HMSECURITY2-MIB Table View
Table-centric layout grouping table, row, and column objects.
Tables
34
Rows
34
Columns
281
hmSec2FMNvProfileTable
table.1.3.6.1.4.1.248.52.1.2.5.2.1
·
1 row entry
·
5 columns
A list of Profiles stored in NV memory.
A profile entry.
Indexes
No indexes recorded
| Column | Syntax | OID |
|---|---|---|
|
hmSec2FMNvProfileIndex
Index of the profile entry.
|
Integer32 | .1.3.6.1.4.1.248.52.1.2.5.2.1.1.1 |
|
hmSec2FMNvProfileName
name of entry consisting of alphanumeric
characters plus hyphen and underscore. |
OctetString | .1.3.6.1.4.1.248.52.1.2.5.2.1.1.2 |
|
hmSec2FMNvProfileDateTime
Time and Date of last write access using the
content of the variable hmSystemTime. |
SNMPv2-SMITimeTicks Textual Convention: SNMPv2-SMITimeTicks Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.248.52.1.2.5.2.1.1.3 |
|
hmSec2FMNvProfileActive
Setting the variable to active(1) enables the profile
so that it will be used the next time the configuration is reloaded. Setting the value to inactive(2) is not allowed since there must be always one profile active. |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.5.2.1.1.4 |
|
hmSec2FMNvProfileAction
Action to be performed on the profile entry. setting
the value to delete(2) erases the profile. If it was the active profile then the first entry in the list becomes the active entry if the list is not empty. On readin… |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.5.2.1.1.5 |
hmSec2FMAcaProfileTable
table.1.3.6.1.4.1.248.52.1.2.5.2.2
·
1 row entry
·
5 columns
A list of Profiles stored in NV memory.
A profile entry.
Indexes
No indexes recorded
| Column | Syntax | OID |
|---|---|---|
|
hmSec2FMAcaProfileIndex
Index of the profile entry.
|
Integer32 | .1.3.6.1.4.1.248.52.1.2.5.2.2.1.1 |
|
hmSec2FMAcaProfileName
name of entry consisting of alphanumeric
characters plus hyphen and underscore. |
OctetString | .1.3.6.1.4.1.248.52.1.2.5.2.2.1.2 |
|
hmSec2FMAcaProfileDateTime
Time and Date of last write access using the
content of the variable hmSystemTime. |
SNMPv2-SMITimeTicks Textual Convention: SNMPv2-SMITimeTicks Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.248.52.1.2.5.2.2.1.3 |
|
hmSec2FMAcaProfileActive
Setting the variable to active(1) enables the profile
so that it will be used the next time the configuration is reloaded. Setting the value to inactive(2) is not allowed since there must be always one profile active. |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.5.2.2.1.4 |
|
hmSec2FMAcaProfileAction
Action to be performed on the profile entry. setting
the value to delete(2) erases the profile. Reading the variable always returns other(1). |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.5.2.2.1.5 |
hmSec2LogLevelTable
table.1.3.6.1.4.1.248.52.1.2.10.2
·
1 row entry
·
5 columns
A list of log levels for various log categories
Indexes
No indexes recorded
| Column | Syntax | OID |
|---|---|---|
|
hmSec2LogLevelIndex
An index that uniquely identifies the entry
in the table and so the log facility. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.2.10.2.1.1 |
|
hmSec2LogLevelUpto
Log level
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.10.2.1.2 |
|
hmSec2LogLevelName
Name of log facility
|
OctetString | .1.3.6.1.4.1.248.52.1.2.10.2.1.3 |
|
hmSec2LogLevelDesc
Description of log facility
|
OctetString | .1.3.6.1.4.1.248.52.1.2.10.2.1.4 |
|
hmSec2LogLevelPerm
Enable logging to persistent logfile
on ACA for log facility |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.10.2.1.5 |
hmSec2UserConfigTable
table.1.3.6.1.4.1.248.52.1.2.20.1
·
1 row entry
·
7 columns
User Config Table. This table provides the functionality the system uses for any interaction started by the user - Authentication, Encryption - changing authentication, password and access mode for login purposes through CLI, SSH, SNMPv3 ,. The authentication is done through a policy defined in the hmSec2UserAuthenticationList for CLI, SSH, ... ,. For SNMPv3 the standard SNMPv3 authentication/encryption methods are used. To create a new user set hmSec2UserStatus to 'createAndWait, and set the corresponding objects to their values. Setting hmSec2UserStatus to 'active' activates the user. To delete a user set hmSec2UserStatus to 'destroy'. Creating a new user in the hmSec2UserConfigTable also creates a new user in the SNMPv3 tables. All objects in this table can be set while a row is 'active'.
User Config Entry
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2UserName
Agent User Name.
|
OctetString | .1.3.6.1.4.1.248.52.1.2.20.1.1.1 |
||||||||||||
|
hmSec2UserPassword
Agent User Password
This object will always return '********' even if a password is set. The User Password can be set while the row is active. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.2.20.1.1.2 |
||||||||||||
|
hmSec2UserAccessMode
Agent User Access Mode.
The User Access Mode can be set while the row is active. |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.20.1.1.3 |
||||||||||||
|
hmSec2UserSnmpAuthenticationType
SNMPv3 User Authentication. The user passsword must be set
to a string greater than or equal to 8 characters for this to be set to anything but none(0). - none(0) -> no authentication used - hmacmd5… |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.20.1.1.4 |
||||||||||||
|
hmSec2UserSnmpEncryptionType
SNMPv3 User Encryption
Can not be set to des(2) or aes-cfb-128(3) if hmSec2UserSnmpAuthenticationType is set to none(0). - none(0) -> no encryption used - des(1) -> DES encryption used - aes-cfb-128(2) … |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.20.1.1.5 |
||||||||||||
|
hmSec2UserAuthenticationList
The authentication list used for this user to authenticate
to the system. The User Authentication List can be set while the row is active. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.2.20.1.1.6 |
||||||||||||
|
hmSec2UserStatus
Agent User Status.
active(1) - This user account is active. notInService(2) - Row has been suspended. notReady(3) - Row has incomplete values. createAndGo(4) - Accept row values and activate. creat… |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.2.20.1.1.7 |
hmSec2UserAuthListTable
table.1.3.6.1.4.1.248.52.1.2.30.1
·
1 row entry
·
5 columns
The hmSec2UserAuthListTable holds up to 3 policies a user authenticates to the system.
The hmSec2UserAuthListEntry.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2UserAuthListName
Authentication List Index
Unique name used for indexing into this table. |
OctetString | .1.3.6.1.4.1.248.52.1.2.30.1.1.1 |
||||||||||||
|
hmSec2UserAuthListPolicy1
Authenticion List Policy 1
Configures the first authentication policy to use when this list is specified. - none -> no authentication policy set - local -> authentication is done through local user DB - … |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.30.1.1.2 |
||||||||||||
|
hmSec2UserAuthListPolicy2
Authenticion List Policy 2
Configures the second authentication policy to use when this list is specified. - none -> no authentication policy set - local -> authentication is done through local user DB -… |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.30.1.1.3 |
||||||||||||
|
hmSec2UserAuthListPolicy3
Authenticion List Policy 3
Configures the third authentication policy to use when this list is specified. - none -> no authentication policy set - local -> authentication is done through local user DB - … |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.30.1.1.4 |
||||||||||||
|
hmSec2UserAuthListStatus
The status of the Authentication List.
active(1) - This auth list is active. notInService(2) - Row has been suspended. notReady(3) - Row has incomplete values. createAndGo(4) - Accept row values and ac… |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.2.30.1.1.5 |
hmSec2UsrFwUserTable
table.1.3.6.1.4.1.248.52.1.2.40.2
·
1 row entry
·
6 columns
Firewall User Config Table. This table provides the functionality the system uses for Firewal Users management. To create a new user set hmSec2UsrFwUserStatus to 'createAndWait', and set the corresponding objects to their values. Setting hmSec2UsrFwUserStatus to 'active' activates the user. To delete a user set hmSec2UsrFwUserStatus to 'destroy'. Creating a new user in the hmSec2UsrFwUserTable also creates a new user in the SNMPv3 tables. All objects in this table can be set while a row is 'active'.
