| < draft-srisuresh-midcom-mib-00.txt | draft-srisuresh-midcom-mib-01.txt > | |||
|---|---|---|---|---|
| Midcom working Group P. Srisuresh | Midcom working Group P. Srisuresh | |||
| INTERNET-DRAFT Caymas Systems, Inc. | INTERNET-DRAFT Caymas Systems | |||
| Category: Standards Track | Category: Standards Track | |||
| Expires: April 20, 2003 October 2003 | Expires: April 27, 2003 October 2003 | |||
| SNMP managed objects for Middlebox Communications (MIDCOM) | SNMP managed objects for Middlebox Communications (MIDCOM) | |||
| <draft-srisuresh-midcom-mib-01.txt> | ||||
| <draft-srisuresh-midcom-mib-00.txt> | ||||
| Status of this Memo | Status of this Memo | |||
| This document is an Internet-Draft and is in full conformance with | This document is an Internet-Draft and is in full conformance with | |||
| all provisions of Section 10 of RFC2026. | all provisions of Section 10 of RFC2026. | |||
| Internet-Drafts are working documents of the Internet Engineering | Internet-Drafts are working documents of the Internet Engineering | |||
| Task Force (IETF), its areas, and its working groups. Note that | Task Force (IETF), its areas, and its working groups. Note that | |||
| other groups may also distribute working documents as Internet- | other groups may also distribute working documents as Internet- | |||
| Drafts. | Drafts. | |||
| skipping to change at page 2, line 20 ¶ | skipping to change at page 2, line 20 ¶ | |||
| 2.2. SNMP agent...................................................3 | 2.2. SNMP agent...................................................3 | |||
| 2.3. NAT session..................................................3 | 2.3. NAT session..................................................3 | |||
| 3. SNMP Management Framework......................................4 | 3. SNMP Management Framework......................................4 | |||
| 4. MIDCOM Overview and SNMP Applicability.........................4 | 4. MIDCOM Overview and SNMP Applicability.........................4 | |||
| 5. SNMP and the MIDCOM data model.................................5 | 5. SNMP and the MIDCOM data model.................................5 | |||
| 5.1 Secure Communications......................................7 | 5.1 Secure Communications......................................7 | |||
| 5.2 Device Configuration.......................................8 | 5.2 Device Configuration.......................................8 | |||
| 5.3 Service Configuration......................................8 | 5.3 Service Configuration......................................8 | |||
| 5.4 Midcom compatibility requirements on NAT and Firewall......9 | 5.4 Midcom compatibility requirements on NAT and Firewall......9 | |||
| 6. Midcom MIB....................................................10 | 6. Midcom MIB....................................................10 | |||
| 7. Security Considerations.......................................45 | 7. Security Considerations.......................................49 | |||
| 8. Acknowledgements..............................................45 | 8. Acknowledgements..............................................49 | |||
| 9. References....................................................45 | 9. References....................................................49 | |||
| Normative References.............................................45 | Normative References.............................................49 | |||
| Informative References...........................................47 | Informative References...........................................51 | |||
| Author's address.................................................48 | Author's address.................................................51 | |||
| Full Copyright Statement.........................................48 | Full Copyright Statement.........................................52 | |||
| 1. Overview | 1. Overview | |||
| The principal objective of the document is to describe how SNMPv3 | The principal objective of the document is to describe how SNMPv3 | |||
| may be adapted as the MIDCOM protocol. MIDCOM MIB is defined to | may be adapted as the MIDCOM protocol. MIDCOM MIB is defined to | |||
| facilitate transactions between a midcom agent and a middlebox. | facilitate transactions between a midcom agent and a middlebox. | |||
| The scope of the middleboxes considered in the document is | The scope of the middleboxes considered in the document is | |||
| limited to NAT and Firewall devices. This document refers | limited to NAT and Firewall devices. This document refers | |||
| external documents for NAT and firewall MIBs and states the | external documents for NAT and firewall MIBs and states the | |||
| skipping to change at page 10, line 42 ¶ | skipping to change at page 10, line 42 ¶ | |||
| specific rules, so as not to overrule or be overriden by | specific rules, so as not to overrule or be overriden by | |||
| other filter rules. | other filter rules. | |||
| 6.0. Midcom MIB | 6.0. Midcom MIB | |||
| Midcom MIB provides a means for midcom agents to control middlebox | Midcom MIB provides a means for midcom agents to control middlebox | |||
| resources and for middlebox to asynchronously notify the midcom | resources and for middlebox to asynchronously notify the midcom | |||
| agents of relevant state changes. Midcom agents learn of the | agents of relevant state changes. Midcom agents learn of the | |||
| functions present on the middlebox using this MIB. | functions present on the middlebox using this MIB. | |||
| midcom-MIB DEFINITIONS ::= BEGIN | MIDCOM-MIB DEFINITIONS ::= BEGIN | |||
| IMPORTS | IMPORTS | |||
| MODULE-IDENTITY, | MODULE-IDENTITY, | |||
| OBJECT-TYPE, | OBJECT-TYPE, | |||
| NOTIFICATION-TYPE, | NOTIFICATION-TYPE, | |||
| Integer32, | Integer32, | |||
| Unsigned32, | Unsigned32, | |||
| Gauge32, | Gauge32, | |||
| Counter64, | Counter64, | |||
| TimeTicks, | TimeTicks, | |||
| skipping to change at page 11, line 29 ¶ | skipping to change at page 11, line 29 ¶ | |||
| ifIndex, | ifIndex, | |||
| InterfaceIndex | InterfaceIndex | |||
| FROM IF-MIB -- RFC 2863 | FROM IF-MIB -- RFC 2863 | |||
| SnmpAdminString | SnmpAdminString | |||
| FROM SNMP-FRAMEWORK-MIB -- RFC 3411 | FROM SNMP-FRAMEWORK-MIB -- RFC 3411 | |||
| InetAddressType, | InetAddressType, | |||
| InetAddress, | InetAddress, | |||
| InetPortNumber | InetPortNumber | |||
| FROM INET-ADDRESS-MIB; -- RFC 3291 | FROM INET-ADDRESS-MIB; -- RFC | |||
| NatTranslationEntity, | ||||
| NatBindIdOrZero, | ||||
| NatSessionId, | ||||
| FROM NAT-MIB; | ||||
| midcomMIB MODULE-IDENTITY | midcomMIB MODULE-IDENTITY | |||
| LAST-UPDATED "200310200000Z" | LAST-UPDATED "200310200000Z" | |||
| ORGANIZATION "IETF Midcom Working Group" | ORGANIZATION "IETF Midcom Working Group" | |||
| CONTACT-INFO | CONTACT-INFO | |||
| "WG charter: | "WG charter: | |||
| http://www.ietf.org/html.charters/midcom-charter.html | http://www.ietf.org/html.charters/midcom-charter.html | |||
| Mailing Lists: | Mailing Lists: | |||
| General Discussion: midcom@ietf.org | General Discussion: midcom@ietf.org | |||
| skipping to change at page 12, line 8 ¶ | skipping to change at page 12, line 4 ¶ | |||
| In Body: subscribe your_email_address | In Body: subscribe your_email_address | |||
| Author: | Author: | |||
| Pyda Srisuresh | Pyda Srisuresh | |||
| 1179-A North McDowell Blvd. | 1179-A North McDowell Blvd. | |||
| Petaluma, CA 94954 | Petaluma, CA 94954 | |||
| Tel: (707) 283-5063 | Tel: (707) 283-5063 | |||
| Email: srisuresh@yahoo.com | Email: srisuresh@yahoo.com | |||
| " | " | |||
| DESCRIPTION | DESCRIPTION | |||
| "This MIB module defines the managed objects | "This MIB module defines the managed objects | |||
| for midcom. | for midcom. | |||
| " | " | |||
| REVISION "200310200000Z" -- 20th Sept. 2003 | REVISION "200310200000Z" -- 20th Sept. 2003 | |||
| DESCRIPTION | DESCRIPTION | |||
| "Initial version of this MIB module." | "Initial version of this MIB module." | |||
| ::= { mib-2 XXX } -- RFC Ed.: replace XXX with IANA-assigned | ::= { mib-2 4444 } -- RFC Ed.: replace 4444 with IANA-assigned | |||
| -- number & remove this note | -- number & remove this note | |||
| midcomMIBObjects OBJECT IDENTIFIER ::= { midcomMIB 1 } | midcomMIBObjects OBJECT IDENTIFIER ::= { midcomMIB 1 } | |||
| -- | -- | |||
| -- Four Groups | -- Four Groups | |||
| -- | -- | |||
| -- o midcomConfig - Configuration of a middlebox for | -- o midcomConfig - Configuration of a middlebox for | |||
| -- midcom access. | -- midcom access. | |||
| -- o midcomAgentInfo - Active agent info, including the info | -- o midcomAgentInfo - Active agent info, including the info | |||
