< draft-perrault-behave-deprecate-nat-mib-v1-01.txt   draft-perrault-behave-deprecate-nat-mib-v1-06.txt >
Network Working Group S. Perreault Network Working Group S. Perreault
Internet-Draft Jive Communications Internet-Draft Jive Communications
Obsoletes: 4008 (if approved) T. Tsou Obsoletes: 4008 (if approved) T. Tsou
Intended status: Standards Track Huawei Technologies Intended status: Standards Track Huawei Technologies
Expires: August 2, 2015 S. Sivakumar Expires: January 7, 2016 S. Sivakumar
Cisco Systems Cisco Systems
T. Taylor T. Taylor
PT Taylor Consulting PT Taylor Consulting
January 29, 2015 July 6, 2015
Deprecation of MIB Module NAT-MIB (Managed Objects for Network Address Deprecation of MIB Module NAT-MIB (Managed Objects for Network Address
Translators (NAT)) Translators (NAT))
draft-perrault-behave-deprecate-nat-mib-v1-01 draft-perrault-behave-deprecate-nat-mib-v1-06
Abstract Abstract
This memo deprecates MIB module NAT-MIB, a portion of the Management This memo deprecates MIB module NAT-MIB, a portion of the Management
Information Base (MIB) previously defined in RFC 4008 for devices Information Base (MIB) previously defined in RFC 4008 for devices
implementing Network Address Translator (NAT) function. A companion implementing Network Address Translator (NAT) function. A companion
document defines a new version, NAT-MIB-V2, which responds to document defines a new version, NAT-MIB-V2, which responds to
deficiencies found in module NAT-MIB and adds new capabilities. deficiencies found in module NAT-MIB and adds new capabilities.
This document obsoletes RFC 4008. This document obsoletes RFC 4008. All RFC 4008 MIB objects are
included in this version unchanged with only the STATUS changed to
deprecated.
Status of This Memo Status of This Memo
This Internet-Draft is submitted in full conformance with the This Internet-Draft is submitted in full conformance with the
provisions of BCP 78 and BCP 79. provisions of BCP 78 and BCP 79.
Internet-Drafts are working documents of the Internet Engineering Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF). Note that other groups may also distribute Task Force (IETF). Note that other groups may also distribute
working documents as Internet-Drafts. The list of current Internet- working documents as Internet-Drafts. The list of current Internet-
Drafts is at http://datatracker.ietf.org/drafts/current/. Drafts is at http://datatracker.ietf.org/drafts/current/.
Internet-Drafts are draft documents valid for a maximum of six months Internet-Drafts are draft documents valid for a maximum of six months
and may be updated, replaced, or obsoleted by other documents at any and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress." material or to cite them other than as "work in progress."
This Internet-Draft will expire on August 2, 2015. This Internet-Draft will expire on January 7, 2016.
Copyright Notice Copyright Notice
Copyright (c) 2015 IETF Trust and the persons identified as the Copyright (c) 2015 IETF Trust and the persons identified as the
document authors. All rights reserved. document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents Provisions Relating to IETF Documents
(http://trustee.ietf.org/license-info) in effect on the date of (http://trustee.ietf.org/license-info) in effect on the date of
publication of this document. Please review these documents publication of this document. Please review these documents
skipping to change at page 2, line 23 skipping to change at page 2, line 28
described in the Simplified BSD License. described in the Simplified BSD License.
Table of Contents Table of Contents
1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . 2 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . 2
2. The Internet-Standard Management Framework . . . . . . . . . 3 2. The Internet-Standard Management Framework . . . . . . . . . 3
3. Motivation For Deprecating NAT-MIB . . . . . . . . . . . . . 3 3. Motivation For Deprecating NAT-MIB . . . . . . . . . . . . . 3
3.1. Deprecated Features . . . . . . . . . . . . . . . . . . . 3 3.1. Deprecated Features . . . . . . . . . . . . . . . . . . . 3
3.2. Desirable New Features . . . . . . . . . . . . . . . . . 4 3.2. Desirable New Features . . . . . . . . . . . . . . . . . 4
4. Definitions . . . . . . . . . . . . . . . . . . . . . . . . . 4 4. Definitions . . . . . . . . . . . . . . . . . . . . . . . . . 4
5. Security Considerations . . . . . . . . . . . . . . . . . . . 54 5. Security Considerations . . . . . . . . . . . . . . . . . . . 59
6. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 57 6. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 60
7. References . . . . . . . . . . . . . . . . . . . . . . . . . 57 7. References . . . . . . . . . . . . . . . . . . . . . . . . . 60
7.1. Normative References . . . . . . . . . . . . . . . . . . 57 7.1. Normative References . . . . . . . . . . . . . . . . . . 60
7.2. Informative References . . . . . . . . . . . . . . . . . 58 7.2. Informative References . . . . . . . . . . . . . . . . . 60
Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . 59 Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . 61
1. Introduction 1. Introduction
RFC Editor NOTE: please replace all occurences of RFCyyyy with the
number assigned to this document, and all occurences of RFCzzzz with
the number assigned to [I-D.ietf-behave-nat-mib-v2].
This memo deprecates a portion of the Management Information Base This memo deprecates a portion of the Management Information Base
(MIB), MIB module NAT-MIB, for devices implementing the Network (MIB), MIB module NAT-MIB, for devices implementing the Network
Address Translator (NAT) function. New implementations are Address Translator (NAT) function. New implementations are
encouraged to base themselves upon the second version of this MIB encouraged to base themselves upon the second version of this MIB
module, NAT-MIB-V2, defined in [I-D.ietf-behave-nat-mib-v2]. NAT module, NAT-MIB-V2, defined in [I-D.ietf-behave-nat-mib-v2]. NAT
types and their characteristics are defined in [RFC2663]. types and their characteristics are defined in [RFC2663].
Traditional NAT function, in particular is defined in [RFC3022]. Traditional NAT function, in particular is defined in [RFC3022].
Neither NAT-MIB nor NAT-MIB-V2 addresses firewall functions and Neither NAT-MIB nor NAT-MIB-V2 addresses firewall functions and
neither can be used for configuring or monitoring them. neither can be used for configuring or monitoring them.
Section 2 provides references to the SNMP management framework, which Section 2 provides references to the Simple Network Management
was used as the basis for the original MIB module definition and its Protocol (SNMP) management framework, which was used as the basis for
deprecation. Section 3 provides motivation for the deprecation of the original MIB module definition and its deprecation. Section 3
module NAT-MIB and its replacement by module NAT-MIB-V2. Section 4 provides motivation for the deprecation of module NAT-MIB and its
has the complete NAT-MIB module definition, with the STATUS of all replacement by module NAT-MIB-V2. Section 4 has the complete NAT-MIB
objects changed to deprecated. Section 5 describes security module definition, with the STATUS of all objects changed to
considerations relating to NAT-MIB, basically elaborating on the deprecated. Section 5 describes security considerations relating to
security considerations in [RFC4008]. NAT-MIB, basically relying on the security considerations in
[RFC4008] and [I-D.ietf-behave-nat-mib-v2].
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
"SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and
"OPTIONAL" in this document are to be interpreted as described in "OPTIONAL" in this document are to be interpreted as described in
[RFC2119]. [RFC2119].
2. The Internet-Standard Management Framework 2. The Internet-Standard Management Framework
For a detailed overview of the documents that describe the current For a detailed overview of the documents that describe the current
Internet-Standard Management Framework, please refer to Section 7 of Internet-Standard Management Framework, please refer to Section 7 of
skipping to change at page 4, line 35 skipping to change at page 4, line 44
Lesson learned: use standard transport protocol numbers. Lesson learned: use standard transport protocol numbers.
3.2. Desirable New Features 3.2. Desirable New Features
A number of desirable new features have been identified that are not A number of desirable new features have been identified that are not
present in NAT-MIB. See the latter part of present in NAT-MIB. See the latter part of
[I-D.ietf-behave-nat-mib-v2] Section 2. [I-D.ietf-behave-nat-mib-v2] Section 2.
4. Definitions 4. Definitions
This MIB module IMPORTs objects from [RFC2578], [RFC2579], and This MIB module IMPORTs objects from [RFC2578], [RFC2579], [RFC2580],
[RFC4001]. [RFC2863], [RFC3411], and [RFC4001]. It also refers to information
in RFCs [RFC0792], [RFC4443], and [RFC3413].
NAT-MIB DEFINITIONS ::= BEGIN NAT-MIB DEFINITIONS ::= BEGIN
IMPORTS IMPORTS
MODULE-IDENTITY, MODULE-IDENTITY,
OBJECT-TYPE, OBJECT-TYPE,
Integer32, Integer32,
Unsigned32, Unsigned32,
Gauge32, Gauge32,
Counter64, Counter64,
TimeTicks, TimeTicks,
mib-2, mib-2,
NOTIFICATION-TYPE NOTIFICATION-TYPE
FROM SNMPv2-SMI FROM SNMPv2-SMI
TEXTUAL-CONVENTION, TEXTUAL-CONVENTION,
DisplayString,
StorageType, StorageType,
RowStatus RowStatus
FROM SNMPv2-TC FROM SNMPv2-TC
MODULE-COMPLIANCE, MODULE-COMPLIANCE,
NOTIFICATION-GROUP, NOTIFICATION-GROUP,
OBJECT-GROUP OBJECT-GROUP
FROM SNMPv2-CONF FROM SNMPv2-CONF
ifIndex, ifIndex,
ifCounterDiscontinuityGroup, ifCounterDiscontinuityGroup
InterfaceIndex
FROM IF-MIB FROM IF-MIB
SnmpAdminString SnmpAdminString
FROM SNMP-FRAMEWORK-MIB FROM SNMP-FRAMEWORK-MIB
InetAddressType, InetAddressType,
InetAddress, InetAddress,
InetAddressPrefixLength,
InetPortNumber InetPortNumber
FROM INET-ADDRESS-MIB FROM INET-ADDRESS-MIB;
VPNIdOrZero
FROM VPN-TC-STD-MIB;
natMIB MODULE-IDENTITY natMIB MODULE-IDENTITY
LAST-UPDATED "201410180000Z" LAST-UPDATED "201506240000Z"
-- RFC Ed.: set to publication date -- RFC Ed.: please set to publication date
ORGANIZATION ORGANIZATION
"IETF Behavior Engineering for Hindrance Avoidance "IETF Behavior Engineering for Hindrance Avoidance
(BEHAVE) Working Group" (BEHAVE) Working Group"
CONTACT-INFO CONTACT-INFO
"Working Group Email: behave@ietf.org "Working Group Email: behave@ietf.org
Simon Perreault Simon Perreault
Viagenie Jive Communications
246 Aberdeen Quebec, QC
Quebec, QC G1R 2E1
Canada Canada
Phone: +1 418 656 9254 Email: sperreault@jive.com
Email: simon.perreault@viagenie.ca
URI: http://viagenie.ca
Tina Tsou Tina Tsou
Huawei Technologies (USA) Huawei Technologies
2330 Central Expressway Bantian, Longgang District
Santa Clara, CA 95050 Shenzhen 518129
USA PR China
Phone: +1 408 330 4424
Email: tina.tsou.zouting@huawei.com Email: tina.tsou.zouting@huawei.com
Senthil Sivakumar Senthil Sivakumar
Cisco Systems Cisco Systems
7100-8 Kit Creek Road 7100-8 Kit Creek Road
Research Triangle Park, North Carolina 27709 Research Triangle Park, North Carolina 27709
USA USA
Phone: +1 919 392 5158 Phone: +1 919 392 5158
Email: ssenthil@cisco.com" Email: ssenthil@cisco.com
Tom Taylor
PT Taylor Consulting
Ottawa
Canada
Email: tom.taylor.stds@gmail.com"
DESCRIPTION DESCRIPTION
"This MIB module defines the generic managed objects "This MIB module defines the generic managed objects
for NAT. for NAT.
Copyright (C) The Internet Society (2014). This Copyright (C) The Internet Society (2015). This
version of this MIB module is part of RFC yyyy; see version of this MIB module is part of RFC yyyy; see
the RFC itself for full legal notices." the RFC itself for full legal notices."
-- RFC Ed.: replace yyyy with actual RFC number & remove this note" -- RFC Ed.: replace yyyy with actual RFC number & remove this note"
REVISION "201410180000Z" REVISION "201506240000Z"
-- RFC Ed.: set to publication date -- RFC Ed.: set to publication date
DESCRIPTION DESCRIPTION
"Deprecation, published as RFC yyyy." "Deprecation of all objects, published as RFC yyyy.
-- RFC Ed.: replace yyyy with actual RFC number & set date" See NAT-MIB-V2 in RFCzzzz for recommended replacement."
REVISION "200503210000Z" -- 21th March 2005 -- RFC Ed.: please replace yyyy with actual RFC number & set date.
-- Replace zzzz with number assigned to [I-D.ietf-behave-nat-mib-v2].
REVISION "200503210000Z" -- 21 March 2005
DESCRIPTION DESCRIPTION
"Initial version, published as RFC 4008." "Initial version, published as RFC 4008."
