tIPsecRUTnlPfsDHGroup
TIMETRA-IPSEC-MIB ·
.1.3.6.1.4.1.6527.3.1.2.48.20.1.9
Object
column
TIMETRA-TC-MIBTmnxIkePolicyDHGroupOrZero
The value of tIPsecRUTnlPfsDHGroup indicates the new Diffie-hellman key exchange each time the SA(Security Association) key is renegotiated. After the SA expires, the key is forgotten and another key is generated (if the SA remains up). This means that an attacker who cracks part of the exchange can only read the part that used the key before the key changed. There is no advantage of cracking the other parts if the attacker has already cracked one.
Context
- MIB
- TIMETRA-IPSEC-MIB
- OID
.1.3.6.1.4.1.6527.3.1.2.48.20.1.9- Type
- column
- Access
- readonly
- Status
- current
- Parent
- tIPsecRUTnlEntry
- Table
- tIPsecRUTnlTable
- Siblings
- 27
Syntax
TIMETRA-TC-MIBTmnxIkePolicyDHGroupOrZero
- Source
- TIMETRA-TC-MIBTmnxIkePolicyDHGroupOrZero
- Base type
Enumeration
Values & Constraints
Type Values
0 | unspecified |
1 | group1 |
2 | group2 |
5 | group5 |
14 | group14 |
15 | group15 |
19 | group19 |
20 | group20 |
21 | group21 |
Related Objects
Sibling Objects
| Object | Type | Syntax | OID |
|---|---|---|---|
| tIPsecRUTnlInetAddrType The value of tIPsecRUTnlInetAddrType indicates the address type of the
SAP IPsec gateway to the tunnel. | column | INET-ADDRESS-MIBInetAddressType | .1.3.6.1.4.1.6527.3.1.2.48.20.1.1 |
| tIPsecRUTnlReplayWindow The value of tIPsecRUTnlReplayWindow indicates the size of the
anti-replay window. | column | Unsigned32 | .1.3.6.1.4.1.6527.3.1.2.48.20.1.10 |
| tIPsecRUTnlPrivateSvcId The value of tIPsecRUTnlPrivateSvcId indicates the service-id of the
Tunnel delivery service. | column | TIMETRA-TC-MIBTmnxServId | .1.3.6.1.4.1.6527.3.1.2.48.20.1.11 |
| tIPsecRUTnlPrivateIfIndex The value of tIPsecRUTnlPrivateIfIndex indicates the private interface
index used by the tunnel. | column | IF-MIBInterfaceIndex | .1.3.6.1.4.1.6527.3.1.2.48.20.1.12 |
| tIPsecRUTnlHasBiDirectionalSA The value of tIPsecRUTnlHasBiDirectionalSA indicates whether this
tunnel has bi-directional Security-Association entries. | column | SNMPv2-TCTruthValue | .1.3.6.1.4.1.6527.3.1.2.48.20.1.13 |
| tIPsecRUTnlHostISA The value of tIPsecRUTnlHostISA indicates the active ISA MDA that is
being used to host this tunnel.
This object will contain a nonzero value only when the tunnel i… | column | TIMETRA-CHASSIS-MIBTmnxHwIndexOrZero | .1.3.6.1.4.1.6527.3.1.2.48.20.1.14 |
| tIPsecRUTnlMatchTrustAnchor The value of tIPsecRUTnlMatchTrustAnchor indicates the name for
matched Certificate-Authority Profile name associated with this SAP
IPSec tunnel certificate. | column | TIMETRA-TC-MIBTNamedItemOrEmpty | .1.3.6.1.4.1.6527.3.1.2.48.20.1.15 |
| tIPsecRUTnlOperChanged The value of tIPsecRUTnlOperChanged indicates the sysUpTime at the
time of the last operational status change of this entry. | column | SNMPv2-TCTimeStamp | .1.3.6.1.4.1.6527.3.1.2.48.20.1.16 |
| tIPsecRUTnlIkeIdType The value of tIPsecRUTnlIkeIdType indicates the ID type for the IKE
header used in the tunnel associated with this entry.
