Related Topics
Enterprise MIB File Details
When you install the Fireware OS on your management computer, the supported Enterprise MIBs are installed in this location:
C:\Users\Public\Shared WatchGuard\SNMP
For more information about the MIBs supported on Fireware OS, see About Management Information Bases (MIBs).
You can open each MIB file to review the current objects and definitions for each MIB. The next section includes a summary of the Enterprise MIB files available for all current Firebox models.
To easily see the hierarchy of MIBs in each MIB file, we recommend that you use a MIB browser to open and review MIB files. All of the information is the same, regardless of the tool you use to open the file, however, the appearance of the text can be different from one MIB browser tool to another.
Enterprise MIB File Summary
These tables include a list of the objects included in the Fireware OS Enterprise MIB files and a description of each object.
System Statistics
Object | Description | OID |
---|---|---|
wgSystemStatisticsMIB | The base system information for all system-related statistical counters. | 1.3.6.1.4.1.3097.6.3 |
wgSoftwareVersion | The software version on sysA and sysB. | 1.3.6.1.4.1.3097.6.3.1 |
wgSystemCpuUtil |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.6.3.4 |
wgSystemTotalSendBytes | The total number of bytes sent since the system was last started. This number includes both cut-through traffic and host traffic. | 1.3.6.1.4.1.3097.6.3.8 |
wgSystemTotalRecvBytes | The total number of bytes received since the system was last started. This number includes both cut-through traffic and host traffic. | 1.3.6.1.4.1.3097.6.3.9 |
wgSystemTotalSendPackets | The total number of packets sent since the system was last started. This number includes both cut-through traffic and host traffic. | 1.3.6.1.4.1.3097.6.3.10 |
wgSystemTotalRecvPackets | The total number of packets received since the system was last started. The number includes both cut-through traffic and host traffic. | 1.3.6.1.4.1.3097.6.3.11 |
wgSystemStreamReqTotal |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.6.3.30 |
wgSystemStreamReqDrop |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.6.3.34 |
wgSystemCpuUtil1 | CPU utilization of the system in the last 1 minute. The value is measured in 0.01%. For example, if the value is 234, then CPU utilization is 2.34%. | 1.3.6.1.4.1.3097.6.3.77 |
wgSystemCpuUtil5 | CPU utilization of the system in the last 5 minutes. The value is measured in 0.01%. For example, if the value is 234, then CPU utilization is 2.34%. | 1.3.6.1.4.1.3097.6.3.78 |
wgSystemCpuUtil15 | CPU utilization of the system in the last 15 minutes. The value is measured in 0.01%. For example, if the value is 234, then CPU utilization is 2.34%. | 1.3.6.1.4.1.3097.6.3.79 |
wgSystemCurrActiveConns | The total number of currently active system connections. | 1.3.6.1.4.1.3097.6.3.80 |
System Configuration
Object | Definition | OID |
---|---|---|
wgSystemConfigMIB | The base object for system configuration in this entity. | 1.3.6.1.4.1.3097.2 |
wgSysTraps | The base object for system wide traps in this entity. | 1.3.6.1.4.1.3097.2.3 |
wgSysTrapsPrefix | Trap prefix | 1.3.6.1.4.1.3097.2.3.0 |
wgAlarmTrap | An alarm was generated by the Monitoring Agent of this WatchGuard device. | 1.3.6.1.4.1.3097.2.3.0.1 |
wgSnmpStart | This trap is sent when the SNMP trap starts. | 1.3.6.1.4.1.3097.2.3.0.2 |
wgSnmpShutdown | This trap is sent when the SNMP trap terminates. | 1.3.6.1.4.1.3097.2.3.0.3 |
wgSysTrapObjects | The base object for objects which are used as part of traps. | 1.3.6.1.4.1.3097.2.4 |
wgAlarmId | The ID of the alarm that generates a trap. | 1.3.6.1.4.1.3097.2.4.1 |
wgAlarmLabel | The name of the alarm that generates a trap. | 1.3.6.1.4.1.3097.2.4.2 |
wgAlarmTime | The date and time of the alarm that generates a trap. | 1.3.6.1.4.1.3097.2.4.3 |
wgAlarmLevel | The level of an alarm. | 1.3.6.1.4.1.3097.2.4.4 |
wgAlarmHostname | The host name of the system where the alarm occurred. | 1.3.6.1.4.1.3097.2.4.5 |
wgAlarmMsg | The message that describes the alarm. | 1.3.6.1.4.1.3097.2.4.6 |
wgSysTrapControl | The base object identifier for all objects which are trap control for the entity. | 1.3.6.1.4.1.3097.2.5 |
wgAlarmTrapEnable | Indicates whether wgAlarmTrap trap should be generated. | 1.3.6.1.4.1.3097.2.5.1 |
SMI
Object | Description | OID |
---|---|---|
wgProducts | The root OBJECT IDENTIFIER of WatchGuard Product OIDs. | 1.3.6.1.4.1.3097.1 |
wgSystemConfigMIB | The root OBJECT IDENTIFIER of WatchGuard Firebox system configurations. | 1.3.6.1.4.1.3097.2 |
Products
Object | Description | OID |
---|---|---|
wgProducts | This MIB module defines the object identifiers for the products of WatchGuard Technologies, Inc. | 1.3.6.1.4.1.3097.1 |
fbXSeries | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4 |
fbX500 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.1 |
fbX550e | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.2 |
fbX700 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.3 |
fbX750e | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.4 |
fbX750e-4 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.5 |
fbX1000 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.6 |
fbX1250e | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.7 |
fbX1250e-4 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.8 |
fbX2500 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.9 |
fbX5000 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.10 |
fbX5500e | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.11 |
fbX6000 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.12 |
fbX6500e | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.13 |
fbX8000 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.14 |
fbX8500e | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.15 |
fbX8500e-F | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.16 |
fbX10e | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.17 |
fbX10e-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.18 |
fbX20e | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.19 |
fbX20e-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.21 |
fbX55e | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.22 |
fbX55e-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.4.23 |
xtmSeries | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5 |
xtm1050 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.1 |
xtm1050-F | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.2 |
xtm830-F | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.3 |
xtm830 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.4 |
xtm820 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.5 |
xtm810 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.6 |
xtm530 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.7 |
xtm520 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.8 |
xtm510 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.9 |
xtm505 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.10 |
xtm23 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.11 |
xtm22 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.12 |
xtm21 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.13 |
xtm23-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.14 |
xtm22-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.15 |
xtm21-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.16 |
xtm2050 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.17 |
xtm25 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.18 |
xtm25-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.19 |
xtm26 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.20 |
xtm26-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.21 |
xtm33 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.22 |
xtm33-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.23 |
xtm330 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.24 |
xtm545 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.25 |
xtm535 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.26 |
xtm525 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.27 |
xtm515 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.28 |
xtm2050A | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.29 |
xtm850 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.30 |
xtm860 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.31 |
xtm870 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.32 |
xtm870-F | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.33 |
xtm1520 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.34 |
xtm1525 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.35 |
xtm2520 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.36 |
xtmv-SM | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.37 |
xtmv-MED | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.38 |
xtmv-LG | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.39 |
xtmv-DC | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.40 |
xtmv-EXP | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.41 |
xtmv | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.42 |
xtm1520-RP | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.43 |
xtm1525-RP | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.44 |
T10 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.45 |
M440 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.46 |
T10-D | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.47 |
T10-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.48 |
M400 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.49 |
M500 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.50 |
M200 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.51 |
M300 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.52 |
T30 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.53 |
T30-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.54 |
T50 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.55 |
T50-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.56 |
M4600 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.57 |
M5600 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.58 |
T70 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.59 |
Firebox V | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.60 |
FireboxV-MC | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.61 |
FireboxV-SM | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.62 |
FireboxV-MED | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.63 |
FireboxV-LG | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.64 |
FireboxV-XLG | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.65 |
M370 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.66 |
M470 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.67 |
M570 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.68 |
M670 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.69 |
T15 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.70 |
T15-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.71 |
T35 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.72 |
T35-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.73 |
T55 | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.74 |
T55-W | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.75 |
FireboxCloud | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.76 |
FireboxCloud-MC | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.77 |
FireboxCloud-SM | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.78 |
FireboxCloud-MED | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.79 |
FireboxCloud-LG | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.80 |
FireboxCloud-XLG | WatchGuard device model. | 1.3.6.1.4.1.3097.1.5.81 |
Policy
Only the wgPolicyID, wgPolicyName and wgPolicyLogging objects are supported.