User Config Entry
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2UsrFwUserName
Firewall User Name.
|
OctetString | .1.3.6.1.4.1.248.52.1.2.40.2.1.1 |
||||||||||||
|
hmSec2UsrFwUserPassword
Firewall User Password
This object will always return '********' even if a password is set. The User Password can be set while the row is active. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.2.40.2.1.2 |
||||||||||||
|
hmSec2UsrFwUserAuthList
The authentication list used for this user to authenticate
to the system. The User Authentication List can be set while the row is active. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.2.40.2.1.3 |
||||||||||||
|
hmSec2UsrFwUserLoginStatus
Log-in status of the firewall user.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.2.40.2.1.4 |
||||||||||||
|
hmSec2UsrFwUserLoginAddr
The IP address the firewall user logged in from,
or epty string if the user isn't logged in. |
OctetString | .1.3.6.1.4.1.248.52.1.2.40.2.1.5 |
||||||||||||
|
hmSec2UsrFwUserStatus
Firewall User Status.
active(1) - This user account is active. notInService(2) - Row has been suspended. notReady(3) - Row has incomplete values. createAndGo(4) - Accept row values and activate. createAnd… |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.2.40.2.1.6 |
.1.3.6.1.4.1.248.52.1.3.1.1.10
·
1 row entry
·
5 columns
List of radius authentication servers. The priority of a server depends on the position in the table, i.e. the primary server is the first one in the table, the secondary is the second one, etc.
A radius authentication server entry.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2RadiusAuthServerIndex
Table index.
|
Integer32 | .1.3.6.1.4.1.248.52.1.3.1.1.10.1.1 |
||||||||||||
|
hmSec2RadiusAuthServerAddress
IP address of the radius authentication server.
|
SNMPv2-SMIIpAddressr/w Textual Convention: SNMPv2-SMIIpAddress OctetStringType Constraints: range: 4 |
.1.3.6.1.4.1.248.52.1.3.1.1.10.1.2 |
||||||||||||
|
hmSec2RadiusAuthServerPort
Port number of the radius authentication server.
|
Integer32r/w | .1.3.6.1.4.1.248.52.1.3.1.1.10.1.3 |
||||||||||||
|
hmSec2RadiusAuthServerSecret
Shared secret for the radius authentication server.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.3.1.1.10.1.4 |
||||||||||||
|
hmSec2RadiusAuthServerStatus
Row status of this entry:
active(1) - Authentication entry is active. notInService(2) - Entry has been suspended. |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.3.1.1.10.1.5 |
hmSec2FwL2PfInTable
table.1.3.6.1.4.1.248.52.1.11.2.1.1
·
1 row entry
·
9 columns
A list of MAC rules for incoming traffic.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2FwL2PfInIndex
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.2.1.1.1.1 |
||||||||||||
|
hmSec2FwL2PfInSrcAddr
Single MAC address aa:bb:cc:dd:ee:ff or address with
wildcards aa:bb:??:dd:ee:ff or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.2.1.1.1.2 |
||||||||||||
|
hmSec2FwL2PfInDstAddr
Single MAC address aa:bb:cc:dd:ee:ff or address with
wildcards aa:bb:??:dd:ee:ff or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.2.1.1.1.4 |
||||||||||||
|
hmSec2FwL2PfInProto
The Ethernet protocol as a hexadecimal number
in range 0000 - FFFF or the keyword 'any' for protocol-independent filtering. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.2.1.1.1.6 |
||||||||||||
|
hmSec2FwL2PfInAction
Action to be performed if the filter rule matches
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.2.1.1.1.7 |
||||||||||||
|
hmSec2FwL2PfInLog
Enables or disables logging for packets matching this rule.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.2.1.1.1.8 |
||||||||||||
|
hmSec2FwL2PfInDesc
user defined text
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.2.1.1.1.9 |
||||||||||||
|
hmSec2FwL2PfInErrorText
error text
|
OctetString | .1.3.6.1.4.1.248.52.1.11.2.1.1.1.10 |
||||||||||||
|
hmSec2FwL2PfInRowStatus
the row status for the table entry
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.2.1.1.1.11 |
hmSec2FwL2PfOutTable
table.1.3.6.1.4.1.248.52.1.11.2.2.1
·
1 row entry
·
9 columns
A list of the MAC rules for outgoing traffic
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2FwL2PfOutIndex
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.2.2.1.1.1 |
||||||||||||
|
hmSec2FwL2PfOutSrcAddr
Single address aa:bb:cc:dd:ee:ff or address with
wildcards aa:bb:??:dd:ee:ff or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.2.2.1.1.2 |
||||||||||||
|
hmSec2FwL2PfOutDstAddr
Single address aa:bb:cc:dd:ee:ff or address with
wildcards aa:bb:??:dd:ee:ff or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.2.2.1.1.4 |
||||||||||||
|
hmSec2FwL2PfOutProto
The Ethernet protocol as a hexdecimal number
in range 0000 - FFFF or the keyword 'any' for protocol-independent filtering. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.2.2.1.1.6 |
||||||||||||
|
hmSec2FwL2PfOutAction
Action to be performed if the firewall rule matches
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.2.2.1.1.7 |
||||||||||||
|
hmSec2FwL2PfOutLog
Enables or disables logging for packets matching this rule
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.2.2.1.1.8 |
||||||||||||
|
hmSec2FwL2PfOutDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.2.2.1.1.9 |
||||||||||||
|
hmSec2FwL2PfOutErrorText
Error text.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.2.2.1.1.10 |
||||||||||||
|
hmSec2FwL2PfOutRowStatus
The row status for this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.2.2.1.1.11 |
hmSec2FwL3PfInTable
table.1.3.6.1.4.1.248.52.1.11.3.1.1
·
1 row entry
·
11 columns
A list of the IP rules for incoming traffic.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2FwL3PfInIndex
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.3.1.1.1.1 |
||||||||||||
|
hmSec2FwL3PfInSrcNet
Single address (a.b.c.d) or address range in
CIDR notation (a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.1.1.1.2 |
||||||||||||
|
hmSec2FwL3PfInSrcPort
Port expression or the keyword 'any'. A port expressions is
structured as 'port' (default), 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal (default) = o unequal … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.1.1.1.3 |
||||||||||||
|
hmSec2FwL3PfInDstNet
Single address (a.b.c.d) or address range in CIDR notation
(a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.1.1.1.4 |
||||||||||||
|
hmSec2FwL3PfInDstPort
Port expression or the keyword 'any'. A port expressions is
structured as 'port' (default), 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal (default) = o unequal … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.1.1.1.5 |
||||||||||||
|
hmSec2FwL3PfInProto
The IP protocol (RFC 791) as a decimal number (in range 1 -
255), a name or the keyword 'any' for protocol-independent filtering. The following protocol names are currently supported: o 'icmp': internet control message… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.1.1.1.6 |
||||||||||||
|
hmSec2FwL3PfInAction
Action to be performed if the firewall rule matches.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.3.1.1.1.7 |
||||||||||||
|
hmSec2FwL3PfInLog
Enables or disables logging for packets matching this rule.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.3.1.1.1.8 |
||||||||||||
|
hmSec2FwL3PfInDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.1.1.1.9 |
||||||||||||
|
hmSec2FwL3PfInErrorText
Error text.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.3.1.1.1.10 |
||||||||||||
|
hmSec2FwL3PfInRowStatus
