1-- ***************************************************************** 2-- CISCO-SSG-MIB.my: MIB file for SSG Multi-service Gateway 3-- 4-- January 2002, Thamilarasu K, October 2003, Sheetal Tilve 5-- 6-- Copyright (c) 1996, 2002, 2003, 2005 by cisco Systems, Inc. 7-- All rights reserved. 8-- ***************************************************************** 9 10CISCO-SSG-MIB DEFINITIONS ::= BEGIN 11 12IMPORTS 13 MODULE-IDENTITY, 14 OBJECT-TYPE, 15 Counter32, 16 Gauge32, 17 Unsigned32, 18 NOTIFICATION-TYPE 19 FROM SNMPv2-SMI 20 MODULE-COMPLIANCE, 21 NOTIFICATION-GROUP, 22 OBJECT-GROUP 23 FROM SNMPv2-CONF 24 TimeInterval, 25 DateAndTime, 26 TruthValue, 27 DisplayString, 28 RowStatus 29 FROM SNMPv2-TC 30 InetAddressType, 31 InetAddress 32 FROM INET-ADDRESS-MIB 33 InterfaceIndex 34 FROM IF-MIB 35 CiscoPort 36 FROM CISCO-TC 37 ciscoMgmt 38 FROM CISCO-SMI; 39 40ciscoSsgMIB MODULE-IDENTITY 41 LAST-UPDATED "200512220000Z" 42 ORGANIZATION "Cisco Systems, Inc." 43 CONTACT-INFO 44 " Cisco Systems 45 Customer Service 46 47 Postal: 170 W Tasman Drive 48 San Jose, CA 95134 49 USA 50 51 Tel: +1 800 553-NETS 52 53 E-mail: cs-ssg@cisco.com" 54 DESCRIPTION 55 "The MIB Module manages Service Selection Gateway(SSG) 56 devices. 57 58 Service Selection Gateway(SSG) is a switching solution 59 for service providers who offer intranet,extranet, and 60 Internet connections to subscribers using broadband 61 access technology such as digital subscriber lines, 62 cable modems, or wireless to allow simultaneous access 63 to network services. 64 65 Acronyms and terms: 66 67 SSD Service Selection Dashboard 68 SESM Subscriber Edge Service Manager 69 GGSN Gateway GPRS Support Node 70 APN Access Point Name" 71 REVISION "200512220000Z" 72 DESCRIPTION 73 "Imported Unsigned32 from SNMPv2-SMI instead 74 of CISCO-TC." 75 REVISION "200310170000Z" 76 DESCRIPTION 77 "Added new objects for Transparent Auto-Logon 78 feature." 79 REVISION "200203250000Z" 80 DESCRIPTION 81 "Initial version of this MIB module." 82 ::= { ciscoMgmt 260 } 83 84 85 86ciscoSsgMIBObjects OBJECT IDENTIFIER ::= { ciscoSsgMIB 1 } 87 88cssgCfgObjects OBJECT IDENTIFIER ::= { ciscoSsgMIBObjects 1 } 89cssgStatsObjects OBJECT IDENTIFIER ::= { ciscoSsgMIBObjects 2 } 90cssgService OBJECT IDENTIFIER ::= { ciscoSsgMIBObjects 3 } 91cssgExcludedAPN OBJECT IDENTIFIER ::= { ciscoSsgMIBObjects 4 } 92cssgExcludedDomain OBJECT IDENTIFIER ::= { ciscoSsgMIBObjects 5 } 93cssgTcpRedirect OBJECT IDENTIFIER ::= { ciscoSsgMIBObjects 6 } 94cssgServiceIfBinds OBJECT IDENTIFIER ::= { ciscoSsgMIBObjects 7 } 95cssgRadiusClients OBJECT IDENTIFIER ::= { ciscoSsgMIBObjects 8 } 96cssgPortMap OBJECT IDENTIFIER ::= { ciscoSsgMIBObjects 9 } 97cssgTal OBJECT IDENTIFIER ::= { ciscoSsgMIBObjects 10 } 98 99cssgCfgSsgEnabled OBJECT-TYPE 100 SYNTAX TruthValue 101 MAX-ACCESS read-write 102 STATUS current 103 DESCRIPTION 104 "An indication of whether SSG Service is enabled." 105 ::= { cssgCfgObjects 1 } 106 107cssgCfgAutoDomainMode OBJECT-TYPE 108 SYNTAX INTEGER { 109 disabled(1), 110 basic(2), 111 extended(3) 112 } 113 MAX-ACCESS read-write 114 STATUS current 115 DESCRIPTION 116 "An indication of whether Auto-Domain feature is enabled. 117 This feature allows a user to be automatically connected 118 to a service based on the APN or structured username." 119 ::= { cssgCfgObjects 2 } 120 121 122cssgCfgLocalForwardingEnabled OBJECT-TYPE 123 SYNTAX TruthValue 124 MAX-ACCESS read-write 125 STATUS current 126 DESCRIPTION 127 "An indication of whether Local Forwarding is enabled. 128 This feature enables SSG to forward packets 129 locally between connected subscribers." 130 ::= { cssgCfgObjects 3 } 131 132cssgCfgAutoLogOffMode OBJECT-TYPE 133 SYNTAX INTEGER { 134 disabled(1), 135 icmp(2), 136 arp(3) 137 } 138 MAX-ACCESS read-write 139 STATUS current 140 DESCRIPTION 141 "An indication of whether Auto Logoff feature is enabled. 142 This feature enables SSG to initiate logoff if connectivity 143 to a host is lost. Connectivity to a host is checked using 144 ARP or ICMP ping mechanisms." 145 ::= { cssgCfgObjects 4 } 146 147cssgCfgRadiusProxyEnabled OBJECT-TYPE 148 SYNTAX TruthValue 149 MAX-ACCESS read-write 150 STATUS current 151 DESCRIPTION 152 "An indication of whether Radius-Proxy feature is enabled. 153 This feature allows SSG to act as a generic Radius Proxy 154 for non-SSD clients such as GGSN." 155 ::= { cssgCfgObjects 5 } 156 157cssgCfgTcpRedirectEnabled OBJECT-TYPE 158 SYNTAX TruthValue 159 MAX-ACCESS read-write 160 STATUS current 161 DESCRIPTION 162 "An indication of whether TCP redirect is enabled. This 163 feature redirects certain TCP packets to captive portals." 164 ::= { cssgCfgObjects 6 } 165 166cssgCfgAutoDomainNatEnabled OBJECT-TYPE 167 SYNTAX TruthValue 168 MAX-ACCESS read-write 169 STATUS current 170 DESCRIPTION 171 "An indication of whether NAT(Network Address Translation) 172 is enabled for autodomain users. This feature determines 173 whether the subscriber gets the autodomain service assigned 174 IP Address." 