::= { mib-2 123 } ::= { mib-2 123 }
natMIBObjects OBJECT IDENTIFIER ::= { natMIB 1 } natMIBObjects OBJECT IDENTIFIER ::= { natMIB 1 }
NatProtocolType ::= TEXTUAL-CONVENTION NatProtocolType ::= TEXTUAL-CONVENTION
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"A list of protocols that support the network "A list of protocols that support the network
address translation. Inclusion of the values is address translation. Inclusion of the values is
not intended to imply that those protocols not intended to imply that those protocols
need to be supported. Any change in this need to be supported. Any change in this
TEXTUAL-CONVENTION should also be reflected in TEXTUAL-CONVENTION should also be reflected in
the definition of NatProtocolMap, which is a the definition of NatProtocolMap, which is a
BITS representation of this." BITS representation of this.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
SYNTAX INTEGER { SYNTAX INTEGER {
none (1), -- not specified none (1), -- not specified
other (2), -- none of the following other (2), -- none of the following
icmp (3), icmp (3),
udp (4), udp (4),
tcp (5) tcp (5)
} }
NatProtocolMap ::= TEXTUAL-CONVENTION NatProtocolMap ::= TEXTUAL-CONVENTION
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"A bitmap of protocol identifiers that support "A bitmap of protocol identifiers that support
the network address translation. Any change the network address translation. Any change
in this TEXTUAL-CONVENTION should also be in this TEXTUAL-CONVENTION should also be
reflected in the definition of NatProtocolType." reflected in the definition of NatProtocolType.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
SYNTAX BITS { SYNTAX BITS {
other (0), other (0),
icmp (1), icmp (1),
udp (2), udp (2),
tcp (3) tcp (3)
} }
NatAddrMapId ::= TEXTUAL-CONVENTION NatAddrMapId ::= TEXTUAL-CONVENTION
DISPLAY-HINT "d" DISPLAY-HINT "d"
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"A unique id that is assigned to each address map "A unique id that is assigned to each address map
by a NAT enabled device." by a NAT enabled device.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
SYNTAX Unsigned32 (1..4294967295) SYNTAX Unsigned32 (1..4294967295)
NatBindIdOrZero ::= TEXTUAL-CONVENTION NatBindIdOrZero ::= TEXTUAL-CONVENTION
DISPLAY-HINT "d" DISPLAY-HINT "d"
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"A unique id that is assigned to each bind by "A unique id that is assigned to each bind by
a NAT enabled device. The bind id will be zero a NAT enabled device. The bind id will be zero
in the case of a Symmetric NAT." in the case of a Symmetric NAT.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
SYNTAX Unsigned32 (0..4294967295) SYNTAX Unsigned32 (0..4294967295)
NatBindId ::= TEXTUAL-CONVENTION NatBindId ::= TEXTUAL-CONVENTION
DISPLAY-HINT "d" DISPLAY-HINT "d"
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"A unique id that is assigned to each bind by "A unique id that is assigned to each bind by
a NAT enabled device." a NAT enabled device.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
SYNTAX Unsigned32 (1..4294967295) SYNTAX Unsigned32 (1..4294967295)
NatSessionId ::= TEXTUAL-CONVENTION NatSessionId ::= TEXTUAL-CONVENTION
DISPLAY-HINT "d" DISPLAY-HINT "d"
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"A unique id that is assigned to each session by "A unique id that is assigned to each session by
a NAT enabled device." a NAT enabled device.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
SYNTAX Unsigned32 (1..4294967295) SYNTAX Unsigned32 (1..4294967295)
NatBindMode ::= TEXTUAL-CONVENTION NatBindMode ::= TEXTUAL-CONVENTION
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"An indication of whether the bind is "An indication of whether the bind is
an address bind or an address port bind." an address bind or an address port bind.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
SYNTAX INTEGER { SYNTAX INTEGER {
addressBind (1), addressBind (1),
addressPortBind (2) addressPortBind (2)
} }
NatAssociationType ::= TEXTUAL-CONVENTION NatAssociationType ::= TEXTUAL-CONVENTION
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"An indication of whether the association is "An indication of whether the association is
static or dynamic." static or dynamic.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
SYNTAX INTEGER { SYNTAX INTEGER {
static (1), static (1),
dynamic (2) dynamic (2)
} }
NatTranslationEntity ::= TEXTUAL-CONVENTION NatTranslationEntity ::= TEXTUAL-CONVENTION
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"An indication of a) the direction of a session for "An indication of a) the direction of a session for
which an address map entry, address bind or port which an address map entry, address bind or port
bind is applicable, and b) the entity (source or bind is applicable, and b) the entity (source or
destination) within the session that is subject to destination) within the session that is subject to
translation." translation.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
SYNTAX BITS { SYNTAX BITS {
inboundSrcEndPoint (0), inboundSrcEndPoint (0),
outboundDstEndPoint(1), outboundDstEndPoint(1),
inboundDstEndPoint (2), inboundDstEndPoint (2),
outboundSrcEndPoint(3) outboundSrcEndPoint(3)
} }
-- --
-- Default Values for the Bind and NAT Protocol Timers -- Default Values for the Bind and NAT Protocol Timers
-- --
skipping to change at page 9, line 15 skipping to change at page 9, line 44
UNITS "seconds" UNITS "seconds"
MAX-ACCESS read-write MAX-ACCESS read-write
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The default Bind (Address Bind or Port Bind) idle "The default Bind (Address Bind or Port Bind) idle
timeout parameter. timeout parameter.
If the agent is capable of storing non-volatile If the agent is capable of storing non-volatile
configuration, then the value of this object must be configuration, then the value of this object must be
restored after a re-initialization of the management restored after a re-initialization of the management
system." system.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
DEFVAL { 0 } DEFVAL { 0 }
::= { natDefTimeouts 1 } ::= { natDefTimeouts 1 }
-- --
-- UDP related NAT configuration -- UDP related NAT configuration
-- --
natUdpDefIdleTimeout OBJECT-TYPE natUdpDefIdleTimeout OBJECT-TYPE
SYNTAX Unsigned32 (1..4294967295) SYNTAX Unsigned32 (1..4294967295)
UNITS "seconds" UNITS "seconds"
MAX-ACCESS read-write MAX-ACCESS read-write
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The default UDP idle timeout parameter. "The default UDP idle timeout parameter.
If the agent is capable of storing non-volatile If the agent is capable of storing non-volatile
configuration, then the value of this object must be configuration, then the value of this object must be
restored after a re-initialization of the management restored after a re-initialization of the management
system." system.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
DEFVAL { 300 } DEFVAL { 300 }
::= { natDefTimeouts 2 } ::= { natDefTimeouts 2 }
-- --
-- ICMP related NAT configuration -- ICMP related NAT configuration
-- --
natIcmpDefIdleTimeout OBJECT-TYPE natIcmpDefIdleTimeout OBJECT-TYPE
SYNTAX Unsigned32 (1..4294967295) SYNTAX Unsigned32 (1..4294967295)
UNITS "seconds" UNITS "seconds"
MAX-ACCESS read-write MAX-ACCESS read-write
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The default ICMP idle timeout parameter. "The default ICMP idle timeout parameter.
If the agent is capable of storing non-volatile If the agent is capable of storing non-volatile
configuration, then the value of this object must be configuration, then the value of this object must be
restored after a re-initialization of the management restored after a re-initialization of the management
system." system.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
DEFVAL { 300 } DEFVAL { 300 }
::= { natDefTimeouts 3 } ::= { natDefTimeouts 3 }
-- --
-- Other protocol parameters -- Other protocol parameters
-- --
natOtherDefIdleTimeout OBJECT-TYPE natOtherDefIdleTimeout OBJECT-TYPE
SYNTAX Unsigned32 (1..4294967295) SYNTAX Unsigned32 (1..4294967295)
UNITS "seconds" UNITS "seconds"
MAX-ACCESS read-write MAX-ACCESS read-write
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The default idle timeout parameter for protocols "The default idle timeout parameter for protocols
represented by the value other (2) in represented by the value other (2) in
NatProtocolType. NatProtocolType.
If the agent is capable of storing non-volatile If the agent is capable of storing non-volatile
configuration, then the value of this object must be configuration, then the value of this object must be
restored after a re-initialization of the management restored after a re-initialization of the management
system." system.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
DEFVAL { 60 } DEFVAL { 60 }
::= { natDefTimeouts 4 } ::= { natDefTimeouts 4 }
-- --
-- TCP related NAT Timers -- TCP related NAT Timers
-- --
natTcpDefIdleTimeout OBJECT-TYPE natTcpDefIdleTimeout OBJECT-TYPE
SYNTAX Unsigned32 (1..4294967295) SYNTAX Unsigned32 (1..4294967295)
UNITS "seconds" UNITS "seconds"
MAX-ACCESS read-write MAX-ACCESS read-write
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The default time interval that a NAT session for an "The default time interval that a NAT session for an
established TCP connection is allowed to remain established TCP connection is allowed to remain
valid without any activity on the TCP connection. valid without any activity on the TCP connection.
If the agent is capable of storing non-volatile If the agent is capable of storing non-volatile
configuration, then the value of this object must be configuration, then the value of this object must be
restored after a re-initialization of the management restored after a re-initialization of the management
system." system.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
DEFVAL { 86400 } DEFVAL { 86400 }
::= { natDefTimeouts 5 } ::= { natDefTimeouts 5 }
natTcpDefNegTimeout OBJECT-TYPE natTcpDefNegTimeout OBJECT-TYPE
SYNTAX Unsigned32 (1..4294967295) SYNTAX Unsigned32 (1..4294967295)
UNITS "seconds" UNITS "seconds"
MAX-ACCESS read-write MAX-ACCESS read-write
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The default time interval that a NAT session for a TCP "The default time interval that a NAT session for a TCP
connection that is not in the established state connection that is not in the established state
is allowed to remain valid without any activity on is allowed to remain valid without any activity on
the TCP connection. the TCP connection.
If the agent is capable of storing non-volatile If the agent is capable of storing non-volatile
configuration, then the value of this object must be configuration, then the value of this object must be
restored after a re-initialization of the management restored after a re-initialization of the management
system." system.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
DEFVAL { 60 } DEFVAL { 60 }
::= { natDefTimeouts 6 } ::= { natDefTimeouts 6 }
natNotifThrottlingInterval OBJECT-TYPE natNotifThrottlingInterval OBJECT-TYPE
SYNTAX Integer32 (0 | 5..3600) SYNTAX Integer32 (0 | 5..3600)
UNITS "seconds" UNITS "seconds"
MAX-ACCESS read-write MAX-ACCESS read-write
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object controls the generation of the "This object controls the generation of the
skipping to change at page 12, line 7 skipping to change at page 12, line 49
is enabled, the suggested default throttling period is is enabled, the suggested default throttling period is
60 seconds, but generation of the natPacketDiscard 60 seconds, but generation of the natPacketDiscard
notification should be disabled by default. notification should be disabled by default.
If the agent is capable of storing non-volatile If the agent is capable of storing non-volatile
configuration, then the value of this object must be configuration, then the value of this object must be
restored after a re-initialization of the management restored after a re-initialization of the management
system. system.
The actual transmission of notifications is controlled The actual transmission of notifications is controlled
via the MIB modules in RFC 3413." via the MIB modules in RFC 3413.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
DEFVAL { 0 } DEFVAL { 0 }
::= { natNotifCtrl 1 } ::= { natNotifCtrl 1 }
-- --
-- The NAT Interface Table -- The NAT Interface Table
-- --
natInterfaceTable OBJECT-TYPE natInterfaceTable OBJECT-TYPE
SYNTAX SEQUENCE OF NatInterfaceEntry SYNTAX SEQUENCE OF NatInterfaceEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This table specifies the attributes for interfaces on a "This table specifies the attributes for interfaces on a
device supporting NAT function." device supporting NAT function.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBObjects 3 } ::= { natMIBObjects 3 }
natInterfaceEntry OBJECT-TYPE natInterfaceEntry OBJECT-TYPE
SYNTAX NatInterfaceEntry SYNTAX NatInterfaceEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"Each entry in the natInterfaceTable holds a set of "Each entry in the natInterfaceTable holds a set of
parameters for an interface, instantiated by parameters for an interface, instantiated by
ifIndex. Therefore, the interface index must have been ifIndex. Therefore, the interface index must have been
assigned, according to the applicable procedures, assigned, according to the applicable procedures,
before it can be meaningfully used. before it can be meaningfully used.
Generally, this means that the interface must exist. Generally, this means that the interface must exist.
When natStorageType is of type nonVolatile, however, When natStorageType is of type nonVolatile, however,
this may reflect the configuration for an interface this may reflect the configuration for an interface
whose ifIndex has been assigned but for which the whose ifIndex has been assigned but for which the
supporting implementation is not currently present." supporting implementation is not currently present.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
INDEX { ifIndex } INDEX { ifIndex }
::= { natInterfaceTable 1 } ::= { natInterfaceTable 1 }
NatInterfaceEntry ::= SEQUENCE { NatInterfaceEntry ::= SEQUENCE {
natInterfaceRealm INTEGER, natInterfaceRealm INTEGER,
natInterfaceServiceType BITS, natInterfaceServiceType BITS,
natInterfaceInTranslates Counter64, natInterfaceInTranslates Counter64,
natInterfaceOutTranslates Counter64, natInterfaceOutTranslates Counter64,
natInterfaceDiscards Counter64, natInterfaceDiscards Counter64,
natInterfaceStorageType StorageType, natInterfaceStorageType StorageType,
skipping to change at page 13, line 16 skipping to change at page 14, line 16
natInterfaceRealm OBJECT-TYPE natInterfaceRealm OBJECT-TYPE
SYNTAX INTEGER { SYNTAX INTEGER {
private (1), private (1),
public (2) public (2)
} }
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object identifies whether this interface is "This object identifies whether this interface is
connected to the private or the public realm." connected to the private or the public realm.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
DEFVAL { public } DEFVAL { public }
::= { natInterfaceEntry 1 } ::= { natInterfaceEntry 1 }
natInterfaceServiceType OBJECT-TYPE natInterfaceServiceType OBJECT-TYPE
SYNTAX BITS { SYNTAX BITS {
basicNat (0), basicNat (0),
napt (1), napt (1),
bidirectionalNat (2), bidirectionalNat (2),
twiceNat (3) twiceNat (3)
} }
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"An indication of the direction in which new sessions "An indication of the direction in which new sessions
are permitted and the extent of translation done within are permitted and the extent of translation done within
the IP and transport headers." the IP and transport headers.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natInterfaceEntry 2 } ::= { natInterfaceEntry 2 }
natInterfaceInTranslates OBJECT-TYPE natInterfaceInTranslates OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"Number of packets received on this interface that "Number of packets received on this interface that
were translated. were translated.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times as indicated by the value of other times as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natInterfaceEntry 3 } ::= { natInterfaceEntry 3 }
natInterfaceOutTranslates OBJECT-TYPE natInterfaceOutTranslates OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"Number of translated packets that were sent out this "Number of translated packets that were sent out this
interface. interface.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times as indicated by the value of other times as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natInterfaceEntry 4 } ::= { natInterfaceEntry 4 }
natInterfaceDiscards OBJECT-TYPE natInterfaceDiscards OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"Number of packets that had to be rejected/dropped due to "Number of packets that had to be rejected/dropped due to
a lack of resources for this interface. a lack of resources for this interface.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times as indicated by the value of other times as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natInterfaceEntry 5 } ::= { natInterfaceEntry 5 }
natInterfaceStorageType OBJECT-TYPE natInterfaceStorageType OBJECT-TYPE
SYNTAX StorageType SYNTAX StorageType
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The storage type for this conceptual row. "The storage type for this conceptual row.
