ciscoCidsAlert
CISCO-CIDS-MIB ·
.1.3.6.1.4.1.9.9.383.0.1
Object
notification
Event indicating that some suspicious or malicious activity has been detected on a monitored network.
Context
- MIB
- CISCO-CIDS-MIB
- OID
.1.3.6.1.4.1.9.9.383.0.1- Type
- notification
- Status
- current
- Parent
- ciscoCidsMIBNotifs
- Siblings
- 3
Syntax
No syntax metadata recorded.
Values & Constraints
No enumerated values or constraints recorded.
Related Objects
Sibling Objects
| Object | Type | Syntax | OID |
|---|---|---|---|
| ciscoCidsError Event indicating that an error has occurred. | notification | - | .1.3.6.1.4.1.9.9.383.0.2 |
| ciscoCidsHealthHeartBeat This notification is triggered by the heart beat events
(evStatus). The heartbeat is configured to run on a periodic
basis and can be enabled/disabled through heart beat
configur… | notification | - | .1.3.6.1.4.1.9.9.383.0.3 |
| ciscoCidsHealthMetricChange This notification notifies the recipient of health and
security status changes. This notification is triggered when
there is a change in the value of monitored metrics as indica… | notification | - | .1.3.6.1.4.1.9.9.383.0.4 |
Notification Objects
| Object | Type | Syntax | OID |
|---|---|---|---|
| cidsGeneralEventId Identifies the sequence number of an event.
This value needs to be unique within the scope
of the originating host. | scalar | CISCO-TCUnsigned64 | .1.3.6.1.4.1.9.9.383.1.1.1 |
| cidsGeneralLocalTime The local time on the Cisco intrusion detection
system sensor when the alert was generated. | scalar | SNMPv2-TCDateAndTime | .1.3.6.1.4.1.9.9.383.1.1.2 |
| cidsGeneralUTCTime The UTC time on the Cisco intrusion detection
system sensor when the alert was generated. | scalar | SNMPv2-TCDateAndTime | .1.3.6.1.4.1.9.9.383.1.1.3 |
| cidsGeneralOriginatorHostId A globally unique identifier for a Cids host. Could
be a host name or an IP address. | scalar | SNMP-FRAMEWORK-MIBSnmpAdminString | .1.3.6.1.4.1.9.9.383.1.1.4 |
| cidsAlertSeverity The severity associated with a Cids signature
(informational, low, medium or high for
example). | scalar | SNMP-FRAMEWORK-MIBSnmpAdminString | .1.3.6.1.4.1.9.9.383.1.2.1 |
| cidsAlertSignatureSigName The name of the Intrusion detection signature
that triggered this event. | scalar | OctetString | .1.3.6.1.4.1.9.9.383.1.2.4 |
| cidsAlertSignatureSigId The ID of the Intrusion detection signature
that triggered this event. The ID combines
with the cidsAlertSignatureSubSigId to
create a unique key that identifies the
signature … | scalar | SNMPv2-SMIUnsigned32 | .1.3.6.1.4.1.9.9.383.1.2.5 |
| cidsAlertSignatureSubSigId The optional Sub ID of the Intrusion detection
signature that triggered this event. The Sub
ID combines with the cidsAlertSignatureSigId
to create a unique key that identifies th… | scalar | SNMPv2-SMIUnsigned32 | .1.3.6.1.4.1.9.9.383.1.2.6 |
| cidsAlertAlarmTraits The alarm traits is an unsigned 16-bit integer
representing the value of the 16 user-defined
alarm traits specified in the configuration for
the signature that triggered the ale… | scalar | SNMPv2-SMIUnsigned32 | .1.3.6.1.4.1.9.9.383.1.2.2 |
| cidsAlertAttackerAddress Optional IP address and ports on a monitored
interface. The 'locality' attribute is a string
that indicates the relative location of the IP
address within the network mapping, … | scalar | SNMP-FRAMEWORK-MIBSnmpAdminString | .1.3.6.1.4.1.9.9.383.1.2.16 |
| cidsAlertVictimAddress Optional IP address and ports on a monitored
interface. The 'locality' attribute is a string
that indicates the relative location of the IP
address within the network mapping, … | scalar | SNMP-FRAMEWORK-MIBSnmpAdminString | .1.3.6.1.4.1.9.9.383.1.2.17 |