The row status of this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.3.1.1.1.11 |
hmSec2FwL3PfDIInTable
table.1.3.6.1.4.1.248.52.1.11.3.1.3
·
1 row entry
·
11 columns
A list of the IP rules for incoming traffic controlled by the digital input to activate or deactivate the rules.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2FwL3PfDIInIndex
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.3.1.3.1.1 |
||||||||||||
|
hmSec2FwL3PfDIInSrcNet
Single address (a.b.c.d) or address range in
CIDR notation (a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.1.3.1.2 |
||||||||||||
|
hmSec2FwL3PfDIInSrcPort
Port expression or the keyword 'any'. A port expressions is
structured as 'port' (default), 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal (default) = o unequal … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.1.3.1.3 |
||||||||||||
|
hmSec2FwL3PfDIInDstNet
Single address (a.b.c.d) or address range in CIDR notation
(a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.1.3.1.4 |
||||||||||||
|
hmSec2FwL3PfDIInDstPort
Port expression or the keyword 'any'. A port expressions is
structured as 'port' (default), 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal (default) = o unequal … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.1.3.1.5 |
||||||||||||
|
hmSec2FwL3PfDIInProto
The IP protocol (RFC 791) as a decimal number (in range 1 -
255), a name or the keyword 'any' for protocol-independent filtering. The following protocol names are currently supported: o 'icmp': internet control message… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.1.3.1.6 |
||||||||||||
|
hmSec2FwL3PfDIInAction
Action to be performed if the firewall rule matches.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.3.1.3.1.7 |
||||||||||||
|
hmSec2FwL3PfDIInLog
Enables or disables logging for packets matching this rule.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.3.1.3.1.8 |
||||||||||||
|
hmSec2FwL3PfDIInDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.1.3.1.9 |
||||||||||||
|
hmSec2FwL3PfDIInErrorText
Error text.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.3.1.3.1.10 |
||||||||||||
|
hmSec2FwL3PfDIInRowStatus
The row status of this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.3.1.3.1.11 |
hmSec2FwL3PfOutTable
table.1.3.6.1.4.1.248.52.1.11.3.2.1
·
1 row entry
·
11 columns
A list of the IP rules for outgoing traffic.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2FwL3PfOutIndex
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.3.2.1.1.1 |
||||||||||||
|
hmSec2FwL3PfOutSrcNet
Single address (a.b.c.d) or address range in CIDR notation
(a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.2.1.1.2 |
||||||||||||
|
hmSec2FwL3PfOutSrcPort
Port expression or the keyword 'any'. A port expressions is
structured as 'port' (default), 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal (default) = o unequal … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.2.1.1.3 |
||||||||||||
|
hmSec2FwL3PfOutDstNet
Single address (a.b.c.d) or address range in
CIDR notation (a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.2.1.1.4 |
||||||||||||
|
hmSec2FwL3PfOutDstPort
Port expression or the keyword 'any'. A port expressions is
structured as 'port' (default), 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal (default) = o unequal … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.2.1.1.5 |
||||||||||||
|
hmSec2FwL3PfOutProto
The IP protocol (RFC 791) as a decimal number (in range 1 -
255), a name or the keyword 'any' for protocol-independent filtering. The following protocol names are currently supported: o 'icmp': internet control message… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.2.1.1.6 |
||||||||||||
|
hmSec2FwL3PfOutAction
Action to be performed if the firewall rule matches.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.3.2.1.1.7 |
||||||||||||
|
hmSec2FwL3PfOutLog
Enables or disables logging for packets matching this rule.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.3.2.1.1.8 |
||||||||||||
|
hmSec2FwL3PfOutDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.2.1.1.9 |
||||||||||||
|
hmSec2FwL3PfOutErrorText
Error text.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.3.2.1.1.10 |
||||||||||||
|
hmSec2FwL3PfOutRowStatus
The row status for this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.3.2.1.1.11 |
hmSec2FwL3PfDIOutTable
table.1.3.6.1.4.1.248.52.1.11.3.2.3
·
1 row entry
·
11 columns
A list of the IP rules for outgoing traffic controlled by the digital input to activate or deactivate the rules.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2FwL3PfDIOutIndex
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.3.2.3.1.1 |
||||||||||||
|
hmSec2FwL3PfDIOutSrcNet
Single address (a.b.c.d) or address range in CIDR notation
(a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.2.3.1.2 |
||||||||||||
|
hmSec2FwL3PfDIOutSrcPort
Port expression or the keyword 'any'. A port expressions is
structured as 'port' (default), 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal (default) = o unequal … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.2.3.1.3 |
||||||||||||
|
hmSec2FwL3PfDIOutDstNet
Single address (a.b.c.d) or address range in
CIDR notation (a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.2.3.1.4 |
||||||||||||
|
hmSec2FwL3PfDIOutDstPort
Port expression or the keyword 'any'. A port expressions is
structured as 'port' (default), 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal (default) = o unequal … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.2.3.1.5 |
||||||||||||
|
hmSec2FwL3PfDIOutProto
The IP protocol (RFC 791) as a decimal number (in range 1 -
255), a name or the keyword 'any' for protocol-independent filtering. The following protocol names are currently supported: o 'icmp': internet control message… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.2.3.1.6 |
||||||||||||
|
hmSec2FwL3PfDIOutAction
Action to be performed if the firewall rule matches.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.3.2.3.1.7 |
||||||||||||
|
hmSec2FwL3PfDIOutLog
Enables or disables logging for packets matching this rule.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.3.2.3.1.8 |
||||||||||||
|
hmSec2FwL3PfDIOutDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.2.3.1.9 |
||||||||||||
|
hmSec2FwL3PfDIOutErrorText
Error text.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.3.2.3.1.10 |
||||||||||||
|
hmSec2FwL3PfDIOutRowStatus
The row status for this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.3.2.3.1.11 |
hmSec2FwL3TplIdTable
table.1.3.6.1.4.1.248.52.1.11.3.3.1
·
1 row entry
·
3 columns
A list of IP templates.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2FwL3TplIdIndex
Table index.
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.3.3.1.1.1 |
||||||||||||
|
hmSec2FwL3TplIdName
The (unique) name of the template.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.3.1.1.2 |
||||||||||||
|
hmSec2FwL3TplIdRowStatus
The row status of this table entry.
This object can be set to createAndGo(4) or destroy(6). |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.3.3.1.1.3 |
hmSec2FwL3TplNetTable
table.1.3.6.1.4.1.248.52.1.11.3.3.2
·
1 row entry
·
4 columns
Holds the addresses/networks of the templates.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2FwL3TplNetIdIndex
The corresponding index in the hmSec2FwL3TplIdTable.
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.3.3.2.1.1 |
||||||||||||
|
hmSec2FwL3TplNetIndex
The index of the net entry within a template.