Object | Description | OID |
---|---|---|
wgPolicyMIB | This is the base object identifier for all policy related information. | 1.3.6.1.4.1.3097.4 |
wgPolicyToTunnel | This is the base object identifier for all policy related tunnel information. | 1.3.6.1.4.1.3097.4.1 |
wgPolicyToTunnelNum | The total number of tunnels in the policytotunnel table. | 1.3.6.1.4.1.3097.4.1.1 |
wgPolicyToTunnelTable | This is the policytotunnel table of all the policies. | 1.3.6.1.4.1.3097.4.1.2 |
wgPolicyToTunnelEntry | An entry (conceptual row) that contains information about the tunnels. | 1.3.6.1.4.1.3097.4.1.2.1 |
wgPolicyToTunnelPolicyID | The policy identifier of this entity. | 1.3.6.1.4.1.3097.4.1.2.1.1 |
wgPolicyToTunnelTunnelID | The tunnel identifier of this entity. | 1.3.6.1.4.1.3097.4.1.2.1.2 |
wgPolicyStatistics | This is the base object identifier for all policy related statistical counters. | 1.3.6.1.4.1.3097.4.2 |
wgPolicyTableNum | The total number of policies in the policy table. | 1.3.6.1.4.1.3097.4.2.1 |
wgPolicyTable | This is the policytotunnel table of the policies. | 1.3.6.1.4.1.3097.4.2.2 |
wgPolicyEntry | An entry (conceptual row) that contains information about the policy. | 1.3.6.1.4.1.3097.4.2.2.1 |
wgPolicyID | The policy identifier of this policy. | 1.3.6.1.4.1.3097.4.2.2.1.1 |
wgPolicyName | The name of this policy. | 1.3.6.1.4.1.3097.4.2.2.1.2 |
wgPolicyL3PackageBytes | Total traffic in bytes (counted from the L3 head) since the policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.3 |
wgPolicyPackets | Total traffic in packets since this policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.4 |
wgPolicyIpsecDecryptErr | Total number of packets discarded due to decryption errors since this policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.5 |
wgPolicyIpsecAuthErr | Total number of packets discarded due to authentication errors since this policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.6 |
wgPolicyIpsecReplayErr | Total number of packets discarded due to replay errors since this policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.7 |
wgPolicyIpsecPadErr | Total number of packets discarded due to pad value errors since this policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.8 |
wgPolicyIpsecPolicyErr | Total number of packets discarded due to policy errors since this policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.9 |
wgPolicyFwDisc | Total number of packets discarded by firewall policies since this policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.10 |
wgPolicyOtherDisc | Total number of packets discarded due to errors other than firewall errors (such as IPSec errors) since this policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.11 |
wgPolicyActiveStreams | Total number of active connections since this policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.12 |
wgPolicyIpsecDisc | Total number of packets discarded by IPSec errors (decryption error, authentication error, replay error) since this policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.13 |
wgPolicyDisc | Total number of packets discarded since this policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.14 |
wgPolicyNumTunl | Total number of tunnels for this policy. | 1.3.6.1.4.1.3097.4.2.2.1.15 |
wgPolicySingleCntrNum | Total number of single counters handled by this policy. | 1.3.6.1.4.1.3097.4.2.2.1.16 |
wgPolicyLogging | Indicates whether logging is enabled for this policy. | 1.3.6.1.4.1.3097.4.2.2.1.17 |
wgPolicyCurrActiveConns | Total number of currently active connections for this policy. | 1.3.6.1.4.1.3097.4.2.2.1.18 |
wgPolicyL2PackageBytes | Total traffic in bytes (counted from the L2 head) since this policy was set up. | 1.3.6.1.4.1.3097.4.2.2.1.19 |
IPSec Tunnel
Object | Description | OID |
---|---|---|
wgIpsecTunnelMIB | This is the base object identifier for all tunnel branches. | 1.3.6.1.4.1.3097.6.5 |
wgIpsecTunnel | This is the base object identifier for all tunnel information. | 1.3.6.1.4.1.3097.6.5.1 |
wgIpsecTunnelNum | The total number of entries in the wgIpsecTunnelTable. | 1.3.6.1.4.1.3097.6.5.1.1 |
wgIpsecTunnelTable | This is the connection table that describes all current tunnels for this device. | 1.3.6.1.4.1.3097.6.5.1.2 |
wgIpsecTunnelEntry | An entry (conceptual row) that contains information about a tunnel that is between two security gateways. | 1.3.6.1.4.1.3097.6.5.1.2.1 |
wgIpsecTunnelID | The running index of this tunnel. | 1.3.6.1.4.1.3097.6.5.1.2.1.1 |
wgIpsecTunnelLocalAddr | The local IP address of the current tunnel. | 1.3.6.1.4.1.3097.6.5.1.2.1.2 |
wgIpsecTunnelPeerAddr | The remote IP address of the current tunnel. | 1.3.6.1.4.1.3097.6.5.1.2.1.3 |
wgIpsecTunnelInSpi | The security parameters index of the inbound tunnel end points (SAs) for this tunnel. | 1.3.6.1.4.1.3097.6.5.1.2.1.4 |
wgIpsecTunnelOutSpi | The security parameters index of outbound tunnel end points (SAs) for this tunnel. | 1.3.6.1.4.1.3097.6.5.1.2.1.5 |
wgIpsecTunnelCreateTime | The date and time when the tunnel was created. | 1.3.6.1.4.1.3097.6.5.1.2.1.6 |
wgIpsecTunnelDeviceID | The identifier of the target device where the tunnel end point resides. | 1.3.6.1.4.1.3097.6.5.1.2.1.7 |
wgIpsecTunnelEspEncryptAlg | The encryption algorithm used in the tunnel. If ESP is not used, the algorithm value is 0. | 1.3.6.1.4.1.3097.6.5.1.2.1.8 |
wgIpsecTunnelEspAuthAlg | The authentication algorithm used in the tunnel. If ESP is not used, the algorithm value is 0. | 1.3.6.1.4.1.3097.6.5.1.2.1.9 |
wgIpsecTunnelAhAuthAlg | The AH authentication algorithm used in the tunnel. If AH is not used, the algorithm value is 0. | 1.3.6.1.4.1.3097.6.5.1.2.1.10 |
wgIpsecTunnelMode | The tunnel/transport mode of the tunnel. | 1.3.6.1.4.1.3097.6.5.1.2.1.11 |
wgIpsecTunnelKeyMode | The key mode of the tunnel. | 1.3.6.1.4.1.3097.6.5.1.2.1.12 |
wgIpsecTunnelLifeTime | The life time (in hundredths of a second) of the tunnel. | 1.3.6.1.4.1.3097.6.5.1.2.1.13 |
wgIpsecTunnelLifeLength | The maximum traffic in bytes that the tunnel supports. | 1.3.6.1.4.1.3097.6.5.1.2.1.14 |
wgIpsecTunnelInSaBytes | Current active inbound tunnel end point bytes of the tunnel. | 1.3.6.1.4.1.3097.6.5.1.2.1.15 |
wgIpsecTunnelOutSaBytes | Current active outbound tunnel end point bytes of the tunnel. | 1.3.6.1.4.1.3097.6.5.1.2.1.16 |
wgIpsecTunnelAccSecs | The number of seconds that the tunnel has existed. | 1.3.6.1.4.1.3097.6.5.1.2.1.17 |
wgIpsecTunnelSelectorProtocol | The IP protocol number that this local remote tunnel end point carries. If it carries any protocol, the value is 0. | 1.3.6.1.4.1.3097.6.5.1.2.1.18 |
wgIpsecTunnelSelectorRemoteIPType | The type of remote IP address of the local remote tunnel end point. | 1.3.6.1.4.1.3097.6.5.1.2.1.19 |
wgIpsecTunnelSelectorRemoteIPOne |
The first remote IP address of the local remote tunnel end points.
|
1.3.6.1.4.1.3097.6.5.1.2.1.20 |
wgIpsecTunnelSelectorRemoteIPTwo |
The second remote IP address of the local remote tunnel end points. |
1.3.6.1.4.1.3097.6.5.1.2.1.21 |
wgIpsecTunnelSelectorRemotePort | The remote port used by this local remote tunnel end points. | 1.3.6.1.4.1.3097.6.5.1.2.1.22 |
wgIpsecTunnelSelectorLocalIPType | The type of local IP address of the local remote tunnel end point. | 1.3.6.1.4.1.3097.6.5.1.2.1.23 |
wgIpsecTunnelSelectorLocalIPOne |
The first local IP address of the local remote tunnel end points. |
1.3.6.1.4.1.3097.6.5.1.2.1.24 |
wgIpsecTunnelSelectorLocalIPTwo |
The second local IP address of the local remote tunnel end points.
