CISCO-LWAPP-IDS-MIB Table View
Table-centric layout grouping table, row, and column objects.
Tables
2
Rows
2
Columns
12
.1.3.6.1.4.1.9.9.519.1.1.1
·
1 row entry
·
9 columns
This table facilitates the configuration of a group
of IPS sensors to which the LWAPP controller would
subscribe to retrieve the IDS events from the
respective sensors.
IPS sensors are used to protect the network by helping
to detect and report threats like worms, viruses etc.
By subscribing to such a sensor, the LWAPP controller,
through appropriate interfaces, can retrieve the
events detected by the sensor and report the same
to the NMS. The controller can accept the request, to
block the packets from an IP address, from each Sensor
configured through this table and block the data
traffic originating from that particular source.
Rows are added or deleted to the table by explicit
management actions initiated by the user from a
network management station. Information about each
IPS sensor is uniquely identified by the network
address of the respective sensor.
There is an entry in this table for each IPS sensor
identified by cLIdsIpsSensorAddressType and
cLIdsIpsSensorAddress from which the controller can
accept requests to block certain clients.
identified by cLIdsIpsSensorAddressType and
cLIdsIpsSensorAddress from which the controller can
accept requests to block certain clients.
Indexes
cLIdsIpsSensorAddressType cLIdsIpsSensorAddress
| Column | Syntax | OID | ||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
cLIdsIpsSensorAddressType
This object represents the type of the network
address made available through cLIdsIpsSensorAddress. |
INET-ADDRESS-MIBInetAddressType Textual Convention: INET-ADDRESS-MIBInetAddressType EnumerationType Values:
|
.1.3.6.1.4.1.9.9.519.1.1.1.1.1 |
||||||||||||||
|
cLIdsIpsSensorAddress
This object represents the network address of the
IPS sensor. The type of the network address represented by this object is determined by the value of cLIdsIpsSensorAddressType. |
INET-ADDRESS-MIBInetAddress Textual Convention: INET-ADDRESS-MIBInetAddress OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.519.1.1.1.1.2 |
||||||||||||||
|
cLIdsIpsSensorUserName
This object represents the user name in use
by the LWAPP controller to get authenticated with the IPS sensor. |
SNMP-FRAMEWORK-MIBSnmpAdminStringr/w Textual Convention: SNMP-FRAMEWORK-MIBSnmpAdminString OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.519.1.1.1.1.3 |
||||||||||||||
|
cLIdsIpsSensorPassword
This object represents the password following the
username used by the LWAPP controller to get authenticated with the IPS sensor. Note that the read operation on this object returns a string in the patter… |
SNMP-FRAMEWORK-MIBSnmpAdminStringr/w Textual Convention: SNMP-FRAMEWORK-MIBSnmpAdminString OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.519.1.1.1.1.4 |
||||||||||||||
|
cLIdsIpsSensorQueryInterval
This object represents the time interval at which
the controller would query this particular IPS sensor for IDS events. |
Hundredths-secondsInteger32r/w Constraints: range: 1000-360000 |
.1.3.6.1.4.1.9.9.519.1.1.1.1.5 |
||||||||||||||
|
cLIdsIpsSensorEnabled
This object represents the status of this IPS
sensor as seen by controller for its interaction with the sensor. A value of 'true' indicates the controller shall query the sensor for events and respond to … |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.519.1.1.1.1.6 |
||||||||||||||
|
cLIdsIpsSensorFingerPrintHex
This object represents the SHA1 hash done on the
sensor certificate and configured as a series of 40 hexadecimal digits. This hash value is needed to verify the validity of the certificate to prevent security attacks. … |
OctetStringr/w Constraints: range: 40-40 |
.1.3.6.1.4.1.9.9.519.1.1.1.1.7 |
||||||||||||||
|
cLIdsIpsSensorPort
This object represents the HTTPS port on the
sensor on which the controller polls the sensor. |
Unsigned32r/w Constraints: range: 1-65535 |
.1.3.6.1.4.1.9.9.519.1.1.1.1.8 |
||||||||||||||
|
cLIdsIpsSensorRowStatus
This is the status column for this row and used
to create and delete specific instances of rows in this table. |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.9.9.519.1.1.1.1.9 |
cLIdsClientExclTable
table.1.3.6.1.4.1.9.9.519.1.2.1
·
1 row entry
·
3 columns
This table lists those clients whose data packets
are to be blocked as requested by the IPS sensor
due to the detection of attacks at layer 3 to
layer 7 involving the particular client.
This table has an expansion dependent relationship
with cLIdsIpsSensorConfigTable. There may exist one
or more rows corresponding to the row for each
sensor configured through cLIdsIpsSensorConfigTable.
An entry is added to this row by the agent when the
controller receives the block request from one of
the IPS sensors configured through
cLIdsIpsSensorConfigTable. The controller sends
the ciscoLwappIdsShunClientUpdate notification
to indicate that the controller shall be blocking
the particular client for a period equal to
cLIdsClientTimeRemaining.
The entry corresponding to a particular client is
removed when one of the following happens.
(i) When the configuration about the particular
IPS sensor is removed from the controller, either
through an explicit management action initiated
through the NMS or when the controller reboots.
(ii) When the remaining time period for which the
client will be blocked as indicated by
cLIdsClientTimeRemaining, expires.
(iii) When the IPS sensor explicitly requests the
controller to stop blocking the client's data
packets.
The controller sends the ciscoLwappIdsShunClientUpdate
notification with cLIdsClientTimeRemaining equal to
0 to indicate that the client won't be blocked any
further, on one of the three conditions for entry
removal mentioned above.
Each entry in this table represents the information
about a wireless client whose data packets are
requested to be blocked by the controller. The
request is made by the IPS sensor identified by
cLIdsIpsSensorAddress.
about a wireless client whose data packets are
requested to be blocked by the controller. The
request is made by the IPS sensor identified by
cLIdsIpsSensorAddress.
Indexes
cLIdsIpsSensorAddressType cLIdsIpsSensorAddress cLIdsClientAddressType cLIdsClientAddress
| Column | Syntax | OID | ||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
cLIdsClientAddressType
This object identifies the type of the network
address being populated by cLIdsClientAddress. |
INET-ADDRESS-MIBInetAddressType Textual Convention: INET-ADDRESS-MIBInetAddressType EnumerationType Values:
|
.1.3.6.1.4.1.9.9.519.1.2.1.1.1 |
||||||||||||||
|
cLIdsClientAddress
This object identifies the network address of the
wireless client whose data packets have been requested to be blocked by the controller. The type of the network address represented by this object is determined by the … |
INET-ADDRESS-MIBInetAddress Textual Convention: INET-ADDRESS-MIBInetAddress OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.519.1.2.1.1.2 |
||||||||||||||
|
cLIdsClientTimeRemaining
This object indicates the remaining time for which
the client's data packets are going to be blocked by the controller. |
hundredths-secondsSNMPv2-TCTimeInterval Textual Convention: SNMPv2-TCTimeInterval Integer32Type Constraints: range: 0..2147483647 |
.1.3.6.1.4.1.9.9.519.1.2.1.1.3 |