Conceptual rows having the value 'permanent' Conceptual rows having the value 'permanent'
need not allow write-access to any columnar objects need not allow write-access to any columnar objects
in the row." in the row.
REFERENCE Deprecated in favor of NAT-MIB-V2."
"Textual Conventions for SMIv2, Section 2." REFERENCE "RFCyyyy, RFCzzzz. Textual Conventions for
SMIv2, Section 2."
DEFVAL { nonVolatile } DEFVAL { nonVolatile }
::= { natInterfaceEntry 6 } ::= { natInterfaceEntry 6 }
natInterfaceRowStatus OBJECT-TYPE natInterfaceRowStatus OBJECT-TYPE
SYNTAX RowStatus SYNTAX RowStatus
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The status of this conceptual row. "The status of this conceptual row.
Until instances of all corresponding columns are Until instances of all corresponding columns are
appropriately configured, the value of the appropriately configured, the value of the
corresponding instance of the natInterfaceRowStatus corresponding instance of the natInterfaceRowStatus
column is 'notReady'. column is 'notReady'.
In particular, a newly created row cannot be made In particular, a newly created row cannot be made
active until the corresponding instance of active until the corresponding instance of
natInterfaceServiceType has been set. natInterfaceServiceType has been set.
None of the objects in this row may be modified None of the objects in this row may be modified
while the value of this object is active(1)." while the value of this object is active(1).
REFERENCE Deprecated in favor of NAT-MIB-V2."
"Textual Conventions for SMIv2, Section 2." REFERENCE "RFCyyyy, RFCzzzz. Textual Conventions for SMIv2,
Section 2."
::= { natInterfaceEntry 7 } ::= { natInterfaceEntry 7 }
-- --
-- The Address Map Table -- The Address Map Table
-- --
natAddrMapTable OBJECT-TYPE natAddrMapTable OBJECT-TYPE
SYNTAX SEQUENCE OF NatAddrMapEntry SYNTAX SEQUENCE OF NatAddrMapEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This table lists address map parameters for NAT." "This table lists address map parameters for NAT.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBObjects 4 } ::= { natMIBObjects 4 }
natAddrMapEntry OBJECT-TYPE natAddrMapEntry OBJECT-TYPE
SYNTAX NatAddrMapEntry SYNTAX NatAddrMapEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This entry represents an address map to be used for "This entry represents an address map to be used for
NAT and contributes to the dynamic and/or static NAT and contributes to the dynamic and/or static
address mapping tables of the NAT device." address mapping tables of the NAT device.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
INDEX { ifIndex, natAddrMapIndex } INDEX { ifIndex, natAddrMapIndex }
::= { natAddrMapTable 1 } ::= { natAddrMapTable 1 }
NatAddrMapEntry ::= SEQUENCE { NatAddrMapEntry ::= SEQUENCE {
natAddrMapIndex NatAddrMapId, natAddrMapIndex NatAddrMapId,
natAddrMapName SnmpAdminString, natAddrMapName SnmpAdminString,
natAddrMapEntryType NatAssociationType, natAddrMapEntryType NatAssociationType,
natAddrMapTranslationEntity NatTranslationEntity, natAddrMapTranslationEntity NatTranslationEntity,
natAddrMapLocalAddrType InetAddressType, natAddrMapLocalAddrType InetAddressType,
natAddrMapLocalAddrFrom InetAddress, natAddrMapLocalAddrFrom InetAddress,
skipping to change at page 16, line 21 skipping to change at page 17, line 38
} }
natAddrMapIndex OBJECT-TYPE natAddrMapIndex OBJECT-TYPE
SYNTAX NatAddrMapId SYNTAX NatAddrMapId
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"Along with ifIndex, this object uniquely "Along with ifIndex, this object uniquely
identifies an entry in the natAddrMapTable. identifies an entry in the natAddrMapTable.
Address map entries are applied in the order Address map entries are applied in the order
specified by natAddrMapIndex." specified by natAddrMapIndex.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 1 } ::= { natAddrMapEntry 1 }
natAddrMapName OBJECT-TYPE natAddrMapName OBJECT-TYPE
SYNTAX SnmpAdminString (SIZE(1..32)) SYNTAX SnmpAdminString (SIZE(1..32))
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"Name identifying all map entries in the table associated "Name identifying all map entries in the table associated
with the same interface. All map entries with the same with the same interface. All map entries with the same
ifIndex MUST have the same map name." ifIndex MUST have the same map name.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 2 } ::= { natAddrMapEntry 2 }
natAddrMapEntryType OBJECT-TYPE natAddrMapEntryType OBJECT-TYPE
SYNTAX NatAssociationType SYNTAX NatAssociationType
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This parameter can be used to set up static "This parameter can be used to set up static
or dynamic address maps." or dynamic address maps.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 3 } ::= { natAddrMapEntry 3 }
natAddrMapTranslationEntity OBJECT-TYPE natAddrMapTranslationEntity OBJECT-TYPE
SYNTAX NatTranslationEntity SYNTAX NatTranslationEntity
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The end-point entity (source or destination) in "The end-point entity (source or destination) in
inbound or outbound sessions (i.e., first packets) that inbound or outbound sessions (i.e., first packets) that
may be translated by an address map entry. may be translated by an address map entry.
skipping to change at page 17, line 26 skipping to change at page 18, line 49
Alternately, if address maps for Basic NAT and NAPT were Alternately, if address maps for Basic NAT and NAPT were
to be configured on a private interface, the desired to be configured on a private interface, the desired
value for this object for the map entries value for this object for the map entries
would be inboundSrcEndPoint (i.e., effecting translation would be inboundSrcEndPoint (i.e., effecting translation
of source end-point for inbound sessions). of source end-point for inbound sessions).
If TwiceNAT were to be configured on a private If TwiceNAT were to be configured on a private
interface, the desired value for this object for the map interface, the desired value for this object for the map
entries would be a bitmask of inboundSrcEndPoint and entries would be a bitmask of inboundSrcEndPoint and
inboundDstEndPoint." inboundDstEndPoint.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 4 } ::= { natAddrMapEntry 4 }
natAddrMapLocalAddrType OBJECT-TYPE natAddrMapLocalAddrType OBJECT-TYPE
SYNTAX InetAddressType SYNTAX InetAddressType
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies the address type used for "This object specifies the address type used for
natAddrMapLocalAddrFrom and natAddrMapLocalAddrTo." natAddrMapLocalAddrFrom and natAddrMapLocalAddrTo.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 5 } ::= { natAddrMapEntry 5 }
natAddrMapLocalAddrFrom OBJECT-TYPE natAddrMapLocalAddrFrom OBJECT-TYPE
SYNTAX InetAddress SYNTAX InetAddress
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies the first IP address of the range "This object specifies the first IP address of the range
of IP addresses mapped by this translation entry. The of IP addresses mapped by this translation entry. The
value of this object must be less than or equal to the value of this object must be less than or equal to the
value of the natAddrMapLocalAddrTo object. value of the natAddrMapLocalAddrTo object.
The type of this address is determined by the value of The type of this address is determined by the value of
the natAddrMapLocalAddrType object." the natAddrMapLocalAddrType object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 6 } ::= { natAddrMapEntry 6 }
natAddrMapLocalAddrTo OBJECT-TYPE natAddrMapLocalAddrTo OBJECT-TYPE
SYNTAX InetAddress SYNTAX InetAddress
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies the last IP address of the range "This object specifies the last IP address of the range
of IP addresses mapped by this translation entry. If of IP addresses mapped by this translation entry. If
only a single address is being mapped, the value of this only a single address is being mapped, the value of this
object is equal to the value of natAddrMapLocalAddrFrom. object is equal to the value of natAddrMapLocalAddrFrom.
For a static NAT, the number of addresses in the range For a static NAT, the number of addresses in the range
defined by natAddrMapLocalAddrFrom and defined by natAddrMapLocalAddrFrom and
natAddrMapLocalAddrTo must be equal to the number of natAddrMapLocalAddrTo must be equal to the number of
addresses in the range defined by addresses in the range defined by
natAddrMapGlobalAddrFrom and natAddrMapGlobalAddrTo. natAddrMapGlobalAddrFrom and natAddrMapGlobalAddrTo.
The value of this object must be greater than or equal The value of this object must be greater than or equal
to the value of the natAddrMapLocalAddrFrom object. to the value of the natAddrMapLocalAddrFrom object.
The type of this address is determined by the value of The type of this address is determined by the value of
the natAddrMapLocalAddrType object." the natAddrMapLocalAddrType object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 7 } ::= { natAddrMapEntry 7 }
natAddrMapLocalPortFrom OBJECT-TYPE natAddrMapLocalPortFrom OBJECT-TYPE
SYNTAX InetPortNumber SYNTAX InetPortNumber
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"If this conceptual row describes a Basic NAT address "If this conceptual row describes a Basic NAT address
mapping, then the value of this object must be zero. If mapping, then the value of this object must be zero. If
this conceptual row describes NAPT, then the value of this conceptual row describes NAPT, then the value of
this object specifies the first port number in the range this object specifies the first port number in the range
of ports being mapped. of ports being mapped.
The value of this object must be less than or equal to The value of this object must be less than or equal to
the value of the natAddrMapLocalPortTo object. If the the value of the natAddrMapLocalPortTo object. If the
translation specifies a single port, then the value of translation specifies a single port, then the value of
this object is equal to the value of this object is equal to the value of
natAddrMapLocalPortTo." natAddrMapLocalPortTo.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
DEFVAL { 0 } DEFVAL { 0 }
::= { natAddrMapEntry 8 } ::= { natAddrMapEntry 8 }
natAddrMapLocalPortTo OBJECT-TYPE natAddrMapLocalPortTo OBJECT-TYPE
SYNTAX InetPortNumber SYNTAX InetPortNumber
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"If this conceptual row describes a Basic NAT address "If this conceptual row describes a Basic NAT address
mapping, then the value of this object must be zero. If mapping, then the value of this object must be zero. If
this conceptual row describes NAPT, then the value of this conceptual row describes NAPT, then the value of
this object specifies the last port number in the range this object specifies the last port number in the range
of ports being mapped. of ports being mapped.
The value of this object must be greater than or equal The value of this object must be greater than or equal
to the value of the natAddrMapLocalPortFrom object. If to the value of the natAddrMapLocalPortFrom object. If
the translation specifies a single port, then the value the translation specifies a single port, then the value
of this object is equal to the value of of this object is equal to the value of
natAddrMapLocalPortFrom." natAddrMapLocalPortFrom.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
DEFVAL { 0 } DEFVAL { 0 }
::= { natAddrMapEntry 9 } ::= { natAddrMapEntry 9 }
natAddrMapGlobalAddrType OBJECT-TYPE natAddrMapGlobalAddrType OBJECT-TYPE
SYNTAX InetAddressType SYNTAX InetAddressType
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies the address type used for "This object specifies the address type used for
natAddrMapGlobalAddrFrom and natAddrMapGlobalAddrTo." natAddrMapGlobalAddrFrom and natAddrMapGlobalAddrTo.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 10 } ::= { natAddrMapEntry 10 }
natAddrMapGlobalAddrFrom OBJECT-TYPE natAddrMapGlobalAddrFrom OBJECT-TYPE
SYNTAX InetAddress SYNTAX InetAddress
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies the first IP address of the range "This object specifies the first IP address of the range
of IP addresses being mapped to. The value of this of IP addresses being mapped to. The value of this
object must be less than or equal to the value of the object must be less than or equal to the value of the
natAddrMapGlobalAddrTo object. natAddrMapGlobalAddrTo object.
The type of this address is determined by the value of The type of this address is determined by the value of
the natAddrMapGlobalAddrType object." the natAddrMapGlobalAddrType object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 11 } ::= { natAddrMapEntry 11 }
natAddrMapGlobalAddrTo OBJECT-TYPE natAddrMapGlobalAddrTo OBJECT-TYPE
SYNTAX InetAddress SYNTAX InetAddress
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies the last IP address of the range "This object specifies the last IP address of the range
of IP addresses being mapped to. If only a single of IP addresses being mapped to. If only a single
address is being mapped to, the value of this object is address is being mapped to, the value of this object is
equal to the value of natAddrMapGlobalAddrFrom. For a equal to the value of natAddrMapGlobalAddrFrom. For a
static NAT, the number of addresses in the range defined static NAT, the number of addresses in the range defined
by natAddrMapGlobalAddrFrom and natAddrMapGlobalAddrTo by natAddrMapGlobalAddrFrom and natAddrMapGlobalAddrTo
must be equal to the number of addresses in the range must be equal to the number of addresses in the range
defined by natAddrMapLocalAddrFrom and defined by natAddrMapLocalAddrFrom and
natAddrMapLocalAddrTo. The value of this object must be natAddrMapLocalAddrTo. The value of this object must be
greater than or equal to the value of the greater than or equal to the value of the
natAddrMapGlobalAddrFrom object. natAddrMapGlobalAddrFrom object.
The type of this address is determined by the value of The type of this address is determined by the value of
the natAddrMapGlobalAddrType object." the natAddrMapGlobalAddrType object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 12 } ::= { natAddrMapEntry 12 }
natAddrMapGlobalPortFrom OBJECT-TYPE natAddrMapGlobalPortFrom OBJECT-TYPE
SYNTAX InetPortNumber SYNTAX InetPortNumber
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"If this conceptual row describes a Basic NAT address "If this conceptual row describes a Basic NAT address
mapping, then the value of this object must be zero. If mapping, then the value of this object must be zero. If
this conceptual row describes NAPT, then the value of this conceptual row describes NAPT, then the value of
this object specifies the first port number in the range this object specifies the first port number in the range
of ports being mapped to. of ports being mapped to.
