caqSecurityAction
CISCO-CATOS-ACL-QOS-MIB ·
.1.3.6.1.4.1.9.9.179.1.3.9.1.2
Object
column
r/w
Enumeration
Determines the action that the device will take if the traffic
matches the ACE.
If permit(1) is specified, the matched traffic will be allowed
through the device.
If deny(2) is specified, the matched traffic will be blocked and
dropped.
If redirect(3) is specified, the matched traffic will be
redirected to physical port(s) which should be configured
in the caqSecurityRedirectPortList object. Redirect means
taking packet coming in and putting it out of port(s)
as is.
If redirectWithAdj(4) is specified, the matched traffic will
be redirected to the VLAN configured in the adjacency entry
denoted by caqSecurityAdjIndex.
If denyWithLog(5) is specified, the matched traffic will be
blocked, dropped and logged.
If denyArpInspection(6) is specified, the matched ARP traffic
will be blocked and dropped.
If denyArpInspWithLog(7) is specified, the matched ARP traffic
will be blocked, dropped and logged.
If permitArpInspection(8) is specified, the matched ARP
traffic will be allowed through the device.
if include(9) is specified, the matched trafic will be
regulated according to the downloaded ACE type denoted
by caqSecurityDownloadedAceFeature object.
Context
- MIB
- CISCO-CATOS-ACL-QOS-MIB
- OID
.1.3.6.1.4.1.9.9.179.1.3.9.1.2- Type
- column
- Access
- readwrite
- Status
- current
- Parent
- caqSecurityActionEntry
- Table
- caqSecurityActionTable
- Siblings
- 8
Syntax
Enumeration
Values & Constraints
Enumerated Values
1 | permit |
2 | deny |
3 | redirect |
4 | redirectWithAdj |
5 | denyWithLog |
6 | denyArpInspection |
7 | denyArpInspWithLog |
8 | permitArpInspection |
9 | include |
Related Objects
Sibling Objects
| Object | Type | Syntax | OID |
|---|---|---|---|
| caqSecurityActionIndex The index of this table for indicating a Security ACE action
entry. | column | Unsigned32 | .1.3.6.1.4.1.9.9.179.1.3.9.1.1 |
| caqSecurityRedirectPortList deprecated Indicates the set of physical port(s) that matched
traffic is redirected to. Each octet within the value of
this object specifies a set of eight ports, with the first
octet specif… | column | OctetString | .1.3.6.1.4.1.9.9.179.1.3.9.1.3 |
| caqSecurityCapture Indicates whether the matched traffic is to be captured.
Capture means the packet is not only switched normally but also
a copy of the switched packet is transmitted on the captur… | column | SNMPv2-TCTruthValue | .1.3.6.1.4.1.9.9.179.1.3.9.1.4 |
| caqSecurityActionStatus The status of this Security ACE action conceptual row entry.
This object is used to manage creation, deletion and
modification of rows in this table.
An entry may… | column | SNMPv2-TCRowStatus | .1.3.6.1.4.1.9.9.179.1.3.9.1.5 |
| caqSecurityAdjIndex Indicates the index of an active adjacency entry in
caqAdjacencyTable. The value of this object is ignored whenever
the value of caqSecurityAction object in the same row is not
r… | column | Unsigned32 | .1.3.6.1.4.1.9.9.179.1.3.9.1.6 |
| caqSecurityArpMacAddress Indicates the 48 bits Mac address used in ARP packet.
The value of this object is ignored whenever the value of
caqSecurityAction object in the same row is not one of
the followin… | column | SNMPv2-TCMacAddress | .1.3.6.1.4.1.9.9.179.1.3.9.1.7 |
| caqSecurityRedirect2kPortList Indicates the set of physical port(s) that matched
traffic is redirected to. Each octet within the value of
this object specifies a set of eight ports, with the first
octet specif… | column | OctetString | .1.3.6.1.4.1.9.9.179.1.3.9.1.8 |
| caqSecurityDownloadedAceFeature Indicates the feature type of the downloaded ACE.
'notApplicable' indicates that this security action
entry is not applied to any downloaded ACE.
'do… | column | Enumeration | .1.3.6.1.4.1.9.9.179.1.3.9.1.9 |