 1.3.6.1.4.1.3224.3.1.1.1.27
Detect TCP fin set without ack bit set.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsHttpMalUrl 1.3.6.1.4.1.3224.3.1.1.1.28
Detect malicious URL.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsSessMalNum 1.3.6.1.4.1.3224.3.1.1.1.29
Detect malicious session connection.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectSynAckAck 1.3.6.1.4.1.3224.3.1.1.1.30
Detect SYN ACK ACK DoS.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsDetectIpFrag 1.3.6.1.4.1.3224.3.1.1.1.31
Block IP fragment packet.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER disable(0), enabled(1)  

nsIdsProtectThreshTable 1.3.6.1.4.1.3224.3.1.2
NetScreen ScreenOS can allow DI protection on each of NetScreen device's physical interface. This table collects the DI protection configuration on each physical interface.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    NsIdsProtectThreshEntry

nsIdsProtectThreshEntry 1.3.6.1.4.1.3224.3.1.2.1
Hold the DI setting attribute.
Status: current Access: not-accessible
OBJECT-TYPE    
  NsIdsProtectThreshEntry  

nsIdsProtectThreshZoneIdx 1.3.6.1.4.1.3224.3.1.2.1.1
unique zone id.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32 0..2147483647  

nsIdsSynAttackThresh 1.3.6.1.4.1.3224.3.1.2.1.2
SYN attack threshold.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsIdsSynAttackTimeout 1.3.6.1.4.1.3224.3.1.2.1.3
SYN attack timeout.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsIdsSynAttackAlmTh 1.3.6.1.4.1.3224.3.1.2.1.4
SYN attack alarm threshold.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsIdsSynAttackQueSize 1.3.6.1.4.1.3224.3.1.2.1.5
SYN attack queue size.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsIdsSynAttackAgeTime 1.3.6.1.4.1.3224.3.1.2.1.6
SYN flood age time.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsIdsIcmpFloodThresh 1.3.6.1.4.1.3224.3.1.2.1.7
ICMP attack alarm threshold.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsIdsUdpFloodThresh 1.3.6.1.4.1.3224.3.1.2.1.8
UDP attack alarm threshold.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsIdsPortScanThresh 1.3.6.1.4.1.3224.3.1.2.1.9
ICMP attack alarm threshold.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsIdsIpSweepThresh 1.3.6.1.4.1.3224.3.1.2.1.10
UDP attack alarm threshold.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsIdsSynAckAckThres 1.3.6.1.4.1.3224.3.1.2.1.11
SYN ack ack alarm threshold.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsIdsAttkMonTable 1.3.6.1.4.1.3224.3.2
The table monitors the intrusion attack attemps amount to NetScreen Device.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    NsIdsAttkMonEntry

nsIdsAttkMonEntry 1.3.6.1.4.1.3224.3.2.1
An entry containing intrusion attack couters.
Status: current Access: not-accessible
OBJECT-TYPE    
  NsIdsAttkMonEntry  

nsIdsAttkMonIfIdx 1.3.6.1.4.1.3224.3.2.1.1
unique interface id.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32 0..2147483647  

nsIdsAttkMonVsys 1.3.6.1.4.1.3224.3.2.1.2
according NetScreen's concepts. each interface belongs to one virtual system. This attribute displays the virtual system name an interface belongs to.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32  

nsIdsAttkMonSynAttk 1.3.6.1.4.1.3224.3.2.1.3
sync attack packet counter.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsIdsAttkMonTearDrop 1.3.6.1.4.1.3224.3.2.1.4
tear drop attack packet counter.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsIdsAttkMonSrcRoute 1.3.6.1.4.1.3224.3.2.1.5
source route option attack packet counter.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsIdsAttkMonPingDeath 1.3.6.1.4.1.3224.3.2.1.6
ping of death attack packet counter.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsIdsAttkMonAddrSpoof 1.3.6.1.4.1.3224.3.2.1.7
address spoofing attack packet counter.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsIdsAttkMonLand 1.3.6.1.4.1.3224.3.2.1.8
land attack packet counter.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsIdsAttkMonIcmpFlood 1.3.6.1.4.1.3224.3.2.1.9
ICMP flood attack packet counter.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsIdsAttkMonUdpFlood 1.3.6.1.4.1.3224.3.2.1.10
udp flood attack packet counter.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsIdsAttkMonWinnuke 1.3.6.1.4.1.3224.3.2.1.11
weired netbios attack packet counter.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsIdsAttkMonPortScan 1.3.6.1.4.1.3224.3.2.1.12
port scan attempt attack packet counter.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsIdsAttkMonIpSweep 1.3.6.1.4.1.3224.3.2.1.13
address sweep attemp attack packet counter.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonSynFrag 1.3.6.1.4.1.3224.3.2.1.14
Detect SYN fragment
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonTcpNoFlag 1.3.6.1.4.1.3224.3.2.1.15
Detect TCP without flag set.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonIpUnknownProt 1.3.6.1.4.1.3224.3.2.1.16
Detect Unknown protocol IP packet.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonIpOptBad 1.3.6.1.4.1.3224.3.2.1.17
Detect IP bad option.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonIpOptRecord 1.3.6.1.4.1.3224.3.2.1.18
Detect IP record option.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonIpOptTimestamp 1.3.6.1.4.1.3224.3.2.1.19
Detect IP timestamp option.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonIpOptSCHT 1.3.6.1.4.1.3224.3.2.1.20
Detect IP security option.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonIpOptLSR 1.3.6.1.4.1.3224.3.2.1.21
Detect Loose source route.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonIpOptSSR 1.3.6.1.4.1.3224.3.2.1.22
Detect strict source route.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonIpOptStream 1.3.6.1.4.1.3224.3.2.1.23
Detect IP stream option.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonIcmpFrag 1.3.6.1.4.1.3224.3.2.1.24
Detect ICMP fragment.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonIcmpLarge 1.3.6.1.4.1.3224.3.2.1.25
Detect large ICMP packet.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonTcpSynFin 1.3.6.1.4.1.3224.3.2.1.26
Detect TCP syn fin both set.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonTcpFinNoAck 1.3.6.1.4.1.3224.3.2.1.27
Detect TCP fin set without ack bit set.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonHttpMalUrl 1.3.6.1.4.1.3224.3.2.1.28
Detect malicious URL.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonSessMalNum 1.3.6.1.4.1.3224.3.2.1.29
Detect malicious session connection.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonSynAckAck 1.3.6.1.4.1.3224.3.2.1.30
Detect SYN ACK ACK attack.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsAttkMonIpFrag 1.3.6.1.4.1.3224.3.2.1.31
Block IP fragment packet.
Status: current Access: read-only
OBJECT-TYPE    
  Counter32  

nsIdsAttkMonIfInfo 1.3.6.1.4.1.3224.3.2.1.32
Internal id assigned to this interface. Stays persistent across resets.
Status: current Access: read-only
OBJECT-TYPE    
  Integer32 0..2147483647  

Generation date: July 28, 2023, 16:18:13, Copyright © 2007 - 2022 - Circitor