| -- necessary for asynchronous notification. | -- necessary for asynchronous notification. | |||
| skipping to change at page 12, line 47 ¶ | skipping to change at page 12, line 43 ¶ | |||
| midcomAgentInfo OBJECT IDENTIFIER ::= | midcomAgentInfo OBJECT IDENTIFIER ::= | |||
| { midcomMIBObjects 2 } | { midcomMIBObjects 2 } | |||
| midcomTables OBJECT IDENTIFIER ::= | midcomTables OBJECT IDENTIFIER ::= | |||
| { midcomMIBObjects 3 } | { midcomMIBObjects 3 } | |||
| midcomTransactions OBJECT IDENTIFIER ::= | midcomTransactions OBJECT IDENTIFIER ::= | |||
| { midcomMIBObjects 4 } | { midcomMIBObjects 4 } | |||
| -- | -- | |||
| -- Textual conventions used | -- Textual conventions used | |||
| -- | -- | |||
| -- | ||||
| -- The following TC are copied as is from NAT-MIB. | ||||
| -- In the future, these will be IMPORTS from NAT-MIB. | ||||
| -- | ||||
| NATProtocolType ::= TEXTUAL-CONVENTION | ||||
| STATUS current | ||||
| DESCRIPTION | ||||
| "A list of protocols that support | ||||
| the network address translation. Inclusion of | ||||
| values is not intended to imply that those | ||||
| protocols need to be supported. Any change | ||||
| in this TEXTUAL-CONVENTION should also be | ||||
| reflected in the definition of NATProtocolMap | ||||
| which is a BITS representation of this " | ||||
| SYNTAX INTEGER { | ||||
| none (1), -- not specified | ||||
| other (2), -- none of the following | ||||
| icmp (3), | ||||
| udp (4), | ||||
| tcp (5) | ||||
| } | ||||
| NatBindIdOrZero ::= TEXTUAL-CONVENTION | ||||
| STATUS current | ||||
| DESCRIPTION | ||||
| "A unique id that is assigned to each bind by | ||||
| a NAT enabled device. The bind id will be zero | ||||
| in case of a symmetric NAT." | ||||
| SYNTAX Unsigned32 (0..4294967295) | ||||
| NatBindId ::= TEXTUAL-CONVENTION | ||||
| STATUS current | ||||
| DESCRIPTION | ||||
| "A unique id that is assigned to each bind by | ||||
| a NAT enabled device." | ||||
| SYNTAX Unsigned32 (1..4294967295) | ||||
| NatSessionId ::= TEXTUAL-CONVENTION | ||||
| STATUS current | ||||
| DESCRIPTION | ||||
| "A unique id that is assigned to each session by | ||||
| a NAT enabled device." | ||||
| SYNTAX Unsigned32 (1..4294967295) | ||||
| NatBindMode ::= TEXTUAL-CONVENTION | ||||
| STATUS current | ||||
| DESCRIPTION | ||||
| "An indication whether the bind is | ||||
| an address bind or an address-port bind." | ||||
| SYNTAX INTEGER { | ||||
| addressBind (1), | ||||
| addressPortBind (2) | ||||
| } | ||||
| NatBindType ::= TEXTUAL-CONVENTION | ||||
| STATUS current | ||||
| DESCRIPTION | ||||
| "An indication whether the bind is | ||||
| static or dynamic." | ||||
| SYNTAX INTEGER { | ||||
| static (1), | ||||
| dynamic (2) | ||||
| } | ||||
| NatTranslationEntity ::= TEXTUAL-CONVENTION | ||||
| STATUS current | ||||
| DESCRIPTION | ||||
| "An indication for the direction of a session for | ||||
| which a) an address map entry, address bind or port | ||||
| bind is applicable, and b) the entity (source or | ||||
| detination) within the session that is subject to | ||||
| translation." | ||||
| SYNTAX BITS { | ||||
| inboundSrcEndPoint (1), | ||||
| outboundDstEndPoint(2), | ||||
| inboundDstEndPoint (3), | ||||
| outboundSrcEndPoint(4) | ||||
| } | ||||
| MidcomMBFunctionEnum ::= TEXTUAL-CONVENTION | MidcomMBFunctionEnum ::= TEXTUAL-CONVENTION | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "An enumeration of Middlebox functions that are | "An enumeration of Middlebox functions that are | |||
| supported by the midcom protocol. Inclusion of | supported by the midcom protocol. Inclusion of | |||
| values is not intended to imply that those | values is not intended to imply that those | |||
| functions need to be supported. Any change | functions need to be supported. Any change | |||
| in this TEXTUAL-CONVENTION should also be | in this TEXTUAL-CONVENTION should also be | |||
| reflected in the definition of | reflected in the definition of | |||
| midcomConfMBFunctionType object which is | midcomConfMBFunctionType object which is | |||
| skipping to change at page 16, line 26 ¶ | skipping to change at page 18, line 13 ¶ | |||
| ::= { midcomAgentInfo 1 } | ::= { midcomAgentInfo 1 } | |||
| -- | -- | |||
| -- midcomAgentTable | -- midcomAgentTable | |||
| -- Agent Registration with Middlebox with | -- Agent Registration with Middlebox with | |||
| -- all the requisite information for notification. | -- all the requisite information for notification. | |||
| -- | -- | |||
| midcomAgentTable OBJECT-TYPE | midcomAgentTable OBJECT-TYPE | |||
| SYNTAX SEQUENCE OF MidcomAgentEntry | SYNTAX SEQUENCE OF MidcomAgentEntry | |||
| MAX-ACCESS read-only | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Lists the active Midcom agents." | DESCRIPTION "Lists the active Midcom agents." | |||
| ::= { midcomAgentInfo 2 } | ::= { midcomAgentInfo 2 } | |||
| midcomAgentEntry OBJECT-TYPE | midcomAgentEntry OBJECT-TYPE | |||
| SYNTAX MidcomAgentEntry | SYNTAX MidcomAgentEntry | |||
| MAX-ACCESS not-accessible | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "Each entry in the midcomAgentTable pertains to | "Each entry in the midcomAgentTable pertains to | |||
| skipping to change at page 16, line 48 ¶ | skipping to change at page 18, line 35 ¶ | |||
| midcom agent are stored in this table. | midcom agent are stored in this table. | |||
| Each entry contains objects describing where | Each entry contains objects describing where | |||
| notifications are to be sent to the MIDCOM agent. | notifications are to be sent to the MIDCOM agent. | |||
| " | " | |||
| INDEX { midcomAgentIndex } | INDEX { midcomAgentIndex } | |||
| ::= { midcomAgentTable 1 } | ::= { midcomAgentTable 1 } | |||
| MidcomAgentEntry ::= SEQUENCE { | MidcomAgentEntry ::= SEQUENCE { | |||
| midcomAgentIndex MidcomAgentIndex, | midcomAgentIndex MidcomAgentIndex, | |||
| midcomAgentName MidcomNameOrPassword, | midcomAgentName SnmpAdminString, | |||
| midcomAgentMBId Unsigned32, | midcomAgentMBId Unsigned32, | |||
| midcomAgentAddrType InetAddressType, | midcomAgentAddrType InetAddressType, | |||
| midcomAgentAddress InetAddress, | midcomAgentAddress InetAddress, | |||
| midcomAgentPort InetPortNumber, | midcomAgentPort InetPortNumber, | |||
| midcomAgentEntryStatus RowStatus | midcomAgentStatus RowStatus | |||
| } | } | |||
| midcomAgentIndex OBJECT-TYPE | midcomAgentIndex OBJECT-TYPE | |||
| SYNTAX MidcomAgentIndex | SYNTAX MidcomAgentIndex | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "A middlebox-unique index or Identifier for each | DESCRIPTION "A middlebox-unique index or Identifier for each | |||
| midcom agent in the Table. This object allows the | midcom agent in the Table. This object allows the | |||
| same USM user to engage in multiple midcom | same USM user to engage in multiple midcom | |||
| sessions, perhaps one for each application. | sessions, perhaps one for each application. | |||
| skipping to change at page 18, line 20 ¶ | skipping to change at page 20, line 6 ¶ | |||
| "This object represents the network layer | "This object represents the network layer | |||
| address of the Midcom agent. This address, in | address of the Midcom agent. This address, in | |||
| conjunction with AddrType and the UDP port | conjunction with AddrType and the UDP port | |||
| midcomAgentPort may be used by the middlebox | midcomAgentPort may be used by the middlebox | |||
| functions for asynchronous notification to the | functions for asynchronous notification to the | |||
| agent. | agent. | |||
| " | " | |||
| ::= { midcomAgentEntry 5 } | ::= { midcomAgentEntry 5 } | |||
| midcomAgentPort OBJECT-TYPE | midcomAgentPort OBJECT-TYPE | |||
| SYNTAX InetPortNumber, | SYNTAX InetPortNumber | |||
| MAX-ACCESS not-accessible | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "This object represents the UDP port of the | "This object represents the UDP port of the | |||
| Midcom agent. The combinations of (AddressType, | Midcom agent. The combinations of (AddressType, | |||
| Address, Port) are to be used by the middlebox | Address, Port) are to be used by the middlebox | |||
| functions for asynchronous notification to the | functions for asynchronous notification to the | |||
| agent. | agent. | |||
| " | " | |||
| ::= { midcomAgentEntry 6 } | ::= { midcomAgentEntry 6 } | |||
| midcomAgentStatus OBJECT-TYPE | midcomAgentStatus OBJECT-TYPE | |||
| SYNTAX RowStatus | SYNTAX RowStatus | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The status of this conceptual row. | "The status of this conceptual row. | |||
| Objects in this row may be modified | Objects in this row may be modified | |||
| while the value of this object is active(1)." | while the value of this object is active(1)." | |||