|
1.3.6.1.4.1.3097.6.5.1.2.1.25 |
wgIpsecTunnelSelectorLocalPort | The local port used by this end point. | 1.3.6.1.4.1.3097.6.5.1.2.1.26 |
wgIpsecTunnelNumRekey | The number of rekeys of the tunnel. | 1.3.6.1.4.1.3097.6.5.1.2.1.27 |
wgIpsecTunnelInKbytes | Total inbound traffic in Kbytes since this tunnel was established. | 1.3.6.1.4.1.3097.6.5.1.2.1.28 |
wgIpsecTunnelOutKbytes | Total outbound traffic in Kbytes since this connection was established. | 1.3.6.1.4.1.3097.6.5.1.2.1.29 |
wgIpsecTunnelInPackets | Total number of inbound packets since this connection was established. | 1.3.6.1.4.1.3097.6.5.1.2.1.30 |
wgIpsecTunnelOutPackets | Total number of outbound packets since this connection was established. | 1.3.6.1.4.1.3097.6.5.1.2.1.31 |
wgIpsecTunnelInDecryptErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.6.5.1.2.1.32 |
wgIpsecTunnelInAuthErrors | Total number of packets discarded because of authentication errors since this connection was established. | 1.3.6.1.4.1.3097.6.5.1.2.1.33 |
wgIpsecTunnelInReplayErrors | Total number of packets discarded because of replay errors since this connection was established. | 1.3.6.1.4.1.3097.6.5.1.2.1.34 |
wgIpsecTunnelInOtherErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.6.5.1.2.1.35 |
wgIpsecTunnelOutDecryptErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.6.5.1.2.1.36 |
wgIpsecTunnelOutAuthErrors | The total number of packets discarded because of authentication errors since this connection was established. | 1.3.6.1.4.1.3097.6.5.1.2.1.37 |
wgIpsecTunnelOutReplayErrors | The total number of packets discarded because of replay errors since this connection was established. | 1.3.6.1.4.1.3097.6.5.1.2.1.38 |
wgIpsecTunnelOutOtherErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.6.5.1.2.1.39 |
wgIpsecTunnelUdpEncap |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.6.5.1.2.1.40 |
wgIpsecTunnelPeerUdpPort |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.6.5.1.2.1.41 |
wgIpsecTunnelOrigPeerAddr |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.6.5.1.2.1.42 |
IPSec SA Monitor
Object | Description | OID |
---|---|---|
wgIpsecSaMonitorMIB | This is the base object identifier for all IPSec branches. | 1.3.6.1.4.1.3097.3.1 |
wgSaTables | This is the base object identifier for all tunnel endpoint tables. | 1.3.6.1.4.1.3097.3.1.1 |
wgIpsecSaEspInTable | The (conceptual) table containing information on IPSec inbound ESP tunnel endpoints. There should be one row for every inbound ESP security association that exists in the entity. The maximum number of rows is implementation dependent. | 1.3.6.1.4.1.3097.3.1.1.1 |
wgIpsecSaEspInEntry | An entry (conceptual row) containing the information on a particular IPSec inbound ESP tunnel endpoint. A row in this table cannot be created or deleted by SNMP operations on columns of the table. | 1.3.6.1.4.1.3097.3.1.1.1.1 |
wgIpsecSaEspInAddress |
The destination address of the tunnel. For implementations that do not support IPv6, this address should appear as one of the IPv4-mapped IPv6 addresses as defined in Section 2.5.4 of [IPV6AA]. Specifically, the prefix '0000:0000:0000:0000:0000:FFFF:' is used for IPv4 only nodes, while the prefix '0000:0000:0000:0000:0000:0000:' is used for bi-lingual nodes. |
1.3.6.1.4.1.3097.3.1.1.1.1.1 |
wgIpsecSaEspInSpi | The security parameters index of the tunnel. | 1.3.6.1.4.1.3097.3.1.1.1.1.2 |
wgIpsecSaEspInDestId |
The destination identifier of the tunnel. The value is 0 if the identifier is unknown or if the tunnel uses transport mode encapsulation. This value is taken directly from the optional ID payloads that are exchanged during tunnel creation and negotiation. |
1.3.6.1.4.1.3097.3.1.1.1.1.3 |
wgIpsecSaEspInDestIdType |
The type of identifier presented by 'wgIpsecSaEspInDestId'. The value is 0 if the identifier type is unknown or if the tunnel uses transport mode encapsulation. |
1.3.6.1.4.1.3097.3.1.1.1.1.4 |
wgIpsecSaEspInSourceId |
The source identifier of the tunnel. The value is 0 if the source identifier is unknown or if the tunnel uses transport mode encapsulation. This value is taken directly from the optional ID payloads that are exchange during tunnel creation and negotiation. |
1.3.6.1.4.1.3097.3.1.1.1.1.5 |
wgIpsecSaEspInSourceIdType | The type of identifier presented by 'wgIpsecSaEspInSourceId'. The value is 0 if the identifier type is unknown or if the tunnel uses transport mode encapsulation. | 1.3.6.1.4.1.3097.3.1.1.1.1.6 |
wgIpsecSaEspInProtocol | The transport-layer protocol number that this tunnel carries. The value is 0 if it carries any protocol. | 1.3.6.1.4.1.3097.3.1.1.1.1.7 |
wgIpsecSaEspInDestPort | The destination port number of the protocol that this tunnel carries. The value is 0 if it carries any port number. | 1.3.6.1.4.1.3097.3.1.1.1.1.8 |
wgIpsecSaEspInSourcePort | The source port number of the protocol that this tunnel carries. The value is 0 if it carries any port number. | 1.3.6.1.4.1.3097.3.1.1.1.1.9 |
wgIpsecSaEspInCreator |
The creator of this tunnel. This MIB makes no assumptions about how the tunnels are created. They can be created statically, or by a key exchange protocol such as IKE, or by some other method. |
1.3.6.1.4.1.3097.3.1.1.1.1.10 |
wgIpsecSaEspInEncapsulation | The type of encapsulation used by this tunnel. | 1.3.6.1.4.1.3097.3.1.1.1.1.11 |
wgIpsecSaEspInEncAlg | A unique value that represents the encryption algorithm applied to traffic. The value is 0 if no encryption is used. | 1.3.6.1.4.1.3097.3.1.1.1.1.12 |
wgIpsecSaEspInEncKeyLength |
The length of the encryption key in bits used for the algorithm specified in the 'wgIpsecSaEspInEncAlg' object. The value is 0 if the key length is implicit in the specified algorithm or if no encryption is specified. |
1.3.6.1.4.1.3097.3.1.1.1.1.13 |
wgIpsecSaEspInAuthAlg | A unique value that represents the hash algorithm applied to traffic. The value is 0 if no authentication is used. | 1.3.6.1.4.1.3097.3.1.1.1.1.14 |
wgIpsecSaEspInLimitSeconds |
The maximum lifetime in seconds of the tunnel. The value is if there is no time constraint on the lifetime expiration. The display value is limited to 4,294,967,295 seconds (more than 136 years). Larger values will be truncated. |
1.3.6.1.4.1.3097.3.1.1.1.1.15 |
wgIpsecSaEspInLimitKbytes |
The maximum traffic in kilobytes that the tunnel is allowed to support. The value is 0 if there is no traffic constraint on the expiration. The display value is limited to 4,294,967,295 kilobytes. Larger values will be truncated. |
1.3.6.1.4.1.3097.3.1.1.1.1.16 |
wgIpsecSaEspInAccSeconds | The number of seconds accumulated against the tunnel's expiration by time. This is also the number of seconds that the tunnel has existed. | 1.3.6.1.4.1.3097.3.1.1.1.1.17 |
wgIpsecSaEspInAccKbytes | The amount of traffic accumulated that counts against the tunnel's expiration by traffic limitation, measured in Kbytes. This value is 0 if the tunnel does not expire because of the traffic. | 1.3.6.1.4.1.3097.3.1.1.1.1.18 |
wgIpsecSaEspInUserOctets | The amount of user level traffic measured in bytes handled by the tunnel. This is not necessarily the same as the amount of traffic applied against the traffic expiration limit. | 1.3.6.1.4.1.3097.3.1.1.1.1.19 |
wgIpsecSaEspInPackets | The number of packets handled by the tunnel. | 1.3.6.1.4.1.3097.3.1.1.1.1.20 |
wgIpsecSaEspInDecryptErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.1.1.21 |
wgIpsecSaEspInAuthErrors | The number of packets discarded by the tunnel because of authentication errors. | 1.3.6.1.4.1.3097.3.1.1.1.1.22 |
wgIpsecSaEspInReplayErrors | The number of packets discarded by the tunnel because of replay errors. | 1.3.6.1.4.1.3097.3.1.1.1.1.23 |
wgIpsecSaEspInPolicyErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.1.1.24 |
wgIpsecSaEspInPadErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.1.1.25 |
wgIpsecSaEspInOtherReceiveErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.1.1.26 |
wgIpsecSaAhInTable | The (conceptual) table that contains information on IPSec inbound AH tunnels. There should be one row for every inbound AH security association that exists in the entity. The maximum number of rows is implementation dependent. | 1.3.6.1.4.1.3097.3.1.1.2 |
wgIpsecSaAhInEntry | An entry (conceptual row) that contains the information on a particular IPSec inbound AH tunnel. A row in this table cannot be created or deleted by SNMP operations on columns of the table. | 1.3.6.1.4.1.3097.3.1.1.2.1 |
wgIpsecSaAhInAddress | The destination address of the tunnel. For implementations that do not support IPv6, this address should appear as one of the IPv4-mapped IPv6 addresses as defined in Section 2.5.4 of [IPV6AA]. | 1.3.6.1.4.1.3097.3.1.1.2.1.1 |
wgIpsecSaAhInSpi | The security parameters index of the tunnel. | 1.3.6.1.4.1.3097.3.1.1.2.1.2 |
wgIpsecSaAhInDestId |
The destination identifier of the tunnel. The value is 0 if the destination identifier is unknown or if the tunnel uses transport mode encapsulation. This value is taken directly from the optional ID payloads that are exchange during tunnel creation and negotiation. |
1.3.6.1.4.1.3097.3.1.1.2.1.3 |
wgIpsecSaAhInDestIdType | The type of identifier presented by 'wgIpsecSaAhInDestId'. The value is 0 if the identifier type is unknown or if the tunnel uses transport mode encapsulation. | 1.3.6.1.4.1.3097.3.1.1.2.1.4 |
wgIpsecSaAhInSourceId | The source identifier of the tunnel. The value is 0 if the source identifier is unknown or if the tunnel uses transport mode encapsulation. This value is taken directly from the optional ID payloads that are exchange during tunnel creation and negotiation. | 1.3.6.1.4.1.3097.3.1.1.2.1.5 |
wgIpsecSaAhInSourceIdType | The type of identifier presented by 'wgIpsecSaAhInSourceId'. The value is 0 if the identifier type is unknown or if the tunnel uses transport mode encapsulation. | 1.3.6.1.4.1.3097.3.1.1.2.1.6 |
wgIpsecSaAhInProtocol | The transport-layer protocol number that this tunnel carries. The value is 0 if it carries any protocol. | 1.3.6.1.4.1.3097.3.1.1.2.1.7 |
wgIpsecSaAhInDestPort | The destination port number of the protocol that this tunnel carries. The value is 0 if it carries any port number. | 1.3.6.1.4.1.3097.3.1.1.2.1.8 |
wgIpsecSaAhInSourcePort | The source port number of the protocol that this tunnel carries. The value is 0 if it carries any port number. | 1.3.6.1.4.1.3097.3.1.1.2.1.9 |
wgIpsecSaAhInCreator | The creator of this tunnel. This MIB makes no assumptions about how the tunnels are created. They can be created statically, or by a key exchange protocol such as IKE, or by some other method. | 1.3.6.1.4.1.3097.3.1.1.2.1.10 |
wgIpsecSaAhInEncapsulation | The type of encapsulation used by this tunnel. | 1.3.6.1.4.1.3097.3.1.1.2.1.11 |
wgIpsecSaAhInAuthAlg | A unique value representing the hash algorithm applied to traffic carried by this SA if it uses ESP or 0 if there is no authentication applied by ESP. | 1.3.6.1.4.1.3097.3.1.1.2.1.12 |
wgIpsecSaAhInLimitSeconds | The maximum lifetime of the tunnel, in seconds. The value is 0 if there is no time constraint on the tunnel expiration. The display value is limited to 4,294,967,295 seconds (more than 136 years). Larger values are truncated. | 1.3.6.1.4.1.3097.3.1.1.2.1.13 |
wgIpsecSaAhInLimitKbytes | The maximum traffic in Kbytes that the tunnel is allowed to support. The value is 0 if there is no traffic constraint on the tunnel expiration. The display value is limited to 4,294,967,295 kilobytes. Larger values are truncated. | 1.3.6.1.4.1.3097.3.1.1.2.1.14 |
wgIpsecSaAhInAccSeconds | The number of seconds accumulated against the tunnel expiration, by time. This is also the number of seconds that the tunnel has existed. | 1.3.6.1.4.1.3097.3.1.1.2.1.15 |
wgIpsecSaAhInAccKbytes | The amount of traffic accumulated that counts against the tunnel's expiration by traffic limitation, measured in Kbytes. This value can be 0 if the tunnel does not expire because of traffic. | 1.3.6.1.4.1.3097.3.1.1.2.1.16 |
wgIpsecSaAhInUserOctets | The amount of user level traffic measured in bytes handled by the tunnel. This is not necessarily the same as the amount of traffic applied against the traffic expiration limit. | 1.3.6.1.4.1.3097.3.1.1.2.1.17 |
wgIpsecSaAhInPackets | The number of packets handled by the tunnel. | 1.3.6.1.4.1.3097.3.1.1.2.1.18 |
wgIpsecSaAhInAuthErrors | The number of packets discarded by the tunnel because of authentication errors. | 1.3.6.1.4.1.3097.3.1.1.2.1.19 |
wgIpsecSaAhInReplayErrors | The number of packets discarded by the tunnel because of replay errors. | 1.3.6.1.4.1.3097.3.1.1.2.1.20 |
wgIpsecSaAhInPolicyErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.2.1.21 |
wgIpsecSaAhInOtherReceiveErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.2.1.22 |
wgIpsecSaIpcompInTable | The (conceptual) table that contains information on IPSec inbound IPCOMP tunnels. There should be one row for every inbound IPCOMP (security) association that exists in the entity. The maximum number of rows is implementation dependent. | 1.3.6.1.4.1.3097.3.1.1.3 |
wgIpsecSaIpcompInEntry | An entry (conceptual row) that contains the information on a particular IPSec inbound IPCOMP tunnel. A row in this table cannot be created or deleted by SNMP operations on columns of the table. | 1.3.6.1.4.1.3097.3.1.1.3.1 |
wgIpsecSaIpcompInAddress | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.1 |
wgIpsecSaIpcompInCpi | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.2 |
wgIpsecSaIpcompInDestId | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.3 |
wgIpsecSaIpcompInDestIdType | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.4 |
wgIpsecSaIpcompInSourceId | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.5 |
wgIpsecSaIpcompInSourceIdType | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.6 |
wgIpsecSaIpcompInProtocol | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.7 |
wgIpsecSaIpcompInDestPort | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.8 |
wgIpsecSaIpcompInSourcePort | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.9 |
wgIpsecSaIpcompInCreator IpsecSaCreatorIdent |
This object is deprecated and is currently not in use. A value that indicates how a tunnel endpoint was created |
1.3.6.1.4.1.3097.3.1.1.3.1.10 |
wgIpsecSaIpcompInEncapsulation | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.11 |
wgIpsecSaIpcompInDecompAlg | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.12 |
wgIpsecSaIpcompInSeconds | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.13 |
wgIpsecSaIpcompInUserOctets | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.14 |
wgIpsecSaIpcompInPackets | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.15 |
wgIpsecSaIpcompInDecompErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.16 |
wgIpsecSaIpcompInOtherReceiveErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.3.1.17 |
wgIpsecSaEspOutTable | The (conceptual) table that contains information on IPSec Outbound ESP tunnels. There should be one row for every outbound ESP security association that exists in the entity. The maximum number of rows is implementation dependent. | 1.3.6.1.4.1.3097.3.1.1.4 |
wgIpsecSaEspOutEntry | An entry (conceptual row) that contains the information on a particular IPSec Outbound ESP SA. A row in this table cannot be created or deleted by SNMP operations on columns of the table. | 1.3.6.1.4.1.3097.3.1.1.4.1 |
