CISCO-PORT-SECURITY-MIB Table View
Table-centric layout grouping table, row, and column objects.
Tables
5
Rows
5
Columns
35
cpsIfConfigTable
table.1.3.6.1.4.1.9.9.315.1.2.1
·
1 row entry
·
18 columns
A list of port security configuration entries. The number of entries is determined by the number of interfaces in the system that can support the port security feature. Interfaces that are not port security capable will not be displayed in this Table. This table includes interfaces on which port security parameters can be set even if port security feature itself cannot be enabled due to conflict with other features.
Entry containing port security information for a
particular interface.
particular interface.
Indexes
IF-MIBifIndex
| Column | Syntax | OID | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
cpsIfPortSecurityEnable
Indicates whether the port security feature
is enabled on an interface. Upon setting this object to 'true', the source MAC address that does not match any cpsSecureMacAddress for the given interface in cpsSecureMacAddr… |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.315.1.2.1.1.1 |
||||||||||
|
cpsIfPortSecurityStatus
This object represents the operational status
of the port security feature on an interface. secureup(1) - This indicates port security is operational. securedown(2) - This indicates port sec… |
Enumeration Enumerated Values:
|
.1.3.6.1.4.1.9.9.315.1.2.1.1.2 |
||||||||||
|
cpsIfMaxSecureMacAddr
The maximum number (N) of MAC addresses to be
secured on the interface. The first N MAC addresses learned or configured are made secured. Changing this object value from N to M is not allowed if M is smaller than N, a… |
Integer32r/w Constraints: range: 1-2147483647 |
.1.3.6.1.4.1.9.9.315.1.2.1.1.3 |
||||||||||
|
cpsIfCurrentSecureMacAddrCount
The current number of MAC addresses secured
on this interface. |
Integer32 Constraints: range: 0-2147483647 |
.1.3.6.1.4.1.9.9.315.1.2.1.1.4 |
||||||||||
|
cpsIfSecureMacAddrAgingTime
The interval in which the interface is
secured. After the expiration of the time, the corresponding cpsSecureMacAddressEntry from the cpsSecureMacAddressTable will be removed. If the value of this object is 0, the agin… |
minutesInteger32r/w Constraints: range: 0-1440 |
.1.3.6.1.4.1.9.9.315.1.2.1.1.5 |
||||||||||
|
cpsIfSecureMacAddrAgingType
The aging type determines the way the
secure MAC addresses are aged out. absolute(1) - all the secure MAC addresses will be aged out after cpsIfSecureMacAddrAgingTime … |
Enumerationr/w Enumerated Values:
|
.1.3.6.1.4.1.9.9.315.1.2.1.1.6 |
||||||||||
|
cpsIfStaticMacAddrAgingEnable
Indicates whether the secure MAC address aging
mechanism is enabled on static MAC address entries in cpsSecureMacAddressTable. Setting this object value to 'false' will cause the static MAC addresses to remain in the cp… |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.315.1.2.1.1.7 |
||||||||||
|
cpsIfViolationAction
Determines the action that the device will
take if the traffic matches the port security violation. shutdown(1) - the interface will be forced to shut down. dropNotify… |
Enumerationr/w Enumerated Values:
|
.1.3.6.1.4.1.9.9.315.1.2.1.1.8 |
||||||||||
|
cpsIfViolationCount
This object indicates the number of violations
occurred on a secure interface. The counter will be initialized to zero when the port security feature is enabled on an interface. This MIB object is only instantiated if … |
SNMPv2-SMICounter32 Textual Convention: SNMPv2-SMICounter32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.315.1.2.1.1.9 |
||||||||||
|
cpsIfSecureLastMacAddress
This object indicates the last MAC
address that is seen on this interface. This object is also used as a variable in the cpsSecureMacAddrViolation notification to contain the value of the MAC address whi… |
SNMPv2-TCMacAddress Textual Convention: SNMPv2-TCMacAddress OctetStringType Constraints: range: 6 |
.1.3.6.1.4.1.9.9.315.1.2.1.1.10 |
||||||||||
|
cpsIfClearSecureAddresses
deprecated
Set to 'true' to delete all secure addresses on
this interface. Setting this object to 'false' has no effect. This object always returns 'false' when read. |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.315.1.2.1.1.11 |
||||||||||
|
cpsIfUnicastFloodingEnable
Setting this object to true(1) will configure
the interface not to block unicast flooded traffic when the secure address count reaches the threshold. Setting this object to false(2) will configure the interface to blo… |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.315.1.2.1.1.12 |