175 ::= { cssgCfgObjects 7 } 176 177cssgCfgPortBundleHostKeyEnabled OBJECT-TYPE 178 SYNTAX TruthValue 179 MAX-ACCESS read-write 180 STATUS current 181 DESCRIPTION 182 "An indication of whether PortBundle-Host Key feature is 183 enabled. This feature enables SESM to identify subscribers 184 based on the PortBundle(combination of IP Address, and a 185 range of ports) assigned by the SSG." 186 ::= { cssgCfgObjects 8 } 187 188cssgCfgTransPassThroughEnabled OBJECT-TYPE 189 SYNTAX TruthValue 190 MAX-ACCESS read-write 191 STATUS current 192 DESCRIPTION 193 "An indication of whether Transparent pass through feature is 194 enabled. This feature allows an unauthenticated subscriber 195 traffic to be routed through SSG in either direction." 196 ::= { cssgCfgObjects 9 } 197 198cssgCfgAutoLogOffInterval OBJECT-TYPE 199 SYNTAX TimeInterval 200 MAX-ACCESS read-write 201 STATUS current 202 DESCRIPTION 203 "The time-interval at which connectivity to a host is checked. 204 If the host is not reachable, SSG logs off the host if 205 auto-logff feature is enabled." 206 ::= { cssgCfgObjects 10 } 207 208cssgCfgAutoLogOffIcmpRetries OBJECT-TYPE 209 SYNTAX Unsigned32 (1..65535) 210 MAX-ACCESS read-write 211 STATUS current 212 DESCRIPTION 213 "The number of ICMP ping retries SSG does to check 214 connectivity to a host." 215 DEFVAL { 2 } 216 ::= { cssgCfgObjects 11 } 217 218cssgCfgMaxServicesPerUser OBJECT-TYPE 219 SYNTAX Unsigned32 (1..20) 220 MAX-ACCESS read-write 221 STATUS current 222 DESCRIPTION 223 "The maximum number of services allowed per user." 224 ::= { cssgCfgObjects 12 } 225 226cssgCfgAccountingEnabled OBJECT-TYPE 227 SYNTAX TruthValue 228 MAX-ACCESS read-write 229 STATUS current 230 DESCRIPTION 231 "An indication of whether Acccounting is enabled in SSG. 232 If enabled, SSG generates Accounting Records and sends to 233 AAA Server." 234 ::= { cssgCfgObjects 13 } 235 236cssgCfgDefaultNetworkType OBJECT-TYPE 237 SYNTAX InetAddressType 238 MAX-ACCESS read-write 239 STATUS current 240 DESCRIPTION 241 "A value that represents the type of the IP Address 242 stored in the object cssgCfgDefaultNetwork." 243 ::= { cssgCfgObjects 14 } 244 245cssgCfgDefaultNetwork OBJECT-TYPE 246 SYNTAX InetAddress 247 MAX-ACCESS read-write 248 STATUS current 249 DESCRIPTION 250 "The IP Address or subnet that users will be able to access 251 without authentication. This is the address where the Cisco 252 SSD/SESM resides." 253 ::= { cssgCfgObjects 15 } 254 255cssgCfgRadiusAuthenPort OBJECT-TYPE 256 SYNTAX CiscoPort 257 MAX-ACCESS read-write 258 STATUS current 259 DESCRIPTION 260 "The port on which SSG receives access request packets from 261 Radius clients." 262 ::= { cssgCfgObjects 16 } 263 264cssgCfgRadiusAccountingPort OBJECT-TYPE 265 SYNTAX CiscoPort 266 MAX-ACCESS read-write 267 STATUS current 268 DESCRIPTION 269 "The port on which SSG receives accounting packets from Radius 270 clients." 271 ::= { cssgCfgObjects 17 } 272 273cssgCfgRadiusFwdAcctPktsEnabled OBJECT-TYPE 274 SYNTAX TruthValue 275 MAX-ACCESS read-write 276 STATUS current 277 DESCRIPTION 278 "An indication of whether SSG forwards Accounting Packets 279 received from Radius Clients to AAA Server." 280 ::= { cssgCfgObjects 18 } 281 282cssgCfgAccountingInterval OBJECT-TYPE 283 SYNTAX Unsigned32 (60..2147483647) 284 UNITS "seconds" 285 MAX-ACCESS read-write 286 STATUS current 287 DESCRIPTION 288 "The interval at which Accounting records are sent to AAA 289 Server." 290 ::= { cssgCfgObjects 19 } 291 292cssgCfgTCPRedirGrpForUnAuthUsers OBJECT-TYPE 293 SYNTAX DisplayString 294 MAX-ACCESS read-write 295 STATUS current 296 DESCRIPTION 297 "The TCP Redirect Group to which Unauthenticated users are 298 directed." 299 ::= { cssgCfgObjects 20 } 300 301cssgCfgTCPRedirGrpForUnAuthServ OBJECT-TYPE 302 SYNTAX DisplayString 303 MAX-ACCESS read-write 304 STATUS current 305 DESCRIPTION 306 "The TCP Redirect Group to which unauthorized service access 307 users are directed." 308 ::= { cssgCfgObjects 21 } 309 310cssgCfgTcpRedirGrpForSMTP OBJECT-TYPE 311 SYNTAX DisplayString 312 MAX-ACCESS read-write 313 STATUS current 314 DESCRIPTION 315 "TCP Redirect Group to which SMTP traffic is redirected." 316 ::= { cssgCfgObjects 22 } 317 318cssgCfgTcpRedirGrpForInitialCapt OBJECT-TYPE 319 SYNTAX DisplayString 320 MAX-ACCESS read-write 321 STATUS current 322 DESCRIPTION 323 "The TCP Redirect Group for initial captivation." 324 ::= { cssgCfgObjects 23 } 325 326cssgCfgTcpRedirGrpForAdvCapt OBJECT-TYPE 327 SYNTAX DisplayString 328 MAX-ACCESS read-write 329 STATUS current 330 DESCRIPTION 331 "The TCP Redirect Group for advertising captivation." 332 ::= { cssgCfgObjects 24 } 333 334cssgCfgRadiusClntRbtNotifEnabled OBJECT-TYPE 335 SYNTAX TruthValue 336 MAX-ACCESS read-write 337 STATUS current 338 DESCRIPTION 339 "An indication of whether SSG generates notification if a 340 Radius Client reboots." 