etsysThreatResponseNotificationMessage
ENTERASYS-THREAT-NOTIFICATION-MIB ·
.1.3.6.1.4.1.5624.1.2.45.1.0.6
Object
notification
An etsysThreatResponseNotificationMessage indicates that a potential threat that had been identified has been acted upon. When this message is received, a user was either quarantined, or the action was undone.
Context
- MIB
- ENTERASYS-THREAT-NOTIFICATION-MIB
- OID
.1.3.6.1.4.1.5624.1.2.45.1.0.6- Type
- notification
- Status
- current
- Parent
- etsysThreatNotificationNotificationBranch
- Siblings
- 5
Syntax
No syntax metadata recorded.
Values & Constraints
No enumerated values or constraints recorded.
Related Objects
Sibling Objects
| Object | Type | Syntax | OID |
|---|---|---|---|
| etsysThreatNotificationInformationMessage1 An etsysThreatNotificationInformationMessage1 indicates that a
potential threat has been identified. This trap should be
generated when the IP address of the source of the threat… | notification | - | .1.3.6.1.4.1.5624.1.2.45.1.0.1 |
| etsysThreatNotificationInformationMessage2 An etsysThreatNotificationInformationMessage2 indicates that a
potential threat has been identified. This trap should be
generated when the device and interface of the threat is … | notification | - | .1.3.6.1.4.1.5624.1.2.45.1.0.2 |
| etsysThreatNotificationInformationMessage3 The purpose of etsysThreatNotificationInformationMessage3 is to
support devices that can only send single varbind notifications.
See etsysThreatNotificationConsolidatedData for mo… | notification | - | .1.3.6.1.4.1.5624.1.2.45.1.0.3 |
| etsysThreatNotificationInformationMessage4 An etsysThreatNotificationInformationMessage4 indicates that a
potential threat has been identified. This trap should be
generated when the device and interface of the threat is … | notification | - | .1.3.6.1.4.1.5624.1.2.45.1.0.4 |
| etsysThreatUndoNotificationMessage An etsysThreatUndoNotificationMessage indicates that a
potential threat that had been identified has been resolved.
When this message is received, if a user was quarantined,
the a… | notification | - | .1.3.6.1.4.1.5624.1.2.45.1.0.5 |
Notification Objects
| Object | Type | Syntax | OID |
|---|---|---|---|
| etsysThreatNotificationIncidentID The incident ID of an event. Used by
etsysThreatUndoNotificationMessage to undo an action. | scalar | SNMPv2-SMIInteger32 | .1.3.6.1.4.1.5624.1.2.45.1.1.14 |
| etsysThreatNotificationStatus The status of an event. Used by
etsysThreatResponseNotificationMessage. | scalar | OctetString | .1.3.6.1.4.1.5624.1.2.45.1.1.15 |
| etsysThreatNotificationDateTime The date and time the incident was received. Used by
etsysThreatResponseNotificationMessage. | scalar | SNMPv2-TCDateAndTime | .1.3.6.1.4.1.5624.1.2.45.1.1.19 |
| etsysThreatNotificationSenderID A name that identifies a sender or group
of senders. ie. 'Dragon IDS', ACME IDS',
'VIRUS SCAN', 'DRAGON1', 'DRAGON2' | scalar | OctetString | .1.3.6.1.4.1.5624.1.2.45.1.1.1 |
| etsysThreatNotificationSenderName The name of the sensor that discovered the threat. | scalar | OctetString | .1.3.6.1.4.1.5624.1.2.45.1.1.2 |
| etsysThreatNotificationThreatCategory A name that identifies a group of threat types. | scalar | OctetString | .1.3.6.1.4.1.5624.1.2.45.1.1.3 |
| etsysThreatNotificationThreatName The name of the signature that detected the threat. | scalar | OctetString | .1.3.6.1.4.1.5624.1.2.45.1.1.4 |
| etsysThreatNotificationInitiatorAddressType The address type of the endstation that initiated
the threat. | scalar | INET-ADDRESS-MIBInetAddressType | .1.3.6.1.4.1.5624.1.2.45.1.1.8 |
| etsysThreatNotificationInitiatorAddress The address of the endstation that initiated the
threat. | scalar | INET-ADDRESS-MIBInetAddress | .1.3.6.1.4.1.5624.1.2.45.1.1.9 |
| etsysThreatNotificationInitiatorMacAddress The MAC address of the endstation that is threatened. | scalar | SNMPv2-TCMacAddress | .1.3.6.1.4.1.5624.1.2.45.1.1.13 |
| etsysThreatNotificationDeviceAddressType The address type of the device where the initiator
of the threat was detected. | scalar | INET-ADDRESS-MIBInetAddressType | .1.3.6.1.4.1.5624.1.2.45.1.1.5 |
| etsysThreatNotificationDeviceAddress The address of the device where the initiator
of the threat was detected. | scalar | INET-ADDRESS-MIBInetAddress | .1.3.6.1.4.1.5624.1.2.45.1.1.6 |
| etsysThreatNotificationDeviceIfIndex The interface where the initiator was detected. | scalar | IF-MIBInterfaceIndex | .1.3.6.1.4.1.5624.1.2.45.1.1.7 |
| etsysThreatNotificationRuleName The name of the rule that was applied to this incident.
Used by etsysThreatResponseNotificationMessage. | scalar | OctetString | .1.3.6.1.4.1.5624.1.2.45.1.1.18 |
| etsysThreatNotificationAction The action taken in response to an incident. Used by
etsysThreatResponseNotificationMessage. | scalar | OctetString | .1.3.6.1.4.1.5624.1.2.45.1.1.17 |
| etsysThreatNotificationDetails The details of an event. Used by
etsysThreatResponseNotificationMessage. | scalar | OctetString | .1.3.6.1.4.1.5624.1.2.45.1.1.16 |
| etsysThreatNotificationLastUpdated The date and time the event was last updated. Used by
etsysThreatResponseNotificationMessage. | scalar | SNMPv2-TCDateAndTime | .1.3.6.1.4.1.5624.1.2.45.1.1.20 |