||||||||||
|
cpsIfShutdownTimeout
The interval in which the cpsIfPortSecurityStatus
may remain in shutdown(3). After the expiration of the time, all the security configuration of this port is re-installed and the port is enabled. If the value of this … |
minutesSNMPv2-SMIUnsigned32r/w Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.315.1.2.1.1.13 |
||||||||||
|
cpsIfClearSecureMacAddresses
This objects allows the user to delete
secure MAC addresses based on the type specified. |
ClearSecureMacAddrTyper/w Textual Convention: ClearSecureMacAddrType EnumerationType Values:
|
.1.3.6.1.4.1.9.9.315.1.2.1.1.14 |
||||||||||
|
cpsIfStickyEnable
Set to 'true' to enable and 'false' to
disable Sticky port security feature on this interface. Enabling this feature allows the device to secure learned MAC addresses on this interface permanently. In order to remove … |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.315.1.2.1.1.15 |
||||||||||
|
cpsIfInvalidSrcRateLimitEnable
Set to 'true' to enable and 'false' to disable
rate limiting for invalid source MAC addresses received on this interface. Enabling this feature will help to rate limit packets which comes with invalid src MAC address o… |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.315.1.2.1.1.16 |
||||||||||
|
cpsIfInvalidSrcRateLimitValue
If cpsIfInvalidSrcRateLimitEnable is set to
'true' then this value is used to limit the rate at which packets with invalid source MAC addresses are processed on this interface. Upon exceeding the rate, the port… |
Packets per secondInteger32r/w Constraints: range: -1-1000 |
.1.3.6.1.4.1.9.9.315.1.2.1.1.17 |
||||||||||
|
cpsIfSecureLastMacAddrVlanId
This object indicates the VLAN where the last
MAC address that is seen on this interface. This object is also used as a variable in the cpsIfVlanSecureMacAddrViolation notification to contain the value of… |
Q-BRIDGE-MIBVlanIndex Textual Convention: Q-BRIDGE-MIBVlanIndex Unsigned32 |
.1.3.6.1.4.1.9.9.315.1.2.1.1.18 |
.1.3.6.1.4.1.9.9.315.1.2.2
·
1 row entry
·
4 columns
A list of port security entries containing the secure MAC address information.
Entry containing secure MAC address
information for a particular interface.
A secure MAC address can be configured
by the user and can be added by the agent
when the device learns a new secured
MAC address.
Note that…
information for a particular interface.
A secure MAC address can be configured
by the user and can be added by the agent
when the device learns a new secured
MAC address.
Note that…
Indexes
IF-MIBifIndex cpsSecureMacAddress
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
cpsSecureMacAddress
deprecated
This object indicates a secure MAC
address configured or learned on an interface. |
SNMPv2-TCMacAddress Textual Convention: SNMPv2-TCMacAddress OctetStringType Constraints: range: 6 |
.1.3.6.1.4.1.9.9.315.1.2.2.1.1 |
||||||||||||
|
cpsSecureMacAddrType
deprecated
This object indicates if the secure MAC address
is a configured (static) or learned (dynamic) address on this interface. |
Enumeration Enumerated Values:
|
.1.3.6.1.4.1.9.9.315.1.2.2.1.2 |
||||||||||||
|
cpsSecureMacAddrRemainingAge
deprecated
This object indicates the remaining age
of the secure MAC address if aging is enabled on that port. A value of 0 indicates that aging is disabled for this MAC address entry. |
minutesInteger32 Constraints: range: 0-1440 |
.1.3.6.1.4.1.9.9.315.1.2.2.1.3 |
||||||||||||
|
cpsSecureMacAddrRowStatus
deprecated
This object is a conceptual row entry that allows to add
or delete entries to or from the cpsSecureMacAddressTable. 1. When creating an entry in this table 'createAndGo' method is used and the value of … |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.9.9.315.1.2.2.1.4 |
.1.3.6.1.4.1.9.9.315.1.2.3
·
1 row entry
·
5 columns
A list of port security entries containing
the secure MAC address information.
This table is simular to cpsSecureMacAddressTable
except that cpsIfVlanSecureVlanIndex is part of
the INDEX clause.
This table is used to configure a secure MAC
address on either an access interface or trunking
interface which support port security feature.
Entry containing secure MAC address
information for a particular interface.
A secure MAC address can be configured
by the user and can be added by the agent
when the device learns a new secure MAC address.
Note that the…
information for a particular interface.
A secure MAC address can be configured
by the user and can be added by the agent
when the device learns a new secure MAC address.
