1-- ***************************************************************** 2-- AWC-VLAN-MIB.my: Cisco Aironet Wireless LAN VLAN Configuration 3-- MIB file 4-- 5-- September 2002, Victor Griswold 6-- 7-- Copyright (c) 2002 by Cisco Systems, Inc. 8-- All rights reserved. 9-- ***************************************************************** 10-- 11 12AWC-VLAN-CFG-MIB DEFINITIONS ::= BEGIN 13 14IMPORTS 15 MODULE-IDENTITY, 16 OBJECT-TYPE, 17 Unsigned32 18 FROM SNMPv2-SMI 19 MODULE-COMPLIANCE, 20 OBJECT-GROUP 21 FROM SNMPv2-CONF 22 TEXTUAL-CONVENTION, 23 RowStatus, 24 TruthValue 25 FROM SNMPv2-TC 26 awcVx, 27 AwcVlanId, 28 AwcPolId, 29 WEPKeytype128, 30 AwcDot11MicAlgorithm, 31 AwcDot11WEPKeyPermuteAlgorithm, 32 AwcPfPriority 33 FROM AWCVX-MIB; 34 35 36awcVlanCfgMIB MODULE-IDENTITY 37 LAST-UPDATED "200209060000Z" 38 ORGANIZATION "Cisco Systems, Inc." 39 CONTACT-INFO 40 " Cisco Systems 41 Customer Service 42 43 Postal: 170 W Tasman Drive 44 San Jose, CA 95134 45 USA 46 47 Tel: +1 800 553-NETS 48 49 E-mail: cs-aironet@cisco.com" 50 DESCRIPTION 51 "Aironet products VLAN Configuration MIB." 52 REVISION "200107110000Z" 53 DESCRIPTION 54 "Initial version of this MIB module." 55 ::= { awcVx 21 } 56 57 58awcVlanCfgObjects OBJECT IDENTIFIER ::= { awcVlanCfgMIB 1 } 59 60 61-- Textual Conventions 62 63AwcVlanIndex ::= TEXTUAL-CONVENTION 64 STATUS current 65 DESCRIPTION 66 "A value used to index per-VLAN tables. 67 Represents an IEEE 802.1Q VLAN-ID with global scope 68 within a given bridged domain (see AwcVlanId 69 textual convention). The value 4095 indicates 70 that the conceptual row applies to non-VLAN-tagged 71 frames (though it would be more directly 72 representative of the packet format, 0 can not be 73 used for this purpose, per SNMP conventions)." 74 SYNTAX Unsigned32 (1..4095) 75 76AwcVlanEncapType ::= TEXTUAL-CONVENTION 77 STATUS current 78 DESCRIPTION 79 "The 802.1Q encapsulation mode. Valid values are: 80 dot1qDisabled (1), Disabled 81 dot1qPriority (2) 802.1Q Priority Tagging 82 dot1qHybrid (3), 802.1Q VLAN Hybrid Trunk 83 dot1qTrunk (4) 802.1Q VLAN Trunk 84 The default value is normally Disabled." 85 SYNTAX INTEGER { 86 dot1qDisabled(1), 87 dot1qPriority(2), 88 dot1qHybrid(3), 89 dot1qTrunk(4) 90 } 91 92 93-- Object Type Definitions 94 95awcMaxVlanIds OBJECT-TYPE 96 SYNTAX Unsigned32 97 MAX-ACCESS read-only 98 STATUS current 99 DESCRIPTION 100 "The Maximum number of discrete VLAN IDs supported. 101 The VLAN IDs need not be consecutive." 102 ::= { awcVlanCfgObjects 1 } 103 104awcVlanEncapMode OBJECT-TYPE 105 SYNTAX AwcVlanEncapType 106 MAX-ACCESS read-only 107 STATUS current 108 DESCRIPTION 109 "The encapsulation mode setting controls transmit 110 tagging logic for all ports. The value of this 111 object is derived from other settings within the 112 VLAN MIB." 113 DEFVAL { dot1qDisabled } 114 ::= { awcVlanCfgObjects 2 } 115 116awcNativeVlanId OBJECT-TYPE 117 SYNTAX AwcVlanId 118 MAX-ACCESS read-write 119 STATUS current 120 DESCRIPTION 121 "Native VLAN ID for the device. The default Native 122 VLAN ID is 0, for