MIDCOM-MIB Table View
Table-centric layout grouping table, row, and column objects.
Tables
5
Rows
5
Columns
41
midcomRuleTable
table.1.3.6.1.2.1.171.1.1.3
·
1 row entry
·
26 columns
This table lists policy rules.
It is indexed by the midcomRuleOwner, the
midcomGroupIndex, and the midcomRuleIndex.
This implies that a rule is a member of exactly
one group and that group membership cannot
be changed.
Entries can be deleted by writing to
midcomGroupLifetime or midcomRuleLifetime
and potentially also to midcomRuleStorageTime.
An entry describing a particular MIDCOM policy rule.
Indexes
midcomRuleOwner midcomGroupIndex midcomRuleIndex
| Column | Syntax | OID | ||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
midcomRuleOwner
The manager who owns this row in the midcomRuleTable.
This object SHOULD uniquely identify an authenticated MIDCOM client. This object is part of the table index to allow for the use of the SNMPv3 View-b… |
OctetString Constraints: range: 0-32 |
.1.3.6.1.2.1.171.1.1.3.1.1 |
||||||||||||||||||||||||
|
midcomRuleIndex
The value of this object must be unique in
combination with the values of the objects midcomRuleOwner and midcomGroupIndex in this row. |
Unsigned32 Constraints: range: 1-4294967295 |
.1.3.6.1.2.1.171.1.1.3.1.3 |
||||||||||||||||||||||||
|
midcomRuleAdminStatus
The value of this object indicates the desired status of
the policy rule. See the definition of midcomRuleOperStatus for a description of the values. When a midcomRuleEntry is created without explicitly … |
Enumerationr/w Enumerated Values:
|
.1.3.6.1.2.1.171.1.1.3.1.4 |
||||||||||||||||||||||||
|
midcomRuleOperStatus
The actual status of the policy rule. The
midcomRuleOperStatus object may have the following values: - newEntry(1) indicates that the entry in the midcomRuleTable was created, but not modified yet. S… |
Enumeration Enumerated Values:
|
.1.3.6.1.2.1.171.1.1.3.1.5 |
||||||||||||||||||||||||
|
midcomRuleStorageType
When retrieved, this object returns the storage
type of the policy rule. Writing to this object can change the storage type of the particular row from volatile(2) to nonVolatile(3) or vice versa. Attempt… |
SNMPv2-TCStorageTyper/w Textual Convention: SNMPv2-TCStorageType EnumerationType Values:
|
.1.3.6.1.2.1.171.1.1.3.1.6 |
||||||||||||||||||||||||
|
midcomRuleStorageTime
The value of this object specifies how long this row
can exist in the midcomRuleTable after the midcomRuleOperStatus switched to a termination state or to an error state. This object returns the remaining time that the… |
secondsSNMPv2-SMIUnsigned32r/w Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.2.1.171.1.1.3.1.7 |
||||||||||||||||||||||||
|
midcomRuleError
This object contains a descriptive error message if
the transition into the operational status reserved(7) or enabled(8) failed. Implementations must reset the error message to a zero-length string when a new … |
SNMP-FRAMEWORK-MIBSnmpAdminString Textual Convention: SNMP-FRAMEWORK-MIBSnmpAdminString OctetStringType Constraints: range: 0..255 |
.1.3.6.1.2.1.171.1.1.3.1.8 |
||||||||||||||||||||||||
|
midcomRuleInterface
This object indicates the IP interface for which
enforcement of a policy rule is requested or performed, respectively. The interface is identified by its index in the ifTable (see IF-MIB in RFC 2863). If… |
IF-MIBInterfaceIndexOrZeror/w Textual Convention: IF-MIBInterfaceIndexOrZero Integer32Type Constraints: range: 0..2147483647 |
.1.3.6.1.2.1.171.1.1.3.1.9 |
||||||||||||||||||||||||
|
midcomRuleFlowDirection
This parameter specifies the direction of enabled
communication, either inbound(1), outbound(2), or biDirectional(3). The semantics of this object depends on the protocol the rule relates to. If the rule… |
Enumerationr/w Enumerated Values:
|
.1.3.6.1.2.1.171.1.1.3.1.10 |
||||||||||||||||||||||||
|
midcomRuleMaxIdleTime
Maximum idle time of the policy rule in seconds.