341 DEFVAL { false } 342 ::= { cssgCfgObjects 25 } 343 344cssgCfgAAAServerDownNotifEnabled OBJECT-TYPE 345 SYNTAX TruthValue 346 MAX-ACCESS read-write 347 STATUS current 348 DESCRIPTION 349 "An indication of whether SSG generates notification if 350 connectivity to AAA is lost or if it goes down." 351 DEFVAL { false } 352 ::= { cssgCfgObjects 26 } 353 354cssgCfgTalEnabled OBJECT-TYPE 355 SYNTAX TruthValue 356 MAX-ACCESS read-write 357 STATUS current 358 DESCRIPTION 359 "An indication of whether Transparent Auto Logon feature 360 is enabled on SSG." 361 DEFVAL { false } 362 ::= { cssgCfgObjects 27 } 363 364cssgStatsLoginAttempts OBJECT-TYPE 365 SYNTAX Counter32 366 MAX-ACCESS read-only 367 STATUS current 368 DESCRIPTION 369 "The number of login attempts onto SSG." 370 ::= { cssgStatsObjects 1 } 371 372cssgStatsLoginsSuccessful OBJECT-TYPE 373 SYNTAX Counter32 374 MAX-ACCESS read-only 375 STATUS current 376 DESCRIPTION 377 "The number of successful logins onto SSG." 378 ::= { cssgStatsObjects 2 } 379 380cssgStatsActiveSessions OBJECT-TYPE 381 SYNTAX Gauge32 382 MAX-ACCESS read-only 383 STATUS current 384 DESCRIPTION 385 "The current number of active connections on SSG." 386 ::= { cssgStatsObjects 3 } 387 388cssgStatsActiveHosts OBJECT-TYPE 389 SYNTAX Gauge32 390 MAX-ACCESS read-only 391 STATUS current 392 DESCRIPTION 393 "The current number of active Hosts on SSG." 394 ::= { cssgStatsObjects 4 } 395 396cssgStatsActiveServices OBJECT-TYPE 397 SYNTAX Gauge32 398 MAX-ACCESS read-only 399 STATUS current 400 DESCRIPTION 401 "The current number of active services on SSG." 402 ::= { cssgStatsObjects 5 } 403 404cssgStatsPODs OBJECT-TYPE 405 SYNTAX Counter32 406 MAX-ACCESS read-only 407 STATUS current 408 DESCRIPTION 409 "The number of Packets of Death sent to Radius Client." 410 ::= { cssgStatsObjects 6 } 411 412cssgServiceTable OBJECT-TYPE 413 SYNTAX SEQUENCE OF CssgServiceEntry 414 MAX-ACCESS not-accessible 415 STATUS current 416 DESCRIPTION 417 "A list of SSG Services which subscribers have logged onto. 418 A Service entry in this table is transient data and gets 419 removed when the last subscriber using this Service logs off." 420 ::= { cssgService 1 } 421 422cssgServiceEntry OBJECT-TYPE 423 SYNTAX CssgServiceEntry 424 MAX-ACCESS not-accessible 425 STATUS current 426 DESCRIPTION 427 "Detailed information concerning a Service." 428 INDEX { cssgServiceName } 429 ::= { cssgServiceTable 1 } 430 431CssgServiceEntry ::= SEQUENCE { 432 cssgServiceName DisplayString, 433 cssgServiceMode INTEGER, 434 cssgServiceType INTEGER, 435 cssgServiceIdleTimeout Unsigned32, 436 cssgServiceSessionTimeout Unsigned32, 437 cssgServiceActiveSessions Gauge32, 438 cssgServiceDNSPrimaryIpType InetAddressType, 439 cssgServiceDNSPrimary InetAddress, 440 cssgServiceDNSSecondaryIpType InetAddressType, 441 cssgServiceDNSSecondary InetAddress, 442 cssgServiceUpstreamQOSEnabled TruthValue, 443 cssgServiceDownStreamQOSEnabled TruthValue, 444 cssgServiceOpenGarden TruthValue, 445 cssgServicePrepaid TruthValue 446} 447 448cssgServiceName OBJECT-TYPE 449 SYNTAX DisplayString (SIZE(1..32)) 450 MAX-ACCESS not-accessible 451 STATUS current 452 DESCRIPTION 453 "The name of the service profile." 454 ::= { cssgServiceEntry 1 } 455 456cssgServiceMode OBJECT-TYPE 457 SYNTAX INTEGER { 458 unknown(1), 459 concurrent(2), 460 sequential(3) 461 } 462 MAX-ACCESS read-only 463 STATUS current 464 DESCRIPTION 465 "An optional attribute which defines whether the user is able 466 to log in to a service while simultaneously connected to 467 other services (concurrent) or cannot access any other 468 services while using this service (sequential). 469 The default is concurrent." 470 DEFVAL { concurrent } 471 ::= { cssgServiceEntry 2 } 472 473cssgServiceType OBJECT-TYPE 474 SYNTAX INTEGER { 475 unknown(1), 476 passthrough(2), 477 tunnel(3), 478 proxy(4) 479 } 480 MAX-ACCESS read-only 481 STATUS current 482 DESCRIPTION 483 "This attribute indicates the type of service. 484 485 pass-through - Indicates that the user authentication is 486 not done during logon to this service. 487 This is the default. 488 489 tunnel - Indicates that this is a L2TP tunneled 490 service. 491 492 proxy - Indicates that the SSG performs user 493 authentication during logon to this 494 service." 495 496 ::= { cssgServiceEntry 3 } 497 498cssgServiceIdleTimeout OBJECT-TYPE 499 SYNTAX Unsigned32 500 UNITS "seconds" 501 MAX-ACCESS read-only 502 STATUS current 503 DESCRIPTION 504 "The idle timeout of a session in seconds. A value of 0 505 indicates that there is no timeout." 506 ::= { cssgServiceEntry 4 } 507 508cssgServiceSessionTimeout OBJECT-TYPE 509 SYNTAX Unsigned32 510 UNITS "seconds" 511 MAX-ACCESS read-only 512 STATUS current 513 DESCRIPTION 514 "The maximum length of a session in seconds. A value of 0 515 indicates that there is no timeout." 516 ::= { cssgServiceEntry 5 } 517 518cssgServiceActiveSessions OBJECT-TYPE 519 SYNTAX Gauge32 520 MAX-ACCESS read-only 521 STATUS current 522 DESCRIPTION 523 "The active number of connections to this service." 524 ::= { cssgServiceEntry 6 } 525 526cssgServiceDNSPrimaryIpType OBJECT-TYPE 527 SYNTAX InetAddressType 528 MAX-ACCESS read-only 529 STATUS current 530 DESCRIPTION 531 "The IP address type of Primary DNS Server for this service." 