no VLAN ID. If the device is attached 123 to an Ethernet bridge/switch VLAN port then a non-zero 124 Native VLAN ID must match the Port VLAN ID of the 125 bridge/switch port. The Native VLAN ID is the default 126 VLAN ID for frames that are not otherwise 127 associated with a VLAN ID." 128 DEFVAL { 0 } 129 ::= { awcVlanCfgObjects 3 } 130 131awcVlanAllowEncrypted OBJECT-TYPE 132 SYNTAX TruthValue 133 MAX-ACCESS read-write 134 STATUS current 135 DESCRIPTION 136 "When this attribute is true, the STA shall 137 indicate at the MAC service interface received 138 MSDUs regardless of the setting of the WEP 139 subfield of the Frame Control field, so long 140 as no other VLAN parameters necessitate use 141 of encryption. The default value of this attribute 142 shall be true. 143 144 The general use for awcVlanAllowEncrypted to be 145 true even when no static WEP keys are set for 146 a VLAN is to allow a station to utilize EAP 147 authentication to encrypt directed packets, 148 even while multicast packets are unencrypted." 149 DEFVAL { true } 150 ::= { awcVlanCfgObjects 4 } 151 152awcVlanAnyEnabled OBJECT-TYPE 153 SYNTAX TruthValue 154 MAX-ACCESS read-write 155 STATUS current 156 DESCRIPTION 157 "When this attribute is true, VLAN operation of the 158 system is enabled when any awcVlanEnabled value is 159 true. When this attribute is false, VLAN operation 160 is disabled. The awcVlanAnyEnabled thus acts as a 161 master switch to enable or disable VLAN operation." 162 DEFVAL { false } 163 ::= { awcVlanCfgObjects 5 } 164 165 166-- VLAN Configuration Table 167 168awcVlanCfgTable OBJECT-TYPE 169 SYNTAX SEQUENCE OF AwcVlanCfgEntry 170 MAX-ACCESS not-accessible 171 STATUS current 172 DESCRIPTION 173 "A table used for configuring and managing VLANS." 174 ::= { awcVlanCfgObjects 6 } 175 176awcVlanCfgEntry OBJECT-TYPE 177 SYNTAX AwcVlanCfgEntry 178 MAX-ACCESS not-accessible 179 STATUS current 180 DESCRIPTION 181 "VLAN table entry containing parameters for configuring 182 and managing a particular VLAN." 183 INDEX {awcVlanIndex} 184 ::= { awcVlanCfgTable 1 } 185 186AwcVlanCfgEntry ::= SEQUENCE { 187 awcVlanIndex AwcVlanIndex, 188 awcVlanPolId AwcPolId, 189 awcVlanEnabled TruthValue, 190 awcVlanNUcastKeyRotationInterval INTEGER, 191 awcVlanRowStatus RowStatus, 192 awcVlanMicAlgorithm AwcDot11MicAlgorithm, 193 awcVlanWEPKeyPermuteAlgorithm AwcDot11WEPKeyPermuteAlgorithm, 194 awcVlanName OCTET STRING, 195 awcVlanDefaultUserPriority AwcPfPriority, 196 awcVlanAlert TruthValue 197 } 198 199awcVlanIndex OBJECT-TYPE 200 SYNTAX AwcVlanIndex 201 MAX-ACCESS not-accessible 202 STATUS current 203 DESCRIPTION 204 "VLAN ID to which the parameters in this conceptual 205 row shall be applied. If 4095, the parameters in 206 this conceptual row shall be applied to 207 non-VLAN-tagged frames." 