If no packet to which the policy rule applies passes the middlebox for the specified midcomRuleMaxIdleTime, then the policy rule enters the termination sta… |
secondsSNMPv2-SMIUnsigned32r/w Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.2.1.171.1.1.3.1.11 |
||||||||||||||||||||||||
|
midcomRuleTransportProtocol
The transport protocol.
Valid values for midcomRuleTransportProtocol other than zero are defined at: http://www.iana.org/assignments/protocol-numbers This object is used as input to a reque… |
Unsigned32r/w Constraints: range: 0-255 |
.1.3.6.1.2.1.171.1.1.3.1.12 |
||||||||||||||||||||||||
|
midcomRulePortRange
The range of port numbers.
This object is used as input to a request for establishing a policy rule as well as for indicating the properties of an established policy rule. It is relevant to the operation… |
Enumerationr/w Enumerated Values:
|
.1.3.6.1.2.1.171.1.1.3.1.13 |
||||||||||||||||||||||||
|
midcomRuleInternalIpVersion
IP version of the internal address (A0) and the inside
address (A1). Allowed values are ipv4(1), ipv6(2), ipv4z(3), and ipv6z(4). This object is used as input to a request for establishing a policy rule … |
INET-ADDRESS-MIBInetAddressTyper/w Textual Convention: INET-ADDRESS-MIBInetAddressType EnumerationType Values:
|
.1.3.6.1.2.1.171.1.1.3.1.14 |
||||||||||||||||||||||||
|
midcomRuleExternalIpVersion
IP version of the external address (A3) and the outside
address (A2). Allowed values are ipv4(1) and ipv6(2). This object is used as input to a request for establishing a policy rule as well as for indic… |
INET-ADDRESS-MIBInetAddressTyper/w Textual Convention: INET-ADDRESS-MIBInetAddressType EnumerationType Values:
|
.1.3.6.1.2.1.171.1.1.3.1.15 |
||||||||||||||||||||||||
|
midcomRuleInternalIpAddr
The internal IP address (A0).
This object is used as input to a request for establishing a policy rule as well as for indicating the properties of an established policy rule. If object midc… |
INET-ADDRESS-MIBInetAddressr/w Textual Convention: INET-ADDRESS-MIBInetAddress OctetStringType Constraints: range: 0..255 |
.1.3.6.1.2.1.171.1.1.3.1.16 |
||||||||||||||||||||||||
|
midcomRuleInternalIpPrefixLength
The prefix length of the internal IP address used for
wildcarding. A value of 0 indicates a full wildcard; in this case, the value of midcomRuleInternalIpAddr is irrelevant. If midcomRuleInternalIpVersion has a value … |
INET-ADDRESS-MIBInetAddressPrefixLengthr/w Textual Convention: INET-ADDRESS-MIBInetAddressPrefixLength Unsigned32Type Constraints: range: 0..2040 |
.1.3.6.1.2.1.171.1.1.3.1.17 |
||||||||||||||||||||||||
|
midcomRuleInternalPort
The internal port number. A value of 0 is a wildcard.
This object is used as input to a request for establishing a policy rule as well as for indicating the properties of an established policy rule. It … |
INET-ADDRESS-MIBInetPortNumberr/w Textual Convention: INET-ADDRESS-MIBInetPortNumber Unsigned32Type Constraints: range: 0..65535 |
.1.3.6.1.2.1.171.1.1.3.1.18 |
||||||||||||||||||||||||
|
midcomRuleExternalIpAddr
The external IP address (A3).