| REFERENCE | REFERENCE | |||
| "Textual Conventions for SMIv2, Section 2 | "Textual Conventions for SMIv2, Section 2" | |||
| ::= { midcomAgentEntry 7 } | ::= { midcomAgentEntry 7 } | |||
| -- | -- | |||
| -- midcomTables - Results of agent initiated transactions | -- midcomTables - Results of agent initiated transactions | |||
| -- are saved into relevant tables for later | -- are saved into relevant tables for later | |||
| -- reference and parameter modification by | -- reference and parameter modification by | |||
| -- the agents. | -- the agents. | |||
| -- | -- | |||
| -- | -- | |||
| skipping to change at page 19, line 4 ¶ | skipping to change at page 20, line 39 ¶ | |||
| -- | -- | |||
| -- midcomTables - Results of agent initiated transactions | -- midcomTables - Results of agent initiated transactions | |||
| -- are saved into relevant tables for later | -- are saved into relevant tables for later | |||
| -- reference and parameter modification by | -- reference and parameter modification by | |||
| -- the agents. | -- the agents. | |||
| -- | -- | |||
| -- | -- | |||
| -- midcomGroupTable | -- midcomGroupTable | |||
| -- group Ids per each agent. | -- group Ids per each agent. | |||
| -- | -- | |||
| midcomGroupTable OBJECT-TYPE | midcomGroupTable OBJECT-TYPE | |||
| SYNTAX SEQUENCE OF MidcomGroupEntry | SYNTAX SEQUENCE OF MidcomGroupEntry | |||
| MAX-ACCESS read-only | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Lists the groups registered by each agent." | DESCRIPTION "Lists the groups registered by each agent." | |||
| ::= { midcomTables 1 } | ::= { midcomTables 1 } | |||
| midcomGroupEntry OBJECT-TYPE | midcomGroupEntry OBJECT-TYPE | |||
| SYNTAX MidcomGroupEntry | SYNTAX MidcomGroupEntry | |||
| MAX-ACCESS read-only | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "Each entry in the GroupTable holds a unique tuple | "Each entry in the GroupTable holds a unique tuple | |||
| of parameters associated with a group Identifier. | of parameters associated with a group Identifier. | |||
| Group identifiers are registered by an agent with | Group identifiers are registered by an agent with | |||
| midcom." | midcom." | |||
| INDEX { midcomGroupAgentIndex, | INDEX { midcomGroupAgentIndex, | |||
| midcomGroupMBResource, | midcomGroupMBResource, | |||
| midcomGroupId } | midcomGroupId } | |||
| ::= { midcomGroupTable 1 } | ::= { midcomGroupTable 1 } | |||
| MidcomGroupEntry ::= SEQUENCE { | MidcomGroupEntry ::= SEQUENCE { | |||
| midcomGroupAgentIndex MidcomAgentIndex, | midcomGroupAgentIndex MidcomAgentIndex, | |||
| midcomGroupMBResource MidcomMBResource, | midcomGroupMBResource MidcomMBResource, | |||
| midcomGroupGroupId Unsigned32, | midcomGroupId Unsigned32, | |||
| midcomGroupLifetime TimeInterval, | midcomGroupLifetime TimeInterval, | |||
| midcomGroupMaxIdletime TimeInterval, | midcomGroupMaxIdletime TimeInterval, | |||
| midcomGroupStatus RowStatus | midcomGroupStatus RowStatus | |||
| } | } | |||
| midcomGroupAgentIndex OBJECT-TYPE | midcomGroupAgentIndex OBJECT-TYPE | |||
| SYNTAX MidcomAgentIndex | SYNTAX MidcomAgentIndex | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Unique Identifier for an agent in the table" | DESCRIPTION "Unique Identifier for an agent in the table" | |||
| skipping to change at page 20, line 5 ¶ | skipping to change at page 21, line 42 ¶ | |||
| midcomGroupMBResource OBJECT-TYPE | midcomGroupMBResource OBJECT-TYPE | |||
| SYNTAX MidcomMBResource | SYNTAX MidcomMBResource | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Middlebox resource type for which the GroupId | DESCRIPTION "Middlebox resource type for which the GroupId | |||
| is registered by the agent. | is registered by the agent. | |||
| " | " | |||
| ::= { midcomGroupEntry 2 } | ::= { midcomGroupEntry 2 } | |||
| midcomGroupGroupId OBJECT-TYPE | midcomGroupId OBJECT-TYPE | |||
| SYNTAX Unsigned32 | SYNTAX Unsigned32 | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "A unique Group Identifier registered by the | DESCRIPTION "A unique Group Identifier registered by the | |||
| agent for the resource the agent owns. | agent for the resource the agent owns. | |||
| " | " | |||
| ::= { midcomGroupEntry 3 } | ::= { midcomGroupEntry 3 } | |||
| midcomGroupLifetime OBJECT-TYPE | midcomGroupLifetime OBJECT-TYPE | |||
| SYNTAX TimeInterval | SYNTAX TimeInterval | |||
| skipping to change at page 20, line 39 ¶ | skipping to change at page 22, line 28 ¶ | |||
| midcomGroupStatus OBJECT-TYPE | midcomGroupStatus OBJECT-TYPE | |||
| SYNTAX RowStatus | SYNTAX RowStatus | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The status of this conceptual row. | "The status of this conceptual row. | |||
| Objects in this row may be modified | Objects in this row may be modified | |||
| while the value of this object is active(1)." | while the value of this object is active(1)." | |||
| REFERENCE | REFERENCE | |||
| "Textual Conventions for SMIv2, Section 2 | "Textual Conventions for SMIv2, Section 2" | |||
| ::= { midcomGroupEntry 6 } | ::= { midcomGroupEntry 6 } | |||
| -- | -- | |||
| -- midcomBindTable | -- midcomBindTable | |||
| -- Bind Ids managed by each agent. | -- Bind Ids managed by each agent. | |||
| -- | -- | |||
| midcomBindTable OBJECT-TYPE | midcomBindTable OBJECT-TYPE | |||
| SYNTAX SEQUENCE OF MidcomBindEntry | SYNTAX SEQUENCE OF MidcomBindEntry | |||
| MAX-ACCESS read-only | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Lists NAT binds owned by each agent." | DESCRIPTION "Lists NAT binds owned by each agent." | |||
| ::= { midcomTables 2 } | ::= { midcomTables 2 } | |||
| midcomBindEntry OBJECT-TYPE | midcomBindEntry OBJECT-TYPE | |||
| SYNTAX MidcomBindEntry | SYNTAX MidcomBindEntry | |||
| MAX-ACCESS read-write | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "Each entry in the BindTable holds a unique tuple | "Each entry in the BindTable holds a unique tuple | |||
| of parameters associated with a Bind. | of parameters associated with a Bind. | |||
| " | " | |||
| INDEX { midcomBindAgentIndex, | INDEX { midcomBindAgentIndex, | |||
| midcomBindGroupId, | midcomBindGroupId, | |||
| midcomBindId } | midcomBindId } | |||
| ::= { midcomBindTable 1 } | ::= { midcomBindTable 1 } | |||
| skipping to change at page 22, line 28 ¶ | skipping to change at page 24, line 17 ¶ | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Lifetime of the bind resource. | DESCRIPTION "Lifetime of the bind resource. | |||
| When this is set to 0 and GroupId is | When this is set to 0 and GroupId is | |||
| set to non-zero, the Lifetime of the | set to non-zero, the Lifetime of the | |||
| GroupId is used to determine the | GroupId is used to determine the | |||
| lifetime of this resource. | lifetime of this resource. | |||
| " | " | |||
| ::= { midcomBindEntry 4 } | ::= { midcomBindEntry 4 } | |||
| midcomBindMaxIdletime OBJECT-TYPE | midcomBindMaxIdleTime OBJECT-TYPE | |||
| SYNTAX TimeInterval | SYNTAX TimeInterval | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "MaxIdletime of the Bind resource. | DESCRIPTION "MaxIdletime of the Bind resource. | |||
| When this is set to 0 and GroupId is | When this is set to 0 and GroupId is | |||
| set to non-zero, the MaxIdletime of the | set to non-zero, the MaxIdletime of the | |||
| GroupId is used to determine the | GroupId is used to determine the | |||
| Maxidletime of this resource. | Maxidletime of this resource. | |||
| " | " | |||
| ::= { midcomBindEntry 5 } | ::= { midcomBindEntry 5 } | |||
| skipping to change at page 23, line 47 ¶ | skipping to change at page 25, line 38 ¶ | |||
| midcomBindStatus OBJECT-TYPE | midcomBindStatus OBJECT-TYPE | |||
| SYNTAX RowStatus | SYNTAX RowStatus | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The status of this conceptual row. | "The status of this conceptual row. | |||
| Objects in this row may be modified | Objects in this row may be modified | |||
| while the value of this object is active(1)." | while the value of this object is active(1)." | |||
| REFERENCE | REFERENCE | |||
| "Textual Conventions for SMIv2, Section 2 | "Textual Conventions for SMIv2, Section 2" | |||
| ::= { midcomBindEntry 6 } | ::= { midcomBindEntry 10 } | |||
| -- | -- | |||
| -- midcomNatSessionTable | -- midcomNatSessionTable | |||
| -- NAT Session Ids per each agent. | -- NAT Session Ids per each agent. | |||
| -- | -- | |||
| midcomNatSessionTable OBJECT-TYPE | midcomNatSessionTable OBJECT-TYPE | |||
| SYNTAX SEQUENCE OF MidcomNatSessionEntry | SYNTAX SEQUENCE OF MidcomNatSessionEntry | |||
| MAX-ACCESS read-only | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Lists NAT sessions owned by each agent." | DESCRIPTION "Lists NAT sessions owned by each agent." | |||