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.3.3.2.1.2 |
||||||||||||
|
hmSec2FwL3TplNetAddr
Single address (a.b.c.d) or address range in
CIDR notation (a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.3.3.2.1.3 |
||||||||||||
|
hmSec2FwL3TplNetRowStatus
The row status of this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.3.3.2.1.4 |
hmSec2FwPppInTable
table.1.3.6.1.4.1.248.52.1.11.4.1.1
·
1 row entry
·
11 columns
A list of the IP rules for incoming traffic from the PPP interface.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2FwPppInIndex
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.4.1.1.1.1 |
||||||||||||
|
hmSec2FwPppInSrcNet
Single address (a.b.c.d) or address range in
CIDR notation (a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.4.1.1.1.2 |
||||||||||||
|
hmSec2FwPppInSrcPort
Port expression or the keyword 'any'. A port expressions is
structured as 'port' (default), 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal (default) = o unequal … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.4.1.1.1.3 |
||||||||||||
|
hmSec2FwPppInDstNet
Single address (a.b.c.d) or address range in CIDR notation
(a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.4.1.1.1.4 |
||||||||||||
|
hmSec2FwPppInDstPort
Port expression or the keyword 'any'. A port expressions is
structured as 'port' (default), 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal (default) = o unequal … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.4.1.1.1.5 |
||||||||||||
|
hmSec2FwPppInProto
The IP protocol (RFC 791) as a decimal number (in range 1 -
255), a name or the keyword 'any' for protocol-independent filtering. The following protocol names are currently supported: o 'icmp': internet control message… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.4.1.1.1.6 |
||||||||||||
|
hmSec2FwPppInAction
Action to be performed if the firewall rule matches.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.4.1.1.1.7 |
||||||||||||
|
hmSec2FwPppInLog
Enables or disables logging for packets matching this rule.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.4.1.1.1.8 |
||||||||||||
|
hmSec2FwPppInDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.4.1.1.1.9 |
||||||||||||
|
hmSec2FwPppInErrorText
Error text.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.4.1.1.1.10 |
||||||||||||
|
hmSec2FwPppInRowStatus
The row status of this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.4.1.1.1.11 |
hmSec2FwSnmpTable
table.1.3.6.1.4.1.248.52.1.11.5.1
·
1 row entry
·
8 columns
A list of firewall rules for SNMP traffic.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2FwSnmpIndex
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.5.1.1.1 |
||||||||||||
|
hmSec2FwSnmpInterface
Interface for which this firewall rule applies
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.5.1.1.2 |
||||||||||||
|
hmSec2FwSnmpSrcNet
Single address (a.b.c.d) or address range in
CIDR notation (a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.5.1.1.3 |
||||||||||||
|
hmSec2FwSnmpAction
Action to be performed if the firewall rule matches.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.5.1.1.4 |
||||||||||||
|
hmSec2FwSnmpLog
Enables or disables logging for packets matching this rule.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.5.1.1.5 |
||||||||||||
|
hmSec2FwSnmpDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.5.1.1.6 |
||||||||||||
|
hmSec2FwSnmpErrorText
Error text.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.5.1.1.7 |
||||||||||||
|
hmSec2FwSnmpRowStatus
The row status of this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.5.1.1.8 |
hmSec2FwSshTable
table.1.3.6.1.4.1.248.52.1.11.6.1
·
1 row entry
·
8 columns
A list of firewall rules for SSH traffic.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2FwSshIndex
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.6.1.1.1 |
||||||||||||
|
hmSec2FwSshInterface
Interface for which this firewall rule applies
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.6.1.1.2 |
||||||||||||
|
hmSec2FwSshSrcNet
Single address (a.b.c.d) or address range in
CIDR notation (a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.6.1.1.3 |
||||||||||||
|
hmSec2FwSshAction
Action to be performed if the firewall rule matches.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.6.1.1.4 |
||||||||||||
|
hmSec2FwSshLog
Enables or disables logging for packets matching this rule.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.6.1.1.5 |
||||||||||||
|
hmSec2FwSshDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.6.1.1.6 |
||||||||||||
|
hmSec2FwSshErrorText
Error text.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.6.1.1.7 |
||||||||||||
|
hmSec2FwSshRowStatus
The row status of this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.6.1.1.8 |
hmSec2FwHttpsTable
table.1.3.6.1.4.1.248.52.1.11.7.1
·
1 row entry
·
8 columns
A list of firewall rules for HTTPS traffic.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2FwHttpsIndex
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.7.1.1.1 |
||||||||||||
|
hmSec2FwHttpsInterface
Interface for which this firewall rule applies
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.7.1.1.2 |
||||||||||||
|
hmSec2FwHttpsSrcNet
Single address (a.b.c.d) or address range in
CIDR notation (a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.7.1.1.3 |
||||||||||||
|
hmSec2FwHttpsAction
Action to be performed if the firewall rule matches.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.7.1.1.4 |
||||||||||||
|
hmSec2FwHttpsLog
Enables or disables logging for packets matching this rule.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.7.1.1.5 |
||||||||||||
|
hmSec2FwHttpsDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.7.1.1.6 |
||||||||||||
|
hmSec2FwHttpsErrorText
Error text.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.7.1.1.7 |
||||||||||||
|
hmSec2FwHttpsRowStatus
The row status of this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.7.1.1.8 |
hmSec2UsrFwTemplateTable
table.1.3.6.1.4.1.248.52.1.11.8.2
·
1 row entry
·
7 columns
A list of the User Firewall templates.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2UsrFwTemplateIndex
Table index.
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.8.2.1.1 |
||||||||||||
|
hmSec2UsrFwTemplateName
The descriptive name of the template.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.8.2.1.2 |
||||||||||||
|
hmSec2UsrFwTemplateTimeout
Timeout in seconds after that the User Firewall user
will be logged out. |
Integer32r/w | .1.3.6.1.4.1.248.52.1.11.8.2.1.3 |
||||||||||||
|
hmSec2UsrFwTemplateTimeoutType
Type of the User Firewall Timeout.
static - means the user will be logged out after the time elapsed regardless of the user network activity. dynamic - the countdown for logout will not start until all user connections … |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.8.2.1.4 |
||||||||||||
|
hmSec2UsrFwTemplateComment
A comment for the template.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.8.2.1.5 |
||||||||||||
|
hmSec2UsrFwTemplateSrcAddr
Source IP address for the user firewall rules.
- single address (a.b.c.d) - address range in CIDR notation (a.b.c.d/n) - keyword 'me' - keyword 'any' - placeholder '%authorized_ip' the IP address user logged in from. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.8.2.1.6 |
||||||||||||
|
hmSec2UsrFwTemplateStatus
Template Status.
active(1) - This template is active. notInService(2) - Row has been suspended. notReady(3) - Row has incomplete values. createAndGo(4) - Accept row values and activate. createAndWa… |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.8.2.1.7 |
.1.3.6.1.4.1.248.52.1.11.8.3
·
1 row entry
·
3 columns
Users for the template.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2UsrFwTemplateUserTemplateIndex
Template index from the hmSec2UsrFwTemplateTable above.
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.8.3.1.1 |
||||||||||||
|
hmSec2UsrFwTemplateUserName
User name.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.8.3.1.2 |
||||||||||||
|
hmSec2UsrFwTemplateUserStatus
Template-User Entry Status.
active(1) - This entry is active. notInService(2) - Row has been suspended. notReady(3) - Row has incomplete values. createAndGo(4) - Accept row values and activate. cre… |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.8.3.1.3 |
.1.3.6.1.4.1.248.52.1.11.8.4
·
1 row entry
·
9 columns
Firewall rules for a template.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2UsrFwTemplateRuleTemplateIndex
Index of the hmSec2UsrFwTemplateTable above
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.8.4.1.1 |
||||||||||||
|
hmSec2UsrFwTemplateRuleIndex
The table index.
