CISCO-IP-ENCRYPTION-MIB Table View

Table-centric layout grouping table, row, and column objects.

Standard view Table view
Tables
3
Rows
3
Columns
24

cieEngineStatusTable

table
.1.3.6.1.4.1.9.9.52.1.2.1 · 1 row entry · 6 columns
Open in standard view 
A table describing status of all encryption engines present
within the router.
cieEngineStatusEntry entry .1.3.6.1.4.1.9.9.52.1.2.1.1
Each entry in this table describes public key associated with
each engine, with its unique ID. In case of hardware assisted
encryption each entry also describes status of encryption port
adaptor.
Indexes
cieEngineID
Column Syntax OID
cieEngineID
Unique value identifying the crypto engine, in case
of RP and other software only platforms, this is the
processor ID. In case of ESA, this will be a unique ID
retrieved from ESA.
Integer32
Constraints:
range: 1-2147483647
 .1.3.6.1.4.1.9.9.52.1.2.1.1.1
cieEngineCardIndex
Corresponds to cardIndex in the chassis mib, if value is 0
then this is a software encryption engine.
SNMPv2-SMIInteger32
Textual Convention: SNMPv2-SMIInteger32 Integer32
Type Constraints:
range: -2147483648..2147483647
 .1.3.6.1.4.1.9.9.52.1.2.1.1.2
cieEnginePublicKey
Public key for a particular crypto engine.
OctetString
Constraints:
range: 0-1024
 .1.3.6.1.4.1.9.9.52.1.2.1.1.3
cieEsaTampered
Indicates whether encryption port adaptor has been tampered
with.
NOTE: This object is not present for software encryption
engines.
SNMPv2-TCTruthValue
Textual Convention: SNMPv2-TCTruthValue Enumeration
Type Values:
1true
2false
 .1.3.6.1.4.1.9.9.52.1.2.1.1.4
cieEsaAuthenticated
Indicates whether encryption port adaptor has been properly
authenticated for this router.
NOTE: This object is not present for software encryption
engines.
SNMPv2-TCTruthValue
Textual Convention: SNMPv2-TCTruthValue Enumeration
Type Values:
1true
2false
 .1.3.6.1.4.1.9.9.52.1.2.1.1.5
cieEsaMode
Indicates current operating mode of the ESA card.
This variable directly corresponds to LED status shown on ESA.
NOTE: This object is not present for software encryption
engines.
Enumeration
Enumerated Values:
1enableActive
2boot
3error
 .1.3.6.1.4.1.9.9.52.1.2.1.1.6

cieConnTable

table
.1.3.6.1.4.1.9.9.52.1.3.2 · 1 row entry · 9 columns
Open in standard view 
A table that describes all encrypted IP traffic 
created by the router, between the protected entity
(cieProtectedAddr) and the unprotected entity 
(cieUnprotectedAddr). Each entry in this table
describes a virtual encrypted IP tunnel.
cieConnEntry entry .1.3.6.1.4.1.9.9.52.1.3.2.1
This entry describes a connection viz. the protected and
unprotected node, status of the connection and number of
packets encrypted, decrypted per connection and algorithm
used for encrypting data.
Each entry also co…
Indexes
cieEngineID cieConnIndex
Column Syntax OID
cieConnIndex
A monotonically increasing integer for the sole purpose of
indexing the cieConnTable. When it reaches the
maximum value, the agent wraps the value back to 1 and
may flush existing entries.
Integer32
Constraints:
range: 1-2147483647
 .1.3.6.1.4.1.9.9.52.1.3.2.1.1
cieProtectedAddr
The IP address for protected (secure) node.
SNMPv2-SMIIpAddress
Textual Convention: SNMPv2-SMIIpAddress OctetString
Type Constraints:
range: 4
 .1.3.6.1.4.1.9.9.52.1.3.2.1.2
cieUnprotectedAddr
The IP address of the unprotected (insecure) node in
the network.
SNMPv2-SMIIpAddress
Textual Convention: SNMPv2-SMIIpAddress OctetString
Type Constraints:
range: 4
 .1.3.6.1.4.1.9.9.52.1.3.2.1.3
cieConnStatus
Integer describing status/type of connection. The pending
and bad connections may be removed after 4 minutes of
non-activity. Open (active) connections may be removed if
they have not transmitted/received traffic in t…
Enumeration
Enumerated Values:
1pendingConnection
2openConnection
3exchangeKeys
4badConnection
 .1.3.6.1.4.1.9.9.52.1.3.2.1.4
ciePktsEncrypted
Total number of packets encrypted for this connection.
SNMPv2-SMICounter32
Textual Convention: SNMPv2-SMICounter32 Unsigned32
Type Constraints:
range: 0..4294967295
 .1.3.6.1.4.1.9.9.52.1.3.2.1.5
ciePktsDecrypted
Total number of packets decrypted for this connection.
SNMPv2-SMICounter32
Textual Convention: SNMPv2-SMICounter32 Unsigned32
Type Constraints:
range: 0..4294967295
 .1.3.6.1.4.1.9.9.52.1.3.2.1.6
ciePktsDropped
Total number of packets dropped for this connection. The
packets are dropped only in cases where encryption keys are
not established between the protected entity and the
unprotected entity. An increase in this value …
SNMPv2-SMICounter32
Textual Convention: SNMPv2-SMICounter32 Unsigned32
Type Constraints:
range: 0..4294967295
 .1.3.6.1.4.1.9.9.52.1.3.2.1.7
cieLocalTimeEstablished
Value of sysUpTime at which the connection was established or
re-established.
SNMPv2-TCTimeStamp
Textual Convention: SNMPv2-TCTimeStamp Unsigned32
 .1.3.6.1.4.1.9.9.52.1.3.2.1.8
cieAlgorithmType
Type of encryption algorithm used for this connection.
Enumeration
Enumerated Values:
1des56bitCfb64
2des56bitCfb8
3des40bitCfb64
4des40bitdesCfb8
 .1.3.6.1.4.1.9.9.52.1.3.2.1.9