| ::= { midcomTables 3 } | ::= { midcomTables 3 } | |||
| midcomNatSessionEntry OBJECT-TYPE | midcomNatSessionEntry OBJECT-TYPE | |||
| SYNTAX MidcomNatSessionEntry | SYNTAX MidcomNatSessionEntry | |||
| MAX-ACCESS read-write | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "Each entry in the NatSessionTable holds a | "Each entry in the NatSessionTable holds a | |||
| unique tuple of parameters associated with | unique tuple of parameters associated with | |||
| a NAT session. | a NAT session. | |||
| " | " | |||
| INDEX { midcomNatSessionAgentIndex, | INDEX { midcomNatSessionAgentIndex, | |||
| midcomNatSessionGroupId, | midcomNatSessionGroupId, | |||
| midcomNatSessionId } | midcomNatSessionId } | |||
| ::= { midcomNatSessionTable 1 } | ::= { midcomNatSessionTable 1 } | |||
| MidcomNatSessionEntry ::= SEQUENCE { | MidcomNatSessionEntry ::= SEQUENCE { | |||
| midcomNatSessionAgentIndex MidcomAgentIndex, | midcomNatSessionAgentIndex MidcomAgentIndex, | |||
| midcomNatSessionGroupId Unsigned32, | midcomNatSessionGroupId Unsigned32, | |||
| midcomNatSessionId NatSessionId, | midcomNatSessionId NatSessionId, | |||
| midcomNatSessionLifetime TimeInterval, | midcomNatSessionLifetime TimeInterval, | |||
| midcomNatSessionMaxIdleTime TimeInterval, | midcomNatSessionMaxIdleTime TimeInterval, | |||
| midcomNatSessionIfIndex InterfaceIndex, | midcomNatSessionIfIndex InterfaceIndex, | |||
| midcomNatSessionRowStatus RowStatus | midcomNatSessionStatus RowStatus | |||
| } | } | |||
| midcomNatSessionAgentIndex OBJECT-TYPE | midcomNatSessionAgentIndex OBJECT-TYPE | |||
| SYNTAX MidcomAgentIndex | SYNTAX MidcomAgentIndex | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Unique Identifier for an agent in the table" | DESCRIPTION "Unique Identifier for an agent in the table" | |||
| ::= { midcomNatSessionEntry 1 } | ::= { midcomNatSessionEntry 1 } | |||
| midcomNatSessionGroupId OBJECT-TYPE | midcomNatSessionGroupId OBJECT-TYPE | |||
| skipping to change at page 25, line 9 ¶ | skipping to change at page 26, line 49 ¶ | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Group Identifier assigend to this | DESCRIPTION "Group Identifier assigend to this | |||
| resource. | resource. | |||
| A value of 0 implies that the session does | A value of 0 implies that the session does | |||
| not belong to a group membership. | not belong to a group membership. | |||
| " | " | |||
| ::= { midcomNatSessionEntry 2 } | ::= { midcomNatSessionEntry 2 } | |||
| midcomNatSessionId OBJECT-TYPE | midcomNatSessionId OBJECT-TYPE | |||
| SYNTAX NatBindId | SYNTAX NatSessionId | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Unique session Identifier assigend to this midcom | DESCRIPTION "Unique session Identifier assigend to this midcom | |||
| bind resource. This identifier is same as the | resource. This identifier is same as the | |||
| session identifier that is managed by the NAT | session identifier that is managed by the NAT | |||
| middlebox. | middlebox. | |||
| " | " | |||
| ::= { midcomNatSessionEntry 3 } | ::= { midcomNatSessionEntry 3 } | |||
| midcomNatSessionLifetime OBJECT-TYPE | midcomNatSessionLifetime OBJECT-TYPE | |||
| SYNTAX TimeInterval | SYNTAX TimeInterval | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Lifetime of the session. | DESCRIPTION "Lifetime of the session. | |||
| When this is set to 0 and GroupId is | When this is set to 0 and GroupId is | |||
| set to non-zero, the Lifetime of the | set to non-zero, the Lifetime of the | |||
| GroupId is used to determine the | GroupId is used to determine the | |||
| lifetime of this resource. | lifetime of this resource. | |||
| " | " | |||
| ::= { midcomNatSessionEntry 4 } | ::= { midcomNatSessionEntry 4 } | |||
| midcomNatSessionMaxIdletime OBJECT-TYPE | midcomNatSessionMaxIdleTime OBJECT-TYPE | |||
| SYNTAX TimeInterval | SYNTAX TimeInterval | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "MaxIdletime of the session. | DESCRIPTION "MaxIdletime of the session. | |||
| When this is set to 0 and GroupId is | When this is set to 0 and GroupId is | |||
| set to non-zero, the MaxIdletime of the | set to non-zero, the MaxIdletime of the | |||
| GroupId is used to determine the | GroupId is used to determine the | |||
| Maxidletime of this resource. | Maxidletime of this resource. | |||
| " | " | |||
| ::= { midcomNatSessionEntry 5 } | ::= { midcomNatSessionEntry 5 } | |||
| skipping to change at page 26, line 18 ¶ | skipping to change at page 28, line 10 ¶ | |||
| midcomNatSessionStatus OBJECT-TYPE | midcomNatSessionStatus OBJECT-TYPE | |||
| SYNTAX RowStatus | SYNTAX RowStatus | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The status of this conceptual row. | "The status of this conceptual row. | |||
| Objects in this row may be modified | Objects in this row may be modified | |||
| while the value of this object is active(1)." | while the value of this object is active(1)." | |||
| REFERENCE | REFERENCE | |||
| "Textual Conventions for SMIv2, Section 2 | "Textual Conventions for SMIv2, Section 2" | |||
| ::= { midcomNatSessionEntry 7 } | ::= { midcomNatSessionEntry 7 } | |||
| -- | -- | |||
| -- midcomTransactions | -- midcomTransactions | |||
| -- The transaction Group | -- The transaction Group | |||
| -- Transactions issued by the midcom agents | -- Transactions issued by the midcom agents | |||
| -- to the midcom MIB module. | -- to the midcom MIB module. | |||
| -- | -- | |||
| -- | -- | |||
| skipping to change at page 28, line 12 ¶ | skipping to change at page 30, line 4 ¶ | |||
| oddity as specified in an oddity parameter. If the bind | oddity as specified in an oddity parameter. If the bind | |||
| assigned turns out to be an address bind, one address | assigned turns out to be an address bind, one address | |||
| bind suffices independent of the port oddity requirement. | bind suffices independent of the port oddity requirement. | |||
| reserveBind2InboundSrcInboundDst, | reserveBind2InboundSrcInboundDst, | |||
| reseverBind2OutboundSrcOutboundDst, | reseverBind2OutboundSrcOutboundDst, | |||
| Reserve two binds as in a twice NAT, given the interface | Reserve two binds as in a twice NAT, given the interface | |||
| index and the session tuple in private realm or public | index and the session tuple in private realm or public | |||
| realm. | realm. | |||
| " | " | |||
| SYNTAX INTEGER { | SYNTAX INTEGER { | |||
| reserveBindInboundSrc, | reserveBindInboundSrc (1), | |||
| reserveBindInboundDst, | reserveBindInboundDst (2), | |||
| reserveBindOutboundSrc, | reserveBindOutboundSrc(3), | |||
| reserveBindOutboundDst, | reserveBindOutboundDst(4), | |||
| reserveBindInboundSrcOrOutboundDst, | reserveBindInboundSrcOrOutboundDst(5), | |||
| reserveBindInboundDstOrOutboundSrc, | reserveBindInboundDstOrOutboundSrc(6), | |||
| reserveBind2InboundSrc, | reserveBind2InboundSrc(7), | |||
| reserveBind2InboundDst, | reserveBind2InboundDst(8), | |||
| reserveBind2OutboundSrc, | reserveBind2OutboundSrc(9), | |||
| reserveBind2OutboundDst, | reserveBind2OutboundDst(10), | |||
| reserveBind2InboundSrcInboundDst, | reserveBind2InboundSrcInboundDst(11), | |||
| reseverBind2OutboundSrcOutboundDst, | reseverBind2OutboundSrcOutboundDst(12) | |||
| } | } | |||
| MidcomNatSessionCommand ::= TEXTUAL-CONVENTION | MidcomNatSessionCommand ::= TEXTUAL-CONVENTION | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The choice of commands on NAT sessions. | "The choice of commands on NAT sessions. | |||
| createNatSession | ||||
| Create a NAT-session, given the parameters of a session | ||||
| as seen by NAT as the first packet in the ingress or | ||||
| egress direction specific to an interface. The associated | ||||
| Binds may or may not be pre-specified. When the command | ||||
| is successfully executed, a single NAT SessionId is | ||||
| created. | ||||
| create2NatSessions | ||||
| Create 2 NAT sessions, given the oddity requirement. | ||||
| When the command is successfully executed, two NAT | ||||
| session Ids are created. | ||||
| " | " | |||
| SYNTAX INTEGER { | SYNTAX INTEGER { | |||
| createNatSession(1) | createNatSession(1), | |||
| create2NatSessions (2) | ||||
| } | } | |||
| MidcomTransInOutFlags ::= TEXTUAL-CONVENTION | MidcomTransInOutFlags ::= TEXTUAL-CONVENTION | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "A BITS representation used to specify the | "A BITS representation used to specify the | |||
| relevant parameters for input during a | relevant parameters for input during a | |||
| command request (or) during a command | command request (or) during a command | |||
| response. | response. | |||