wgIpsecSaEspOutAddress | The destination address of the tunnel. For implementations that do not support IPv6, this address should appear as one of the IPv4-mapped IPv6 addresses as defined in Section 2.5.4 of [IPV6AA]. | 1.3.6.1.4.1.3097.3.1.1.4.1.1 |
wgIpsecSaEspOutSpi | The security parameters index of the tunnel. | 1.3.6.1.4.1.3097.3.1.1.4.1.2 |
wgIpsecSaEspOutSourceId | The source identifier of the tunnel. The value is 0 if the identifier is unknown or if the tunnel uses transport mode encapsulation. This value is taken directly from the optional ID payloads that are exchange during phase 2 negotiations. | 1.3.6.1.4.1.3097.3.1.1.4.1.3 |
wgIpsecSaEspOutSourceIdType | The type of identifier presented by 'wgIpsecSaEspOutSourceId'. The value is 0 if the identifier type is unknown or if the tunnel uses transport mode encapsulation. | 1.3.6.1.4.1.3097.3.1.1.4.1.4 |
wgIpsecSaEspOutDestId | The destination identifier of the tunnel. The value is 0 if the destination identifier is unknown or if the tunnel uses transport mode encapsulation. This value is taken directly from the optional ID payloads that are exchange during phase 2 negotiations. | 1.3.6.1.4.1.3097.3.1.1.4.1.5 |
wgIpsecSaEspOutDestIdType | The type of identifier presented by 'wgIpsecSaEspOutDestId'. The value is 0 if the identifier type is unknown or if the tunnel uses transport mode encapsulation. | 1.3.6.1.4.1.3097.3.1.1.4.1.6 |
wgIpsecSaEspOutProtocol | The transport-layer protocol number that this tunnel carries. The value is 0 if it carries any protocol. | 1.3.6.1.4.1.3097.3.1.1.4.1.7 |
wgIpsecSaEspOutSourcePort | The source port number of the protocol that this tunnel carries. The value is 0 if it carries any port number. | 1.3.6.1.4.1.3097.3.1.1.4.1.8 |
wgIpsecSaEspOutDestPort | The destination port number of the protocol that this tunnel carries. The value is 0 if it carries any port number. | 1.3.6.1.4.1.3097.3.1.1.4.1.9 |
wgIpsecSaEspOutCreator | The creator of this tunnel. This MIB makes no assumptions about how the tunnels are created. They may be created statically, or by a key exchange protocol such as IKE, or by some other method. | 1.3.6.1.4.1.3097.3.1.1.4.1.10 |
wgIpsecSaEspOutEncapsulation | The type of encapsulation used by this tunnel. | 1.3.6.1.4.1.3097.3.1.1.4.1.11 |
wgIpsecSaEspOutEncAlg | A unique value that represents the encryption algorithm applied to traffic. The value is 0 if no encryption is used. | 1.3.6.1.4.1.3097.3.1.1.4.1.12 |
wgIpsecSaEspOutEncKeyLength | The length of the encryption key in bits used for the algorithm specified in the 'wgIpsecSaEspOutEncAlg' object. The value is 0 if the key length is implicit in the specified algorithm or if no encryption is specified. | 1.3.6.1.4.1.3097.3.1.1.4.1.13 |
wgIpsecSaEspOutAuthAlg | A unique value that represents the hash algorithm applied to traffic. The value is 0 if no authentication is used. | 1.3.6.1.4.1.3097.3.1.1.4.1.14 |
wgIpsecSaEspOutLimitSeconds | The maximum lifetime in seconds of the tunnel. The value is 0 if there is no time constraint on the tunnel expiration. The display value is limited to 4,294,967,295 seconds (more than 136 years). Larger values will be truncated. | 1.3.6.1.4.1.3097.3.1.1.4.1.15 |
wgIpsecSaEspOutLimitKbytes | The maximum traffic in kbytes that the tunnel is allowed to support. The value is 0 if there is no traffic constraint on the tunnel expiration. The display value is limited to 4,294,967,295 kilobytes. Larger values will be truncated. | 1.3.6.1.4.1.3097.3.1.1.4.1.16 |
wgIpsecSaEspOutAccSeconds | The number of seconds accumulated against the tunnel's expiration by time. This is also the number of seconds that the tunnel has existed. | 1.3.6.1.4.1.3097.3.1.1.4.1.17 |
wgIpsecSaEspOutAccKbytes | The amount of traffic accumulated that counts against the tunnel's expiration by traffic limitation, measured in Kbytes. The value is 0 if the tunnel does not expire because of traffic. | 1.3.6.1.4.1.3097.3.1.1.4.1.18 |
wgIpsecSaEspOutUserOctets | The amount of user level traffic handled by the tunnel, measured in bytes. This might not be the same as the amount of traffic applied against the traffic expiration limit. | 1.3.6.1.4.1.3097.3.1.1.4.1.19 |
wgIpsecSaEspOutPackets | The number of packets handled by the tunnel. | 1.3.6.1.4.1.3097.3.1.1.4.1.20 |
wgIpsecSaEspOutSendErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.4.1.21 |
wgIpsecSaAhOutTable | The (conceptual) table that contains information on IPSec Outbound AH tunnels. There should be one row for every outbound AH security association that exists in the entity. The maximum number of rows is implementation dependent. | 1.3.6.1.4.1.3097.3.1.1.5 |
wgIpsecSaAhOutEntry | An entry (conceptual row) that contains the information on a particular IPSec Outbound AH SA. A row in this table cannot be created or deleted by SNMP operations on columns of the table. | 1.3.6.1.4.1.3097.3.1.1.5.1 |
wgIpsecSaAhOutAddress | The destination address of the tunnel. For implementations that do not support IPv6, this address should appear as one of the IPv4-mapped IPv6 addresses as defined in Section 2.5.4 of [IPV6AA]. | 1.3.6.1.4.1.3097.3.1.1.5.1.1 |
wgIpsecSaAhOutSpi | The security parameters index of the tunnel. | 1.3.6.1.4.1.3097.3.1.1.5.1.2 |
wgIpsecSaAhOutSourceId | The source identifier of the tunnel. The value is 0 if the source identifier is unknown or if the tunnel uses transport mode encapsulation. This value is taken directly from the optional ID payloads that are exchanged during phase 2 negotiations. | 1.3.6.1.4.1.3097.3.1.1.5.1.3 |
wgIpsecSaAhOutSourceIdType | The type of identifier presented by 'wgIpsecSaAhOutSourceId'. The value is 0 if the identifier type is unknown or if the tunnel uses transport mode encapsulation. | 1.3.6.1.4.1.3097.3.1.1.5.1.4 |
wgIpsecSaAhOutDestId | The destination identifier of the tunnel. The value is 0 if the destination identifier is unknown or if the tunnel uses transport mode encapsulation. This value is taken directly from the optional ID payloads that are exchange during phase 2 negotiations. | 1.3.6.1.4.1.3097.3.1.1.5.1.5 |
wgIpsecSaAhOutDestIdType | The type of identifier presented by 'wgIpsecSaAhOutDestId'. The value is 0 if the identifier type is unknown or if the tunnel uses transport mode encapsulation. | 1.3.6.1.4.1.3097.3.1.1.5.1.6 |
wgIpsecSaAhOutProtocol | The transport-layer protocol number that this tunnel carries. The value is 0 if the tunnel carries any protocol. | 1.3.6.1.4.1.3097.3.1.1.5.1.7 |
wgIpsecSaAhOutSourcePort | The source port number of the protocol that this tunnel carries. The value is 0 if the tunnel carries any port number. | 1.3.6.1.4.1.3097.3.1.1.5.1.8 |
wgIpsecSaAhOutDestPort | The destination port number of the protocol that this tunnel carries. The value is 0 if the tunnel carries any port number. | 1.3.6.1.4.1.3097.3.1.1.5.1.9 |
wgIpsecSaAhOutCreator | The creator of this tunnel. This MIB makes no assumptions about how the tunnels are created. They can be created statically, by a key exchange protocol such as IKE, or by some other method. | 1.3.6.1.4.1.3097.3.1.1.5.1.10 |
wgIpsecSaAhOutEncapsulation | The type of encapsulation used by this tunnel. | 1.3.6.1.4.1.3097.3.1.1.5.1.11 |
wgIpsecSaAhOutAuthAlg | A unique value that represents the hash algorithm applied to traffic. The value is 0 if no authentication is used. | 1.3.6.1.4.1.3097.3.1.1.5.1.12 |
wgIpsecSaAhOutLimitSeconds | The maximum lifetime in seconds of the tunnel. The value is 0 if there is no time constraint on the tunnel expiration. The display value is limited to 4,294,967,295 seconds (more than 136 years). Larger values will be truncated. | 1.3.6.1.4.1.3097.3.1.1.5.1.13 |