532 ::= { cssgServiceEntry 7 } 533 534cssgServiceDNSPrimary OBJECT-TYPE 535 SYNTAX InetAddress 536 MAX-ACCESS read-only 537 STATUS current 538 DESCRIPTION 539 "The primary DNS server for this service." 540 ::= { cssgServiceEntry 8 } 541 542cssgServiceDNSSecondaryIpType OBJECT-TYPE 543 SYNTAX InetAddressType 544 MAX-ACCESS read-only 545 STATUS current 546 DESCRIPTION 547 "The IP Address type of Secondary DNS Server for this service." 548 ::= { cssgServiceEntry 9 } 549 550cssgServiceDNSSecondary OBJECT-TYPE 551 SYNTAX InetAddress 552 MAX-ACCESS read-only 553 STATUS current 554 DESCRIPTION 555 "The Secondary DNS Server for this service." 556 ::= { cssgServiceEntry 10 } 557 558cssgServiceUpstreamQOSEnabled OBJECT-TYPE 559 SYNTAX TruthValue 560 MAX-ACCESS read-only 561 STATUS current 562 DESCRIPTION 563 "An indication of whether upstream policing is enabled for 564 this service." 565 REFERENCE 566 "The rate-limit features of Committed Access Rate(CAR)." 567 ::= { cssgServiceEntry 11 } 568 569cssgServiceDownStreamQOSEnabled OBJECT-TYPE 570 SYNTAX TruthValue 571 MAX-ACCESS read-only 572 STATUS current 573 DESCRIPTION 574 "An indication of whether downstream policing is enabled for 575 this service." 576 REFERENCE 577 "The rate-limit features of Committed Access Rate(CAR)." 578 ::= { cssgServiceEntry 12 } 579 580cssgServiceOpenGarden OBJECT-TYPE 581 SYNTAX TruthValue 582 MAX-ACCESS read-only 583 STATUS current 584 DESCRIPTION 585 "An indication of whether this is a Open Garden service. An 586 Open Garden Service is a service that can be accessed without 587 authentication." 588 ::= { cssgServiceEntry 13 } 589 590cssgServicePrepaid OBJECT-TYPE 591 SYNTAX TruthValue 592 MAX-ACCESS read-only 593 STATUS current 594 DESCRIPTION 595 "An indication of whether this service is a prepaid service." 596 ::= { cssgServiceEntry 14 } 597 598cssgServiceRouteTable OBJECT-TYPE 599 SYNTAX SEQUENCE OF CssgServiceRouteEntry 600 MAX-ACCESS not-accessible 601 STATUS current 602 DESCRIPTION 603 "A list of route entries that belong to a particular service." 604 ::= { cssgService 2 } 605 606cssgServiceRouteEntry OBJECT-TYPE 607 SYNTAX CssgServiceRouteEntry 608 MAX-ACCESS not-accessible 609 STATUS current 610 DESCRIPTION 611 "An entry in Services Route Table." 612 INDEX { cssgServiceName, 613 cssgServiceRouteType, 614 cssgServiceRouteAddr, 615 cssgServiceRouteMaskType, 616 cssgServiceRouteMask 617 } 618 ::= { cssgServiceRouteTable 1 } 619 620CssgServiceRouteEntry ::= SEQUENCE { 621 cssgServiceRouteType InetAddressType, 622 cssgServiceRouteAddr InetAddress, 623 cssgServiceRouteMaskType InetAddressType, 624 cssgServiceRouteMask InetAddress, 625 cssgServiceRoutePermission INTEGER 626} 627 628cssgServiceRouteType OBJECT-TYPE 629 SYNTAX InetAddressType 630 MAX-ACCESS not-accessible 631 STATUS current 632 DESCRIPTION 633 "A value that represents the type of the address stored in 634 cssgServiceServRouteAddr." 635 ::= { cssgServiceRouteEntry 1 } 636 637cssgServiceRouteAddr OBJECT-TYPE 638 SYNTAX InetAddress 639 MAX-ACCESS not-accessible 640 STATUS current 641 DESCRIPTION 642 "The IP Address of the networks available to the user of 643 this service." 644 ::= { cssgServiceRouteEntry 2 } 645 646cssgServiceRouteMaskType OBJECT-TYPE 647 SYNTAX InetAddressType 648 MAX-ACCESS not-accessible 649 STATUS current 650 DESCRIPTION 651 "A value that represents the type of the address stored in 652 cssgServiceServRouteMask." 653 ::= { cssgServiceRouteEntry 3 } 654 655cssgServiceRouteMask OBJECT-TYPE 656 SYNTAX InetAddress 657 MAX-ACCESS not-accessible 658 STATUS current 659 DESCRIPTION 660 "Indicate the mask to be ANDed with the destination address 661 before being compared to the value in cssgServiceRouteAddr." 662 ::= { cssgServiceRouteEntry 4 } 663 664cssgServiceRoutePermission OBJECT-TYPE 665 SYNTAX INTEGER { 666 permit(1), 667 deny(2) 668 } 669 MAX-ACCESS read-only 670 STATUS current 671 DESCRIPTION 672 "Indicates the action on packets, when the destination 673 address matches with the cssgServiceRouteAddr." 674 ::= { cssgServiceRouteEntry 5 } 675 676 677cssgExcludedAPNTable OBJECT-TYPE 678 SYNTAX SEQUENCE OF CssgExcludedAPNEntry 679 MAX-ACCESS not-accessible 680 STATUS current 681 DESCRIPTION 682 "A list of APNs excluded from using auto-main feature of SSG." 683 ::= { cssgExcludedAPN 1 } 684 685cssgExcludedAPNEntry OBJECT-TYPE 686 SYNTAX CssgExcludedAPNEntry 687 MAX-ACCESS not-accessible 688 STATUS current 689 DESCRIPTION 690 "Information concerning an APN." 691 INDEX { cssgExcludedAPNName } 692 ::= { cssgExcludedAPNTable 1 } 693 694CssgExcludedAPNEntry ::= SEQUENCE { 695 696 cssgExcludedAPNName DisplayString, 697 cssgExcludedAPNRowStatus RowStatus 698} 699 700cssgExcludedAPNName OBJECT-TYPE 701 SYNTAX DisplayString (SIZE(1..32)) 702 MAX-ACCESS not-accessible 703 STATUS current 704 DESCRIPTION 705 "The name of the excluded APN." 706 ::= { cssgExcludedAPNEntry 1 } 707 708cssgExcludedAPNRowStatus OBJECT-TYPE 709 SYNTAX RowStatus 710 MAX-ACCESS read-create 711 STATUS current 712 DESCRIPTION 713 "The status of this table entry. 