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.8.4.1.2 |
||||||||||||
|
hmSec2UsrFwTemplateRuleProto
The IP protocol (RFC 791) as a decimal number (in range 1 -
255), a name or the keyword 'any' for protocol-independent filtering. The following protocol names are currently supported: o 'icmp': internet control message… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.8.4.1.3 |
||||||||||||
|
hmSec2UsrFwTemplateRuleSrcPort
Port expression or the keyword 'any'. A port expressions is
structured as 'port' (default), 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal (default) = o unequal … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.8.4.1.4 |
||||||||||||
|
hmSec2UsrFwTemplateRuleDstNet
Single address (a.b.c.d) or address range in
CIDR notation (a.b.c.d/n) or the keywords 'me' or 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.8.4.1.5 |
||||||||||||
|
hmSec2UsrFwTemplateRuleDstPort
Port expression or the keyword 'any'. A port expressions is
structured as 'port' (default), 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal (default) = o unequal … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.8.4.1.6 |
||||||||||||
|
hmSec2UsrFwTemplateRuleComment
A comment for the firewall rule.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.11.8.4.1.7 |
||||||||||||
|
hmSec2UsrFwTemplateRuleLog
Enables or disables logging for packets matching this rule.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.11.8.4.1.8 |
||||||||||||
|
hmSec2UsrFwTemplateRuleStatus
Firewall rule status.
active(1) - This rule is active. notInService(2) - Row has been suspended. notReady(3) - Row has incomplete values. createAndGo(4) - Accept row values and activate. createAndW… |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.11.8.4.1.9 |
hmSec2FwDiagL3Table
table.1.3.6.1.4.1.248.52.1.11.9.1
·
1 row entry
·
12 columns
Complete list of IP firewall rules.
Firewall rule
Indexes
No indexes recorded
| Column | Syntax | OID |
|---|---|---|
|
hmSec2FwDiagL3Index
Rule number in IP firewall table
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.9.1.1.1 |
|
hmSec2FwDiagL3Group
Name of group this rule belongs to.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.9.1.1.2 |
|
hmSec2FwDiagL3Ref
Reference into group (typically the rule number).
If this value is -1, then no reference exist. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.9.1.1.3 |
|
hmSec2FwDiagL3Interface
Interface (or type of traffic).
|
OctetString | .1.3.6.1.4.1.248.52.1.11.9.1.1.4 |
|
hmSec2FwDiagL3SrcNet
Source address.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.9.1.1.5 |
|
hmSec2FwDiagL3SrcPort
Source port (expression).
|
OctetString | .1.3.6.1.4.1.248.52.1.11.9.1.1.6 |
|
hmSec2FwDiagL3DstNet
Destination address.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.9.1.1.7 |
|
hmSec2FwDiagL3DstPort
Destination port (expression)
|
OctetString | .1.3.6.1.4.1.248.52.1.11.9.1.1.8 |
|
hmSec2FwDiagL3Proto
IP protocol
|
OctetString | .1.3.6.1.4.1.248.52.1.11.9.1.1.9 |
|
hmSec2FwDiagL3Action
Action.
|
Enumeration | .1.3.6.1.4.1.248.52.1.11.9.1.1.10 |
|
hmSec2FwDiagL3Log
Logging.
|
Enumeration | .1.3.6.1.4.1.248.52.1.11.9.1.1.11 |
|
hmSec2FwDiagL3MatchCnt
Counts the matches on this rule.
|
SNMPv2-SMICounter32 Textual Convention: SNMPv2-SMICounter32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.248.52.1.11.9.1.1.12 |
hmSec2FwDiagL2Table
table.1.3.6.1.4.1.248.52.1.11.9.2
·
1 row entry
·
10 columns
Complete list of MAC firewall rules.
Firewall rule
Indexes
No indexes recorded
| Column | Syntax | OID |
|---|---|---|
|
hmSec2FwDiagL2Index
Rule number in MAC firewall table
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.9.2.1.1 |
|
hmSec2FwDiagL2Group
Name of group this rule belongs to.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.9.2.1.2 |
|
hmSec2FwDiagL2Ref
Reference into group (typically the rule number).
If this value is -1, then no reference exist. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.11.9.2.1.3 |
|
hmSec2FwDiagL2Interface
Interface (or type of traffic).
|
OctetString | .1.3.6.1.4.1.248.52.1.11.9.2.1.4 |
|
hmSec2FwDiagL2SrcNet
Source address.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.9.2.1.5 |
|
hmSec2FwDiagL2DstNet
Destination address.
|
OctetString | .1.3.6.1.4.1.248.52.1.11.9.2.1.6 |
|
hmSec2FwDiagL2Proto
Layer 2 (Ethernet) protocol
|
OctetString | .1.3.6.1.4.1.248.52.1.11.9.2.1.7 |
|
hmSec2FwDiagL2Action
Action.
|
Enumeration | .1.3.6.1.4.1.248.52.1.11.9.2.1.8 |
|
hmSec2FwDiagL2Log
Logging.
|
Enumeration | .1.3.6.1.4.1.248.52.1.11.9.2.1.9 |
|
hmSec2FwDiagL2MatchCnt
Counts the matches on this rule.
|
SNMPv2-SMICounter32 Textual Convention: SNMPv2-SMICounter32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.248.52.1.11.9.2.1.10 |
.1.3.6.1.4.1.248.52.1.12.3.1
·
1 row entry
·
6 columns
This table contains the IP Configuration table for the IP interfaces.
This table contains the IP Configuration table for
the internal interface.
the internal interface.
Indexes
No indexes recorded
| Column | Syntax | OID |
|---|---|---|
|
hmSec2NetIPIfIndex
Index of IP interface in the table.
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.12.3.1.1.1 |
|
hmSec2NetIPIfAddr
Internal IP address.
|
SNMPv2-SMIIpAddressr/w Textual Convention: SNMPv2-SMIIpAddress OctetStringType Constraints: range: 4 |
.1.3.6.1.4.1.248.52.1.12.3.1.1.2 |
|
hmSec2NetIPIfMask
Subnet mask.
|
SNMPv2-SMIIpAddressr/w Textual Convention: SNMPv2-SMIIpAddress OctetStringType Constraints: range: 4 |
.1.3.6.1.4.1.248.52.1.12.3.1.1.3 |
|
hmSec2NetIPIfUseVLAN
Use VLAN Tag and Management VLAN ID.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.12.3.1.1.4 |
|
hmSec2NetIPIfVLANID
Management VLAN ID.
|
Integer32r/w | .1.3.6.1.4.1.248.52.1.12.3.1.1.5 |
|
hmSec2NetIPIfNetProto
Network Protocol to obtain IP configuration.
(1) none means use fix configuration, (2) DHCP means using DHCP on this interface to obtain a IP address from server. |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.12.3.1.1.6 |
hmSec2NetIPAliasesTable
table.1.3.6.1.4.1.248.52.1.12.3.2
·
1 row entry
·
6 columns
This table contains additional IP Configuration for the IP interfaces.
This table contains additional IP Configuration for
the IP interfaces.
the IP interfaces.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2NetIPAliasIfIndex
Index of IP interface in the table.