The value of this object must be less than or equal to The value of this object must be less than or equal to
the value of the natAddrMapGlobalPortTo object. If the the value of the natAddrMapGlobalPortTo object. If the
translation specifies a single port, then the value of translation specifies a single port, then the value of
this object is equal to the value this object is equal to the value
natAddrMapGlobalPortTo." natAddrMapGlobalPortTo.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
DEFVAL { 0 } DEFVAL { 0 }
::= { natAddrMapEntry 13 } ::= { natAddrMapEntry 13 }
natAddrMapGlobalPortTo OBJECT-TYPE natAddrMapGlobalPortTo OBJECT-TYPE
SYNTAX InetPortNumber SYNTAX InetPortNumber
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"If this conceptual row describes a Basic NAT address "If this conceptual row describes a Basic NAT address
mapping, then the value of this object must be zero. If mapping, then the value of this object must be zero. If
this conceptual row describes NAPT, then the value of this conceptual row describes NAPT, then the value of
this object specifies the last port number in the range this object specifies the last port number in the range
of ports being mapped to. of ports being mapped to.
The value of this object must be greater than or equal The value of this object must be greater than or equal
to the value of the natAddrMapGlobalPortFrom object. If to the value of the natAddrMapGlobalPortFrom object. If
the translation specifies a single port, then the value the translation specifies a single port, then the value
of this object is equal to the value of of this object is equal to the value of
natAddrMapGlobalPortFrom." natAddrMapGlobalPortFrom.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
DEFVAL { 0 } DEFVAL { 0 }
::= { natAddrMapEntry 14 } ::= { natAddrMapEntry 14 }
natAddrMapProtocol OBJECT-TYPE natAddrMapProtocol OBJECT-TYPE
SYNTAX NatProtocolMap SYNTAX NatProtocolMap
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies a bitmap of protocol identifiers." "This object specifies a bitmap of protocol identifiers.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 15 } ::= { natAddrMapEntry 15 }
natAddrMapInTranslates OBJECT-TYPE natAddrMapInTranslates OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of inbound packets pertaining to this address "The number of inbound packets pertaining to this address
map entry that were translated. map entry that were translated.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times, as indicated by the value of other times, as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 16 } ::= { natAddrMapEntry 16 }
natAddrMapOutTranslates OBJECT-TYPE natAddrMapOutTranslates OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of outbound packets pertaining to this "The number of outbound packets pertaining to this
address map entry that were translated. address map entry that were translated.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times, as indicated by the value of other times, as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 17 } ::= { natAddrMapEntry 17 }
natAddrMapDiscards OBJECT-TYPE natAddrMapDiscards OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of packets pertaining to this address map "The number of packets pertaining to this address map
entry that were dropped due to lack of addresses in the entry that were dropped due to lack of addresses in the
address pool identified by this address map. The value address pool identified by this address map. The value
of this object must always be zero in case of static of this object must always be zero in case of static
address map. address map.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times, as indicated by the value of other times, as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 18 } ::= { natAddrMapEntry 18 }
natAddrMapAddrUsed OBJECT-TYPE natAddrMapAddrUsed OBJECT-TYPE
SYNTAX Gauge32 SYNTAX Gauge32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of addresses pertaining to this address map "The number of addresses pertaining to this address map
that are currently being used from the NAT pool. that are currently being used from the NAT pool.
The value of this object must always be zero in the case The value of this object must always be zero in the case
of a static address map." of a static address map.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrMapEntry 19 } ::= { natAddrMapEntry 19 }
natAddrMapStorageType OBJECT-TYPE natAddrMapStorageType OBJECT-TYPE
SYNTAX StorageType SYNTAX StorageType
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The storage type for this conceptual row. "The storage type for this conceptual row.
Conceptual rows having the value 'permanent' Conceptual rows having the value 'permanent'
need not allow write-access to any columnar objects need not allow write-access to any columnar objects
in the row." in the row.
REFERENCE Deprecated in favor of NAT-MIB-V2."
"Textual Conventions for SMIv2, Section 2." REFERENCE "RFCyyyy, RFCzzzz. Textual Conventions for
SMIv2, Section 2."
DEFVAL { nonVolatile } DEFVAL { nonVolatile }
::= { natAddrMapEntry 20 } ::= { natAddrMapEntry 20 }
natAddrMapRowStatus OBJECT-TYPE natAddrMapRowStatus OBJECT-TYPE
SYNTAX RowStatus SYNTAX RowStatus
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The status of this conceptual row. "The status of this conceptual row.
Until instances of all corresponding columns are Until instances of all corresponding columns are
appropriately configured, the value of the appropriately configured, the value of the
corresponding instance of the natAddrMapRowStatus corresponding instance of the natAddrMapRowStatus
column is 'notReady'. column is 'notReady'.
None of the objects in this row may be modified None of the objects in this row may be modified
while the value of this object is active(1)." while the value of this object is active(1).
REFERENCE
"Textual Conventions for SMIv2, Section 2." Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz. Textual Conventions for
SMIv2, Section 2."
::= { natAddrMapEntry 21 } ::= { natAddrMapEntry 21 }
-- --
-- Address Bind section -- Address Bind section
-- --
natAddrBindNumberOfEntries OBJECT-TYPE natAddrBindNumberOfEntries OBJECT-TYPE
SYNTAX Gauge32 SYNTAX Gauge32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object maintains a count of the number of entries "This object maintains a count of the number of entries
that currently exist in the natAddrBindTable." that currently exist in the natAddrBindTable.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBObjects 5 } ::= { natMIBObjects 5 }
-- --
-- The NAT Address BIND Table -- The NAT Address BIND Table
-- --
natAddrBindTable OBJECT-TYPE natAddrBindTable OBJECT-TYPE
SYNTAX SEQUENCE OF NatAddrBindEntry SYNTAX SEQUENCE OF NatAddrBindEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This table holds information about the currently "This table holds information about the currently
active NAT BINDs." active NAT BINDs.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBObjects 6 } ::= { natMIBObjects 6 }
natAddrBindEntry OBJECT-TYPE natAddrBindEntry OBJECT-TYPE
SYNTAX NatAddrBindEntry SYNTAX NatAddrBindEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"Each entry in this table holds information about "Each entry in this table holds information about
an active address BIND. These entries are lost an active address BIND. These entries are lost
upon agent restart. upon agent restart.
skipping to change at page 23, line 39 skipping to change at page 26, line 4
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"Each entry in this table holds information about "Each entry in this table holds information about
an active address BIND. These entries are lost an active address BIND. These entries are lost
upon agent restart. upon agent restart.
This row has indexing which may create variables with This row has indexing which may create variables with
more than 128 subidentifiers. Implementers of this more than 128 subidentifiers. Implementers of this
table must be careful not to create entries that would table must be careful not to create entries that would
result in OIDs which exceed the 128 subidentifier limit. result in OIDs which exceed the 128 subidentifier limit.
Otherwise, the information cannot be accessed using Otherwise, the information cannot be accessed using
SNMPv1, SNMPv2c or SNMPv3." SNMPv1, SNMPv2c or SNMPv3.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
INDEX { ifIndex, INDEX { ifIndex,
natAddrBindLocalAddrType, natAddrBindLocalAddrType,
natAddrBindLocalAddr } natAddrBindLocalAddr }
::= { natAddrBindTable 1 } ::= { natAddrBindTable 1 }
NatAddrBindEntry ::= SEQUENCE { NatAddrBindEntry ::= SEQUENCE {
natAddrBindLocalAddrType InetAddressType, natAddrBindLocalAddrType InetAddressType,
natAddrBindLocalAddr InetAddress, natAddrBindLocalAddr InetAddress,
natAddrBindGlobalAddrType InetAddressType, natAddrBindGlobalAddrType InetAddressType,
skipping to change at page 24, line 21 skipping to change at page 26, line 37
natAddrBindInTranslates Counter64, natAddrBindInTranslates Counter64,
natAddrBindOutTranslates Counter64 natAddrBindOutTranslates Counter64
} }
natAddrBindLocalAddrType OBJECT-TYPE natAddrBindLocalAddrType OBJECT-TYPE
SYNTAX InetAddressType SYNTAX InetAddressType
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies the address type used for "This object specifies the address type used for
natAddrBindLocalAddr." natAddrBindLocalAddr.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 1 } ::= { natAddrBindEntry 1 }
natAddrBindLocalAddr OBJECT-TYPE natAddrBindLocalAddr OBJECT-TYPE
SYNTAX InetAddress (SIZE (4|16)) SYNTAX InetAddress (SIZE (4|16))
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object represents the private-realm specific "This object represents the private-realm specific
network layer address, which maps to the public-realm network layer address, which maps to the public-realm
address represented by natAddrBindGlobalAddr. address represented by natAddrBindGlobalAddr.
The type of this address is determined by the value of The type of this address is determined by the value of
the natAddrBindLocalAddrType object." the natAddrBindLocalAddrType object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 2 } ::= { natAddrBindEntry 2 }
natAddrBindGlobalAddrType OBJECT-TYPE natAddrBindGlobalAddrType OBJECT-TYPE
SYNTAX InetAddressType SYNTAX InetAddressType
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies the address type used for "This object specifies the address type used for
natAddrBindGlobalAddr." natAddrBindGlobalAddr.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 3 } ::= { natAddrBindEntry 3 }
natAddrBindGlobalAddr OBJECT-TYPE natAddrBindGlobalAddr OBJECT-TYPE
SYNTAX InetAddress SYNTAX InetAddress
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object represents the public-realm network layer "This object represents the public-realm network layer
address that maps to the private-realm network layer address that maps to the private-realm network layer
address represented by natAddrBindLocalAddr. address represented by natAddrBindLocalAddr.
The type of this address is determined by the value of The type of this address is determined by the value of
the natAddrBindGlobalAddrType object." the natAddrBindGlobalAddrType object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 4 } ::= { natAddrBindEntry 4 }
natAddrBindId OBJECT-TYPE natAddrBindId OBJECT-TYPE
SYNTAX NatBindId SYNTAX NatBindId
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object represents a bind id that is dynamically "This object represents a bind id that is dynamically
assigned to each bind by a NAT enabled device. Each assigned to each bind by a NAT enabled device. Each
bind is represented by a bind id that is bind is represented by a bind id that is
unique across both, the natAddrBindTable and the unique across both, the natAddrBindTable and the
natAddrPortBindTable." natAddrPortBindTable.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 5 } ::= { natAddrBindEntry 5 }
natAddrBindTranslationEntity OBJECT-TYPE natAddrBindTranslationEntity OBJECT-TYPE
SYNTAX NatTranslationEntity SYNTAX NatTranslationEntity
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object represents the direction of sessions "This object represents the direction of sessions
for which this bind is applicable and the endpoint for which this bind is applicable and the endpoint
entity (source or destination) within the sessions that entity (source or destination) within the sessions that
skipping to change at page 25, line 42 skipping to change at page 28, line 19
Orientation of the bind can be a superset of Orientation of the bind can be a superset of
translationEntity of the address map entry which translationEntity of the address map entry which
forms the basis for this bind. forms the basis for this bind.
For example, if the translationEntity of an For example, if the translationEntity of an
address map entry is outboundSrcEndPoint, the address map entry is outboundSrcEndPoint, the
translationEntity of a bind derived from this translationEntity of a bind derived from this
map entry may either be outboundSrcEndPoint or map entry may either be outboundSrcEndPoint or
it may be bidirectional (a bitmask of it may be bidirectional (a bitmask of
outboundSrcEndPoint and inboundDstEndPoint)." outboundSrcEndPoint and inboundDstEndPoint).
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 6 } ::= { natAddrBindEntry 6 }
natAddrBindType OBJECT-TYPE natAddrBindType OBJECT-TYPE
SYNTAX NatAssociationType SYNTAX NatAssociationType
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object indicates whether the bind is static or "This object indicates whether the bind is static or
dynamic." dynamic.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 7 } ::= { natAddrBindEntry 7 }
natAddrBindMapIndex OBJECT-TYPE natAddrBindMapIndex OBJECT-TYPE
SYNTAX NatAddrMapId SYNTAX NatAddrMapId
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object is a pointer to the natAddrMapTable entry "This object is a pointer to the natAddrMapTable entry
(and the parameters of that entry) which was used in (and the parameters of that entry) which was used in
creating this BIND. This object, in conjunction with creating this BIND. This object, in conjunction with
the ifIndex (which identifies a unique addrMapName) the ifIndex (which identifies a unique addrMapName)
points to a unique entry in the natAddrMapTable." points to a unique entry in the natAddrMapTable.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 8 } ::= { natAddrBindEntry 8 }
natAddrBindSessions OBJECT-TYPE natAddrBindSessions OBJECT-TYPE
SYNTAX Gauge32 SYNTAX Gauge32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"Number of sessions currently using this BIND." "Number of sessions currently using this BIND.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 9 } ::= { natAddrBindEntry 9 }
natAddrBindMaxIdleTime OBJECT-TYPE natAddrBindMaxIdleTime OBJECT-TYPE
SYNTAX TimeTicks SYNTAX TimeTicks
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object indicates the maximum time for "This object indicates the maximum time for
which this bind can be idle with no sessions which this bind can be idle with no sessions
attached to it. attached to it.
The value of this object is of relevance only for The value of this object is of relevance only for
dynamic NAT." dynamic NAT.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 10 } ::= { natAddrBindEntry 10 }
natAddrBindCurrentIdleTime OBJECT-TYPE natAddrBindCurrentIdleTime OBJECT-TYPE
SYNTAX TimeTicks SYNTAX TimeTicks
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"At any given instance, this object indicates the "At any given instance, this object indicates the
time that this bind has been idle without any sessions time that this bind has been idle without any sessions
attached to it. attached to it.