714 715 This object can also be used to create or delete conceptual 716 row in this table. 717 718 To create a row, set this object to 'createAndGo'. 719 There are no mandatory objects in a create request. 720 721 To delete a row, set this object to 'destroy'." 722 ::= { cssgExcludedAPNEntry 2 } 723 724cssgExcludedDomainTable OBJECT-TYPE 725 SYNTAX SEQUENCE OF CssgExcludedDomainEntry 726 MAX-ACCESS not-accessible 727 STATUS current 728 DESCRIPTION 729 "A list of Domain names excluded from using auto-domain 730 feature of SSG." 731 ::= { cssgExcludedDomain 1 } 732 733cssgExcludedDomainEntry OBJECT-TYPE 734 SYNTAX CssgExcludedDomainEntry 735 MAX-ACCESS not-accessible 736 STATUS current 737 DESCRIPTION 738 "Information concerning an excluded Domain." 739 INDEX { cssgExcludedDomainName } 740 ::= { cssgExcludedDomainTable 1 } 741 742CssgExcludedDomainEntry ::= SEQUENCE { 743 744 cssgExcludedDomainName DisplayString, 745 cssgExcludedDomainRowStatus RowStatus 746} 747 748cssgExcludedDomainName OBJECT-TYPE 749 SYNTAX DisplayString (SIZE(1..32)) 750 MAX-ACCESS not-accessible 751 STATUS current 752 DESCRIPTION 753 "The name of the excluded Domain." 754 ::= { cssgExcludedDomainEntry 1 } 755 756cssgExcludedDomainRowStatus OBJECT-TYPE 757 SYNTAX RowStatus 758 MAX-ACCESS read-create 759 STATUS current 760 DESCRIPTION 761 "The status of this table entry. 762 763 This object can also be used to create or delete conceptual 764 row in this table. 765 766 To create a row, set this object to 'createAndGo'. 767 There are no mandatory objects in a create request. 768 769 To delete a row, set this object to 'destroy'." 770 ::= { cssgExcludedDomainEntry 2 } 771 772cssgServiceIfBindTable OBJECT-TYPE 773 SYNTAX SEQUENCE OF CssgServiceIfBindEntry 774 MAX-ACCESS not-accessible 775 STATUS current 776 DESCRIPTION 777 "In SSG, a Service can be configured to use a particular 778 interface/ip address. This table is a list of services and 779 the interface to which they are bound." 780 ::= { cssgServiceIfBinds 1 } 781 782cssgServiceIfBindEntry OBJECT-TYPE 783 SYNTAX CssgServiceIfBindEntry 784 MAX-ACCESS not-accessible 785 STATUS current 786 DESCRIPTION 787 "A Interface-Service Bind entry." 788 INDEX { cssgServiceName } 789 ::= { cssgServiceIfBindTable 1 } 790 791CssgServiceIfBindEntry ::= SEQUENCE { 792 cssgServiceIfIndex InterfaceIndex, 793 cssgServiceIfRowStatus RowStatus 794} 795 796cssgServiceIfIndex OBJECT-TYPE 797 SYNTAX InterfaceIndex 798 MAX-ACCESS read-create 799 STATUS current 800 DESCRIPTION 801 "The interface index to which the Service is bound." 802 ::= { cssgServiceIfBindEntry 1 } 803 804cssgServiceIfRowStatus OBJECT-TYPE 805 SYNTAX RowStatus 806 MAX-ACCESS read-create 807 STATUS current 808 DESCRIPTION 809 "The status of this table entry. 810 811 This object can also be used to create or delete conceptual 812 row in this table. 813 814 To create a row, set this object to 'createAndGo'. 815 cssgServiceIfIndex is a mandatory object for a create request. 816 817 To delete a row, set this object to 'destroy'." 818 ::= { cssgServiceIfBindEntry 2 } 819 820cssgTcpRedirectGrpTable OBJECT-TYPE 821 SYNTAX SEQUENCE OF CssgTcpRedirectGrpEntry 822 MAX-ACCESS not-accessible 823 STATUS current 824 DESCRIPTION 825 "A list of TCP Redirect group. A TCP Redirect group is 826 a list of one more servers that make up a captive portal 827 group." 828 ::= { cssgTcpRedirect 1 } 829 830cssgTcpRedirectGrpEntry OBJECT-TYPE 831 SYNTAX CssgTcpRedirectGrpEntry 832 MAX-ACCESS not-accessible 833 STATUS current 834 DESCRIPTION 835 "Detailed information concerning a TCP Redirect group." 836 INDEX { cssgTcpRedirectGrpName, 837 cssgTcpRedirectGrpServerAddrType, 838 cssgTcpRedirectGrpServerAddr, 839 cssgTcpRedirectGrpServerPort 840 } 841 ::= { cssgTcpRedirectGrpTable 1 } 842 843CssgTcpRedirectGrpEntry ::= SEQUENCE { 844 cssgTcpRedirectGrpName DisplayString, 845 cssgTcpRedirectGrpServerAddrType InetAddressType, 846 cssgTcpRedirectGrpServerAddr InetAddress, 847 cssgTcpRedirectGrpServerPort CiscoPort, 848 cssgTcpRedirectGrpRowStatus RowStatus 849} 850 851cssgTcpRedirectGrpName OBJECT-TYPE 852 SYNTAX DisplayString (SIZE(1..32)) 853 MAX-ACCESS not-accessible 854 STATUS current 855 DESCRIPTION 856 "The name of the redirect-group." 857 ::= { cssgTcpRedirectGrpEntry 1 } 858 859cssgTcpRedirectGrpServerAddrType OBJECT-TYPE 860 SYNTAX InetAddressType 861 MAX-ACCESS not-accessible 862 STATUS current 863 DESCRIPTION 864 "A value that represents the typeof the address stored in 865 cssgTcpRedirectGrpServerAddr object." 866 ::= { cssgTcpRedirectGrpEntry 2 } 867 868cssgTcpRedirectGrpServerAddr OBJECT-TYPE 869 SYNTAX InetAddress 870 MAX-ACCESS not-accessible 871 STATUS current 872 DESCRIPTION 873 "The IP address of the server in the server-group." 874 ::= { cssgTcpRedirectGrpEntry 3 } 875 876cssgTcpRedirectGrpServerPort OBJECT-TYPE 877 SYNTAX CiscoPort 878 MAX-ACCESS not-accessible 879 STATUS current 880 DESCRIPTION 881 "The port of the server to which TCP traffic to be redirected." 882 ::= { cssgTcpRedirectGrpEntry 4 } 883 884cssgTcpRedirectGrpRowStatus OBJECT-TYPE 885 SYNTAX RowStatus 886 MAX-ACCESS read-create 887 STATUS current 888 DESCRIPTION 889 "The status of this table entry. 