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.12.3.2.1.1 |
||||||||||||
|
hmSec2NetIPAliasAddr
Internal IP address.
|
SNMPv2-SMIIpAddressr/w Textual Convention: SNMPv2-SMIIpAddress OctetStringType Constraints: range: 4 |
.1.3.6.1.4.1.248.52.1.12.3.2.1.2 |
||||||||||||
|
hmSec2NetIPAliasMask
Subnet mask.
|
SNMPv2-SMIIpAddressr/w Textual Convention: SNMPv2-SMIIpAddress OctetStringType Constraints: range: 4 |
.1.3.6.1.4.1.248.52.1.12.3.2.1.3 |
||||||||||||
|
hmSec2NetIPAliasUseVLAN
Use VLAN Tag and Management VLAN ID.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.12.3.2.1.4 |
||||||||||||
|
hmSec2NetIPAliasVLANID
Management VLAN ID.
|
Integer32r/w | .1.3.6.1.4.1.248.52.1.12.3.2.1.5 |
||||||||||||
|
hmSec2NetIPAliasRowStatus
The row status for the table entry
The configuration is been taken, when the row status is set to active. |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.12.3.2.1.6 |
hmSec2NetIPRouteTable
table.1.3.6.1.4.1.248.52.1.12.3.4
·
1 row entry
·
5 columns
This table contains additional Routing Configuration for the IP interfaces.
This table contains additional IP Configuration for
the IP interfaces.
the IP interfaces.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2NetIPRouteIfIndex
Index of IP interface in the table.
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.12.3.4.1.1 |
||||||||||||
|
hmSec2NetIPRouteAddr
Network IP address.
|
SNMPv2-SMIIpAddressr/w Textual Convention: SNMPv2-SMIIpAddress OctetStringType Constraints: range: 4 |
.1.3.6.1.4.1.248.52.1.12.3.4.1.2 |
||||||||||||
|
hmSec2NetIPRouteMask
Network subnet mask.
|
SNMPv2-SMIIpAddressr/w Textual Convention: SNMPv2-SMIIpAddress OctetStringType Constraints: range: 4 |
.1.3.6.1.4.1.248.52.1.12.3.4.1.3 |
||||||||||||
|
hmSec2NetIPRouteGateway
Gateway to be used for this network.
|
SNMPv2-SMIIpAddressr/w Textual Convention: SNMPv2-SMIIpAddress OctetStringType Constraints: range: 4 |
.1.3.6.1.4.1.248.52.1.12.3.4.1.4 |
||||||||||||
|
hmSec2NetIPRouteRowStatus
The row status for the table entry.
The configuration is been taken, when the row status is set to active. |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.12.3.4.1.5 |
hmSec2VpnConnTable
table.1.3.6.1.4.1.248.52.1.13.1.2.3
·
1 row entry
·
34 columns
A list of VPN connections.
A VPN connection entry.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2VpnConnIndex
An index that uniquely identifies the entry in the
table. |
Integer32 | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.1 |
||||||||||||
|
hmSec2VpnConnIkeVersion
Version of the IKE protocol:
o auto: accept IKEv1/v2 as responder, start with IKEv1 as initiator o v1: used protocol is IKE version 1 (ISAKMP) o v2: used protocol is IKE version 2 |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.2 |
||||||||||||
|
hmSec2VpnConnIkeStartup
If this host acts as a responder it does not
initiate a key exchange (IKE) nor connection parameters negotiation. Otherwise, this host acts as an initiator - then it initiates an IKE actively. |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.3 |
||||||||||||
|
hmSec2VpnConnIkeCompat
Compatibility mode for older IPsec clients.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.4 |
||||||||||||
|
hmSec2VpnConnIkeLifetime
Lifetime of IKE security association in seconds.
The maximum value is 24 hours (86400 seconds). |
Integer32r/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.5 |
||||||||||||
|
hmSec2VpnConnIkeDpdTimeout
If greater than zero, the local peer sends Dead
Peer Detection (DPD) messages (according to RFC 3706) to the remote peer. This value specifies the timeout in seconds, the remote peer is declared dead, if not responding.… |
Integer32r/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.6 |
||||||||||||
|
hmSec2VpnConnIkeLocalAddr
Hostname (FQDN) or IP address of local
security gateway. If the value is 'any', then the primary IP address of external interface is used. In the case that this address is assigned dynamically by a DHCP server, the setu… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.7 |
||||||||||||
|
hmSec2VpnConnIkeRemoteAddr
Typically the hostname (FQDN) or IP address of
remote security gateway. If this value is 'any', then any IP address is accepted when establishing an IKE-SA as responder. Also a network in CIDR notation, to be accepted w… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.8 |
||||||||||||
|
hmSec2VpnConnIkeAuthType
Type of authentication to be used (X.509 RSA
certificates or pre-shared key). |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.9 |
||||||||||||
|
hmSec2VpnConnIkeAuthMode
The phase 1 exchange mode to be used.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.10 |
||||||||||||
|
hmSec2VpnConnIkeAuthCertCA
PEM encoded X.509 certificate (RFC 1422),
if authentication type in 'hmSec2VpnConnIkeAuthType' is 'x509rsa'. This certificate is used for RSA based signature verification in local and remote certificates. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.11 |
||||||||||||
|
hmSec2VpnConnIkeAuthCertRemote
PEM encoded X.509 certificate (RFC 1422),
if authentication type in 'hmSec2VpnConnIkeAuthType' is 'x509rsa'. This certificate is used for RSA based authentication of remote peer at the local side. This certificate binds… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.12 |
||||||||||||
|
hmSec2VpnConnIkeAuthCertLocal
PEM encoded X.509 certificate (RFC 1422)
to be used, if authentication type in 'hmSec2VpnConnIkeAuthType' is 'x509rsa'. This certificate is used for RSA based authentication of local peer at the remote side. The certif… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.13 |
||||||||||||
|
hmSec2VpnConnIkeAuthPrivKey
PEM encoded RSA private key (PKCS 1) to be used, if
authentication type in 'hmSec2VpnConnIkeAuthType' is 'x509rsa'. Notice that this object is write-only and encrypted with 'hmSec2VpnConnIkeAuthPasswd'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.14 |
||||||||||||
|
hmSec2VpnConnIkeAuthPasswd
Passphrase to be used for decryption of private key
from 'hmSec2VpnConnIkeAuthPrivKey'. The passphrase must be set before the private key is set, else the SNMP operation fails. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.15 |
||||||||||||
|
hmSec2VpnConnIkeAuthPsk
Preshared key (passphrase) to be used if
authentication type in 'hmSec2VpnConnIkeAuthType' is 'psk'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.16 |
||||||||||||
|
hmSec2VpnConnIkeAuthLocId
Local peer identifier to be sent within ID
payload during negotiation. The ID payload is used to identify the initiator of the security association. The identity is used by the responder to determine the correct host sy… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.17 |
||||||||||||
|
hmSec2VpnConnIkeAuthLocType
Type of local peer identifier in 'hmSec2VpnConnIkeAuthLocId':
o default: If 'hmSec2VpnConnIkeAuthType' is 'psk' then use the IP address from 'hmSec2VpnConnIkeLocalAddr' as local identifier. In c… |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.18 |
||||||||||||
|
hmSec2VpnConnIkeAuthRemId
Remote peer identifier to be compared with ID
payload during negotiation. The ID payload is used to identify the initiator of the security association. The identity is used by the responder to determine the correct host… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.19 |
||||||||||||
|
hmSec2VpnConnIkeAuthRemType
Type of remote peer identifier in hmSec2VpnConnIkeAuthRemId:
o any: received remote identifier is not checked o ipaddr: IPv4 address o keyid: key identifier o fqdn: fully qualified domain name o email: fully qualif… |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.20 |
||||||||||||
|
hmSec2VpnConnIkeAlgDh
Diffie-Hellman key agreement algorithm to be used
for establishment of IKE-SA: o any: accept all algorithms as responder, use default as initiator o modp768: RSA with 768 bits modulus o modp1024: RSA with 1024 bits m… |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.21 |
||||||||||||
|
hmSec2VpnConnIkeAlgHash
Hash algorithm to be used in IKE:
o any: accept all algorithms as responder, use all as IKEv2 initiator (not allowed as IKEv1 initiator) o md5: MD5 o sha1: SHA-1 |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.22 |
||||||||||||
|
hmSec2VpnConnIkeAlgMac
Integrity (MAC) algorithm to be used in IKEv2:
o any: accept all algorithms as responder, use all as IKEv2 initiator (not allowed as IKEv1 initiator) o hmacmd5: HMAC-MD5 o hmacsha1: HMAC-SHA1 |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.23 |
||||||||||||
|
hmSec2VpnConnIkeAlgEncr
Encryption algorithm to be used in IKE:
o any: accept all algorithms as responder, use all as IKEv2 initiator (not allowed as IKEv1 initiator) o des: DES o des3: Triple-DES o aes128: AES with 128 key bits o … |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.24 |
||||||||||||
|
hmSec2VpnConnIpsecMode
IPsec encapsulation mode.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.25 |
||||||||||||
|
hmSec2VpnConnIpsecNatTraversal
If 'on', then it forces UDP encapsulation of ESP
payloads (NAT traversal). When 'off', then the remote peer is allowed to negotiate normal ESP encapsulation or UDP encapsulation via port 4500. A typical scenario is to t… |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.26 |
||||||||||||
|
hmSec2VpnConnIpsecLifetime
Lifetime of IPsec security association in seconds.