If the tunnel is not an IKEv2 remote acces… | column | Enumeration | .1.3.6.1.4.1.6527.3.1.2.48.20.1.17 |
| tIPsecRUTnlIkeIdValue The value of tIPsecRUTnlIkeIdValue indicates the string presentation
of the ID value for the IKE header used in the tunnel associated with
this entry. | column | SNMPv2-TCDisplayString | .1.3.6.1.4.1.6527.3.1.2.48.20.1.18 |
| tIPsecRUTnlPrivateIpAddr2Type The value of the tIPsecRUTnlPrivateIpAddr2Type indicates the address
type of the second private address in the tunnel. | column | INET-ADDRESS-MIBInetAddressType | .1.3.6.1.4.1.6527.3.1.2.48.20.1.19 |
| tIPsecRUTnlInetAddress This value of tIPsecRUTnlInetAddress indicates the address of of the
SAP IPsec gateway to the tunnel. | column | OctetString | .1.3.6.1.4.1.6527.3.1.2.48.20.1.2 |
| tIPsecRUTnlPrivateIpAddr2 The value of tIPsecRUTnlPrivateIpAddr2 indicates the second private
address on the IPsec gateway tunnel. | column | OctetString | .1.3.6.1.4.1.6527.3.1.2.48.20.1.20 |
| tIPsecRUTnlPrivateIpPrefixLen2 The value of tIPsecRUTnlPrivateIpPrefixLen2 indicates the number of
bits to match on the tIPsecRUTnlPrivateIpAddr2. | column | INET-ADDRESS-MIBInetAddressPrefixLength | .1.3.6.1.4.1.6527.3.1.2.48.20.1.21 |
| tIPsecRUTnlInUseTsList The value of tIPsecRUTnlInUseTsList indicates the traffic selector
(TS) list used by this tunnel. | column | TIMETRA-TC-MIBTNamedItem | .1.3.6.1.4.1.6527.3.1.2.48.20.1.22 |
| tIPsecRUTnlInUsePreSharedKey The value of tIPsecRUTnlInUsePreSharedKey indicates the pre-shared key
used by this tunnel. | column | TIMETRA-TC-MIBTLNamedItemOrEmpty | .1.3.6.1.4.1.6527.3.1.2.48.20.1.23 |
| tIPsecRUTnlPubTcpMss The value of tIPsecRUTnlPubTcpMss indicates the Maximum Segment Size
(MSS) for the TCP traffic in an IPsec tunnel which is sent from the
public network to the private network. | column | octets SNMPv2-SMIInteger32 | .1.3.6.1.4.1.6527.3.1.2.48.20.1.24 |
| tIPsecRUTnlPrivTcpMss The value of tIPsecRUTnlPrivTcpMss specifies the Maximum Segment Size
(MSS) for the TCP traffic in an IPsec tunnel which is sent from the
private network to the public network. | column | octets SNMPv2-SMIInteger32 | .1.3.6.1.4.1.6527.3.1.2.48.20.1.25 |
| tIPsecRUTnlInUseIkePolicy The value of tIPsecRUTnlInUseIkePolicy indicates the IKE policy
identifier used by this tunnel. | column | TmnxIkePolicyIdOrZero | .1.3.6.1.4.1.6527.3.1.2.48.20.1.26 |
| tIPsecRUTnlHostEsa The value of tIPsecRUTnlHostEsa indicates the active ESA that is being
used to host this tunnel.
This object will contain a nonzero value only when the tunnel is bo… | column | TIMETRA-CHASSIS-MIBTmnxEsaIdOrZero | .1.3.6.1.4.1.6527.3.1.2.48.20.1.27 |
| tIPsecRUTnlHostEsaVm The value of tIPsecRUTnlHostEsaVm indicates the active ESA virtual
machine that is being used to host this tunnel.
This object will contain a nonzero value only whe… | column | TIMETRA-CHASSIS-MIBTmnxEsaVmIdOrZero | .1.3.6.1.4.1.6527.3.1.2.48.20.1.28 |
| tIPsecRUTnlPort The value of tIPsecRUTnlPort indicates the UDP port of the SAP IPsec
gateway to the tunnel. | column | TIMETRA-TC-MIBTTcpUdpPort | .1.3.6.1.4.1.6527.3.1.2.48.20.1.3 |
| tIPsecRUTnlPrivateIpAddrType The value of tIPsecRUTnlPrivateIpAddrType indicates the address type
of the private IP Address in the tunnel. | column | INET-ADDRESS-MIBInetAddressType | .1.3.6.1.4.1.6527.3.1.2.48.20.1.4 |
| tIPsecRUTnlPrivateIpAddr The value of tIPsecRUTnlPrivateIpAddr indicates the private IP address
on the IPsec gateway tunnel. | column | OctetString | .1.3.6.1.4.1.6527.3.1.2.48.20.1.5 |
| tIPsecRUTnlPrivateIpPrefixLen The value of tIPsecRUTnlPrivateIpPrefixLen indicates the number of
bits to match on the tIPsecRUTnlPrivateIpAddr. | column | INET-ADDRESS-MIBInetAddressPrefixLength | .1.3.6.1.4.1.6527.3.1.2.48.20.1.6 |
| tIPsecRUTnlTempId The value of tIPsecRUTnlTempId indicates the id of a tunnel template
entry used for the tunnel. | column | TIMETRA-TC-MIBTmnxIPsecTunnelTemplateId | .1.3.6.1.4.1.6527.3.1.2.48.20.1.7 |
| tIPsecRUTnlIPsecSALifeTime The value of tIPsecRUTnlIPsecSALifeTime indicates the lifetime of the
phase 2 IKE key. | column | seconds Unsigned32 | .1.3.6.1.4.1.6527.3.1.2.48.20.1.8 |