890 891 This object can also be used to create or delete conceptual 892 row in this table. 893 894 To create a row, set this object to 'createAndGo'. 895 There are no mandatory objects in a create request. 896 897 To delete a row, set this object to 'destroy'." 898 ::= { cssgTcpRedirectGrpEntry 5 } 899 900cssgNetworkGrpTable OBJECT-TYPE 901 SYNTAX SEQUENCE OF CssgNetworkGrpEntry 902 MAX-ACCESS not-accessible 903 STATUS current 904 DESCRIPTION 905 "A list of network groups. When a network-group, a list of 906 networks, associated with a TCP Redirect group, subscribers 907 attempting to connect to these networks will be redirected to 908 the TCP redirect group." 909 ::= { cssgTcpRedirect 2 } 910 911cssgNetworkGrpEntry OBJECT-TYPE 912 SYNTAX CssgNetworkGrpEntry 913 MAX-ACCESS not-accessible 914 STATUS current 915 DESCRIPTION 916 "Detailed information concerning a network group entry." 917 INDEX { cssgNetworkGrpName, 918 cssgNetworkGrpNetIpType, 919 cssgNetworkGrpNetIpAddr, 920 cssgNetworkGrpNetMaskType, 921 cssgNetworkGrpNetMask 922 } 923 ::= { cssgNetworkGrpTable 1 } 924 925CssgNetworkGrpEntry ::= SEQUENCE { 926 cssgNetworkGrpName DisplayString, 927 cssgNetworkGrpNetIpType InetAddressType, 928 cssgNetworkGrpNetIpAddr InetAddress, 929 cssgNetworkGrpNetMaskType InetAddressType, 930 cssgNetworkGrpNetMask InetAddress, 931 cssgNetworkGrpNetRowStatus RowStatus 932} 933 934cssgNetworkGrpName OBJECT-TYPE 935 SYNTAX DisplayString (SIZE(1..32)) 936 MAX-ACCESS not-accessible 937 STATUS current 938 DESCRIPTION 939 "The name of the network group. A network group, which is a 940 group of networks, is associated with a Server group for 941 traffic redirection i.e., packets to the networks in the network 942 group will be directed to the servers in the server group." 943 ::= { cssgNetworkGrpEntry 1 } 944 945cssgNetworkGrpNetIpType OBJECT-TYPE 946 SYNTAX InetAddressType 947 MAX-ACCESS not-accessible 948 STATUS current 949 DESCRIPTION 950 "A value that represents the type of the IP Address in the 951 object cssgNetworkGrpNetIpAddr." 952 ::= { cssgNetworkGrpEntry 2 } 953 954cssgNetworkGrpNetIpAddr OBJECT-TYPE 955 SYNTAX InetAddress 956 MAX-ACCESS not-accessible 957 STATUS current 958 DESCRIPTION 959 "The IP address of a network in this network group." 960 ::= { cssgNetworkGrpEntry 3 } 961 962cssgNetworkGrpNetMaskType OBJECT-TYPE 963 SYNTAX InetAddressType 964 MAX-ACCESS not-accessible 965 STATUS current 966 DESCRIPTION 967 "A value that represents the type of the address stored in 968 cssgNetworkGrpNetMask." 969 ::= { cssgNetworkGrpEntry 4 } 970 971cssgNetworkGrpNetMask OBJECT-TYPE 972 SYNTAX InetAddress 973 MAX-ACCESS not-accessible 974 STATUS current 975 DESCRIPTION 976 "Indicate the mask to be ANDed with the destination address 977 before being compared to the value in cssgNetworkGrpNetIpAddr." 978 ::= { cssgNetworkGrpEntry 5 } 979 980cssgNetworkGrpNetRowStatus OBJECT-TYPE 981 SYNTAX RowStatus 982 MAX-ACCESS read-create 983 STATUS current 984 DESCRIPTION 985 "The status of this table entry. 986 987 This object can also be used to create or delete conceptual 988 row in this table. 989 990 To create a row, set this object to 'createAndGo'. 991 There are no mandatory objects in a create request. 992 993 To delete a row, set this object to 'destroy'." 994 ::= { cssgNetworkGrpEntry 6 } 995 996cssgPortGrpTable OBJECT-TYPE 997 SYNTAX SEQUENCE OF CssgPortGrpEntry 998 MAX-ACCESS not-accessible 999 STATUS current 1000 DESCRIPTION 1001 "A list of port groups." 1002 ::= { cssgTcpRedirect 3 } 1003 1004cssgPortGrpEntry OBJECT-TYPE 1005 SYNTAX CssgPortGrpEntry 1006 MAX-ACCESS not-accessible 1007 STATUS current 1008 DESCRIPTION 1009 "A Port group entry." 1010 INDEX { cssgPortGrpName, cssgPortGrpPortNo } 1011 ::= { cssgPortGrpTable 1 } 1012 1013CssgPortGrpEntry ::= SEQUENCE { 1014 cssgPortGrpName DisplayString, 1015 cssgPortGrpPortNo CiscoPort, 1016 cssgPortGrpPortRowStatus RowStatus 1017} 1018 1019cssgPortGrpName OBJECT-TYPE 1020 SYNTAX DisplayString (SIZE(1..32)) 1021 MAX-ACCESS not-accessible 1022 STATUS current 1023 DESCRIPTION 1024 "The name of the port group. The port group defines a list 1025 of ports traffic to whom can be redirected to a TCP Redirect 1026 group." 1027 ::= { cssgPortGrpEntry 1 } 1028 1029cssgPortGrpPortNo OBJECT-TYPE 1030 SYNTAX CiscoPort 1031 MAX-ACCESS not-accessible 1032 STATUS current 1033 DESCRIPTION 1034 "A port in the port group." 1035 ::= { cssgPortGrpEntry 2 } 1036 1037cssgPortGrpPortRowStatus OBJECT-TYPE 1038 SYNTAX RowStatus 1039 MAX-ACCESS read-create 1040 STATUS current 1041 DESCRIPTION 1042 "The status of this table entry. 1043 1044 This object can also be used to create or delete conceptual 1045 row in this table. 1046 1047 To create a row, set this object to 'createAndGo'. 1048 1049 To delete a row, set this object to 'destroy'." 1050 ::= { cssgPortGrpEntry 3 } 1051 1052cssgTcpRedirNetworkGrpMapTable OBJECT-TYPE 1053 SYNTAX SEQUENCE OF CssgTcpRedirNetworkGrpMapEntry 1054 MAX-ACCESS not-accessible 1055 STATUS current 1056 DESCRIPTION 1057 "A list of Network and Server Group associations." 