The value of this object is of relevance only for The value of this object is of relevance only for
dynamic NAT." dynamic NAT.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 11 } ::= { natAddrBindEntry 11 }
natAddrBindInTranslates OBJECT-TYPE natAddrBindInTranslates OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of inbound packets that were successfully "The number of inbound packets that were successfully
translated by using this bind entry. translated by using this bind entry.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times, as indicated by the value of other times, as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 12 } ::= { natAddrBindEntry 12 }
natAddrBindOutTranslates OBJECT-TYPE natAddrBindOutTranslates OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of outbound packets that were successfully "The number of outbound packets that were successfully
translated using this bind entry. translated using this bind entry.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times as indicated by the value of other times as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrBindEntry 13 } ::= { natAddrBindEntry 13 }
-- --
-- Address Port Bind section -- Address Port Bind section
-- --
natAddrPortBindNumberOfEntries OBJECT-TYPE natAddrPortBindNumberOfEntries OBJECT-TYPE
SYNTAX Gauge32 SYNTAX Gauge32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object maintains a count of the number of entries "This object maintains a count of the number of entries
that currently exist in the natAddrPortBindTable." that currently exist in the natAddrPortBindTable.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBObjects 7 } ::= { natMIBObjects 7 }
-- --
-- The NAT Address Port Bind Table -- The NAT Address Port Bind Table
-- --
natAddrPortBindTable OBJECT-TYPE natAddrPortBindTable OBJECT-TYPE
SYNTAX SEQUENCE OF NatAddrPortBindEntry SYNTAX SEQUENCE OF NatAddrPortBindEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This table holds information about the currently "This table holds information about the currently
active NAPT BINDs." active NAPT BINDs.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBObjects 8 } ::= { natMIBObjects 8 }
natAddrPortBindEntry OBJECT-TYPE natAddrPortBindEntry OBJECT-TYPE
SYNTAX NatAddrPortBindEntry SYNTAX NatAddrPortBindEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"Each entry in the this table holds information "Each entry in the this table holds information
about a NAPT bind that is currently active. about a NAPT bind that is currently active.
These entries are lost upon agent restart. These entries are lost upon agent restart.
This row has indexing which may create variables with This row has indexing which may create variables with
more than 128 subidentifiers. Implementers of this more than 128 subidentifiers. Implementers of this
table must be careful not to create entries which would table must be careful not to create entries which would
result in OIDs that exceed the 128 subidentifier limit. result in OIDs that exceed the 128 subidentifier limit.
Otherwise, the information cannot be accessed using Otherwise, the information cannot be accessed using
SNMPv1, SNMPv2c or SNMPv3." SNMPv1, SNMPv2c or SNMPv3.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
INDEX { ifIndex, natAddrPortBindLocalAddrType, INDEX { ifIndex, natAddrPortBindLocalAddrType,
natAddrPortBindLocalAddr, natAddrPortBindLocalPort, natAddrPortBindLocalAddr, natAddrPortBindLocalPort,
natAddrPortBindProtocol } natAddrPortBindProtocol }
::= { natAddrPortBindTable 1 } ::= { natAddrPortBindTable 1 }
NatAddrPortBindEntry ::= SEQUENCE { NatAddrPortBindEntry ::= SEQUENCE {
natAddrPortBindLocalAddrType InetAddressType, natAddrPortBindLocalAddrType InetAddressType,
natAddrPortBindLocalAddr InetAddress, natAddrPortBindLocalAddr InetAddress,
natAddrPortBindLocalPort InetPortNumber, natAddrPortBindLocalPort InetPortNumber,
natAddrPortBindProtocol NatProtocolType, natAddrPortBindProtocol NatProtocolType,
skipping to change at page 29, line 7 skipping to change at page 32, line 6
natAddrPortBindInTranslates Counter64, natAddrPortBindInTranslates Counter64,
natAddrPortBindOutTranslates Counter64 natAddrPortBindOutTranslates Counter64
} }
natAddrPortBindLocalAddrType OBJECT-TYPE natAddrPortBindLocalAddrType OBJECT-TYPE
SYNTAX InetAddressType SYNTAX InetAddressType
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies the address type used for "This object specifies the address type used for
natAddrPortBindLocalAddr." natAddrPortBindLocalAddr.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 1 } ::= { natAddrPortBindEntry 1 }
natAddrPortBindLocalAddr OBJECT-TYPE natAddrPortBindLocalAddr OBJECT-TYPE
SYNTAX InetAddress (SIZE(4|16)) SYNTAX InetAddress (SIZE(4|16))
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object represents the private-realm specific "This object represents the private-realm specific
network layer address which, in conjunction with network layer address which, in conjunction with
natAddrPortBindLocalPort, maps to the public-realm natAddrPortBindLocalPort, maps to the public-realm
network layer address and transport id represented by network layer address and transport id represented by
natAddrPortBindGlobalAddr and natAddrPortBindGlobalPort natAddrPortBindGlobalAddr and natAddrPortBindGlobalPort
respectively. respectively.
The type of this address is determined by the value of The type of this address is determined by the value of
the natAddrPortBindLocalAddrType object." the natAddrPortBindLocalAddrType object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 2 } ::= { natAddrPortBindEntry 2 }
natAddrPortBindLocalPort OBJECT-TYPE natAddrPortBindLocalPort OBJECT-TYPE
SYNTAX InetPortNumber SYNTAX InetPortNumber
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"For a protocol value TCP or UDP, this object represents "For a protocol value TCP or UDP, this object represents
the private-realm specific port number. On the other the private-realm specific port number. On the other
hand, for ICMP a bind is created only for query/response hand, for ICMP a bind is created only for query/response
type ICMP messages such as ICMP echo, Timestamp, and type ICMP messages such as ICMP echo, Timestamp, and
Information request messages, and this object represents Information request messages, and this object represents
the private-realm specific identifier in the ICMP the private-realm specific identifier in the ICMP
message, as defined in RFC 792 for ICMPv4 and in RFC message, as defined in RFC 792 for ICMPv4 and in RFC
2463 for ICMPv6. 4443 for ICMPv6.
This object, together with natAddrPortBindProtocol, This object, together with natAddrPortBindProtocol,
natAddrPortBindLocalAddrType, and natAddrPortBindLocalAddrType, and
natAddrPortBindLocalAddr, constitutes a session endpoint natAddrPortBindLocalAddr, constitutes a session endpoint
in the private realm. A bind entry binds a private in the private realm. A bind entry binds a private
realm specific endpoint to a public realm specific realm specific endpoint to a public realm specific
endpoint, as represented by the tuple of endpoint, as represented by the tuple of
(natAddrPortBindGlobalPort, natAddrPortBindProtocol, (natAddrPortBindGlobalPort, natAddrPortBindProtocol,
natAddrPortBindGlobalAddrType, and natAddrPortBindGlobalAddrType, and
natAddrPortBindGlobalAddr)." natAddrPortBindGlobalAddr).
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 3 } ::= { natAddrPortBindEntry 3 }
natAddrPortBindProtocol OBJECT-TYPE natAddrPortBindProtocol OBJECT-TYPE
SYNTAX NatProtocolType SYNTAX NatProtocolType
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies a protocol identifier. If the "This object specifies a protocol identifier. If the
value of this object is none(1), then this bind entry value of this object is none(1), then this bind entry
applies to all IP traffic. Any other value of this applies to all IP traffic. Any other value of this
object specifies the class of IP traffic to which this object specifies the class of IP traffic to which this
BIND applies." BIND applies.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 4 } ::= { natAddrPortBindEntry 4 }
natAddrPortBindGlobalAddrType OBJECT-TYPE natAddrPortBindGlobalAddrType OBJECT-TYPE
SYNTAX InetAddressType SYNTAX InetAddressType
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies the address type used for "This object specifies the address type used for
natAddrPortBindGlobalAddr." natAddrPortBindGlobalAddr.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 5 } ::= { natAddrPortBindEntry 5 }
natAddrPortBindGlobalAddr OBJECT-TYPE natAddrPortBindGlobalAddr OBJECT-TYPE
SYNTAX InetAddress SYNTAX InetAddress
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object represents the public-realm specific network "This object represents the public-realm specific network
layer address that, in conjunction with layer address that, in conjunction with
natAddrPortBindGlobalPort, maps to the private-realm natAddrPortBindGlobalPort, maps to the private-realm
network layer address and transport id represented by network layer address and transport id represented by
natAddrPortBindLocalAddr and natAddrPortBindLocalPort, natAddrPortBindLocalAddr and natAddrPortBindLocalPort,
respectively. respectively.
The type of this address is determined by the value of The type of this address is determined by the value of
the natAddrPortBindGlobalAddrType object." the natAddrPortBindGlobalAddrType object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 6 } ::= { natAddrPortBindEntry 6 }
natAddrPortBindGlobalPort OBJECT-TYPE natAddrPortBindGlobalPort OBJECT-TYPE
SYNTAX InetPortNumber SYNTAX InetPortNumber
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"For a protocol value TCP or UDP, this object represents "For a protocol value TCP or UDP, this object represents
the public-realm specific port number. On the other the public-realm specific port number. On the other
hand, for ICMP a bind is created only for query/response hand, for ICMP a bind is created only for query/response
type ICMP messages such as ICMP echo, Timestamp, and type ICMP messages such as ICMP echo, Timestamp, and
Information request messages, and this object represents Information request messages, and this object represents
the public-realm specific identifier in the ICMP the public-realm specific identifier in the ICMP
message, as defined in RFC 792 for ICMPv4 and in RFC message, as defined in RFC 792 for ICMPv4 and in RFC
2463 for ICMPv6. 4443 for ICMPv6.
This object, together with natAddrPortBindProtocol, This object, together with natAddrPortBindProtocol,
natAddrPortBindGlobalAddrType, and natAddrPortBindGlobalAddrType, and
natAddrPortBindGlobalAddr, constitutes a session natAddrPortBindGlobalAddr, constitutes a session
endpoint in the public realm. A bind entry binds a endpoint in the public realm. A bind entry binds a
public realm specific endpoint to a private realm public realm specific endpoint to a private realm
specific endpoint, as represented by the tuple of specific endpoint, as represented by the tuple of
(natAddrPortBindLocalPort, natAddrPortBindProtocol, (natAddrPortBindLocalPort, natAddrPortBindProtocol,
natAddrPortBindLocalAddrType, and natAddrPortBindLocalAddrType, and
natAddrPortBindLocalAddr)." natAddrPortBindLocalAddr).
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 7 } ::= { natAddrPortBindEntry 7 }
natAddrPortBindId OBJECT-TYPE natAddrPortBindId OBJECT-TYPE
SYNTAX NatBindId SYNTAX NatBindId
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object represents a bind id that is dynamically "This object represents a bind id that is dynamically
assigned to each bind by a NAT enabled device. Each assigned to each bind by a NAT enabled device. Each
bind is represented by a unique bind id across both bind is represented by a unique bind id across both
the natAddrBindTable and the natAddrPortBindTable." the natAddrBindTable and the natAddrPortBindTable.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 8 } ::= { natAddrPortBindEntry 8 }
natAddrPortBindTranslationEntity OBJECT-TYPE natAddrPortBindTranslationEntity OBJECT-TYPE
SYNTAX NatTranslationEntity SYNTAX NatTranslationEntity
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object represents the direction of sessions "This object represents the direction of sessions
for which this bind is applicable and the entity for which this bind is applicable and the entity
(source or destination) within the sessions that is (source or destination) within the sessions that is
skipping to change at page 31, line 49 skipping to change at page 35, line 15
Orientation of the bind can be a superset of the Orientation of the bind can be a superset of the
translationEntity of the address map entry that translationEntity of the address map entry that
forms the basis for this bind. forms the basis for this bind.
For example, if the translationEntity of an For example, if the translationEntity of an
address map entry is outboundSrcEndPoint, the address map entry is outboundSrcEndPoint, the
translationEntity of a bind derived from this translationEntity of a bind derived from this
map entry may either be outboundSrcEndPoint or map entry may either be outboundSrcEndPoint or
may be bidirectional (a bitmask of may be bidirectional (a bitmask of
outboundSrcEndPoint and inboundDstEndPoint)." outboundSrcEndPoint and inboundDstEndPoint).
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 9 } ::= { natAddrPortBindEntry 9 }
natAddrPortBindType OBJECT-TYPE natAddrPortBindType OBJECT-TYPE
SYNTAX NatAssociationType SYNTAX NatAssociationType
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object indicates whether the bind is static or "This object indicates whether the bind is static or
dynamic." dynamic.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 10 } ::= { natAddrPortBindEntry 10 }
natAddrPortBindMapIndex OBJECT-TYPE natAddrPortBindMapIndex OBJECT-TYPE
SYNTAX NatAddrMapId SYNTAX NatAddrMapId
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object is a pointer to the natAddrMapTable entry "This object is a pointer to the natAddrMapTable entry
(and the parameters of that entry) used in (and the parameters of that entry) used in
creating this BIND. This object, in conjunction with creating this BIND. This object, in conjunction with
the ifIndex (which identifies a unique addrMapName), the ifIndex (which identifies a unique addrMapName),
points to a unique entry in the natAddrMapTable." points to a unique entry in the natAddrMapTable.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 11 } ::= { natAddrPortBindEntry 11 }
natAddrPortBindSessions OBJECT-TYPE natAddrPortBindSessions OBJECT-TYPE
SYNTAX Gauge32 SYNTAX Gauge32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"Number of sessions currently using this BIND." "Number of sessions currently using this BIND.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 12 } ::= { natAddrPortBindEntry 12 }
natAddrPortBindMaxIdleTime OBJECT-TYPE natAddrPortBindMaxIdleTime OBJECT-TYPE
SYNTAX TimeTicks SYNTAX TimeTicks
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object indicates the maximum time for "This object indicates the maximum time for
which this bind can be idle without any sessions which this bind can be idle without any sessions
attached to it. attached to it.
The value of this object is of relevance The value of this object is of relevance
only for dynamic NAT." only for dynamic NAT.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 13 } ::= { natAddrPortBindEntry 13 }
natAddrPortBindCurrentIdleTime OBJECT-TYPE natAddrPortBindCurrentIdleTime OBJECT-TYPE
SYNTAX TimeTicks SYNTAX TimeTicks
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"At any given instance, this object indicates the "At any given instance, this object indicates the
time that this bind has been idle without any sessions time that this bind has been idle without any sessions
attached to it. attached to it.