This object is used as input to a request for establishing a policy rule as well as for indicating the properties of an established policy rule. If object midc… |
INET-ADDRESS-MIBInetAddressr/w Textual Convention: INET-ADDRESS-MIBInetAddress OctetStringType Constraints: range: 0..255 |
.1.3.6.1.2.1.171.1.1.3.1.19 |
||||||||||||||||||||||||
|
midcomRuleExternalIpPrefixLength
The prefix length of the external IP address used for
wildcarding. A value of 0 indicates a full wildcard; in this case, the value of midcomRuleExternalIpAddr is irrelevant. If midcomRuleExternalIpVersion has a value … |
INET-ADDRESS-MIBInetAddressPrefixLengthr/w Textual Convention: INET-ADDRESS-MIBInetAddressPrefixLength Unsigned32Type Constraints: range: 0..2040 |
.1.3.6.1.2.1.171.1.1.3.1.20 |
||||||||||||||||||||||||
|
midcomRuleExternalPort
The external port number. A value of 0 is a wildcard.
This object is used as input to a request for establishing a policy rule as well as for indicating the properties of an established policy rule. It … |
INET-ADDRESS-MIBInetPortNumberr/w Textual Convention: INET-ADDRESS-MIBInetPortNumber Unsigned32Type Constraints: range: 0..65535 |
.1.3.6.1.2.1.171.1.1.3.1.21 |
||||||||||||||||||||||||
|
midcomRuleInsideIpAddr
The inside IP address at the middlebox (A1).
The value of this object is relevant only if object midcomRuleOperStatus of the same entry has a value of either reserved(7) or enabled(8). |
INET-ADDRESS-MIBInetAddress Textual Convention: INET-ADDRESS-MIBInetAddress OctetStringType Constraints: range: 0..255 |
.1.3.6.1.2.1.171.1.1.3.1.22 |
||||||||||||||||||||||||
|
midcomRuleInsidePort
The inside port number at the middlebox.
A value of 0 is a wildcard. The value of this object is relevant only if object midcomRuleOperStatus of the same entry has a value of either reserved(7) or enabled… |
INET-ADDRESS-MIBInetPortNumber Textual Convention: INET-ADDRESS-MIBInetPortNumber Unsigned32Type Constraints: range: 0..65535 |
.1.3.6.1.2.1.171.1.1.3.1.23 |
||||||||||||||||||||||||
|
midcomRuleOutsideIpAddr
The outside IP address at the middlebox (A2).
The value of this object is relevant only if object midcomRuleOperStatus of the same entry has a value of either reserved(7) or enabled(8). |
INET-ADDRESS-MIBInetAddress Textual Convention: INET-ADDRESS-MIBInetAddress OctetStringType Constraints: range: 0..255 |
.1.3.6.1.2.1.171.1.1.3.1.24 |
||||||||||||||||||||||||
|
midcomRuleOutsidePort
The outside port number at the middlebox.
A value of 0 is a wildcard. The value of this object is relevant only if object midcomRuleOperStatus of the same entry has a value of either reserved(7) or enable… |
INET-ADDRESS-MIBInetPortNumber Textual Convention: INET-ADDRESS-MIBInetPortNumber Unsigned32Type Constraints: range: 0..65535 |
.1.3.6.1.2.1.171.1.1.3.1.25 |
||||||||||||||||||||||||
|
midcomRuleLifetime
The remaining lifetime in seconds of this policy rule.
Lifetime of a policy rule starts when object midcomRuleOperStatus in the same entry enters either state reserved(7) or state enabled(8). … |
secondsSNMPv2-SMIUnsigned32r/w Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.2.1.171.1.1.3.1.26 |
||||||||||||||||||||||||
|
midcomRuleRowStatus
A control that allows entries to be added and removed from
this table. Entries can also be removed from this table by setting objects midcomRuleLifetime and midcomRuleStorageTime of an entry to 0. … |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.2.1.171.1.1.3.1.27 |
midcomGroupTable
table.1.3.6.1.2.1.171.1.1.4
·
1 row entry
·
2 columns
This table lists all current policy rule groups.
Entries in this table are created or removed
implicitly when entries in the midcomRuleTable are
created or removed, respectively. A group entry
in this table only exists as long as there are
member rules of this group in the midcomRuleTable.
The table serves for listing the existing groups and
their remaining lifetimes and for changing lifetimes
of groups and implicitly of all group members.