1058 ::= { cssgTcpRedirect 4 } 1059 1060cssgTcpRedirNetworkGrpMapEntry OBJECT-TYPE 1061 SYNTAX CssgTcpRedirNetworkGrpMapEntry 1062 MAX-ACCESS not-accessible 1063 STATUS current 1064 DESCRIPTION 1065 "Detailed information concerning a Server and Network 1066 group association." 1067 INDEX { cssgTcpRedirectGrpName } 1068 ::= { cssgTcpRedirNetworkGrpMapTable 1 } 1069 1070CssgTcpRedirNetworkGrpMapEntry ::= SEQUENCE { 1071 cssgTcpRedirNetworkMapGrpName DisplayString, 1072 cssgTcpRedirNetworkGrpMapRowStat RowStatus 1073} 1074 1075cssgTcpRedirNetworkMapGrpName OBJECT-TYPE 1076 SYNTAX DisplayString (SIZE(1..32)) 1077 MAX-ACCESS read-create 1078 STATUS current 1079 DESCRIPTION 1080 "A network group name. A network group is a set of network 1081 groups that can be associated with TCP Redirect for traffic 1082 redirection." 1083 ::= { cssgTcpRedirNetworkGrpMapEntry 1 } 1084 1085cssgTcpRedirNetworkGrpMapRowStat OBJECT-TYPE 1086 SYNTAX RowStatus 1087 MAX-ACCESS read-create 1088 STATUS current 1089 DESCRIPTION 1090 "The status of this table entry. 1091 1092 This object can also be used to create or delete conceptual 1093 row in this table. 1094 1095 To create a row, set this object to 'createAndGo'. 1096 There are no mandatory objects in a create request. 1097 1098 To delete a row, set this object to 'destroy'." 1099 ::= { cssgTcpRedirNetworkGrpMapEntry 2 } 1100 1101cssgTcpRedirPortGrpMapTable OBJECT-TYPE 1102 SYNTAX SEQUENCE OF CssgTcpRedirPortGrpMapEntry 1103 MAX-ACCESS not-accessible 1104 STATUS current 1105 DESCRIPTION 1106 "A list of Server and Port Group associations." 1107 ::= { cssgTcpRedirect 5 } 1108 1109cssgTcpRedirPortGrpMapEntry OBJECT-TYPE 1110 SYNTAX CssgTcpRedirPortGrpMapEntry 1111 MAX-ACCESS not-accessible 1112 STATUS current 1113 DESCRIPTION 1114 "An instance of Server and Port group association." 1115 INDEX { cssgTcpRedirectGrpName } 1116 ::= { cssgTcpRedirPortGrpMapTable 1 } 1117 1118CssgTcpRedirPortGrpMapEntry ::= SEQUENCE { 1119 cssgTcpRedirPortMapGrpName DisplayString, 1120 cssgTcpRedirPortGrpMapRowStat RowStatus 1121} 1122 1123cssgTcpRedirPortMapGrpName OBJECT-TYPE 1124 SYNTAX DisplayString (SIZE(1..32)) 1125 MAX-ACCESS read-create 1126 STATUS current 1127 DESCRIPTION 1128 "The name of the Port Group. A Port Group is a set of ports 1129 that can be associated with a TCP Redirect Group for traffic 1130 redirection." 1131 ::= { cssgTcpRedirPortGrpMapEntry 1 } 1132 1133cssgTcpRedirPortGrpMapRowStat OBJECT-TYPE 1134 SYNTAX RowStatus 1135 MAX-ACCESS read-create 1136 STATUS current 1137 DESCRIPTION 1138 "The status of this table entry. 1139 1140 This object can also be used to create or delete conceptual 1141 row in this table. 1142 1143 To create a row, set this object to 'createAndGo'. 1144 There are no mandatory objects in a create request. 1145 1146 To delete a row, set this object to 'destroy'." 1147 ::= { cssgTcpRedirPortGrpMapEntry 2 } 1148 1149 1150cssgTcpRedirPortNoMapTable OBJECT-TYPE 1151 SYNTAX SEQUENCE OF CssgTcpRedirPortNoMapEntry 1152 MAX-ACCESS not-accessible 1153 STATUS current 1154 DESCRIPTION 1155 "A list of Ports nos and the corresponding Server group 1156 which they are associated with." 1157 ::= { cssgTcpRedirect 6 } 1158 1159cssgTcpRedirPortNoMapEntry OBJECT-TYPE 1160 SYNTAX CssgTcpRedirPortNoMapEntry 1161 MAX-ACCESS not-accessible 1162 STATUS current 1163 DESCRIPTION 1164 "An instance of a Server group and Port association." 1165 INDEX { cssgTcpRedirectGrpName } 1166 ::= { cssgTcpRedirPortNoMapTable 1 } 1167 1168CssgTcpRedirPortNoMapEntry ::= SEQUENCE { 1169 cssgTcpRedirPortNo CiscoPort, 1170 cssgTcpRedirPortNoMapRowStat RowStatus 1171} 1172 1173cssgTcpRedirPortNo OBJECT-TYPE 1174 SYNTAX CiscoPort 1175 MAX-ACCESS read-create 1176 STATUS current 1177 DESCRIPTION 1178 "The Port No associated with the Service Group name." 1179 ::= { cssgTcpRedirPortNoMapEntry 1 } 1180 1181cssgTcpRedirPortNoMapRowStat OBJECT-TYPE 1182 SYNTAX RowStatus 1183 MAX-ACCESS read-create 1184 STATUS current 1185 DESCRIPTION 1186 "The status of this table entry. 1187 1188 This object can also be used to create or delete conceptual 1189 row in this table. 1190 1191 To create a row, set this object to 'createAndGo'. 1192 cssgTcpRedirPortNo is a mandatory object for a create request. 1193 1194 To delete a row, set this object to 'destroy'." 1195 ::= { cssgTcpRedirPortNoMapEntry 2 } 1196 1197cssgRadiusClientTable OBJECT-TYPE 1198 SYNTAX SEQUENCE OF CssgRadiusClientEntry 1199 MAX-ACCESS not-accessible 1200 STATUS current 1201 DESCRIPTION 1202 "A list of non-SSD clients to which SSG act as Radius 1203 proxy." 1204 ::= { cssgRadiusClients 1 } 1205 1206cssgRadiusClientEntry OBJECT-TYPE 1207 SYNTAX CssgRadiusClientEntry 1208 MAX-ACCESS not-accessible 1209 STATUS current 1210 DESCRIPTION 1211 "Detailed information concerning a Radius client entry." 