wgIpsecSaAhOutLimitKbytes | The maximum traffic in Kbytes that the tunnel is allowed to support. The value is 0 if there is no traffic constraint on the tunnel expiration. The display value is limited to 4,294,967,295 kilobytes. Larger values will be truncated. | 1.3.6.1.4.1.3097.3.1.1.5.1.14 |
wgIpsecSaAhOutAccSeconds | The number of seconds accumulated against the tunnel's expiration by time. This is also the number of seconds that the tunnel has existed. | 1.3.6.1.4.1.3097.3.1.1.5.1.15 |
wgIpsecSaAhOutAccKbytes | The amount of traffic accumulated that counts against the tunnel's expiration by traffic limitation, measured in Kbytes. This value might be 0 if the tunnel does not expire because of traffic. | 1.3.6.1.4.1.3097.3.1.1.5.1.16 |
wgIpsecSaAhOutUserOctets | The amount of user level traffic measured in bytes handled by the tunnel. This is not necessarily the same as the amount of traffic applied against the traffic expiration limit. | 1.3.6.1.4.1.3097.3.1.1.5.1.17 |
wgIpsecSaAhOutPackets | The number of packets handled by the tunnel. | 1.3.6.1.4.1.3097.3.1.1.5.1.18 |
wgIpsecSaAhOutSendErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.5.1.19 |
wgIpsecSaIpcompOutTable | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6 |
wgIpsecSaIpcompOutEntry | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1 |
wgIpsecSaIpcompOutAddress | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.1 |
wgIpsecSaIpcompOutCpi | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.2 |
wgIpsecSaIpcompOutSourceId | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.3 |
wgIpsecSaIpcompOutSourceIdType | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.4 |
wgIpsecSaIpcompOutDestId | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.5 |
wgIpsecSaIpcompOutDestIdType | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.6 |
wgIpsecSaIpcompOutProtocol | The transport-layer protocol number that this tunnel carries. The value is 0 if it carries any protocol. | 1.3.6.1.4.1.3097.3.1.1.6.1.7 |
wgIpsecSaIpcompOutSourcePort | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.8 |
wgIpsecSaIpcompOutDestPort | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.9 |
wgIpsecSaIpcompOutCreator | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.10 |
wgIpsecSaIpcompOutEncapsulation | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.11 |
wgIpsecSaIpcompOutCompAlg | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.12 |
wgIpsecSaIpcompOutSeconds | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.13 |
wgIpsecSaIpcompOutUserOctets | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.1.6.1.14 |
wgIpsecSaIpcompOutPackets | The number of packets handled by the tunnel. | 1.3.6.1.4.1.3097.3.1.1.6.1.15 |
wgSaStatistics | The base object for statistics. | 1.3.6.1.4.1.3097.3.1.2 |
wgIpsecEspCurrentInboundSAs | The current number of inbound ESP tunnels in the entity. | 1.3.6.1.4.1.3097.3.1.2.1 |
wgIpsecEspTotalInboundSAs | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.2.2 |
gIpsecEspCurrentOutboundSAs | The current number of outbound ESP tunnels in the entity. | 1.3.6.1.4.1.3097.3.1.2.3 |
wgIpsecEspTotalOutboundSAs | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.2.4 |
wgIpsecAhCurrentInboundSAs | The current number of inbound AH tunnels in the entity. | 1.3.6.1.4.1.3097.3.1.2.5 |
wgIpsecAhTotalInboundSAs | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.2.6 |
wgIpsecAhCurrentOutboundSAs | The current number of outbound AH tunnels in the entity. | 1.3.6.1.4.1.3097.3.1.2.7 |
wgIpsecAhTotalOutboundSAs | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.2.8 |
wgIpsecIpcompCurrentInboundSAs | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.2.9 |
wgIpsecIpcompTotalInboundSAs | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.2.10 |
wgIpsecIpcompCurrentOutboundSAs | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.2.11 |
wgIpsecIpcompTotalOutboundSAs | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.2.12 |
wgSaErrors | The base object for errors. | 1.3.6.1.4.1.3097.3.1.3 |
wgIpsecDecryptionErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.3.1 |
wgIpsecAuthenticationErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.3.2 |
wgIpsecReplayErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.3.3 |
wgIpsecPolicyErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.3.4 |
wgIpsecOtherReceiveErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.3.5 |
wgIpsecSendErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.3.6 |
wgIpsecUnknownSpiErrors | This object is deprecated and is currently not in use. | 1.3.6.1.4.1.3097.3.1.3.7 |
IPSec Endpoint Pairs
Object | Description | OID |
---|---|---|
wgIpsecEndpointPairMIB | This is the base object identifier for all IPSec tunnel branches. | 1.3.6.1.4.1.3097.5.1 |
wgIpsecEndpointPair | This is the base object identifier for all IPSec tunnel information. | 1.3.6.1.4.1.3097.5.1.1 |
wgIpsecEndpointPairNum | The total number of entries in the wgIpsecEndpointPairTable. | 1.3.6.1.4.1.3097.5.1.1.1.0 |
wgIpsecEndpointPairTable | The connection table that describes all current IPSec tunnels. | 1.3.6.1.4.1.3097.5.1.1.2 |
wgIpsecEndpointPairEntry | An entry (conceptual row) that contains the information on an IPSec tunnel between two IPSec security gateways. | 1.3.6.1.4.1.3097.5.1.1.2.1 |
wgIpsecEndpointPairIndex | The running index of this IPSec endpoint pair. | 1.3.6.1.4.1.3097.5.1.1.2.1.1 |
wgIpsecEndpointPairLocalAddr | The local IP address of the current IPSec endpoint pair. | 1.3.6.1.4.1.3097.5.1.1.2.1.2 |
wgIpsecEndpointPairPeerAddr | The remote IP address of the current IPSec endpoint pair. | 1.3.6.1.4.1.3097.5.1.1.2.1.3 |
wgIpsecEndpointPairInSAs | The number of inbound IPSec tunnel routes in this IPSec endpoint pair. | 1.3.6.1.4.1.3097.5.1.1.2.1.4 |
wgIpsecEndpointPairOutSAs | The number of outbound IPSec tunnel routes in this IPSec endpoint pair. | 1.3.6.1.4.1.3097.5.1.1.2.1.5 |
wgIpsecEndpointPairInAccKbytes | The total inbound traffic in Kbytes since this connection was established. | 1.3.6.1.4.1.3097.5.1.1.2.1.6 |
wgIpsecEndpointPairOutAccKbytes | The total outbound traffic in Kbytes since this connection was established. | 1.3.6.1.4.1.3097.5.1.1.2.1.7 |
wgIpsecEndpointPairInPackets | The total number of inbound packets since this connection was established. | 1.3.6.1.4.1.3097.5.1.1.2.1.8 |
wgIpsecEndpointPairOutPackets | The total number of outbound packets since this connection was established. | 1.3.6.1.4.1.3097.5.1.1.2.1.9 |
wgIpsecEndpointPairDecryptErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.5.1.1.2.1.10 |
wgIpsecEndpointPairAuthErrors | The total number of packets discarded due to authentication errors since this connection was established. | 1.3.6.1.4.1.3097.5.1.1.2.1.11 |
wgIpsecEndpointPairReplayErrors | The total number of packets discarded due to replay errors since this connection was established. | 1.3.6.1.4.1.3097.5.1.1.2.1.12 |
wgIpsecEndpointPairPolicyErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.5.1.1.2.1.13 |
wgIpsecEndpointPairPadErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.5.1.1.2.1.14 |
wgIpsecEndpointPairOtherReceiveErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.5.1.1.2.1.15 |
wgIpsecEndpointPairSendErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.5.1.1.2.1.16 |
wgIpsecEndpointPairStatistics | This is the base object identifier for all objects which are global counters for IPSec tunnels. | 1.3.6.1.4.1.3097.5.1.2 |