The maximum value is 8 hours (28800 seconds). |
Integer32r/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.27 |
||||||||||||
|
hmSec2VpnConnIpsecAlgDh
Diffie-Hellman key agreement algorithm to be used
for IPsec-SA session key establishment: o any: accept all algorithms as responder, use all as IKEv2 initiator (not allowed as IKEv1 initiator) o modp768: RSA w… |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.28 |
||||||||||||
|
hmSec2VpnConnIpsecAlgMac
Integrity (MAC) algorithm to be used in IPsec:
o any: accept all algorithms as responder, use all as IKEv2 initiator (not allowed as IKEv1 initiator) o hmacmd5: HMAC-MD5 o hmacsha1: HMAC-SHA1 |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.29 |
||||||||||||
|
hmSec2VpnConnIpsecAlgEncr
Encryption algorithm to be used for payload
encryption in IPsec: o any: accept all algorithms as responder, use all as IKEv2 initiator (not allowed as IKEv1 initiator) o des: DES o des3: Triple-DES o aes128:… |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.30 |
||||||||||||
|
hmSec2VpnConnOperStatus
The current operational status of the VPN
connection: o 'up': the IKE-SA and all IPsec SAs are up; o 'down': the IKE-SA and all IPsec SAs are down; o 'negotiation': key exchange and algorithm negotiation is in progres… |
Enumeration | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.31 |
||||||||||||
|
hmSec2VpnConnDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.32 |
||||||||||||
|
hmSec2VpnConnRowStatus
The row status of this table entry. If the row
status is 'active' then it is not allowed to change any value (this applies also to active traffic selectors). The maximum number of active VPN connections is limited to 25… |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.13.1.2.3.1.33 |
||||||||||||
|
hmSec2VpnConnServiceMode
The service mode can be enabled for connections
which shall be established only, when the device enters service mode (redundant power supply not connected). The connection is down, when the device is not in service … |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.13.1.2.3.1.34 |
hmSec2VpnTrafficSelTable
table.1.3.6.1.4.1.248.52.1.13.1.3.1
·
1 row entry
·
11 columns
A list of traffic selectors. For details on the role of traffic selectors in IPsec protocol see RFC 2409, section 5.5 and RFC 4306, section 2.9.
A traffic selector entry. A traffic selector
defines the subnet/host addresses for which
this IPSec connection (SA) is responsible.
defines the subnet/host addresses for which
this IPSec connection (SA) is responsible.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2VpnTrafficSelIndex
An index that (together with the connection
index hmSec2VpnConnIndex) identifies the entry in the traffic selector table. This index can be choosen freely, but must be greater than 0. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.13.1.3.1.1.1 |
||||||||||||
|
hmSec2VpnTrafficSelSrcAddr
Host or subnet address in CIDR notation (a.b.c.d/n)
for which this traffic descriptor (and the associated VPN connection) is responsible. This address is compared to the source address of IP packets sent, when determini… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.3.1.1.3 |
||||||||||||
|
hmSec2VpnTrafficSelDstAddr
Host or subnet address in CIDR notation (a.b.c.d/n)
for which this traffic descriptor (and the associated VPN connection) is responsible. This address is compared to the destination address of IP packets sent, when dete… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.3.1.1.4 |
||||||||||||
|
hmSec2VpnTrafficSelSrcPort
The source port as a decimal number in range 1 - 65535, the
keyword 'any' for a port-independent policy (equivalent to port number 0), or one of the following aliases: o tcp/udp: echo (7) o tcp/udp: discard, sink, nul… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.3.1.1.5 |
||||||||||||
|
hmSec2VpnTrafficSelDstPort
The destination port as a decimal number in range 0 - 65535,
the keyword 'any' for a port-independent policy (equivalent to port number 0), or one of the following aliases: o tcp/udp: echo (7) o tcp/udp: discard, sink… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.3.1.1.6 |
||||||||||||
|
hmSec2VpnTrafficSelProto
The IP protocol (RFC 791) as a decimal number in range 0 - 255
or a hexadecimal number in range 0x00 - 0xff, a protocol name or the keyword 'any' for a protocol-independent policy. The following protocol names are curre… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.3.1.1.7 |
||||||||||||
|
hmSec2VpnTrafficSelPolicy
Policy to apply to the matching traffic.
The following policies are currently supported: o 'require': require encryption of the traffic. If the tunnel or traffic selector is down the traffic will discarded. o 'use': u… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.3.1.1.8 |
||||||||||||
|
hmSec2VpnTrafficSelDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.3.1.1.9 |
||||||||||||
|
hmSec2VpnTrafficSelRowStatus
The row status of this table entry. Only traffic
selector entries with an 'active' row status will be considered if the connections row status is set 'active'. Independent of that dependency any value in this entry can … |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.13.1.3.1.1.10 |
||||||||||||
|
hmSec2VpnTrafficSelSrcMapping
Optional mapping for the source address in CIDR
notation (a.b.c.d/n) for a given traffic descriptor. If set, the IP source address of outgoing packets will be replaced according to this MIB object. For incoming packets … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.3.1.1.11 |
||||||||||||
|
hmSec2VpnTrafficSelDstMapping
Optional mapping for the destination address in CIDR
notation (a.b.c.d/n) for a given traffic descriptor. If set, the IP destination address of outgoing packets will be replaced according to this MIB object. For incomin… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.13.1.3.1.1.12 |
hmSec2RedIfaceTable
table.1.3.6.1.4.1.248.52.1.14.1.6
·
1 row entry
·
4 columns
This table contains additional Routing Configuration for the IP interfaces.
This table contains the per interface redundancy configuration.
Indexes
No indexes recorded
| Column | Syntax | OID |
|---|---|---|
|
hmSec2RedIfIndex
Index of IP interface in the table.
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.14.1.6.1.1 |
|
hmSec2RedVirtualAddr
Virtual IP address to be used for this Router IP interface.
|
SNMPv2-SMIIpAddressr/w Textual Convention: SNMPv2-SMIIpAddress OctetStringType Constraints: range: 4 |
.1.3.6.1.4.1.248.52.1.14.1.6.1.2 |
|
hmSec2RedVRID
Virtual Router ID used on this network interface.