| " | " | |||
| skipping to change at page 29, line 10 ¶ | skipping to change at page 31, line 16 ¶ | |||
| privateDstAddr (3), | privateDstAddr (3), | |||
| privateDstPort (4), | privateDstPort (4), | |||
| globalAddrType (5), | globalAddrType (5), | |||
| globalSrcAddr (6), | globalSrcAddr (6), | |||
| globalSrcPort (7), | globalSrcPort (7), | |||
| globalDstAddr (8), | globalDstAddr (8), | |||
| globalDstPort (9), | globalDstPort (9), | |||
| groupId (10), | groupId (10), | |||
| lifetime (11), | lifetime (11), | |||
| maxIdletime (12), | maxIdletime (12), | |||
| PrivateSrcBind (13), | privateSrcBind (13), | |||
| PrivateDstBind (14) | privateDstBind (14) | |||
| } | } | |||
| MidcomSessionDirection ::= TEXTUAL-CONVENTION | MidcomSessionDirection ::= TEXTUAL-CONVENTION | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "Describes the direction of a session specific to an | "Describes the direction of a session specific to an | |||
| interface. | interface. | |||
| " | " | |||
| SYNTAX INTEGER { | SYNTAX INTEGER { | |||
| inbound(1), | inbound(1), | |||
| outbound(2) | outbound(2) | |||
| } | } | |||
| midcomTransGroupTable OBJECT-TYPE | midcomTransGroupTable OBJECT-TYPE | |||
| SYNTAX SEQUENCE OF MidcomTransGroupEntry | SYNTAX SEQUENCE OF MidcomTransGroupEntry | |||
| MAX-ACCESS read-write | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This lists Group based transactions, | DESCRIPTION "This lists Group based transactions, | |||
| one per each agent." | one per each agent." | |||
| ::= { midcomTransactions 1 } | ::= { midcomTransactions 1 } | |||
| midcomTransGroupEntry OBJECT-TYPE | midcomTransGroupEntry OBJECT-TYPE | |||
| SYNTAX MidcomTransGroupEntry | SYNTAX MidcomTransGroupEntry | |||
| MAX-ACCESS not-accessible | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| skipping to change at page 31, line 33 ¶ | skipping to change at page 33, line 40 ¶ | |||
| midcomTransGroupStatus OBJECT-TYPE | midcomTransGroupStatus OBJECT-TYPE | |||
| SYNTAX MidcomInvocationStatus | SYNTAX MidcomInvocationStatus | |||
| MAX-ACCESS read-write | MAX-ACCESS read-write | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Invocation status." | DESCRIPTION "Invocation status." | |||
| ::= { midcomTransGroupEntry 7 } | ::= { midcomTransGroupEntry 7 } | |||
| midcomTransBindTable OBJECT-TYPE | midcomTransBindTable OBJECT-TYPE | |||
| SYNTAX SEQUENCE OF MidcomTransBindEntry | SYNTAX SEQUENCE OF MidcomTransBindEntry | |||
| MAX-ACCESS read-write | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This lists Bind based transactions, | DESCRIPTION "This lists Bind based transactions, | |||
| one per each agent." | one per each agent." | |||
| ::= { midcomTransactions 2 } | ::= { midcomTransactions 2 } | |||
| midcomTransBindEntry OBJECT-TYPE | midcomTransBindEntry OBJECT-TYPE | |||
| SYNTAX MidcomTransBindEntry | SYNTAX MidcomTransBindEntry | |||
| MAX-ACCESS not-accessible | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| skipping to change at page 31, line 46 ¶ | skipping to change at page 34, line 4 ¶ | |||
| one per each agent." | one per each agent." | |||
| ::= { midcomTransactions 2 } | ::= { midcomTransactions 2 } | |||
| midcomTransBindEntry OBJECT-TYPE | midcomTransBindEntry OBJECT-TYPE | |||
| SYNTAX MidcomTransBindEntry | SYNTAX MidcomTransBindEntry | |||
| MAX-ACCESS not-accessible | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "Each entry pertains to a midcom agent carrying | "Each entry pertains to a midcom agent carrying | |||
| out a BIND based transaction. | out a BIND based transaction. | |||
| Midcom module will respond with Success or | Midcom module will respond with Success or | |||
| Failure, with an error code. | Failure, with an error code. | |||
| In the case of success, there can be a maximum | In the case of success, there can be a maximum | |||
| of two address or port binds returned. | of two address or port binds returned. | |||
| These binds are also entered into midcomBindTable | These binds are also entered into midcomBindTable | |||
| for later use by the midcom agents. | for later use by the midcom agents. | |||
| " | " | |||
| INDEX { midcomTransBindAgentIndex } | INDEX { midcomTransBindAgentIndex } | |||
| ::= { midcomTransBindTable 1 } | ::= { midcomTransBindTable 1 } | |||
| MidcomTransBindEntry ::= SEQUENCE { | MidcomTransBindEntry ::= SEQUENCE { | |||
| midcomTransBindAgentIndex MidcomAgentIndex, | midcomTransBindAgentIndex MidcomAgentIndex, | |||
| midcomTransBindCommand MidcomBindCommand, | midcomTransBindCommand MidcomBindCommand, | |||
| midcomTransBindOddity Unsigned32, | midcomTransBindOddity INTEGER, | |||
| midcomTransBindProtocol NATProtocolType, | midcomTransBindProtocol NATProtocolType, | |||
| midcomTransBindSessionDirection MidcomSessionDirection, | midcomTransBindSessionDirection MidcomSessionDirection, | |||
| midcomTransBindIfIndex InterfaceIndex, | midcomTransBindIfIndex InterfaceIndex, | |||
| midcomTransBindInParms MidcomTransInOutFlags, | midcomTransBindInParms MidcomTransInOutFlags, | |||
| midcomTransBindOutParms MidcomTransInOutFlags, | midcomTransBindOutParms MidcomTransInOutFlags, | |||
| midcomTransBindGroupId Unsigned32, | midcomTransBindGroupId Unsigned32, | |||
| midcomTransBindLifetime TimeInterval, | midcomTransBindLifetime TimeInterval, | |||
| midcomTransBindMaxIdletime TimeInterval, | midcomTransBindMaxIdletime TimeInterval, | |||
| midcomTransBindPrivateAddrType InetAddressType, | midcomTransBindPrivateAddrType InetAddressType, | |||
| skipping to change at page 32, line 34 ¶ | skipping to change at page 34, line 41 ¶ | |||
| midcomTransBindPrivateSrcPort InetPortNumber, | midcomTransBindPrivateSrcPort InetPortNumber, | |||
| midcomTransBindPrivateDstAddr InetAddress, | midcomTransBindPrivateDstAddr InetAddress, | |||
| midcomTransBindPrivateDstPort InetPortNumber, | midcomTransBindPrivateDstPort InetPortNumber, | |||
| midcomTransBindGlobalAddrType InetAddressType, | midcomTransBindGlobalAddrType InetAddressType, | |||
| midcomTransBindGlobalSrcAddr InetAddress, | midcomTransBindGlobalSrcAddr InetAddress, | |||
| midcomTransBindGlobalSrcPort InetPortNumber, | midcomTransBindGlobalSrcPort InetPortNumber, | |||
| midcomTransBindGlobalDstAddr InetAddress, | midcomTransBindGlobalDstAddr InetAddress, | |||
| midcomTransBindGlobalDstPort InetPortNumber, | midcomTransBindGlobalDstPort InetPortNumber, | |||
| midcomTransBindPrivateSrcBindId MidcomBindIdOrZero, | midcomTransBindPrivateSrcBindId NatBindIdOrZero, | |||
| midcomTransBindPrivateSrcBindMode MidcomBindMode, | midcomTransBindPrivateSrcBindMode MidcomBindMode, | |||
| midcomTransBindPrivateDstBindId MidcomBindIdOrZero, | midcomTransBindPrivateDstBindId NatBindIdOrZero, | |||
| midcomTransBindPrivateDstBindMode MidcomBindMode, | midcomTransBindPrivateDstBindMode MidcomBindMode, | |||
| midcomTransBindStatus MidcomInvocationStatus | midcomTransBindStatus MidcomInvocationStatus | |||
| } | } | |||
| midcomTransBindAgentIndex OBJECT-TYPE | midcomTransBindAgentIndex OBJECT-TYPE | |||
| SYNTAX MidcomAgentIndex | SYNTAX MidcomAgentIndex | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "A unique Identifier for an Agent in the Table. | DESCRIPTION "A unique Identifier for an Agent in the Table. | |||
| This object is set when an agent reads the object | This object is set when an agent reads the object | |||
| midcomAgentIndexNext. | midcomAgentIndexNext. | |||
| " | " | |||
| ::= { midcomTransBindEntry 1 } | ::= { midcomTransBindEntry 1 } | |||
| midcomTransBindCommand OBJECT-TYPE | midcomTransBindCommand OBJECT-TYPE | |||
| SYNTAX MidcomBindCommand | SYNTAX MidcomBindCommand | |||
| MAX-ACCESS read-write | MAX-ACCESS read-write | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This specifies the bind command to be | DESCRIPTION "This specifies the bind command to be | |||
| executed. | executed. | |||
| " | " | |||
| ::= { midcomTransBindEntry 2 } | ::= { midcomTransBindEntry 2 } | |||
| midcomTransBindOddity OBJECT-TYPE | midcomTransBindOddity OBJECT-TYPE | |||
| SYNTAX INTEGER { | ||||
| oddityEnforce(1), -- Enforce oddity | ||||
| oddityNotRequired (2) -- Oddity not required. | ||||
| } | ||||
| MAX-ACCESS read-write | MAX-ACCESS read-write | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This specifies whether or not | DESCRIPTION "This specifies whether or not | |||
| the bind should enforce oddity | the bind should enforce oddity | |||
| to match that of the specified | to match that of the specified | |||
| end point or end points. | end point or end points. | |||
| " | " | |||
| SYNTAX INTEGER { | ||||
| oddityEnforce(1), -- Enforce oddity | ||||
| oddityNotRequired (2) -- Oddity not required. | ||||
