BINTEC-STUNNEL-MIB Table View

The Index gives (should give) an unique ID for the STunnel.

The AdminStatus of one entry declares whether this peer should
be established (up) or not (down). In case of setting the AdminStatus
to 'delete' the entry will be deleted.

The description of the Stunnel. Is only for giving each tunnel
a name but has no further meaning e.g. function.

This field holds the IP to or from which the SSL connection
will be established. If it is set (not 0) in
ExternalMode_server the remote IP (incoming connection) is
checked against ExternalIp. The default value is 0.0.…

The port of the external connection. In ExternalMode client
it defines the port it is connected to and in ExternalMode server
it defines the port it is listened on for incoming connections.

The ExternalMode declares whether the system is server or client
to the outside e.g. SSL connection.

The InternalIp default value is 127.0.0.1 (localhost).
That means that the internal stunnel endpoint is the system
itself and connects to an internal service
(telnet,snmp,syslog). In special cases it is possible to
to…

The port on which will be connected internally in InternalMode client or
on which will be listened on for an incoming connection.

The InternalMode declares whether the system is server or client
to the inside connection (NON-SSL connection).

The PrivateToken is sent with the first packet as soon as
the connection is established. It is used if the remote side
wants to receive several connections on the same port and therefore
needs a token to associate the c…

If VerifyPeer is set to 'none'(1) no SSL verification is done.
Setting VerifyPeer to 'normal'(2) a normal SSL verification is done
(certificates are checked). If it is set to 'high'(3) also the
subjectname of the remot…

The (row) index of the CertTable holding the wanted peer certificate
for the connection.

The (row) index of the CertTable holding the wanted/needed CA certificate
for the connection.

when VerifyPeer set to 'high' the string in this field is compared
with the subjectname of the remote peer certificate.

when VerifyPeer set to 'very_high' the string in this field
is compared with the serial number of the remote peer certificate.

when VerifyPeer set to 'very_high' the string in this field
is compared with the DNS attribute within the subject alternative
names of the remote peer certificate. But if this variable is left
blank no comparison is do…

The certificatestatus displays if and which error occured during
the certificate validation. If no error occured it is ok(2).
The four possible errors are the cert is untrusted(3),
the cert has expired(4), the cert has…

The number of retries which were already done during the
actual e.g. last connection.

The time in seconds which the system waits for a reconnection
try if the last try failed.

The maximum number of retries till the system declares
the connection to failed. In case of '-1' infinite retries
will take place.

The time till the connection will be reopened.

The ShortHold is the number of seconds after which an inactive
connection is closed. Is the ShortHold set to -1 it is never
closed for the reason of inactivity.

enables(2) or disables(1) debug messages for this peer.

This value shows the time since the last sTunnelStatus change.

The amount of received (data) bytes from the external connection.
Only the real data bytes
(without any header or encryption/hash are counted).

The amount of transmitted bytes towards the external connection.
Only the real data bytes
(without any header or encryption/hash are counted).

Counts the SSL-TCP-Connections of this tunnel.

The (operational) status of the connection. 'up'(1) means the
connection is fully established.
'down'(2) means the connection is (finally) down.
'wait-for-retry'(3) means the system waits RetryTime
seconds before the n…