208 ::= { awcVlanCfgEntry 1 } 209 210awcVlanPolId OBJECT-TYPE 211 SYNTAX AwcPolId 212 MAX-ACCESS read-create 213 STATUS current 214 DESCRIPTION 215 "Default Policy Group Identifier for hosts occupying 216 this VLAN." 217 DEFVAL { 0 } 218 ::= { awcVlanCfgEntry 2 } 219 220awcVlanEnabled OBJECT-TYPE 221 SYNTAX TruthValue 222 MAX-ACCESS read-create 223 STATUS current 224 DESCRIPTION 225 "If true, this VLAN is enabled on all trunk and 226 hybrid ports. If false, this VLAN is disabled on 227 all ports." 228 DEFVAL { false } 229 ::= { awcVlanCfgEntry 3 } 230 231awcVlanNUcastKeyRotationInterval OBJECT-TYPE 232 SYNTAX INTEGER (0..10000000) 233 UNITS "seconds" 234 MAX-ACCESS read-create 235 STATUS current 236 DESCRIPTION 237 "WEP key rotation period. 0 indicates no key rotation." 238 DEFVAL { 0 } 239 ::= { awcVlanCfgEntry 4 } 240 241awcVlanRowStatus OBJECT-TYPE 242 SYNTAX RowStatus 243 MAX-ACCESS read-create 244 STATUS current 245 DESCRIPTION 246 "Used for creating/deleting conceptual rows in this 247 table." 248 ::= { awcVlanCfgEntry 5 } 249 250awcVlanMicAlgorithm OBJECT-TYPE 251 SYNTAX AwcDot11MicAlgorithm 252 MAX-ACCESS read-create 253 STATUS current 254 DESCRIPTION 255 "Auxiliary Message Integrity Check (MIC) calculated on 256 WEP-encoded packets of stations assigned to this VLAN. 257 This object is not applicable for the reserved VLAN 258 4095." 259 DEFVAL { micNone } 260 ::= { awcVlanCfgEntry 6 } 261 262awcVlanWEPKeyPermuteAlgorithm OBJECT-TYPE 263 SYNTAX AwcDot11WEPKeyPermuteAlgorithm 264 MAX-ACCESS read-create 265 STATUS current 266 DESCRIPTION 267 "Function through which the WEP encryption key is 268 permuted between key renewal periods for stations 269 assigned to this VLAN. This object is not 270 applicable for the reserved VLAN 4095." 271 DEFVAL { wepPermuteNone } 272 ::= { awcVlanCfgEntry 7 } 273 274awcVlanName OBJECT-TYPE 275 SYNTAX OCTET STRING 276 MAX-ACCESS read-create 277 STATUS current 278 DESCRIPTION 279 "Descriptive textual name for the VLAN." 280 DEFVAL { "" } 281 ::= { awcVlanCfgEntry 8 } 282 283awcVlanDefaultUserPriority OBJECT-TYPE 284 SYNTAX AwcPfPriority 285 MAX-ACCESS read-create 286 STATUS current 287 DESCRIPTION 288 "Designation of the priority assigned to packets 289 transmitted over this VLAN, if no other filter or 290 classification rule has yet assigned a priority." 291 DEFVAL { default } 292 ::= { awcVlanCfgEntry 9 } 293 294awcVlanAlert OBJECT-TYPE 295 SYNTAX TruthValue 296 MAX-ACCESS read-create 297 STATUS current 298 DESCRIPTION 299 "Should an alert be registered when a packet on 300 this VLAN is observed?" 301 DEFVAL { false } 302 ::= { awcVlanCfgEntry 10 } 303 304 305-- Native VLAN Default Shared WEP Table 306 307 308awcVlanNUcastKeyTable OBJECT-TYPE 309 SYNTAX SEQUENCE OF AwcVlanNUcastKeyEntry 310 MAX-ACCESS not-accessible 311 STATUS current 312 DESCRIPTION 313 "Default Shared WEP Keys for all 802.11 packets 314 transmitted and received as non-VLAN-tagged 315 frames over a port with the Port VLAN ID specified 316 as awcVlanIndex. If WEP encryption 317 is enabled for transmitted 802.11 frames, then the 318 set of 1 to 4 default shared WEP keys are used 319 to encrypt transmitted 802.11 broadcast/multicast 320 frames associated with the Port VLAN ID. The 321 shared WEP keys are also used to encrypt/decrypt 322 unicast frames, associated with the Port VLAN ID, 323 if an individual session key is not defined for the 324 target station address." 