The value of this object is of relevance The value of this object is of relevance
only for dynamic NAT." only for dynamic NAT.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 14 } ::= { natAddrPortBindEntry 14 }
natAddrPortBindInTranslates OBJECT-TYPE natAddrPortBindInTranslates OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of inbound packets that were translated as "The number of inbound packets that were translated as
per this bind entry. per this bind entry.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times, as indicated by the value of other times, as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 15 } ::= { natAddrPortBindEntry 15 }
natAddrPortBindOutTranslates OBJECT-TYPE natAddrPortBindOutTranslates OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of outbound packets that were translated as "The number of outbound packets that were translated as
per this bind entry. per this bind entry.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times, as indicated by the value of other times, as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natAddrPortBindEntry 16 } ::= { natAddrPortBindEntry 16 }
-- --
-- The Session Table -- The Session Table
-- --
natSessionTable OBJECT-TYPE natSessionTable OBJECT-TYPE
SYNTAX SEQUENCE OF NatSessionEntry SYNTAX SEQUENCE OF NatSessionEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The (conceptual) table containing one entry for each "The (conceptual) table containing one entry for each
NAT session currently active on this NAT device." NAT session currently active on this NAT device.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBObjects 9 } ::= { natMIBObjects 9 }
natSessionEntry OBJECT-TYPE natSessionEntry OBJECT-TYPE
SYNTAX NatSessionEntry SYNTAX NatSessionEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"An entry (conceptual row) containing information "An entry (conceptual row) containing information
about an active NAT session on this NAT device. about an active NAT session on this NAT device.
These entries are lost upon agent restart." These entries are lost upon agent restart.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
INDEX { ifIndex, natSessionIndex } INDEX { ifIndex, natSessionIndex }
::= { natSessionTable 1 } ::= { natSessionTable 1 }
NatSessionEntry ::= SEQUENCE { NatSessionEntry ::= SEQUENCE {
natSessionIndex NatSessionId, natSessionIndex NatSessionId,
natSessionPrivateSrcEPBindId NatBindIdOrZero, natSessionPrivateSrcEPBindId NatBindIdOrZero,
natSessionPrivateSrcEPBindMode NatBindMode, natSessionPrivateSrcEPBindMode NatBindMode,
natSessionPrivateDstEPBindId NatBindIdOrZero, natSessionPrivateDstEPBindId NatBindIdOrZero,
natSessionPrivateDstEPBindMode NatBindMode, natSessionPrivateDstEPBindMode NatBindMode,
natSessionDirection INTEGER, natSessionDirection INTEGER,
skipping to change at page 34, line 47 skipping to change at page 38, line 31
natSessionCurrentIdleTime TimeTicks, natSessionCurrentIdleTime TimeTicks,
natSessionInTranslates Counter64, natSessionInTranslates Counter64,
natSessionOutTranslates Counter64 natSessionOutTranslates Counter64
} }
natSessionIndex OBJECT-TYPE natSessionIndex OBJECT-TYPE
SYNTAX NatSessionId SYNTAX NatSessionId
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The session ID for this NAT session." "The session ID for this NAT session.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 1 } ::= { natSessionEntry 1 }
natSessionPrivateSrcEPBindId OBJECT-TYPE natSessionPrivateSrcEPBindId OBJECT-TYPE
SYNTAX NatBindIdOrZero SYNTAX NatBindIdOrZero
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The bind id associated between private and public "The bind id associated between private and public
source end points. In the case of Symmetric-NAT, source end points. In the case of Symmetric-NAT,
this should be set to zero." this should be set to zero.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 2 } ::= { natSessionEntry 2 }
natSessionPrivateSrcEPBindMode OBJECT-TYPE natSessionPrivateSrcEPBindMode OBJECT-TYPE
SYNTAX NatBindMode SYNTAX NatBindMode
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object indicates whether the bind indicated "This object indicates whether the bind indicated
by the object natSessionPrivateSrcEPBindId by the object natSessionPrivateSrcEPBindId
is an address bind or an address port bind." is an address bind or an address port bind.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 3 } ::= { natSessionEntry 3 }
natSessionPrivateDstEPBindId OBJECT-TYPE natSessionPrivateDstEPBindId OBJECT-TYPE
SYNTAX NatBindIdOrZero SYNTAX NatBindIdOrZero
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The bind id associated between private and public "The bind id associated between private and public
destination end points." destination end points.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 4 } ::= { natSessionEntry 4 }
natSessionPrivateDstEPBindMode OBJECT-TYPE natSessionPrivateDstEPBindMode OBJECT-TYPE
SYNTAX NatBindMode SYNTAX NatBindMode
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object indicates whether the bind indicated "This object indicates whether the bind indicated
by the object natSessionPrivateDstEPBindId by the object natSessionPrivateDstEPBindId
is an address bind or an address port bind." is an address bind or an address port bind.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 5 } ::= { natSessionEntry 5 }
natSessionDirection OBJECT-TYPE natSessionDirection OBJECT-TYPE
SYNTAX INTEGER { SYNTAX INTEGER {
inbound (1), inbound (1),
outbound (2) outbound (2)
} }
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The direction of this session with respect to the "The direction of this session with respect to the
local network. 'inbound' indicates that this session local network. 'inbound' indicates that this session
was initiated from the public network into the private was initiated from the public network into the private
network. 'outbound' indicates that this session was network. 'outbound' indicates that this session was
initiated from the private network into the public initiated from the private network into the public
network." network.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 6 } ::= { natSessionEntry 6 }
natSessionUpTime OBJECT-TYPE natSessionUpTime OBJECT-TYPE
SYNTAX TimeTicks SYNTAX TimeTicks
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The up time of this session in one-hundredths of a "The up time of this session in one-hundredths of a
second." second.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 7 } ::= { natSessionEntry 7 }
natSessionAddrMapIndex OBJECT-TYPE natSessionAddrMapIndex OBJECT-TYPE
SYNTAX NatAddrMapId SYNTAX NatAddrMapId
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object is a pointer to the natAddrMapTable entry "This object is a pointer to the natAddrMapTable entry
(and the parameters of that entry) used in (and the parameters of that entry) used in
creating this session. This object, in conjunction with creating this session. This object, in conjunction with
the ifIndex (which identifies a unique addrMapName), the ifIndex (which identifies a unique addrMapName),
points to a unique entry in the natAddrMapTable." points to a unique entry in the natAddrMapTable.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 8 } ::= { natSessionEntry 8 }
natSessionProtocolType OBJECT-TYPE natSessionProtocolType OBJECT-TYPE
SYNTAX NatProtocolType SYNTAX NatProtocolType
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The protocol type of this session." "The protocol type of this session.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 9 } ::= { natSessionEntry 9 }
natSessionPrivateAddrType OBJECT-TYPE natSessionPrivateAddrType OBJECT-TYPE
SYNTAX InetAddressType SYNTAX InetAddressType
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies the address type used for "This object specifies the address type used for
natSessionPrivateSrcAddr and natSessionPrivateDstAddr." natSessionPrivateSrcAddr and natSessionPrivateDstAddr.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 10 } ::= { natSessionEntry 10 }
natSessionPrivateSrcAddr OBJECT-TYPE natSessionPrivateSrcAddr OBJECT-TYPE
SYNTAX InetAddress SYNTAX InetAddress
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The source IP address of the session endpoint that "The source IP address of the session endpoint that
lies in the private network. lies in the private network.
The value of this object must be zero only when the The value of this object must be zero only when the
natSessionPrivateSrcEPBindId object has a zero value. natSessionPrivateSrcEPBindId object has a zero value.
When the value of this object is zero, the NAT session When the value of this object is zero, the NAT session
lookup will match any IP address to this field. lookup will match any IP address to this field.
The type of this address is determined by the value of The type of this address is determined by the value of
the natSessionPrivateAddrType object." the natSessionPrivateAddrType object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 11 } ::= { natSessionEntry 11 }
natSessionPrivateSrcPort OBJECT-TYPE natSessionPrivateSrcPort OBJECT-TYPE
SYNTAX InetPortNumber SYNTAX InetPortNumber
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"When the value of protocol is TCP or UDP, this object "When the value of protocol is TCP or UDP, this object
represents the source port in the first packet of represents the source port in the first packet of
session while in private-realm. On the other hand, when session while in private-realm. On the other hand, when
the protocol is ICMP, a NAT session is created only for the protocol is ICMP, a NAT session is created only for
query/response type ICMP messages such as ICMP echo, query/response type ICMP messages such as ICMP echo,
Timestamp, and Information request messages, and this Timestamp, and Information request messages, and this
object represents the private-realm specific identifier object represents the private-realm specific identifier
in the ICMP message, as defined in RFC 792 for ICMPv4 in the ICMP message, as defined in RFC 792 for ICMPv4
and in RFC 2463 for ICMPv6. and in RFC 4443 for ICMPv6.
The value of this object must be zero when the The value of this object must be zero when the
natSessionPrivateSrcEPBindId object has zero value natSessionPrivateSrcEPBindId object has zero value
and value of natSessionPrivateSrcEPBindMode is and value of natSessionPrivateSrcEPBindMode is
addressPortBind(2). In such a case, the NAT session addressPortBind(2). In such a case, the NAT session
lookup will match any port number to this field. lookup will match any port number to this field.
The value of this object must be zero when the object The value of this object must be zero when the object
is not a representative field (SrcPort, DstPort, or is not a representative field (SrcPort, DstPort, or
ICMP identifier) of the session tuple in either the ICMP identifier) of the session tuple in either the
public realm or the private realm." public realm or the private realm.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 12 } ::= { natSessionEntry 12 }
natSessionPrivateDstAddr OBJECT-TYPE natSessionPrivateDstAddr OBJECT-TYPE
SYNTAX InetAddress SYNTAX InetAddress
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The destination IP address of the session endpoint that "The destination IP address of the session endpoint that
lies in the private network. lies in the private network.
The value of this object must be zero when the The value of this object must be zero when the
natSessionPrivateDstEPBindId object has a zero value. natSessionPrivateDstEPBindId object has a zero value.
In such a scenario, the NAT session lookup will match In such a scenario, the NAT session lookup will match
any IP address to this field. any IP address to this field.
The type of this address is determined by the value of The type of this address is determined by the value of
the natSessionPrivateAddrType object." the natSessionPrivateAddrType object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 13 } ::= { natSessionEntry 13 }
natSessionPrivateDstPort OBJECT-TYPE natSessionPrivateDstPort OBJECT-TYPE
SYNTAX InetPortNumber SYNTAX InetPortNumber
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"When the value of protocol is TCP or UDP, this object "When the value of protocol is TCP or UDP, this object
represents the destination port in the first packet represents the destination port in the first packet
of session while in private-realm. On the other hand, of session while in private-realm. On the other hand,
skipping to change at page 38, line 32 skipping to change at page 42, line 44
The value of this object must be zero when the The value of this object must be zero when the
natSessionPrivateDstEPBindId object has a zero natSessionPrivateDstEPBindId object has a zero
value and natSessionPrivateDstEPBindMode is set to value and natSessionPrivateDstEPBindMode is set to
addressPortBind(2). In such a case, the NAT session addressPortBind(2). In such a case, the NAT session
lookup will match any port number to this field. lookup will match any port number to this field.
The value of this object must be zero when the object The value of this object must be zero when the object
is not a representative field (SrcPort, DstPort, or is not a representative field (SrcPort, DstPort, or
ICMP identifier) of the session tuple in either the ICMP identifier) of the session tuple in either the
public realm or the private realm." public realm or the private realm.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 14 } ::= { natSessionEntry 14 }
natSessionPublicAddrType OBJECT-TYPE natSessionPublicAddrType OBJECT-TYPE
SYNTAX InetAddressType SYNTAX InetAddressType
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object specifies the address type used for "This object specifies the address type used for
natSessionPublicSrcAddr and natSessionPublicDstAddr." natSessionPublicSrcAddr and natSessionPublicDstAddr.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 15 } ::= { natSessionEntry 15 }
natSessionPublicSrcAddr OBJECT-TYPE natSessionPublicSrcAddr OBJECT-TYPE
SYNTAX InetAddress SYNTAX InetAddress
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The source IP address of the session endpoint that "The source IP address of the session endpoint that
lies in the public network. lies in the public network.
The value of this object must be zero when the The value of this object must be zero when the
natSessionPrivateSrcEPBindId object has a zero value. natSessionPrivateSrcEPBindId object has a zero value.
In such a scenario, the NAT session lookup will match In such a scenario, the NAT session lookup will match
any IP address to this field. any IP address to this field.
The type of this address is determined by the value of The type of this address is determined by the value of
the natSessionPublicAddrType object." the natSessionPublicAddrType object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 16 } ::= { natSessionEntry 16 }
natSessionPublicSrcPort OBJECT-TYPE natSessionPublicSrcPort OBJECT-TYPE
SYNTAX InetPortNumber SYNTAX InetPortNumber
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"When the value of protocol is TCP or UDP, this object "When the value of protocol is TCP or UDP, this object
represents the source port in the first packet of represents the source port in the first packet of
session while in public-realm. On the other hand, when session while in public-realm. On the other hand, when
protocol is ICMP, a NAT session is created only for protocol is ICMP, a NAT session is created only for
query/response type ICMP messages such as ICMP echo, query/response type ICMP messages such as ICMP echo,
Timestamp, and Information request messages, and this Timestamp, and Information request messages, and this
object represents the public-realm specific identifier object represents the public-realm specific identifier
in the ICMP message, as defined in RFC 792 for ICMPv4 in the ICMP message, as defined in RFC 792 for ICMPv4
and in RFC 2463 for ICMPv6. and in RFC 4443 for ICMPv6.
The value of this object must be zero when the The value of this object must be zero when the
natSessionPrivateSrcEPBindId object has a zero value natSessionPrivateSrcEPBindId object has a zero value
and natSessionPrivateSrcEPBindMode is set to and natSessionPrivateSrcEPBindMode is set to
addressPortBind(2). In such a scenario, the NAT addressPortBind(2). In such a scenario, the NAT
session lookup will match any port number to this session lookup will match any port number to this
field. field.