Groups and all their member policy rules can only be
deleted by deleting all member policies in the
midcomRuleTable.
Setting midcomGroupLifetime will result in setting
the lifetime of all policy members to the same value.
An entry describing properties of a particular
MIDCOM policy rule group.
MIDCOM policy rule group.
Indexes
midcomRuleOwner midcomGroupIndex
| Column | Syntax | OID |
|---|---|---|
|
midcomGroupIndex
The index of this group for the midcomRuleOwner.
A group is identified by the combination of midcomRuleOwner and midcomGroupIndex. The value of this index must be unique per midcomRuleOwner. |
Unsigned32 Constraints: range: 1-4294967295 |
.1.3.6.1.2.1.171.1.1.4.1.2 |
|
midcomGroupLifetime
When retrieved, this object delivers the maximum
lifetime in seconds of all member rules of this group, i.e., of all rows in the midcomRuleTable that have the same values for midcomRuleOwner and midcomGroupIndex. … |
secondsSNMPv2-SMIUnsigned32r/w Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.2.1.171.1.1.4.1.3 |
midcomConfigIfTable
table.1.3.6.1.2.1.171.1.2.3
·
1 row entry
·
3 columns
This table indicates capabilities of the MIDCOM-MIB
implementation per IP interface.
The table is indexed by the object midcomConfigIfIndex.
For indexing a single interface, this object contains
the value of the ifIndex object that is associated
with the interface. If an entry with
midcomConfigIfIndex = 0 occurs, then bits set in
objects of this entry apply to all interfaces for which
there is no entry in this table with the interface's
index.
An entry describing the capabilities of a middlebox
with respect to the indexed IP interface.
with respect to the indexed IP interface.
Indexes
midcomConfigIfIndex
| Column | Syntax | OID | ||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
midcomConfigIfIndex
The index of an entry in the midcomConfigIfTable.
For values different from zero, this object identifies an IP interface by containing the same value as the ifIndex object associated with the interface. … |
IF-MIBInterfaceIndexOrZero Textual Convention: IF-MIBInterfaceIndexOrZero Integer32Type Constraints: range: 0..2147483647 |
.1.3.6.1.2.1.171.1.2.3.1.1 |
||||||||||||||||||||
|
midcomConfigIfBits
When retrieved, this object returns a set of bits
indicating the capabilities (or configuration) of the middlebox with respect to the referenced IP interface. If the index equals 0, then all set bits apply to all interf… |
Bits Enumerated Values:
|
.1.3.6.1.2.1.171.1.2.3.1.2 |
||||||||||||||||||||
|
midcomConfigIfEnabled
The value of this object indicates the availability of
the middlebox service described by midcomConfigIfBits at the indexed IP interface. By writing to this object, the MIDCOM support for the entire IP in… |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.2.1.171.1.2.3.1.3 |
.1.3.6.1.2.1.171.1.2.4
·
1 row entry
·
3 columns
This table lists the firewall configuration per IP interface.
It can be used for configuring how policy rules created by
MIDCOM clients are realized as firewall rules of a firewall
implementation. Particularly, the priority used for MIDCOM
policy rules can be configured. For a single firewall
implementation at a particular IP interface, all MIDCOM
policy rules are realized as firewall rules with the same
priority. Also, a firewall rule group name can be
configured.
The table is indexed by the object midcomConfigFirewallIndex.
For indexing a single interface, this object contains the
value of the ifIndex object that is associated with the
interface. If an entry with midcomConfigFirewallIndex = 0
occurs, then bits set in objects of this entry apply to all
interfaces for which there is no entry in this table for the
interface's index.
An entry describing a particular set of
firewall resources.
firewall resources.
Indexes
midcomConfigFirewallIndex
| Column | Syntax | OID |
|---|---|---|
|
midcomConfigFirewallIndex
The index of an entry in the midcomConfigFirewallTable.