325 ::= { awcVlanCfgObjects 7 } 326 327awcVlanNUcastKeyEntry OBJECT-TYPE 328 SYNTAX AwcVlanNUcastKeyEntry 329 MAX-ACCESS not-accessible 330 STATUS current 331 DESCRIPTION 332 "An entry in the awcVlanNUcastKeyTable table." 333 INDEX {awcVlanIndex, awcVlanNUcastKeyIndex} 334 ::= { awcVlanNUcastKeyTable 1 } 335 336AwcVlanNUcastKeyEntry ::= SEQUENCE { 337 awcVlanNUcastKeyIndex INTEGER, 338 awcVlanNUcastKeyLen INTEGER, 339 awcVlanNUcastKeyValue WEPKeytype128 340 } 341 342awcVlanNUcastKeyIndex OBJECT-TYPE 343 SYNTAX INTEGER (1..4) 344 MAX-ACCESS not-accessible 345 STATUS current 346 DESCRIPTION 347 "802.11 WEP Key Index, + 1, used when transmitting or 348 receiving frames with this key." 349 ::= { awcVlanNUcastKeyEntry 1 } 350 351awcVlanNUcastKeyLen OBJECT-TYPE 352 SYNTAX INTEGER (0..13) 353 MAX-ACCESS read-write 354 STATUS current 355 DESCRIPTION 356 "Length in octets of awcVlanNUcastKeyValue. Common 357 values are 5 for 40-bit WEP and 13 for 128-bit WEP. 358 A value of 0 means that the key is not set." 359 DEFVAL { 0 } 360 ::= { awcVlanNUcastKeyEntry 2 } 361 362awcVlanNUcastKeyValue OBJECT-TYPE 363 SYNTAX WEPKeytype128 364 MAX-ACCESS read-write 365 STATUS current 366 DESCRIPTION 367 "A WEP default secret key value. The value is 368 write-only (attempt to read will result in 369 return of zero-length string)." 370 ::= { awcVlanNUcastKeyEntry 3 } 371 372 373awcVlanAllowUnencryptedVlanId OBJECT-TYPE 374 SYNTAX AwcVlanId 375 MAX-ACCESS read-write 376 STATUS current 377 DESCRIPTION 378 "Single VLAN ID on which unencrypted packets are 379 allowed. The default Unencrypted VLAN ID is 0, 380 meaning that all VLANs require full encryption." 381 DEFVAL { 0 } 382 ::= { awcVlanCfgObjects 8 } 383 384 385-- Notifications 386 387awcVlanCfgNotifications OBJECT IDENTIFIER ::= { awcVlanCfgMIB 2 } 388 389 390-- Conformance 391 392awcVlanCfgConformance OBJECT IDENTIFIER ::= { awcVlanCfgMIB 3 } 393 394awcVlanCfgCompliances OBJECT IDENTIFIER ::= { awcVlanCfgConformance 1 } 395 396awcVlanCfgGroups OBJECT IDENTIFIER ::= { awcVlanCfgConformance 2 } 397 398 399-- Compliance 400 401awcVlanCfgCompliance MODULE-COMPLIANCE 402 STATUS current 403 DESCRIPTION 404 "The compliance statement for the awcVlanCfgMIB group." 405 MODULE -- this module 406 MANDATORY-GROUPS { 407 awcVlanCfgObjectsGroup 408 } 409 410 ::= { awcVlanCfgCompliances 1 } 411 412 413-- Units of Conformance 414 415awcVlanCfgObjectsGroup OBJECT-GROUP 416 OBJECTS { 417 awcMaxVlanIds, 418 awcVlanEncapMode, 419 awcNativeVlanId, 420 awcVlanAllowEncrypted, 421 awcVlanPolId, 422 awcVlanEnabled, 423 awcVlanNUcastKeyRotationInterval, 424 awcVlanRowStatus, 425 awcVlanMicAlgorithm, 426 awcVlanWEPKeyPermuteAlgorithm, 427 awcVlanName, 428 awcVlanDefaultUserPriority, 429 awcVlanAlert, 430 awcVlanNUcastKeyLen, 431 awcVlanNUcastKeyValue, 432 awcVlanAllowUnencryptedVlanId 433 } 434 STATUS current 435 DESCRIPTION 436 "" 437 ::= { awcVlanCfgGroups 1 } 438 439END 440 441