cieTestConnTable

table
.1.3.6.1.4.1.9.9.52.1.4.1 · 1 row entry · 9 columns
Open in standard view 
A table of test crypto session entries.
cieTestConnEntry entry .1.3.6.1.4.1.9.9.52.1.4.1.1
A encryption test entry.
A management station wishing to create an entry should
first generate a pseudo-random serial number to be used
as the index to this sparse table. The station should
then create the associated …
Indexes
cieTestConnSerialNumber
Column Syntax OID
cieTestConnSerialNumber
Object which specifies a unique entry in the
cieTestConnTable. A management station wishing
to initiate a crypto session test operation should use a
pseudo-random value for this object when creating
an instance of a ci…
Integer32
Constraints:
range: 1-2147483647
 .1.3.6.1.4.1.9.9.52.1.4.1.1.1
cieTestConnProtectedAddr
The IP address of the protected (secure) node, for
the test connection.
SNMPv2-SMIIpAddressr/w
Textual Convention: SNMPv2-SMIIpAddress OctetString
Type Constraints:
range: 4
 .1.3.6.1.4.1.9.9.52.1.4.1.1.2
cieTestConnUnprotectedAddr
The IP address of the unprotected (insecure) node for
the test connection.
SNMPv2-SMIIpAddressr/w
Textual Convention: SNMPv2-SMIIpAddress OctetString
Type Constraints:
range: 4
 .1.3.6.1.4.1.9.9.52.1.4.1.1.3
cieTestConnTrapOnCompletion
Specifies whether or not a cieTestCompletion
trap should be issued on completion of test crypto session.
If such a trap is desired, it is the responsibility of the
management entity to ensure that the SNMP administra…
SNMPv2-TCTruthValuer/w
Textual Convention: SNMPv2-TCTruthValue Enumeration
Type Values:
1true
2false
 .1.3.6.1.4.1.9.9.52.1.4.1.1.4
cieTestConnCryptoMapName
Specifies name of the crypto map already configured on the
router. A crypto map along with its tag number fully
specifies the enryption policy, such as type of algorithm to
be used, the name of the peer router and acc…
SNMPv2-TCDisplayStringr/w
Textual Convention: SNMPv2-TCDisplayString OctetString
Type Constraints:
range: 0..255
 .1.3.6.1.4.1.9.9.52.1.4.1.1.5
cieTestConnCryptoMapTagNumber
Specifies tag number of the crypto map already configured on
the router. A crypto map along with its tag number fully
specifies the enryption policy, such as type of algorithm to
be used, the name of the peer router …
Integer32r/w
Constraints:
range: 1-2147483647
 .1.3.6.1.4.1.9.9.52.1.4.1.1.6
cieTestConnSessionStatus
Set to a value that indicates whether a crypto session was
successfully established, failed or the connection
establishment process is in progress. If the specified crypto
map is not configured, value is set to badC…
Enumeration
Enumerated Values:
1inProgress
2fail
3success
4badCryptoMapName
 .1.3.6.1.4.1.9.9.52.1.4.1.1.7
cieTestConnEntryOwner
The entity that configured this entry.
IF-MIBOwnerStringr/w
Textual Convention: IF-MIBOwnerString OctetString
Type Constraints:
range: 0..255
 .1.3.6.1.4.1.9.9.52.1.4.1.1.8
cieTestConnEntryStatus
The status of this table entry. Once the entry status is
set to active, the associate entry cannot be modified until
the sequence completes (cieTestConnSessionStatus has
value other than inprogress ).
SNMPv2-TCRowStatusr/w
Textual Convention: SNMPv2-TCRowStatus Enumeration
Type Values:
1active
2notInService
3notReady
4createAndGo
5createAndWait
6destroy
 .1.3.6.1.4.1.9.9.52.1.4.1.1.9