Note that the…
Indexes
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
cpsIfVlanSecureMacAddress
This object indicates a secure MAC
address configured or learned on an interface. |
SNMPv2-TCMacAddress Textual Convention: SNMPv2-TCMacAddress OctetStringType Constraints: range: 6 |
.1.3.6.1.4.1.9.9.315.1.2.3.1.1 |
||||||||||||
|
cpsIfVlanSecureVlanIndex
This object indicates the vlan
configured on an interface. |
Q-BRIDGE-MIBVlanIndex Textual Convention: Q-BRIDGE-MIBVlanIndex Unsigned32 |
.1.3.6.1.4.1.9.9.315.1.2.3.1.2 |
||||||||||||
|
cpsIfVlanSecureMacAddrType
This object indicates if the secure MAC address
is a configured 'static' or learned 'dynamic' or learned and retained across reboots 'sticky'. |
Enumeration Enumerated Values:
|
.1.3.6.1.4.1.9.9.315.1.2.3.1.3 |
||||||||||||
|
cpsIfVlanSecureMacAddrRemainAge
This object indicates the remaining age
of the secure MAC address if aging is enabled on that port. A value of 0 indicates that aging is disabled for this MAC address entry. |
minutesSNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.315.1.2.3.1.4 |
||||||||||||
|
cpsIfVlanSecureMacAddrRowStatus
This object is a conceptual row entry that allows adding
or deleting entries to or from the cpsIfVlanSecureMacAddressTable. 1. When creating an entry in this table the 'createAndGo' method is used and th… |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.9.9.315.1.2.3.1.5 |
.1.3.6.1.4.1.9.9.315.1.2.4
·
1 row entry
·
3 columns
Each entry in this table represents
port-security information for each vlan
that is allowed on trunk interface.
The number of entries is determined by
the number of allowed VLANs on trunk
interface in the system .
An Entry in the table gets created when
a vlan becomes allowed and gets deleted
when a vlan becomes disallowed on a trunk
port.
User cannot create new entries in this
table, but can only read and modify
existing entries.
This table is obsolete and replaced with
cpsIfMultiVlanTable.
Entry containing port security information for
a particular VLAN within a trunk port.
a particular VLAN within a trunk port.
Indexes
IF-MIBifIndex cpsIfVlanIndex
| Column | Syntax | OID |
|---|---|---|
|
cpsIfVlanIndex
obsolete
The ID of a VLAN within this trunk port.
|
Q-BRIDGE-MIBVlanIndex Textual Convention: Q-BRIDGE-MIBVlanIndex Unsigned32 |
.1.3.6.1.4.1.9.9.315.1.2.4.1.1 |
|
cpsIfVlanMaxSecureMacAddr
obsolete
The maximum number of MAC addresses to
be secured in the VLAN indicated by cpsIfVlanIndex on this interface. If cpsIfVlanMaxSecureMacAddr is not set, its value is 1. If cpsIfVlanMaxSecure… |
Unsigned32r/w Constraints: range: 1-2147483647 |
.1.3.6.1.4.1.9.9.315.1.2.4.1.2 |
|
cpsIfVlanCurSecureMacAddrCount
obsolete
The current number of MAC addresses secured
in the VLAN indicated by cpsIfVlanIndex on this interface. |
Unsigned32 Constraints: range: 0-2147483647 |
.1.3.6.1.4.1.9.9.315.1.2.4.1.3 |
cpsIfMultiVlanTable
table.1.3.6.1.4.1.9.9.315.1.2.5
·
1 row entry
·
5 columns
Each entry in this table represents port-security information such as the maximum value of secured mac address allowed, the current number of secure mac address applied on a VLAN that is allowed on multi-vlan interface as well as a mechanism to clear the secure mac address on such VLANs.
Entry containing port security information for
a particular VLAN within a multi-vlan port. When
secured mac addresses are learned or configured on
such interface denoted by ifIndex and an allowed VLAN
in this interface …
a particular VLAN within a multi-vlan port. When
secured mac addresses are learned or configured on
such interface denoted by ifIndex and an allowed VLAN
in this interface …
Indexes
IF-MIBifIndex cpsIfMultiVlanIndex
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
cpsIfMultiVlanIndex
The VLAN ID of an allowed VLAN for this multi-vlan port.
|
Q-BRIDGE-MIBVlanIndex Textual Convention: Q-BRIDGE-MIBVlanIndex Unsigned32 |
.1.3.6.1.4.1.9.9.315.1.2.5.1.1 |
||||||||||||
|
cpsIfMultiVlanMaxSecureMacAddr
The maximum number (N) of MAC addresses to be secured
in the VLAN indicated by cpsIfMultiVlanIndex object on this interface. Setting the value of this object to zero indicates that there is no specific r… |
SNMPv2-SMIUnsigned32r/w Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.315.1.2.5.1.2 |
||||||||||||
|
cpsIfMultiVlanSecureMacAddrCount
The current number of MAC addresses secured in the VLAN
indicated by cpsIfMultiVlanIndex object on this interface. |
SNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.315.1.2.5.1.3 |
||||||||||||
|
cpsIfMultiVlanClearSecureMacAddr
This objects allows the user to delete secure MAC addresses
based on the type specified per interface per VLAN. |
ClearSecureMacAddrTyper/w Textual Convention: ClearSecureMacAddrType EnumerationType Values:
|
.1.3.6.1.4.1.9.9.315.1.2.5.1.4 |
||||||||||||
|
cpsIfMultiVlanRowStatus
The object is used to manage the creation and deletion
of row in this table. It only supports 'active', 'destroy', and 'createAndGo' value. Entry in the table gets created by setting cpsIfMu… |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.9.9.315.1.2.5.1.5 |