| } | ||||
| ::= { midcomTransBindEntry 3 } | ::= { midcomTransBindEntry 3 } | |||
| midcomTransBindProtocol OBJECT-TYPE | midcomTransBindProtocol OBJECT-TYPE | |||
| SYNTAX NATProtocolType | SYNTAX NATProtocolType | |||
| MAX-ACCESS read-write | MAX-ACCESS read-write | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This specifies the protocol (TCP/UDP) of the | DESCRIPTION "This specifies the protocol (TCP/UDP) of the | |||
| session that requires the bind reservation. | session that requires the bind reservation. | |||
| " | " | |||
| ::= { midcomTransBindEntry 4 } | ::= { midcomTransBindEntry 4 } | |||
| skipping to change at page 37, line 51 ¶ | skipping to change at page 40, line 15 ¶ | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "IP destination port in the private realm. | DESCRIPTION "IP destination port in the private realm. | |||
| This is relevant if the agent refers a | This is relevant if the agent refers a | |||
| global realm address and the bind command | global realm address and the bind command | |||
| is to find a bind for global realm | is to find a bind for global realm | |||
| destination end point. | destination end point. | |||
| " | " | |||
| ::= { midcomTransBindEntry 21 } | ::= { midcomTransBindEntry 21 } | |||
| midcomTransBindPrivateSrcBindId OBJECT-TYPE | midcomTransBindPrivateSrcBindId OBJECT-TYPE | |||
| SYNTAX MidcomBindIdOrZero | SYNTAX NatBindIdOrZero | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This is the first Bind that will be generated | DESCRIPTION "This is the first Bind that will be generated | |||
| in majority of the cases. | in majority of the cases. | |||
| This will be set to 0 in the case of symmetric | This will be set to 0 in the case of symmetric | |||
| NAT. | NAT. | |||
| " | " | |||
| ::= { midcomTransBindEntry 22 } | ::= { midcomTransBindEntry 22 } | |||
| midcomTransBindPrivateSrcBindMode OBJECT-TYPE | midcomTransBindPrivateSrcBindMode OBJECT-TYPE | |||
| SYNTAX MidcomBindMode, | SYNTAX MidcomBindMode | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This indicates whether PrivateSrcBind is | DESCRIPTION "This indicates whether PrivateSrcBind is | |||
| address bind or port bind. | address bind or port bind. | |||
| " | " | |||
| ::= { midcomTransBindEntry 23 } | ::= { midcomTransBindEntry 23 } | |||
| midcomTransBindPrivateDstBindId OBJECT-TYPE | midcomTransBindPrivateDstBindId OBJECT-TYPE | |||
| SYNTAX MidcomBindIdOrZero | SYNTAX NatBindIdOrZero | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This is the second Bind that will be generated | DESCRIPTION "This is the second Bind that will be generated | |||
| in the case of twice-NAT or oddity based 2 bind | in the case of twice-NAT or oddity based 2 bind | |||
| request. | request. | |||
| This will be set to 0 in the case of symmetric | This will be set to 0 in the case of symmetric | |||
| NAT. | NAT. | |||
| " | " | |||
| ::= { midcomTransBindEntry 24 } | ::= { midcomTransBindEntry 24 } | |||
| skipping to change at page 39, line 5 ¶ | skipping to change at page 41, line 17 ¶ | |||
| midcomTransBindStatus OBJECT-TYPE | midcomTransBindStatus OBJECT-TYPE | |||
| SYNTAX MidcomInvocationStatus | SYNTAX MidcomInvocationStatus | |||
| MAX-ACCESS read-write | MAX-ACCESS read-write | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Invocation status." | DESCRIPTION "Invocation status." | |||
| ::= { midcomTransBindEntry 26 } | ::= { midcomTransBindEntry 26 } | |||
| midcomTransNatSessionTable OBJECT-TYPE | midcomTransNatSessionTable OBJECT-TYPE | |||
| SYNTAX SEQUENCE OF MidcomTransNatSessionEntry | SYNTAX SEQUENCE OF MidcomTransNatSessionEntry | |||
| MAX-ACCESS read-write | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This lists NatSession based transactions, | DESCRIPTION "This lists NatSession based transactions, | |||
| one per each agent." | one per each agent." | |||
| ::= { midcomTransactions 3 } | ::= { midcomTransactions 3 } | |||
| midcomTransNatSessionEntry OBJECT-TYPE | midcomTransNatSessionEntry OBJECT-TYPE | |||
| SYNTAX MidcomTransNatSessionEntry | SYNTAX MidcomTransNatSessionEntry | |||
| MAX-ACCESS not-accessible | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| skipping to change at page 39, line 35 ¶ | skipping to change at page 41, line 47 ¶ | |||
| Further, the NatSession entry is included within | Further, the NatSession entry is included within | |||
| the midcomNatSession table. | the midcomNatSession table. | |||
| " | " | |||
| INDEX { midcomTransNatSessionAgentIndex } | INDEX { midcomTransNatSessionAgentIndex } | |||
| ::= { midcomTransNatSessionTable 1 } | ::= { midcomTransNatSessionTable 1 } | |||
| MidcomTransNatSessionEntry ::= SEQUENCE { | MidcomTransNatSessionEntry ::= SEQUENCE { | |||
| midcomTransNatSessionAgentIndex MidcomAgentIndex, | midcomTransNatSessionAgentIndex MidcomAgentIndex, | |||
| midcomTransNatSessionCommand MidcomNatSessionCommand, | midcomTransNatSessionCommand MidcomNatSessionCommand, | |||
| midcomTransNatSessionOddity INTEGER, | ||||
| midcomTransNatSessionProtocol NATProtocolType, | midcomTransNatSessionProtocol NATProtocolType, | |||
| midcomTransNatSessionSessionDirection MidcomSessionDirection, | midcomTransNatSessionSessionDirection MidcomSessionDirection, | |||
| midcomTransNatSessionIfIndex InterfaceIndex, | midcomTransNatSessionIfIndex InterfaceIndex, | |||
| midcomTransNatSessionInParms MidcomTransInOutFlags, | midcomTransNatSessionInParms MidcomTransInOutFlags, | |||
| midcomTransNatSessionOutParms MidcomTransInOutFlags, | midcomTransNatSessionOutParms MidcomTransInOutFlags, | |||
| midcomTransNatSessionGroupId Unsigned32, | midcomTransNatSessionGroupId Unsigned32, | |||
| midcomTransNatSessionLifetime TimeInterval, | midcomTransNatSessionLifetime TimeInterval, | |||
| midcomTransNatSessionMaxIdletime TimeInterval, | midcomTransNatSessionMaxIdletime TimeInterval, | |||
| midcomTransNatSessionPrivateAddrType InetAddressType, | midcomTransNatSessionPrivateAddrType InetAddressType, | |||
| midcomTransNatSessionPrivateSrcAddr InetAddress, | midcomTransNatSessionPrivateSrcAddr InetAddress, | |||
| midcomTransNatSessionPrivateSrcPort InetPortNumber, | midcomTransNatSessionPrivateSrcPort InetPortNumber, | |||
| midcomTransNatSessionPrivateDstAddr InetAddress, | midcomTransNatSessionPrivateDstAddr InetAddress, | |||
| midcomTransNatSessionPrivateDstPort InetPortNumber, | midcomTransNatSessionPrivateDstPort InetPortNumber, | |||
| midcomTransNatSessionGlobalAddrType InetAddressType, | midcomTransNatSessionGlobalAddrType InetAddressType, | |||
| midcomTransNatSessionGlobalSrcAddr InetAddress, | midcomTransNatSessionGlobalSrcAddr InetAddress, | |||
| midcomTransNatSessionGlobalSrcPort InetPortNumber, | midcomTransNatSessionGlobalSrcPort InetPortNumber, | |||
| midcomTransNatSessionGlobalDstAddr InetAddress, | midcomTransNatSessionGlobalDstAddr InetAddress, | |||
| midcomTransNatSessionGlobalDstPort InetPortNumber, | midcomTransNatSessionGlobalDstPort InetPortNumber, | |||
| midcomTransNatSessionPrivateSrcBindId MidcomBindIdOrZero, | ||||
| midcomTransNatSessionPrivateDstBindId MidcomBindIdOrZero, | midcomTransNatSessionPrivateSrcBindId NatBindIdOrZero, | |||
| midcomTransNatSessionStatus MidcomInvocationStatus | midcomTransNatSessionPrivateDstBindId NatBindIdOrZero, | |||
| midcomTransNatSessionSessionId NatSessionId, | ||||
| midcomTransNatSessionSessionId2 NatSessionId, | ||||
| midcomTransNatSessionStatus MidcomInvocationStatus | ||||
| } | } | |||
| midcomTransNatSessionAgentIndex OBJECT-TYPE | midcomTransNatSessionAgentIndex OBJECT-TYPE | |||
| SYNTAX MidcomAgentIndex | SYNTAX MidcomAgentIndex | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "A unique Identifier for an Agent in the Table. | DESCRIPTION "A unique Identifier for an Agent in the Table. | |||
| This object is set when an agent reads the object | This object is set when an agent reads the object | |||
| midcomAgentIndexNext. | midcomAgentIndexNext. | |||
| " | " | |||
| skipping to change at page 40, line 29 ¶ | skipping to change at page 42, line 48 ¶ | |||
| midcomTransNatSessionCommand OBJECT-TYPE | midcomTransNatSessionCommand OBJECT-TYPE | |||
| SYNTAX MidcomNatSessionCommand | SYNTAX MidcomNatSessionCommand | |||
| MAX-ACCESS read-write | MAX-ACCESS read-write | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This specifies the NatSession command to be | DESCRIPTION "This specifies the NatSession command to be | |||
| executed. | executed. | |||
| " | " | |||
| ::= { midcomTransNatSessionEntry 2 } | ::= { midcomTransNatSessionEntry 2 } | |||
| midcomTransNatSessionOddity OBJECT-TYPE | ||||
| SYNTAX INTEGER { | ||||
| oddityEnforce(1), -- Enforce oddity | ||||
