CISCO-WDS-IDS-MIB Table View
Table-centric layout grouping table, row, and column objects.
Tables
1
Rows
1
Columns
5
ciscoWdsIdsMacSpoofTable
table.1.3.6.1.4.1.9.9.457.1.1.3
·
1 row entry
·
5 columns
This table gives the information about the MAC
spoofing attacks detected by the network entity
offering WDS.
An entry in this table is created by the agent when
the WDS detects a MAC spoofing attack.
The agent at anytime will retain only the most
recent and maximum number of entries possible
for a particular MAC. The older entries are
purged automatically when the number of entries
for a particular MAC reaches its maximum.
Thus, there can be a maximum of those many
different MAC addresses indicated by
ciscoWdsIdsMaxMacAddresses and for each MAC
address, the maximum number of entries is
indicated by the value of the MIB object
ciscoWdsIdsMaxEntriesPerMac.
MAC spoofing is detected only by the network entity
serving as the active WDS and hence this table
is populated only by the active WDS as indicated
by the values 'wds' and 'active' for the MIB objects
cDot11csServiceType and cDot11csWdsInstanceState
respectively. If cDot11csServiceType equals 'none'
indicating that WDS is not configured in this
station, or cDot11csWdsInstanceState not equals
'active' indicating that this entity is not the
currently active WDS, a 'noSuchInstance' error
is returned for the queries to the objects of this
table.
An entry holds the information about one instance of
MAC spoofing attack detected on the radio interface
of the AP identified by
ciscoWdsIdsMacSpoofStaMacAddress.
MAC spoofing attack detected on the radio interface
of the AP identified by
ciscoWdsIdsMacSpoofStaMacAddress.
Indexes
ciscoWdsIdsMacSpoofStaMacAddress ciscoWdsIdsMacSpoofIndex
| Column | Syntax | OID |
|---|---|---|
|
ciscoWdsIdsMacSpoofStaMacAddress
This object identifies the radio interface of the
802.11 station, that has forwarded the authentication request of the client with the spoofed MAC address indicated by ciscoWdsIdsMacSpoofClient, to the WDS. |
SNMPv2-TCMacAddress Textual Convention: SNMPv2-TCMacAddress OctetStringType Constraints: range: 6 |
.1.3.6.1.4.1.9.9.457.1.1.3.1.1 |
|
ciscoWdsIdsMacSpoofIndex
This object identifies the set of information about
one instance of a MAC spoofing attack detected by the WDS. The radio interface of the 802.11 station that has forwarded the authentication request is identified by ci… |
SNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.457.1.1.3.1.2 |
|
ciscoWdsIdsMacSpoofClient
This object indicates the MAC address that
has been spoofed. |
SNMPv2-TCMacAddress Textual Convention: SNMPv2-TCMacAddress OctetStringType Constraints: range: 6 |
.1.3.6.1.4.1.9.9.457.1.1.3.1.3 |
|
ciscoWdsIdsMacSpoofUserId
This object indicates the userId used by the
wireless client when attempting the MAC spoofing attack. |
OctetString Constraints: range: 1-253 |
.1.3.6.1.4.1.9.9.457.1.1.3.1.4 |
|
ciscoWdsIdsMacSpoofDetectTime
This object indicates the time at which this MAC
spoofing attempt is detected by the WDS. |
SNMPv2-TCTimeStamp Textual Convention: SNMPv2-TCTimeStamp Unsigned32 |
.1.3.6.1.4.1.9.9.457.1.1.3.1.5 |