The value of this object must be zero when the object The value of this object must be zero when the object
is not a representative field (SrcPort, DstPort or is not a representative field (SrcPort, DstPort or
ICMP identifier) of the session tuple in either the ICMP identifier) of the session tuple in either the
public realm or the private realm." public realm or the private realm.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 17 } ::= { natSessionEntry 17 }
natSessionPublicDstAddr OBJECT-TYPE natSessionPublicDstAddr OBJECT-TYPE
SYNTAX InetAddress SYNTAX InetAddress
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The destination IP address of the session endpoint that "The destination IP address of the session endpoint that
lies in the public network. lies in the public network.
The value of this object must be non-zero when the The value of this object must be non-zero when the
natSessionPrivateDstEPBindId object has a non-zero natSessionPrivateDstEPBindId object has a non-zero
value. If the value of this object and the value. If the value of this object and the
corresponding natSessionPrivateDstEPBindId object value corresponding natSessionPrivateDstEPBindId object value
is zero, then the NAT session lookup will match any IP is zero, then the NAT session lookup will match any IP
address to this field. address to this field.
The type of this address is determined by the value of The type of this address is determined by the value of
the natSessionPublicAddrType object." the natSessionPublicAddrType object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 18 } ::= { natSessionEntry 18 }
natSessionPublicDstPort OBJECT-TYPE natSessionPublicDstPort OBJECT-TYPE
SYNTAX InetPortNumber SYNTAX InetPortNumber
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"When the value of protocol is TCP or UDP, this object "When the value of protocol is TCP or UDP, this object
represents the destination port in the first packet of represents the destination port in the first packet of
session while in public-realm. On the other hand, when session while in public-realm. On the other hand, when
skipping to change at page 40, line 33 skipping to change at page 45, line 6
The value of this object must be zero when the The value of this object must be zero when the
natSessionPrivateDstEPBindId object has a zero value natSessionPrivateDstEPBindId object has a zero value
and natSessionPrivateDstEPBindMode is and natSessionPrivateDstEPBindMode is
addressPortBind(2). In such a scenario, the NAT addressPortBind(2). In such a scenario, the NAT
session lookup will match any port number to this session lookup will match any port number to this
field. field.
The value of this object must be zero when the object The value of this object must be zero when the object
is not a representative field (SrcPort, DstPort, or is not a representative field (SrcPort, DstPort, or
ICMP identifier) of the session tuple in either the ICMP identifier) of the session tuple in either the
public realm or the private realm." public realm or the private realm.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 19 } ::= { natSessionEntry 19 }
natSessionMaxIdleTime OBJECT-TYPE natSessionMaxIdleTime OBJECT-TYPE
SYNTAX TimeTicks SYNTAX TimeTicks
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The max time for which this session can be idle "The max time for which this session can be idle
without detecting a packet." without detecting a packet.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 20 } ::= { natSessionEntry 20 }
natSessionCurrentIdleTime OBJECT-TYPE natSessionCurrentIdleTime OBJECT-TYPE
SYNTAX TimeTicks SYNTAX TimeTicks
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The time since a packet belonging to this session was "The time since a packet belonging to this session was
last detected." last detected.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 21 } ::= { natSessionEntry 21 }
natSessionInTranslates OBJECT-TYPE natSessionInTranslates OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of inbound packets that were translated for "The number of inbound packets that were translated for
this session. this session.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times, as indicated by the value of other times, as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 22 } ::= { natSessionEntry 22 }
natSessionOutTranslates OBJECT-TYPE natSessionOutTranslates OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of outbound packets that were translated for "The number of outbound packets that were translated for
this session. this session.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times, as indicated by the value of other times, as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natSessionEntry 23 } ::= { natSessionEntry 23 }
-- --
-- The Protocol table -- The Protocol table
-- --
natProtocolTable OBJECT-TYPE natProtocolTable OBJECT-TYPE
SYNTAX SEQUENCE OF NatProtocolEntry SYNTAX SEQUENCE OF NatProtocolEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The (conceptual) table containing per protocol NAT "The (conceptual) table containing per protocol NAT
statistics." statistics.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBObjects 10 } ::= { natMIBObjects 10 }
natProtocolEntry OBJECT-TYPE natProtocolEntry OBJECT-TYPE
SYNTAX NatProtocolEntry SYNTAX NatProtocolEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"An entry (conceptual row) containing NAT statistics "An entry (conceptual row) containing NAT statistics
pertaining to a particular protocol." pertaining to a particular protocol.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
INDEX { natProtocol } INDEX { natProtocol }
::= { natProtocolTable 1 } ::= { natProtocolTable 1 }
NatProtocolEntry ::= SEQUENCE { NatProtocolEntry ::= SEQUENCE {
natProtocol NatProtocolType, natProtocol NatProtocolType,
natProtocolInTranslates Counter64, natProtocolInTranslates Counter64,
natProtocolOutTranslates Counter64, natProtocolOutTranslates Counter64,
natProtocolDiscards Counter64 natProtocolDiscards Counter64
} }
natProtocol OBJECT-TYPE natProtocol OBJECT-TYPE
SYNTAX NatProtocolType SYNTAX NatProtocolType
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This object represents the protocol pertaining to which "This object represents the protocol pertaining to which
parameters are reported." parameters are reported.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natProtocolEntry 1 } ::= { natProtocolEntry 1 }
natProtocolInTranslates OBJECT-TYPE natProtocolInTranslates OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of inbound packets pertaining to the protocol "The number of inbound packets pertaining to the protocol
identified by natProtocol that underwent NAT. identified by natProtocol that underwent NAT.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times, as indicated by the value of other times, as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natProtocolEntry 2 } ::= { natProtocolEntry 2 }
natProtocolOutTranslates OBJECT-TYPE natProtocolOutTranslates OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of outbound packets pertaining to the "The number of outbound packets pertaining to the
protocol identified by natProtocol that underwent NAT. protocol identified by natProtocol that underwent NAT.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times, as indicated by the value of other times, as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natProtocolEntry 3 } ::= { natProtocolEntry 3 }
natProtocolDiscards OBJECT-TYPE natProtocolDiscards OBJECT-TYPE
SYNTAX Counter64 SYNTAX Counter64
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of packets pertaining to the protocol "The number of packets pertaining to the protocol
identified by natProtocol that had to be identified by natProtocol that had to be
rejected/dropped due to lack of resources. These rejected/dropped due to lack of resources. These
rejections could be due to session timeout, resource rejections could be due to session timeout, resource
unavailability, lack of address space, etc. unavailability, lack of address space, etc.
Discontinuities in the value of this counter can occur Discontinuities in the value of this counter can occur
at reinitialization of the management system and at at reinitialization of the management system and at
other times, as indicated by the value of other times, as indicated by the value of
ifCounterDiscontinuityTime on the relevant interface." ifCounterDiscontinuityTime on the relevant interface.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natProtocolEntry 4 } ::= { natProtocolEntry 4 }
-- --
-- Notifications section -- Notifications section
-- --
natMIBNotifications OBJECT IDENTIFIER ::= { natMIB 0 } natMIBNotifications OBJECT IDENTIFIER ::= { natMIB 0 }
-- --
-- Notifications -- Notifications
skipping to change at page 43, line 42 skipping to change at page 48, line 37
natPacketDiscard NOTIFICATION-TYPE natPacketDiscard NOTIFICATION-TYPE
OBJECTS { ifIndex } OBJECTS { ifIndex }
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This notification is generated when IP packets are "This notification is generated when IP packets are
discarded by the NAT function; e.g., due to lack of discarded by the NAT function; e.g., due to lack of
mapping space when NAT is out of addresses or ports. mapping space when NAT is out of addresses or ports.
Note that the generation of natPacketDiscard Note that the generation of natPacketDiscard
notifications is throttled by the agent, as specified notifications is throttled by the agent, as specified
by the 'natNotifThrottlingInterval' object." by the 'natNotifThrottlingInterval' object.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBNotifications 1 } ::= { natMIBNotifications 1 }
-- --
-- Conformance information. -- Conformance information.
-- --
natMIBConformance OBJECT IDENTIFIER ::= { natMIB 2 } natMIBConformance OBJECT IDENTIFIER ::= { natMIB 2 }
natMIBGroups OBJECT IDENTIFIER ::= { natMIBConformance 1 } natMIBGroups OBJECT IDENTIFIER ::= { natMIBConformance 1 }
natMIBCompliances OBJECT IDENTIFIER ::= { natMIBConformance 2 } natMIBCompliances OBJECT IDENTIFIER ::= { natMIBConformance 2 }
-- --
-- Units of conformance -- Units of conformance
-- --
natConfigGroup OBJECT-GROUP natConfigGroup OBJECT-GROUP
OBJECTS { natInterfaceRealm, OBJECTS { natInterfaceRealm,
natInterfaceServiceType, natInterfaceServiceType,
natInterfaceStorageType, natInterfaceStorageType,
natInterfaceRowStatus, natInterfaceRowStatus,
natAddrMapName, natAddrMapName,
skipping to change at page 44, line 43 skipping to change at page 49, line 40
natUdpDefIdleTimeout, natUdpDefIdleTimeout,
natIcmpDefIdleTimeout, natIcmpDefIdleTimeout,
natOtherDefIdleTimeout, natOtherDefIdleTimeout,
natTcpDefIdleTimeout, natTcpDefIdleTimeout,
natTcpDefNegTimeout, natTcpDefNegTimeout,
natNotifThrottlingInterval } natNotifThrottlingInterval }
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"A collection of configuration-related information "A collection of configuration-related information
required to support management of devices supporting required to support management of devices supporting
NAT." NAT.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBGroups 1 } ::= { natMIBGroups 1 }
natTranslationGroup OBJECT-GROUP natTranslationGroup OBJECT-GROUP
OBJECTS { natAddrBindNumberOfEntries, OBJECTS { natAddrBindNumberOfEntries,
natAddrBindGlobalAddrType, natAddrBindGlobalAddrType,
natAddrBindGlobalAddr, natAddrBindGlobalAddr,
natAddrBindId, natAddrBindId,
natAddrBindTranslationEntity, natAddrBindTranslationEntity,
natAddrBindType, natAddrBindType,
natAddrBindMapIndex, natAddrBindMapIndex,
skipping to change at page 45, line 47 skipping to change at page 50, line 46
natSessionPublicAddrType, natSessionPublicAddrType,
natSessionPublicSrcAddr, natSessionPublicSrcAddr,
natSessionPublicSrcPort, natSessionPublicSrcPort,
natSessionPublicDstAddr, natSessionPublicDstAddr,
natSessionPublicDstPort, natSessionPublicDstPort,
natSessionMaxIdleTime, natSessionMaxIdleTime,
natSessionCurrentIdleTime, natSessionCurrentIdleTime,
natSessionInTranslates, natSessionInTranslates,
natSessionOutTranslates } natSessionOutTranslates }
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"A collection of BIND-related objects required to support "A collection of BIND-related objects required to support
management of devices supporting NAT." management of devices supporting NAT.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBGroups 2 } ::= { natMIBGroups 2 }
natStatsInterfaceGroup OBJECT-GROUP natStatsInterfaceGroup OBJECT-GROUP
OBJECTS { natInterfaceInTranslates, OBJECTS { natInterfaceInTranslates,
natInterfaceOutTranslates, natInterfaceOutTranslates,
natInterfaceDiscards } natInterfaceDiscards }
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"A collection of NAT statistics associated with the "A collection of NAT statistics associated with the
interface on which NAT is configured, to aid interface on which NAT is configured, to aid
troubleshooting/monitoring of the NAT operation." troubleshooting/monitoring of the NAT operation.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBGroups 3 } ::= { natMIBGroups 3 }
natStatsProtocolGroup OBJECT-GROUP natStatsProtocolGroup OBJECT-GROUP
OBJECTS { natProtocolInTranslates, OBJECTS { natProtocolInTranslates,
natProtocolOutTranslates, natProtocolOutTranslates,
natProtocolDiscards } natProtocolDiscards }
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"A collection of protocol specific NAT statistics, "A collection of protocol specific NAT statistics,
to aid troubleshooting/monitoring of NAT operation." to aid troubleshooting/monitoring of NAT operation.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBGroups 4 } ::= { natMIBGroups 4 }
natStatsAddrMapGroup OBJECT-GROUP natStatsAddrMapGroup OBJECT-GROUP
OBJECTS { natAddrMapInTranslates, OBJECTS { natAddrMapInTranslates,
natAddrMapOutTranslates, natAddrMapOutTranslates,
natAddrMapDiscards, natAddrMapDiscards,
natAddrMapAddrUsed } natAddrMapAddrUsed }
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"A collection of address map specific NAT statistics, "A collection of address map specific NAT statistics,
to aid troubleshooting/monitoring of NAT operation." to aid troubleshooting/monitoring of NAT operation.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBGroups 5 } ::= { natMIBGroups 5 }
natMIBNotificationGroup NOTIFICATION-GROUP natMIBNotificationGroup NOTIFICATION-GROUP
NOTIFICATIONS { natPacketDiscard } NOTIFICATIONS { natPacketDiscard }
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"A collection of notifications generated by "A collection of notifications generated by
devices supporting this MIB." devices supporting this MIB.
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
::= { natMIBGroups 6 } ::= { natMIBGroups 6 }
-- --
-- Compliance statements -- Compliance statements
-- --
natMIBFullCompliance MODULE-COMPLIANCE natMIBFullCompliance MODULE-COMPLIANCE
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"When this MIB is implemented with support for "When this MIB is implemented with support for
read-create, then such an implementation can claim read-create, then such an implementation can claim
full compliance. Such devices can then be both full compliance. Such devices can then be both
monitored and configured with this MIB. monitored and configured with this MIB.
The following index objects cannot be added as OBJECT The following index objects cannot be added as OBJECT
clauses but nevertheless have the compliance clauses but nevertheless have the compliance
requirements: requirements:
"
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
-- OBJECT natAddrBindLocalAddrType -- OBJECT natAddrBindLocalAddrType
-- SYNTAX InetAddressType { ipv4(1), ipv6(2) } -- SYNTAX InetAddressType { ipv4(1), ipv6(2) }
-- DESCRIPTION -- DESCRIPTION
-- "An implementation is required to support -- "An implementation is required to support
-- global IPv4 and/or IPv6 addresses, depending -- global IPv4 and/or IPv6 addresses, depending
-- on its support for IPv4 and IPv6." -- on its support for IPv4 and IPv6."