| oddityNotRequired (2) -- Oddity not required. | ||||
| } | ||||
| MAX-ACCESS read-write | ||||
| STATUS current | ||||
| DESCRIPTION "This specifies whether or not the Nat-Session | ||||
| should enforce oddity while assigning translation | ||||
| port(s) to match that of the specified session.. | ||||
| " | ||||
| ::= { midcomTransNatSessionEntry 3 } | ||||
| midcomTransNatSessionProtocol OBJECT-TYPE | midcomTransNatSessionProtocol OBJECT-TYPE | |||
| SYNTAX NATProtocolType | SYNTAX NATProtocolType | |||
| MAX-ACCESS read-write | MAX-ACCESS read-write | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This specifies the protocol (TCP/UDP) of the | DESCRIPTION "This specifies the protocol (TCP/UDP) of the | |||
| session. | session. | |||
| " | " | |||
| ::= { midcomTransNatSessionEntry 3 } | ::= { midcomTransNatSessionEntry 4 } | |||
| midcomTransNatSessionSessionDirection OBJECT-TYPE | midcomTransNatSessionSessionDirection OBJECT-TYPE | |||
| SYNTAX MidcomSessionDirection | SYNTAX MidcomSessionDirection | |||
| MAX-ACCESS read-write | MAX-ACCESS read-write | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This specifies the orientation of the | DESCRIPTION "This specifies the orientation of the | |||
| session with reference to the interface | session with reference to the interface | |||
| index specified. | index specified. | |||
| " | " | |||
| ::= { midcomTransNatSessionEntry 4 } | ::= { midcomTransNatSessionEntry 5 } | |||
| midcomTransNatSessionIfIndex OBJECT-TYPE | midcomTransNatSessionIfIndex OBJECT-TYPE | |||
| SYNTAX InterfaceIndex | SYNTAX InterfaceIndex | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Interface Index for which the NAT-Session is | DESCRIPTION "Interface Index for which the NAT-Session is | |||
| being requested. | being requested. | |||
| This value may be set to 0 to mean any | This value may be set to 0 to mean any | |||
| IP interface on the middlebox. This value | IP interface on the middlebox. This value | |||
| may also be set to 0, when the middlebox has | may also be set to 0, when the middlebox has | |||
| just one interface on which midcom is | just one interface on which midcom is | |||
| configured. | configured. | |||
| " | " | |||
| ::= { midcomTransNatSessionEntry 5 } | ::= { midcomTransNatSessionEntry 6 } | |||
| midcomTransNatSessionInParms OBJECT-TYPE | midcomTransNatSessionInParms OBJECT-TYPE | |||
| SYNTAX MidcomTransInOutFlags | SYNTAX MidcomTransInOutFlags | |||
| MAX-ACCESS read-write | MAX-ACCESS read-write | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Lists the fields within the row that are | DESCRIPTION "Lists the fields within the row that are | |||
| filled by the requestor. | filled by the requestor. | |||
| While the transaction allows for any or | While the transaction allows for any or | |||
| all of the session parameters to be specified, | all of the session parameters to be specified, | |||
| typically, session parameters are filled in | typically, session parameters are filled in | |||
| the private alone or in the public realm | the private alone or in the public realm | |||
| alone. | alone. | |||
| " | " | |||
| ::= { midcomTransNatSessionEntry 6 } | ::= { midcomTransNatSessionEntry 7 } | |||
| midcomTransNatSessionOutParms OBJECT-TYPE | midcomTransNatSessionOutParms OBJECT-TYPE | |||
| SYNTAX MidcomTransInOutFlags | SYNTAX MidcomTransInOutFlags | |||
| MAX-ACCESS read-write | MAX-ACCESS read-write | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Lists the fields within the row that are | DESCRIPTION "Lists the fields within the row that are | |||
| filled by the middlebox in response to the | filled by the middlebox in response to the | |||
| session request from agent. | session request from agent. | |||
| While the transaction allows for any or | While the transaction allows for any or | |||
| all session parameters to be filled, | all session parameters to be filled, | |||
| typically, session parameters are filled in | typically, session parameters are filled in | |||
| the private alone or in the public realm | the private alone or in the public realm | |||
| alone. | alone. | |||
| " | " | |||
| ::= { midcomTransNatSessionEntry 7 } | ::= { midcomTransNatSessionEntry 8 } | |||
| midcomTransNatSessionGroupId OBJECT-TYPE | midcomTransNatSessionGroupId OBJECT-TYPE | |||
| SYNTAX Unsigned32 | SYNTAX Unsigned32 | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Group Identifier assigend to this | DESCRIPTION "Group Identifier assigend to this | |||
| resource. | resource. | |||
| A value of 0 implies that the session is not | A value of 0 implies that the session is not | |||
| assigned a group membership. | assigned a group membership. | |||
| " | " | |||
| ::= { midcomTransNatSessionEntry 8 } | ::= { midcomTransNatSessionEntry 9 } | |||
| midcomTransNatSessionLifetime OBJECT-TYPE | midcomTransNatSessionLifetime OBJECT-TYPE | |||
| SYNTAX TimeInterval | SYNTAX TimeInterval | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Individual Lifetime of the bind resource. | DESCRIPTION "Individual Lifetime of the bind resource. | |||
| When this is set to 0 and GroupId is | When this is set to 0 and GroupId is | |||
| set to non-zero, the Lifetime of the | set to non-zero, the Lifetime of the | |||
| GroupId is used to determine the | GroupId is used to determine the | |||
| lifetime of this resource. | lifetime of this resource. | |||
| skipping to change at page 42, line 19 ¶ | skipping to change at page 45, line 4 ¶ | |||
| midcomTransNatSessionLifetime OBJECT-TYPE | midcomTransNatSessionLifetime OBJECT-TYPE | |||
| SYNTAX TimeInterval | SYNTAX TimeInterval | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Individual Lifetime of the bind resource. | DESCRIPTION "Individual Lifetime of the bind resource. | |||
| When this is set to 0 and GroupId is | When this is set to 0 and GroupId is | |||
| set to non-zero, the Lifetime of the | set to non-zero, the Lifetime of the | |||
| GroupId is used to determine the | GroupId is used to determine the | |||
| lifetime of this resource. | lifetime of this resource. | |||
| " | " | |||
| ::= { midcomTransNatSessionEntry 9 } | ::= { midcomTransNatSessionEntry 10 } | |||
| midcomTransBindMaxIdletime OBJECT-TYPE | midcomTransNatSessionMaxIdletime OBJECT-TYPE | |||
| SYNTAX TimeInterval | SYNTAX TimeInterval | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "MaxIdletime of the Bind resource. | DESCRIPTION "MaxIdletime of the Bind resource. | |||
| When this is set to 0 and GroupId is | When this is set to 0 and GroupId is | |||
| set to non-zero, the MaxIdletime of the | set to non-zero, the MaxIdletime of the | |||
| GroupId is used to determine the | GroupId is used to determine the | |||
| Maxidletime of this resource. | Maxidletime of this resource. | |||
| " | " | |||
| ::= { midcomTransNatSessionEntry 10 } | ::= { midcomTransNatSessionEntry 11 } | |||
| midcomTransBindPrivateAddrType OBJECT-TYPE | midcomTransNatSessionPrivateAddrType OBJECT-TYPE | |||
| SYNTAX InetAddressType | SYNTAX InetAddressType | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "IP address type in the private realm. | DESCRIPTION "IP address type in the private realm. | |||
| " | " | |||
| ::= { midcomTransNatSessionEntry 11 } | ::= { midcomTransNatSessionEntry 12 } | |||
| midcomTransNatSessionPrivateSrcAddr OBJECT-TYPE | midcomTransNatSessionPrivateSrcAddr OBJECT-TYPE | |||
| SYNTAX InetAddress | SYNTAX InetAddress | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "IP source address in the private realm. | DESCRIPTION "IP source address in the private realm. | |||
| This is relevant if the agent refers a | This is relevant if the agent refers a | |||
| private realm session. | private realm session. | |||
| Wild-card IP address is allowed and may be | ||||
| denoted as all zeros. | ||||
| " | " | |||
| ::= { midcomTransBindEntry 12 } | ::= { midcomTransNatSessionEntry 13 } | |||
| midcomTransNatSessionPrivateSrcPort OBJECT-TYPE | midcomTransNatSessionPrivateSrcPort OBJECT-TYPE | |||
| SYNTAX InetPortNumber | SYNTAX InetPortNumber | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "IP source port in the private realm. | DESCRIPTION "IP source port in the private realm. | |||
| This is relevant if the agent refers a | This is relevant if the agent refers a | |||
| private realm based session. | private realm based session. | |||
| Wild-card port is allowed and may be | ||||
| denoted as zero. | ||||
| " | " | |||
| ::= { midcomTransNatSessionEntry 13 } | ::= { midcomTransNatSessionEntry 14 } | |||
| midcomTransNatSessionPrivateDstAddr OBJECT-TYPE | midcomTransNatSessionPrivateDstAddr OBJECT-TYPE | |||