wgIpsecEndpointPairTotalInSAs | The total number of active inbound tunnel routes. | 1.3.6.1.4.1.3097.5.1.2.1 |
wgIpsecEndpointPairTotalOutSAs | The total number of active outbound tunnel routes. | 1.3.6.1.4.1.3097.5.1.2.2 |
wgIpsecEndpointPairTotalInAccKbytes | The total inbound IPSec traffic. | 1.3.6.1.4.1.3097.5.1.2.3 |
wgIpsecEndpointPairTotalOutAccKbytes | The total outbound IPSec traffic. | 1.3.6.1.4.1.3097.5.1.2.4 |
wgIpsecEndpointPairTotalInPackets | The total inbound IPSec packets. | 1.3.6.1.4.1.3097.5.1.2.5 |
wgIpsecEndpointPairTotalOutPackets | The total outbound IPSec packets. | 1.3.6.1.4.1.3097.5.1.2.6 |
wgIpsecEndpointPairTotalDecryptErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.5.1.2.7 |
wgIpsecEndpointPairTotalAuthErrors | The total number of packets discarded because of authentication errors. | 1.3.6.1.4.1.3097.5.1.2.8 |
wgIpsecEndpointPairTotalReplayErrors | The total number of packets discarded because of replay errors. | 1.3.6.1.4.1.3097.5.1.2.9 |
wgIpsecEndpointPairTotalPolicyErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.5.1.2.10 |
wgIpsecEndpointPairTotalPadErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.5.1.2.11 |
wgIpsecEndpointPairTotalOtherReceiveErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.5.1.2.12 |
wgIpsecEndpointPairTotalSendErrors |
This object is deprecated and is currently not in use. |
1.3.6.1.4.1.3097.5.1.2.13 |
wgIpsecEndpointPairPeerIPToTunnel | This is the base object identifier for tunnel information about all policies. | 1.3.6.1.4.1.3097.5.1.3 |
wgIpsecEndpointPairPeerIPToTunnelNum | The total number of tunnels in the peeriptotunnel table. | 1.3.6.1.4.1.3097.5.1.3.1 |
wgIpsecEndpointPairPeerIPToTunnelTable | The peeriptotunnel table in the endpointpair MIB. | 1.3.6.1.4.1.3097.5.1.3.2 |
wgIpsecEndpointPairPeerIPToTunnelEntry | An entry (conceptual row) that contains the peer IP address and tunnel information. | 1.3.6.1.4.1.3097.5.1.3.2.1 |
wgIpsecEndpointPairPeerIPToTunnelPeerIP | The peer IP address of the peeriptotunnel table. | 1.3.6.1.4.1.3097.5.1.3.2.1.1 |
wgIpsecEndpointPairPeerIPToTunnelTunnelID | The tunnel ID of the peeriptotunnel table. | 1.3.6.1.4.1.3097.5.1.3.2.1.2 |
FireCluster Status
Object | Description | OID |
---|---|---|
wgClusterStatusMIB | This is cluster status information. | 1.3.6.1.4.1.3097.6.6 |
wgClusterEnabled | The status of the FireCluster on the Firebox: enabled or disabled. | 1.3.6.1.4.1.3097.6.6.1 |
wgFirstMemberId | The cluster member ID of the first cluster member. | 1.3.6.1.4.1.3097.6.6.2 |
wgFirstMemberRole | The role of the first cluster member. | 1.3.6.1.4.1.3097.6.6.3 |
wgFirstMemberSystemHealth | The health status of the first cluster member. | 1.3.6.1.4.1.3097.6.6.4 |
wgFirstMemberHardwareHealth | The hardware health value of the first cluster member. | 1.3.6.1.4.1.3097.6.6.5 |
wgFirstMemberMonitorPortHealth | The health status of the ports on the first cluster member. | 1.3.6.1.4.1.3097.6.6.6 |
wgFirstMemberWeightAvg | The weighted average value for the first cluster member. | 1.3.6.1.4.1.3097.6.6.7 |
wgSecondMemberId | The cluster member ID of the second cluster member. | 1.3.6.1.4.1.3097.6.6.8 |
wgSecondMemberRole | The role of the second cluster member. | 1.3.6.1.4.1.3097.6.6.9 |
wgSecondMemberSystemHealth | The health status of the second cluster member. | 1.3.6.1.4.1.3097.6.6.10 |
wgSecondMemberHardwareHealth | The hardware health value for the second cluster member. | 1.3.6.1.4.1.3097.6.6.11 |
wgSecondMemberMonitorPortHealth | The health status of the ports on the second cluster member. | 1.3.6.1.4.1.3097.6.6.12 |
wgSecondMemberWeightAvg | The weighted average value for the second cluster member. | 1.3.6.1.4.1.3097.6.6.13 |
General System Information
Object | Description | OID |
---|---|---|
wgInfoSystem | This is the base system information for all wg Client branches. | 1.3.6.1.4.1.3097.6.1 |
wgInfoSystemCurrentTime | The local date and time of day on the management computer. | 1.3.6.1.4.1.3097.6.1.1.0 |
wgInfoGavService | The version and update time of the Gateway Antivirus Service. | 1.3.6.1.4.1.3097.6.1.3.0 |
wgInfoIpsService | The version and update time of the Intrusion Prevention Service. | 1.3.6.1.4.1.3097.6.1.4.0 |
Client MIBs
Object | Description | OID |
---|---|---|
wgClientMIB | This is the base object identifier for DHCP Server, DHCP Client, and PPPoE Client | 1.3.6.1.4.1.3097.6.2 |
wgClientDHCPServer | This is the base object identifier for all DHCP server related information. | 1.3.6.1.4.1.3097.6.2.1 |
wgClientDHCPServerEnable | Indicates whether the DHCP Server has been enabled. | 1.3.6.1.4.1.3097.6.2.1.1 |
wgClientDHCPServerStartIpAddress | The IP address at the start of the range of IP addresses leased by the DHCP server. | 1.3.6.1.4.1.3097.6.2.1.2 |
wgClientDHCPServerEndIpAddress | The last IP address in the range of IP addresses leased by the DHCP Server. | 1.3.6.1.4.1.3097.6.2.1.3 |
wgClientDHCPServerLeaseTime | The lease time of an address assigned to a DHCP client. | 1.3.6.1.4.1.3097.6.2.1.4 |
wgClientDHCPServerNum | The total number of entries in the wgClientDHCPServerTable. | 1.3.6.1.4.1.3097.6.2.1.5 |
wgClientDHCPServerConnTable | This is the client lease table of the DHCP Server. | 1.3.6.1.4.1.3097.6.2.1.6 |
wgClientDHCPServerConnEntry | An entry (conceptual row) that contains the lease information of an assigned address by the DHCP Server. | 1.3.6.1.4.1.3097.6.2.1.6.1 |
wgClientDHCPServerConnClientHostName | The host name of the client. | 1.3.6.1.4.1.3097.6.2.1.6.1.1 |
wgClientDHCPServerConnIPAddr | The IP address assigned to the client. | 1.3.6.1.4.1.3097.6.2.1.6.1.2 |
wgClientDHCPServerConnMACAddr | The MAC address of the client. | 1.3.6.1.4.1.3097.6.2.1.6.1.3 |
wgClientDHCPServerConnLeaseTimeStart | The start date and time of the lease. | 1.3.6.1.4.1.3097.6.2.1.6.1.4 |
wgClientDHCPServerConnLeaseTimeEnd | The end date and time of the lease. | 1.3.6.1.4.1.3097.6.2.1.6.1.5 |
wgClientDHCPServerRelayServer | The IP address of the remote DHCP server to which DHCP requests are relayed. | 1.3.6.1.4.1.3097.6.2.1.7 |
wgClientDHCPClient | This is the base object identifier for all DHCP client related information. | 1.3.6.1.4.1.3097.6.2.2 |
wgClientDHCPClientEnable | Indicates whether interface 1 (public) is configured to obtain IP address through DHCP. | 1.3.6.1.4.1.3097.6.2.2.1 |
wgClientDHCPClientDomainName | The domain name of the DHCP Client. | 1.3.6.1.4.1.3097.6.2.2.2 |
wgClientDHCPClientDefaultGateway | The IP address of the default gateway for the DHCP client. | 1.3.6.1.4.1.3097.6.2.2.3 |
wgClientDHCPClientDNSOne | The IP address of the primary DNS server for the DHCP client. | 1.3.6.1.4.1.3097.6.2.2.4 |
wgClientDHCPClientDNSTwo | The IP address of the secondary DNS server for the DHCP client. | 1.3.6.1.4.1.3097.6.2.2.5 |
wgClientPPPoEClient | This is the base object identifier for all PPPoE client related information. | 1.3.6.1.4.1.3097.6.2.3 |
wgClientPPPoEClientEnable | Indicates whether the interface 1 (public) is configured to use PPPoE. | 1.3.6.1.4.1.3097.6.2.3.1 |
wgClientPPPoEClientADSLStatus | The current ADSL status of the PPPoE Client. | 1.3.6.1.4.1.3097.6.2.3.2 |
wgClientPPPoEClientLocalIPAddr | The IP address for the PPPoE Client. | 1.3.6.1.4.1.3097.6.2.3.3 |
wgClientPPPoEClientRemoteIPAddr | The IP Address of the PPP server this PPPoE client connects to. | 1.3.6.1.4.1.3097.6.2.3.4 |
wgClientPPPoEClientNetMask | The subnet mask of the PPPoE client. | 1.3.6.1.4.1.3097.6.2.3.5 |
wgClientPPPoEClientDNSOne | The IP address of the primary DNS server. | 1.3.6.1.4.1.3097.6.2.3.6 |
wgClientPPPoEClientDNSTwo | The IP address of the secondary DNS server. | 1.3.6.1.4.1.3097.6.2.3.7 |