-- OBJECT natAddrBindLocalAddr -- OBJECT natAddrBindLocalAddr
-- SYNTAX InetAddress (SIZE(4|16)) -- SYNTAX InetAddress (SIZE(4|16))
-- DESCRIPTION -- DESCRIPTION
skipping to change at page 50, line 43 skipping to change at page 56, line 4
DESCRIPTION DESCRIPTION
"When this MIB is implemented without support for "When this MIB is implemented without support for
read-create (i.e., in read-only mode), then such an read-create (i.e., in read-only mode), then such an
implementation can claim read-only compliance. implementation can claim read-only compliance.
Such a device can then be monitored but cannot be Such a device can then be monitored but cannot be
configured with this MIB. configured with this MIB.
The following index objects cannot be added as OBJECT The following index objects cannot be added as OBJECT
clauses but nevertheless have the compliance clauses but nevertheless have the compliance
requirements: requirements:
"
Deprecated in favor of NAT-MIB-V2."
REFERENCE "RFCyyyy, RFCzzzz"
-- OBJECT natAddrBindLocalAddrType -- OBJECT natAddrBindLocalAddrType
-- SYNTAX InetAddressType { ipv4(1), ipv6(2) } -- SYNTAX InetAddressType { ipv4(1), ipv6(2) }
-- DESCRIPTION -- DESCRIPTION
-- "An implementation is required to support -- "An implementation is required to support
-- global IPv4 and/or IPv6 addresses, depending -- global IPv4 and/or IPv6 addresses, depending
-- on its support for IPv4 and IPv6." -- on its support for IPv4 and IPv6."
-- OBJECT natAddrBindLocalAddr -- OBJECT natAddrBindLocalAddr
-- SYNTAX InetAddress (SIZE(4|16)) -- SYNTAX InetAddress (SIZE(4|16))
skipping to change at page 54, line 36 skipping to change at page 59, line 46
"An implementation is required to support global IPv4 "An implementation is required to support global IPv4
and/or IPv6 addresses, depending on its support for and/or IPv6 addresses, depending on its support for
IPv4 and IPv6." IPv4 and IPv6."
::= { natMIBCompliances 2 } ::= { natMIBCompliances 2 }
END END
5. Security Considerations 5. Security Considerations
The threats that need to be addressed are described in Section 1.4 of All objects in this MIB module have been deprecated. As a result,
[RFC3411]. They include modification of information, masquerade, security considerations in [I-D.ietf-behave-nat-mib-v2] apply
message stream modification and disclosure. No protection is needed instead. Amongst other matters, these considerations cover the case
against denial of service and traffic analysis. where both this MIB module and NAT-MIB-V2 are present. In fact, such
a situation is unlikely because [RFC4008], as a MIB module oriented
There are a number of management objects defined in this MIB module toward configuration, was overtaken by events and saw little
with a MAX-ACCESS clause of read-write and/or read-create. Such implementation.
objects may be considered sensitive or vulnerable in some network
environments. The support for SET operations in a non-secure
environment without proper protection can have a negative effect on
network operations. These are the tables and objects and their
sensitivity/vulnerability:
Timers: An attacker setting very low timer values can easily cause a
denial-of-service situation. NAT-MIB has the following read-write
timers:
* natBindDefIdleTimeout
* natUdpDefIdleTimeout
* natIcmpDefIdleTimeout
* natOtherDefIdleTimeout
* natTcpDefIdleTimeout
* natTcpDefNegTimeout
Notification throttling: An attacker setting a very low throttling
interval can cause many useless notifications to be generated.
Disabling notifications could be used to hide another attack.
Notification throttling is controlled by the object
natNotifThrottlingInterval.
Other configuration: The following tables provide write access, at
least in part:
* Rows of the natInterfaceTable are read-create, and the columnar
objects indicating realm and service type are read-write. An
attacker could deny service by modifying interface
configuration, for instance by changing the realm from public
to private where the interface is actually on the public side
of the NAT.
* Similarly (to support static mapping), rows of the
natAddrMapTable are read-create and thus potentially modifiable
by an attacker.
Some of the readable objects in this MIB module (i.e., objects with a
MAX-ACCESS other than not-accessible) may be considered sensitive or
vulnerable in some network environments. It is thus important to
control even GET and/or NOTIFY access to these objects and possibly
to even encrypt the values of these objects when sending them over
the network via SNMP. These are the tables and objects and their
sensitivity/vulnerability:
Objects that reveal host identities: Various objects can reveal the
identity of private hosts that are engaged in a session with
external end nodes. A curious outsider could monitor these to
assess the number of private hosts being supported by the NAT
device. The outsider could use the information to break into
specific private hosts by intercepting the existing sessions or
originating new sessions into the host. This applies to the
address and port related objects within the following tables:
* natAddrMapTable
* natAddrBindTable
* natAddrPortBindTable
* natSessionTable
Other objects that reveal NAT state: Other managed objects in this
MIB may contain information that may be sensitive from a business
perspective, in that they may represent NAT state information.
This applies to the following counters:
* natAddrBindNumberOfEntries
* natAddrPortBindNumberOfEntries
* natInterfaceTable: natInterfaceInTranslates,
natInterfaceOutTranslates, and natInterfaceDiscards
* natAddrMapTable: natAddrMapInTranslates,
natAddrMapOutTranslates, natAddrMapDiscards, and
natAddrMapAddrUsed
* natAddrBindTable: natAddrBindSessions, natAddrBindInTranslates,
natAddrBindOutTranslates
* natAddrPortBindTable: natAddrPortBindSessions,
natAddrPortBindInTranslates, natAddrPortBindOutTranslates
* natSessionTable: natSessionInTranslates,
natSessionOutTranslates
* natProtocolTable: natProtocolInTranslates,
natProtocolOutTranslates, natProtocolDiscards
There are no objects that are sensitive in their own right, such as
passwords or monetary amounts.
SNMP versions prior to SNMPv3 did not include adequate security.
Even if the network itself is secure (for example by using IPsec),
there is no control as to who on the secure network is allowed to
access and GET/SET (read/change/create/delete) the objects in this
MIB module.
Implementations SHOULD provide the security features described by the
SNMPv3 framework (see [RFC3410]), and implementations claiming
compliance to the SNMPv3 standard MUST include full support for
authentication and privacy via the User-based Security Model (USM)
[RFC3414] with the AES cipher algorithm [RFC3826]. Implementations
MAY also provide support for the Transport Security Model (TSM)
[RFC5591] in combination with a secure transport such as SSH
[RFC5592] or TLS/DTLS [RFC6353].
Further, deployment of SNMP versions prior to SNMPv3 is NOT
RECOMMENDED. Instead, it is RECOMMENDED to deploy SNMPv3 and to
enable cryptographic security. It is then a customer/operator
responsibility to ensure that the SNMP entity giving access to an
instance of this MIB module is properly configured to give access to
the objects only to those principals (users) that have legitimate
rights to indeed GET or SET (change/create/delete) them.
6. IANA Considerations 6. IANA Considerations
IANA has assigned object identifier 123 to the natMIB module, with IANA has assigned object identifier 123 to the natMIB module, with
prefix iso.org.dod.internet.mgmt.mib-2 in the Network Management prefix iso.org.dod.internet.mgmt.mib-2 in the Network Management
Parameters registry [SMI-NUMBERS]. Parameters registry [SMI-NUMBERS].
No IANA actions are required by this document. IANA is requested to mark that identifier as DEPRECATED and to update
the reference from [RFC4008] to the present document.
7. References 7. References
7.1. Normative References 7.1. Normative References
[I-D.ietf-behave-nat-mib-v2]
Perrault, S., Tsou, T., Sivakumar, S., and T. Taylor,
"Definitions of Managed Objects for Network Address
Translators (NAT), Version 2", June 2015.
[RFC2119] Bradner, S., "Key words for use in RFCs to Indicate [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate
Requirement Levels", BCP 14, RFC 2119, March 1997. Requirement Levels", BCP 14, RFC 2119, March 1997.
[RFC2578] McCloghrie, K., Ed., Perkins, D., Ed., and J. [RFC2578] McCloghrie, K., Ed., Perkins, D., Ed., and J.
Schoenwaelder, Ed., "Structure of Management Information Schoenwaelder, Ed., "Structure of Management Information
Version 2 (SMIv2)", STD 58, RFC 2578, April 1999. Version 2 (SMIv2)", STD 58, RFC 2578, April 1999.
[RFC2579] McCloghrie, K., Ed., Perkins, D., Ed., and J. [RFC2579] McCloghrie, K., Ed., Perkins, D., Ed., and J.
Schoenwaelder, Ed., "Textual Conventions for SMIv2", STD Schoenwaelder, Ed., "Textual Conventions for SMIv2", STD
58, RFC 2579, April 1999. 58, RFC 2579, April 1999.
[RFC2580] McCloghrie, K., Perkins, D., and J. Schoenwaelder, [RFC2580] McCloghrie, K., Perkins, D., and J. Schoenwaelder,
"Conformance Statements for SMIv2", STD 58, RFC 2580, "Conformance Statements for SMIv2", STD 58, RFC 2580,
April 1999. April 1999.
[RFC3411] Harrington, D., Presuhn, R., and B. Wijnen, "An [RFC3411] Harrington, D., Presuhn, R., and B. Wijnen, "An
Architecture for Describing Simple Network Management Architecture for Describing Simple Network Management
Protocol (SNMP) Management Frameworks", STD 62, RFC 3411, Protocol (SNMP) Management Frameworks", STD 62, RFC 3411,
December 2002. December 2002.
[RFC3414] Blumenthal, U. and B. Wijnen, "User-based Security Model
(USM) for version 3 of the Simple Network Management
Protocol (SNMPv3)", STD 62, RFC 3414, December 2002.
[RFC3826] Blumenthal, U., Maino, F., and K. McCloghrie, "The
Advanced Encryption Standard (AES) Cipher Algorithm in the
SNMP User-based Security Model", RFC 3826, June 2004.
[RFC4001] Daniele, M., Haberman, B., Routhier, S., and J. [RFC4001] Daniele, M., Haberman, B., Routhier, S., and J.
Schoenwaelder, "Textual Conventions for Internet Network Schoenwaelder, "Textual Conventions for Internet Network
Addresses", RFC 4001, February 2005. Addresses", RFC 4001, February 2005.
[RFC4787] Audet, F. and C. Jennings, "Network Address Translation
(NAT) Behavioral Requirements for Unicast UDP", BCP 127,
RFC 4787, January 2007.
[RFC5591] Harrington, D. and W. Hardaker, "Transport Security Model
for the Simple Network Management Protocol (SNMP)", STD
78, RFC 5591, June 2009.
[RFC5592] Harrington, D., Salowey, J., and W. Hardaker, "Secure
Shell Transport Model for the Simple Network Management
Protocol (SNMP)", RFC 5592, June 2009.
[RFC6353] Hardaker, W., "Transport Layer Security (TLS) Transport
Model for the Simple Network Management Protocol (SNMP)",
STD 78, RFC 6353, July 2011.
7.2. Informative References 7.2. Informative References
[I-D.ietf-behave-nat-mib-v2] [RFC0792] Postel, J., "Internet Control Message Protocol", STD 5,
Perrault, S., Tsou, T., Sivakumar, S., and T. Taylor, RFC 792, September 1981.
"Definitions of Managed Objects for Network Address
Translators (NAT), Version 2", October 2014.
[RFC2663] Srisuresh, P. and M. Holdrege, "IP Network Address [RFC2663] Srisuresh, P. and M. Holdrege, "IP Network Address
Translator (NAT) Terminology and Considerations", RFC Translator (NAT) Terminology and Considerations", RFC
2663, August 1999. 2663, August 1999.
[RFC2863] McCloghrie, K. and F. Kastenholz, "The Interfaces Group
MIB", RFC 2863, June 2000.
[RFC3022] Srisuresh, P. and K. Egevang, "Traditional IP Network [RFC3022] Srisuresh, P. and K. Egevang, "Traditional IP Network
Address Translator (Traditional NAT)", RFC 3022, January Address Translator (Traditional NAT)", RFC 3022, January
2001. 2001.
[RFC3410] Case, J., Mundy, R., Partain, D., and B. Stewart, [RFC3410] Case, J., Mundy, R., Partain, D., and B. Stewart,
"Introduction and Applicability Statements for Internet- "Introduction and Applicability Statements for Internet-
Standard Management Framework", RFC 3410, December 2002. Standard Management Framework", RFC 3410, December 2002.
[RFC3413] Levi, D., Meyer, P., and B. Stewart, "Simple Network
Management Protocol (SNMP) Applications", STD 62, RFC
3413, December 2002.
[RFC4008] Rohit, R., Srisuresh, P., Raghunarayan, R., Pai, N., and [RFC4008] Rohit, R., Srisuresh, P., Raghunarayan, R., Pai, N., and
C. Wang, "Definitions of Managed Objects for Network C. Wang, "Definitions of Managed Objects for Network
Address Translators (NAT)", RFC 4008, March 2005. Address Translators (NAT)", RFC 4008, March 2005.
[RFC4443] Conta, A., Deering, S., and M. Gupta, "Internet Control
Message Protocol (ICMPv6) for the Internet Protocol
Version 6 (IPv6) Specification", RFC 4443, March 2006.
[SMI-NUMBERS] [SMI-NUMBERS]
"Network Management Parameters registry at IANA", "Network Management Parameters registry at IANA",
<http://www.iana.org/assignments/smi-numbers>. <http://www.iana.org/assignments/smi-numbers>.
Authors' Addresses Authors' Addresses
Simon Perreault Simon Perreault
Jive Communications Jive Communications
Quebec, QC Quebec, QC
Canada Canada
 End of changes. 163 change blocks. 
343 lines changed or deleted 470 lines changed or added

This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/