The VRIDs have to be different on all network interfaces. There is no default value. |
Integer32r/w | .1.3.6.1.4.1.248.52.1.14.1.6.1.3 |
|
hmSec2RedRemoteIPAddr
IP address of the remote system on this network
interface. On the master system the IP address of the backup system and vice versa. The virtual IP address must not be used here. |
SNMPv2-SMIIpAddressr/w Textual Convention: SNMPv2-SMIIpAddress OctetStringType Constraints: range: 4 |
.1.3.6.1.4.1.248.52.1.14.1.6.1.4 |
hmSec2HostCheckTable
table.1.3.6.1.4.1.248.52.1.14.2.5
·
1 row entry
·
4 columns
This table contains the hosts to be checked on network errors by the redundancy application. The order in the table is important for the host check algorithm.
This table contains the per interface redundancy configuration.
The order in the table is important for the host check algorithm.
The table has a maximum of configurable hosts.
The order in the table is important for the host check algorithm.
The table has a maximum of configurable hosts.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2HostCheckIfIndex
Index of IP interface in the table.
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.14.2.5.1.1 |
||||||||||||
|
hmSec2HostCheckTableIndex
Index of entry in the table.
|
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.14.2.5.1.2 |
||||||||||||
|
hmSec2HostCheckAddr
Host IP address to be used for ICMP checks (pings)
in case of network errors (communication losses). |
SNMPv2-SMIIpAddressr/w Textual Convention: SNMPv2-SMIIpAddress OctetStringType Constraints: range: 4 |
.1.3.6.1.4.1.248.52.1.14.2.5.1.3 |
||||||||||||
|
hmSec2HostCheckRowStatus
the row status for the table entry
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.14.2.5.1.4 |
hmSec2NatTable
table.1.3.6.1.4.1.248.52.1.15.2.1
·
1 row entry
·
6 columns
A list of NAPT rules.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2NatIndex
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.15.2.1.1.1 |
||||||||||||
|
hmSec2NatSrcNet
Network for NAPT transactions on local interface
in CIDR notation (a.b.c.d/n) |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.1.1.2 |
||||||||||||
|
hmSec2NatAlg
Bitmask for application level gateway selections in this rule
|
Bitsr/w | .1.3.6.1.4.1.248.52.1.15.2.1.1.3 |
||||||||||||
|
hmSec2NatDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.1.1.4 |
||||||||||||
|
hmSec2NatErrorText
Error text
|
OctetString | .1.3.6.1.4.1.248.52.1.15.2.1.1.5 |
||||||||||||
|
hmSec2NatRowStatus
The row status of this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.15.2.1.1.6 |
hmSec2Nat1To1Table
table.1.3.6.1.4.1.248.52.1.15.2.2
·
1 row entry
·
10 columns
A list of 1:1 NAT rules.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2Nat1To1Index
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.15.2.2.1.1 |
||||||||||||
|
hmSec2Nat1To1SrcNet
Network for 1:1 NAT on internal interface.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.2.1.2 |
||||||||||||
|
hmSec2Nat1To1DstNet
Network for 1:1 NAT on external interface.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.2.1.3 |
||||||||||||
|
hmSec2Nat1To1NetMask
Netmask for 1:1 NAT
|
Integer32r/w | .1.3.6.1.4.1.248.52.1.15.2.2.1.4 |
||||||||||||
|
hmSec2Nat1To1Desc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.2.1.5 |
||||||||||||
|
hmSec2Nat1To1ErrorText
Error text
|
OctetString | .1.3.6.1.4.1.248.52.1.15.2.2.1.6 |
||||||||||||
|
hmSec2Nat1To1RowStatus
The row status of this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.15.2.2.1.7 |
||||||||||||
|
hmSec2Nat1To1Alg
Bitmask for application level gateway selections in this rule
|
Bitsr/w | .1.3.6.1.4.1.248.52.1.15.2.2.1.8 |
||||||||||||
|
hmSec2Nat1To1DoOutput
If this value is enabled, the 1:1 NAT does
the NAT operation also when sending the packet. This means a twice NAT or destination NAT operation will be additionally performaned. This feature shall be used in special ca… |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.15.2.2.1.9 |
||||||||||||
|
hmSec2Nat1To1InvertDirection
If this value is enabled, the 1:1 NAT does
the NAT operation in the opposite direction. This means the NAT operation is done from the view of the external interface, when devices on the external side shall be mapped t… |
Enumerationr/w | .1.3.6.1.4.1.248.52.1.15.2.2.1.10 |
hmSec2NatPortFwdTable
table.1.3.6.1.4.1.248.52.1.15.2.3
·
1 row entry
·
12 columns
A list of port forwarding rules.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
hmSec2NatPortFwdIndex
An index that uniquely identifies the entry in the table. The
index must be choosen in ascending and compact order. It may change if a rule (not the last in list) is deleted or a new row is inserted. |
SNMPv2-SMIInteger32 Textual Convention: SNMPv2-SMIInteger32 Integer32Type Constraints: range: -2147483648..2147483647 |
.1.3.6.1.4.1.248.52.1.15.2.3.1.1 |
||||||||||||
|
hmSec2NatPortFwdSrcNet
Source network in CIDR notation (a.b.c.d/n) thats allowed to
be forwarded by this rule or the keyword 'any'. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.3.1.2 |
||||||||||||
|
hmSec2NatPortFwdSrcPort
Source port expression or the keyword 'any'. A port expressions is
structured as 'op port' or 'port1 op port2', where 'op' is a mathematical operator for: o equal = o unequal != o less than < o less t… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.3.1.3 |
||||||||||||
|
hmSec2NatPortFwdDstNet
Destination IP address to be forwarded or the keyword '%extern'.
This keyword stands for the first external IP address. |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.3.1.4 |
||||||||||||
|
hmSec2NatPortFwdDstPort
Destination port expression in the form '= port'.
The port must be specified as a decimal number or one of the aliases: o tcp/udp: echo (7) o tcp/udp: discard, sink, null (9) o tcp: ftp-data (20) o tcp: ftp (21… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.3.1.5 |
||||||||||||
|
hmSec2NatPortFwdFwdNet
Redirect IP address.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.3.1.6 |
||||||||||||
|
hmSec2NatPortFwdFwdPort
Redirect port expression in the form '= port'.
The port must be specified as a decimal number or one of the aliases: o tcp/udp: echo (7) o tcp/udp: discard, sink, null (9) o tcp: ftp-data (20) o tcp: ftp (21) … |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.3.1.7 |
||||||||||||
|
hmSec2NatPortFwdProto
The protocol as a decimal number (in range 1 -
255) or a name. The following protocol names are currently supported: o 'icmp': internet control message protocol (RFC 792) o 'igmp': internet group management protocol o… |
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.3.1.8 |
||||||||||||
|
hmSec2NatPortFwdLog
Enables or disables logging for this port forwarding rule.
|
Enumerationr/w | .1.3.6.1.4.1.248.52.1.15.2.3.1.9 |
||||||||||||
|
hmSec2NatPortFwdDesc
User defined text.
|
OctetStringr/w | .1.3.6.1.4.1.248.52.1.15.2.3.1.10 |
||||||||||||
|
hmSec2NatPortFwdErrorText
Error text
|
OctetString | .1.3.6.1.4.1.248.52.1.15.2.3.1.11 |
||||||||||||
|
hmSec2NatPortFwdRowStatus
The row status of this table entry.
|
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.248.52.1.15.2.3.1.12 |