| SYNTAX InetAddress | SYNTAX InetAddress | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "IP destination address in the private realm. | DESCRIPTION "IP destination address in the private realm. | |||
| This is relevant if the agent refers a | This is relevant if the agent refers a | |||
| private realm based session. | private realm based session. | |||
| Wild-card IP address is allowed and may be | ||||
| denoted as all zeros. | ||||
| " | " | |||
| ::= { midcomTransNatSessionEntry 14 } | ::= { midcomTransNatSessionEntry 15 } | |||
| midcomTransNatSessionPrivateDstPort OBJECT-TYPE | midcomTransNatSessionPrivateDstPort OBJECT-TYPE | |||
| SYNTAX InetPortNumber | SYNTAX InetPortNumber | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "IP destination port in the private realm. | DESCRIPTION "IP destination port in the private realm. | |||
| This is relevant if the agent refers a | This is relevant if the agent refers a | |||
| private realm based session. | private realm based session. | |||
| Wild-card port is allowed and may be | ||||
| denoted as zero. | ||||
| " | " | |||
| ::= { midcomTransNatSessionEntry 15 } | ::= { midcomTransNatSessionEntry 16 } | |||
| midcomTransNatSessionGlobalAddrType OBJECT-TYPE | midcomTransNatSessionGlobalAddrType OBJECT-TYPE | |||
| SYNTAX InetAddressType | SYNTAX InetAddressType | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "IP address type in the global address realm. | DESCRIPTION "IP address type in the global address realm. | |||
| " | " | |||
| ::= { midcomTransNatSessionEntry 16 } | ::= { midcomTransNatSessionEntry 17 } | |||
| midcomTransBindGlobalSrcAddr OBJECT-TYPE | midcomTransNatSessionGlobalSrcAddr OBJECT-TYPE | |||
| SYNTAX InetAddress | SYNTAX InetAddress | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "IP source address in the global realm. | DESCRIPTION "IP source address in the global realm. | |||
| This is relevant if the agent refers a | This is relevant if the agent refers a | |||
| global realm based session. | global realm based session. | |||
| Wild-card IP address is allowed and may be | ||||
| denoted as all zeros. | ||||
| " | " | |||
| ::= { midcomTransNatSessionEntry 17 } | ::= { midcomTransNatSessionEntry 18 } | |||
| midcomTransNatSessionGlobalSrcPort OBJECT-TYPE | midcomTransNatSessionGlobalSrcPort OBJECT-TYPE | |||
| SYNTAX InetPortNumber | SYNTAX InetPortNumber | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "IP source port in the global realm. | DESCRIPTION "IP source port in the global realm. | |||
| This is relevant if the agent refers a | This is relevant if the agent refers a | |||
| global realm based session. | global realm based session. | |||
| Wild-card port is allowed and may be | ||||
| denoted as zero. | ||||
| " | " | |||
| ::= { midcomTransNatSessionEntry 18 } | ::= { midcomTransNatSessionEntry 19 } | |||
| midcomTransNatSessionGlobalDstAddr OBJECT-TYPE | midcomTransNatSessionGlobalDstAddr OBJECT-TYPE | |||
| SYNTAX InetAddress | SYNTAX InetAddress | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "IP destination address in the global realm. | DESCRIPTION "IP destination address in the global realm. | |||
| This is relevant if the agent refers a | This is relevant if the agent refers a | |||
| global realm based session. | global realm based session. | |||
| Wild-card IP address is allowed and may be | ||||
| denoted as all zeros. | ||||
| " | " | |||
| ::= { midcomTransNatSessionEntry 19 } | ::= { midcomTransNatSessionEntry 20 } | |||
| midcomTransNatSessionGlobalDstPort OBJECT-TYPE | midcomTransNatSessionGlobalDstPort OBJECT-TYPE | |||
| SYNTAX InetPortNumber | SYNTAX InetPortNumber | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "IP destination port in the private realm. | DESCRIPTION "IP destination port in the private realm. | |||
| This is relevant if the agent refers a | This is relevant if the agent refers a | |||
| global realm based session. | global realm based session. | |||
| Wild-card port is allowed and may be | ||||
| denoted as zero. | ||||
| " | " | |||
| ::= { midcomTransNatSessionEntry 20 } | ::= { midcomTransNatSessionEntry 21 } | |||
| midcomTransNatSessionPrivateSrcBindId OBJECT-TYPE | midcomTransNatSessionPrivateSrcBindId OBJECT-TYPE | |||
| SYNTAX MidcomBindIdOrZero | SYNTAX NatBindIdOrZero | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This is the first Bind that may be supplied | DESCRIPTION "This is the first Bind that may be supplied | |||
| by the agent. This BindId is the unique bindId | by the agent. This BindId is the unique bindId | |||
| for the midcom agent and is independent of what | for the midcom agent and is independent of what | |||
| the NAt middlebox might have. | the NAT middlebox might have. | |||
| This may be set to 0 in the case requestor does | This may be set to 0 in the case requestor does | |||
| not have a BIND pre-assigned. | not have a BIND pre-assigned. | |||
| " | " | |||
| ::= { midcomTransNatSessionEntry 21 } | ::= { midcomTransNatSessionEntry 22 } | |||
| midcomTransNatSessionPrivateDstBindId OBJECT-TYPE | midcomTransNatSessionPrivateDstBindId OBJECT-TYPE | |||
| SYNTAX MidcomBindIdOrZero | SYNTAX NatBindIdOrZero | |||
| MAX-ACCESS read-create | MAX-ACCESS read-create | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "This is the second Bind that may be supplied | DESCRIPTION "This is the second Bind (as in twice-NAT) that | |||
| by the agent. This BindId is the unique bindId | may be supplied by the midcom agent for a session. | |||
| for the midcom agent and is independent of what | In the case the command is to create two sessions, | |||
| the NAT middlebox might have. | the second Bind refers to the sesond session. | |||
| This may be set to 0 in the case requestor does | This BindId is the unique bindId | |||
| not have a BIND pre-assigned. | for the midcom agent and is independent of what | |||
| the NAT middlebox might have. | ||||
| This may be set to 0 in the case requestor does | ||||
| not have a BIND pre-assigned or the session needs | ||||
| no more than one BIND. | ||||
| " | " | |||
| ::= { midcomTransNatSessionEntry 22 } | ::= { midcomTransNatSessionEntry 23 } | |||
| midcomTransNatSessionSessionId OBJECT-TYPE | ||||
| SYNTAX NatSessionId | ||||
| MAX-ACCESS read-only | ||||
| STATUS current | ||||
| DESCRIPTION "Unique session Identifier returned upon successful | ||||
| execution of the session command. | ||||
| " | ||||
| ::= { midcomTransNatSessionEntry 24 } | ||||
| midcomTransNatSessionSessionId2 OBJECT-TYPE | ||||
| SYNTAX NatSessionId | ||||
| MAX-ACCESS read-only | ||||
| STATUS current | ||||
| DESCRIPTION "Second session Identifier assigned upon successful | ||||
| execution of the session command. | ||||
| This is set when the command is to create two | ||||
| sessions using the oddity basis, for two consecutive | ||||
| ports. | ||||
| " | ||||
| ::= { midcomTransNatSessionEntry 25 } | ||||
| midcomTransNatSessionStatus OBJECT-TYPE | midcomTransNatSessionStatus OBJECT-TYPE | |||
| SYNTAX MidcomInvocationStatus | SYNTAX MidcomInvocationStatus | |||
| MAX-ACCESS read-write | MAX-ACCESS read-write | |||
| STATUS current | STATUS current | |||
| DESCRIPTION "Invocation status." | DESCRIPTION "Invocation status." | |||
| ::= { midcomTransNatSessionEntry 23 } | ::= { midcomTransNatSessionEntry 26 } | |||
| 5. Security Considerations | END | |||
| 7. Security Considerations | ||||
| The MIDCOM requirements [RFC3304] defines the general security | The MIDCOM requirements [RFC3304] defines the general security | |||
| requirements for the MIDCOM protocol. The SNMPv3 User-based | requirements for the MIDCOM protocol. The SNMPv3 User-based | |||
| Security Model (USM, [RFC2574]) satisfies those requirements. | Security Model (USM, [RFC2574]) satisfies those requirements. | |||
| USM defines | USM defines | |||
| three standardized methods for providing authentication, | three standardized methods for providing authentication, | |||
| confidentiality, and integrity. The method to use can be optionally | confidentiality, and integrity. The method to use can be optionally | |||
| chosen. The methods operate securely across untrusted domains. | chosen. The methods operate securely across untrusted domains. | |||
| Additionally, USM has specific built-in mechanisms for preventing | Additionally, USM has specific built-in mechanisms for preventing | |||
| replay attacks including unique protocol engine IDs, timers and | replay attacks including unique protocol engine IDs, timers and | |||
| End of changes. 97 change blocks. | ||||
| 113 lines changed or deleted | 282 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/ | ||||