wgClientPPPoEADSLPeerMACAddr | The MAC Address of the PPP server this client connects to. | 1.3.6.1.4.1.3097.6.2.3.8 |
wgClientPPPoEClientConnTime | The connection time of the PPPoE connection. | 1.3.6.1.4.1.3097.6.2.3.9 |
IPSec ISAKMP IKE DOI Textual Conventions
Object | Description |
---|---|
IpsecDoiSituation | The IPSEC DOI Situation provides information that can be used by the responder to make a policy determination about how to process the incoming Security Association request. |
IpsecDoiSecProtocolId | These are the IPSEC DOI values for the Protocol-Id field in an ISAKMP Proposal Payload, and in all Notification Payloads. They are also used as the Protocol-ID in the Notification Payload and the Delete Payload. The values 249-255 are reserved for private use between cooperative systems. |
IpsecDoiTransformIdent | The IPSEC DOI ISAKMP Transform Identifier is an 8-bit value that identifies a key exchange protocol to be used for the negotiation. It is used in the Transform-Id field of an IKE Phase I Transform Payload. The values 249-255 are reserved for private use between cooperative systems. |
IpsecDoiAhTransform | The IPSEC DOI AH Transform Identifier is an 8-bit value that identifies a particular algorithm to be used to provide integrity protection for AH. It is used in the Tranform-ID field of an ISAKMP Transform Payload for the IPSEC DOI, when the Protocol-Id of the associated Proposal Payload is 2 (AH). The values 249-255 are reserved for private use between cooperative systems. |
IpsecDoiEspTransform | The IPSEC DOI ESP Transform Identifier is an 8-bit value that identifies a particular algorithm to be used to provide secrecy protection for ESP. It is used in the Transform-ID field of an ISAKMP Transform Payload for the IPSEC DOI, when the Protocol-Id of the associated Proposal Payload is 2 (AH), 3 (ESP), and 4 (IPCOMP). The values 249-255 are reserved for private use between cooperative systems. |
IpsecDoiAuthAlgorithm | The ESP Authentication Algorithm used in the IPSEC DOI as a SA Attributes definition in the Transform Payload of Phase II of an IKE negotiation. This set of values defines the AH authentication algorithm, when the associated Proposal Payload has a Protocol-ID of 2 (AH). This set of values defines the ESP authentication algorithm, when the associated Proposal Payload has a Protocol-ID of 3 (ESP). Values 5-61439 are reserved to IANA. Values 61440-65535 are for private use. In a MIB, a value of 0 indicates that ESP has been negotiated without authentication. |
IpsecDoiIpcompTransform | The IPSEC DOI IPCOMP Transform Identifier is an 8-bit value which identifies a particular algorithm to be used to provide IP-level compression before ESP. It is used in the Transform-ID field of a ISAKMP Transform Payload for the IPSEC DOI, when the Protocol-Id of the associated Proposal Payload is 4 (IPCOMP). The values 1-47 are reserved for algorithms for which an RFC has been approved for publication. The values 48-63 are reserved for private use between cooperative systems. The values 64-255 are reserved for future expansion. |
IpsecDoiEncapsulationMode | The Encapsulation Mode used as an IPSEC DOI SA Attributes definition in the Transform Payload of a Phase II IKE negotiation. This set of values defines encapsulation modes used for AH, ESP, and IPCOMP when the associated Proposal Payload has a Protocol-ID of 3 (ESP). Values 3-61439 are reserved to IANA. Values 61440-65535 are for private use. |
IpsecDoiIdentType | The IPSEC DOI Identification Type is an 8-bit value which is used in the ID Type field as a discriminator for interpretation of the variable-length Identification Payload. The values 249-255 are reserved for private use between cooperative systems. |
IsakmpDOI | These are the domain of interpretation values for the ISAKMP Protocol. They are a 32-bit value used in the Domain of Interpretation field of the Security Association Payload. Values 2-4294967295 are reserved to the IANA. |
IsakmpCertificateEncoding | These are the values for the types of certificate-related information contained in the Certificate Data field of a Certificate Payload. They are used in the Cert Encoding field of the Certificate Payload. Values 11-255 are reserved. |
IsakmpExchangeType | These are the values used for the exchange types in the ISAKMP header. Values up to 31 are reserved for future DOI-independent assignment for ISAKMP. The values 240-255 are reserved for private use between cooperative systems. |
IsakmpNotifyMessageType | These are the values for the types of notification messages. They are used as the Notify Message Type field in the Notification Payload. This textual convention merges the types for error types (in the range 1-16386) and for notification types (in the range 16384-65535). The values 16001-16383 are reserved for private use as error types between cooperative systems. The values 24576-32767 are reserved for use in each DOI. Each DOI should have a clone of this textual convention adding local values. The values 32768-40958 are reserved for private use as notification types between cooperative systems. |
IkeExchangeType | These are the values used for the exchange types in the ISAKMP header. The values 32-239 are DOI-specific, these values are for the IPSec DOI used by IKE. The values 240-255 are reserved for private use between cooperative systems. |
IkeEncryptionAlgorithm | Values for encryption algorithms negotiated for the ISAKMP SA by IKE in Phase I. These are values for SA Attribute type Encryption Algorithm (1). Values 7-65000 are reserved to IANA. Values 65001-65535 are for private use among mutually consenting parties. |
IkeHashAlgorithm | Values for hash algorithms negotiated for the ISAKMP SA by IKE in Phase I. These are values for SA Attrbute type Hash Algorithm (2). Values 4-65000 are reserved to IANA. Values 65001-65535 are for private use among mutually consenting parties. |
IkeAuthMethod | Values for authentication methods negotiated for the ISAKMP SA by IKE in Phase I. These are values for SA Attrbute type Authentication Method (3). Values 6-65000 are reserved to IANA. Values 65001-65535 are for private use among mutually consenting parties. |
IkeGroupDescription | Values for Oakley key computation groups for Diffie-Hellman exchange negotiated for the ISAKMP SA by IKE in Phase I. They are also used in Phase II when perfect forward secrecy is in use. These are values for SA Attrbute type Group Description (4). |
IkeGroupType | Values for Oakley key computation group types negotiated for the ISAKMP SA by IKE in Phase I. They are also used in Phase II when perfect forward secrecy is in use. These are values for SA Attribute type Group Type (5). |
IkePrf | Values for Pseudo-Random Functions used with with the hash algorithm negotiated for the ISAKMP SA by IKE in Phase I. There are currently no pseudo-random functions defined, the default HMAC is always used. These are values for SA Attribute type PRF (13). Values 1-65000 are reserved to IANA. Values 65001-65535 are for private use among mutually consenting parties. |
IkeNotifyMessageType | These are the values for the types of notification messages. They are used as the Notify Message Type field in the Notification Payload. This textual convention merges the types for error types (in the range 1-16386) and for notification types (in the range 16384-65535). This textual convention is a merge of values defined by ISAKMP with the additional values defined in the IPSEC DOI. The values 16001-16383 are reserved for private use as error types between cooperative systems. The values 32001-32767 are reserved for private use as notification types between cooperative systems. |