For values different from 0, this object identifies an IP interface by containing the same value as the ifIndex object associated with the interface… |
IF-MIBInterfaceIndexOrZero Textual Convention: IF-MIBInterfaceIndexOrZero Integer32Type Constraints: range: 0..2147483647 |
.1.3.6.1.2.1.171.1.2.4.1.1 |
|
midcomConfigFirewallGroupId
The firewall rule group to which all firewall rules are
assigned that the MIDCOM server creates for the interface indicated by object midcomConfigFirewallIndex. If the value of object midcomConfigFirewallIndex is 0, th… |
SNMP-FRAMEWORK-MIBSnmpAdminStringr/w Textual Convention: SNMP-FRAMEWORK-MIBSnmpAdminString OctetStringType Constraints: range: 0..255 |
.1.3.6.1.2.1.171.1.2.4.1.2 |
|
midcomConfigFirewallPriority
The priority assigned to all firewall rules that the
MIDCOM server creates for the interface indicated by object midcomConfigFirewallIndex. If the value of object midcomConfigFirewallIndex is 0, then this priority is a… |
SNMPv2-SMIUnsigned32r/w Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.2.1.171.1.2.4.1.3 |
midcomResourceTable
table.1.3.6.1.2.1.171.1.3.1
·
1 row entry
·
7 columns
This table lists all used middlebox resources per
MIDCOM policy rule.
The midcomResourceTable augments the
midcomRuleTable.
An entry describing a particular set of middlebox
resources.
resources.
Indexes
No indexes recorded
| Column | Syntax | OID | ||||||
|---|---|---|---|---|---|---|---|---|
|
midcomRscNatInternalAddrBindMode
An indication of whether this policy rule uses an address
NAT bind or an address-port NAT bind for binding the internal address. If the MIDCOM-MIB module is operated together with the NAT-MIB module (RFC … |
MidcomNatBindMode Textual Convention: MidcomNatBindMode EnumerationType Values:
|
.1.3.6.1.2.1.171.1.3.1.1.4 |
||||||
|
midcomRscNatInternalAddrBindId
This object references to the allocated internal NAT
bind that is used by this policy rule. A NAT bind describes the mapping of internal addresses to outside addresses. MIDCOM-MIB implementations can re… |
NAT-MIBNatBindIdOrZero Textual Convention: NAT-MIBNatBindIdOrZero Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.2.1.171.1.3.1.1.5 |
||||||
|
midcomRscNatInsideAddrBindMode
An indication of whether this policy rule uses an address
NAT bind or an address-port NAT bind for binding the external address. If the MIDCOM-MIB module is operated together with the NAT-MIB module (RFC … |
MidcomNatBindMode Textual Convention: MidcomNatBindMode EnumerationType Values:
|
.1.3.6.1.2.1.171.1.3.1.1.6 |
||||||
|
midcomRscNatInsideAddrBindId
This object refers to the allocated external NAT
bind that is used by this policy rule. A NAT bind describes the mapping of external addresses to inside addresses. MIDCOM-MIB implementations can read this object to le… |
NAT-MIBNatBindIdOrZero Textual Convention: NAT-MIBNatBindIdOrZero Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.2.1.171.1.3.1.1.7 |
||||||
|
midcomRscNatSessionId1
This object refers to the first allocated NAT session for
this policy rule. MIDCOM-MIB implementations can read this object to learn whether or not a NAT session for a particular policy rule is used. A value of 0 mean… |
MidcomNatSessionIdOrZero Textual Convention: MidcomNatSessionIdOrZero Unsigned32 |
.1.3.6.1.2.1.171.1.3.1.1.8 |
||||||
|
midcomRscNatSessionId2
This object refers to the second allocated NAT session for
this policy rule. MIDCOM-MIB implementations can read this object to learn whether or not a NAT session for a particular policy rule is used. A value of 0 mea… |
MidcomNatSessionIdOrZero Textual Convention: MidcomNatSessionIdOrZero Unsigned32 |
.1.3.6.1.2.1.171.1.3.1.1.9 |
||||||
|
midcomRscFirewallRuleId
This object refers to the allocated firewall
rule in the firewall engine for this policy rule. MIDCOM-MIB implementations can read this value to learn whether a firewall rule for this particular policy rule is used or n… |
SNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.2.1.171.1.3.1.1.10 |