1212 INDEX { 1213 cssgRadiusClientAddrType, 1214 cssgRadiusClientAddr 1215 } 1216 ::= { cssgRadiusClientTable 1 } 1217 1218CssgRadiusClientEntry ::= SEQUENCE { 1219 1220 cssgRadiusClientAddrType InetAddressType, 1221 cssgRadiusClientAddr InetAddress, 1222 cssgRadiusClientRowStatus RowStatus 1223} 1224 1225cssgRadiusClientAddrType OBJECT-TYPE 1226 SYNTAX InetAddressType 1227 MAX-ACCESS not-accessible 1228 STATUS current 1229 DESCRIPTION 1230 "The type of the address stored in cssgRadiusClientAddr." 1231 ::= { cssgRadiusClientEntry 1 } 1232 1233cssgRadiusClientAddr OBJECT-TYPE 1234 SYNTAX InetAddress 1235 MAX-ACCESS not-accessible 1236 STATUS current 1237 DESCRIPTION 1238 "The network layer address of the Radius client to which 1239 SSG acts as Radius Proxy." 1240 ::= { cssgRadiusClientEntry 2 } 1241 1242cssgRadiusClientRowStatus OBJECT-TYPE 1243 SYNTAX RowStatus 1244 MAX-ACCESS read-create 1245 STATUS current 1246 DESCRIPTION 1247 "The status of this table entry. 1248 1249 This object can also be used to create or delete conceptual 1250 row in this table. 1251 1252 To create a row, set this object to 'createAndGo'. 1253 There are no mandatory objects in a create request. 1254 1255 To delete a row, set this object to 'destroy'." 1256 ::= { cssgRadiusClientEntry 3 } 1257 1258cssgPortMapLength OBJECT-TYPE 1259 SYNTAX Unsigned32 1260 MAX-ACCESS read-write 1261 STATUS current 1262 DESCRIPTION 1263 "The length of the port-bundle i.e, no of ports in a bundle." 1264 ::= { cssgPortMap 1 } 1265 1266cssgPortMapTable OBJECT-TYPE 1267 SYNTAX SEQUENCE OF CssgPortMapEntry 1268 MAX-ACCESS not-accessible 1269 STATUS current 1270 DESCRIPTION 1271 "The list of TCP Port-maps." 1272 ::= { cssgPortMap 2 } 1273 1274cssgPortMapEntry OBJECT-TYPE 1275 SYNTAX CssgPortMapEntry 1276 MAX-ACCESS not-accessible 1277 STATUS current 1278 DESCRIPTION 1279 "An entry in the cssgPortMapTable." 1280 INDEX { 1281 cssgPortMapSourceIpType, 1282 cssgPortMapSourceIp 1283 } 1284 ::= { cssgPortMapTable 1 } 1285 1286CssgPortMapEntry ::= SEQUENCE { 1287 1288 cssgPortMapSourceIpType InetAddressType, 1289 cssgPortMapSourceIp InetAddress, 1290 cssgPortMapPortRangeFrom CiscoPort, 1291 cssgPortMapPortRangeTo CiscoPort, 1292 cssgPortMapRowStatus RowStatus 1293} 1294 1295cssgPortMapSourceIpType OBJECT-TYPE 1296 SYNTAX InetAddressType 1297 MAX-ACCESS not-accessible 1298 STATUS current 1299 DESCRIPTION 1300 "A value that represents the type of the IP address stored 1301 in cssgPortMapSourceIP object." 1302 ::= { cssgPortMapEntry 1 } 1303 1304cssgPortMapSourceIp OBJECT-TYPE 1305 SYNTAX InetAddress 1306 MAX-ACCESS not-accessible 1307 STATUS current 1308 DESCRIPTION 1309 "Specifies SSG source IP addresses to be used 1310 while NATting packets from downstream traffic i.e., 1311 traffic from Subscriber to SSG." 1312 ::= { cssgPortMapEntry 2 } 1313 1314cssgPortMapPortRangeFrom OBJECT-TYPE 1315 SYNTAX CiscoPort 1316 MAX-ACCESS read-create 1317 STATUS current 1318 DESCRIPTION 1319 "The lower limit of the range ports in the Port Map." 1320 ::= { cssgPortMapEntry 3 } 1321 1322cssgPortMapPortRangeTo OBJECT-TYPE 1323 SYNTAX CiscoPort 1324 MAX-ACCESS read-create 1325 STATUS current 1326 DESCRIPTION 1327 "The upper limit of the range ports in the Port Map." 1328 ::= { cssgPortMapEntry 4 } 1329 1330 1331cssgPortMapRowStatus OBJECT-TYPE 1332 SYNTAX RowStatus 1333 MAX-ACCESS read-create 1334 STATUS current 1335 DESCRIPTION 1336 "The status of this table entry. 1337 1338 This object can also be used to create or delete conceptual 1339 row in this table. 1340 1341 To create a row, set this object to 'createAndGo'. 1342 cssgPortMapPortRangeFrom and cssgPortMapPortRangeTo are 1343 mandatory objects in a create request. 1344 1345 To delete a row, set this object to 'destroy'." 1346 ::= { cssgPortMapEntry 5 } 1347 1348cssgTalWaitingForAuthUsers OBJECT-TYPE 1349 SYNTAX Gauge32 1350 MAX-ACCESS read-only 1351 STATUS current 1352 DESCRIPTION 1353 "The number of currently existing users waiting for 1354 authorization." 1355 ::= { cssgTal 1 } 1356 1357cssgTalUnidentifiedUsers OBJECT-TYPE 1358 SYNTAX Gauge32 1359 MAX-ACCESS read-only 1360 STATUS current 1361 DESCRIPTION 1362 "The number of currently existing unidentified users. These 1363 are users for which there was no response received from AAA 1364 and hence it is not clear if they are valid users." 1365 ::= { cssgTal 2 } 1366 1367cssgTalSuspectUsers OBJECT-TYPE 1368 SYNTAX Gauge32 1369 MAX-ACCESS read-only 1370 STATUS current 1371 DESCRIPTION 1372 "The number of currently existing Suspect Users." 1373 ::= { cssgTal 3 } 1374 1375cssgTalPassthroughUsers OBJECT-TYPE 1376 SYNTAX Gauge32 1377 MAX-ACCESS read-only 1378 STATUS current 1379 DESCRIPTION 1380 "The number of currently existing transparent pass-through 1381 users." 1382 ::= { cssgTal 4 } 1383 1384cssgTalMaxAuthRate OBJECT-TYPE 1385 SYNTAX Unsigned32 1386 MAX-ACCESS read-only 1387 STATUS current 1388 DESCRIPTION 1389 "Maximum rate of authorization requests per second. 1390 At a given time, the maximum rate of authorization requests 1391 will overwrite the previous value." 1392 ::= { cssgTal 5 } 1393 1394cssgTalMaxAuthRateTimestamp OBJECT-TYPE 1395 SYNTAX DateAndTime 1396 MAX-ACCESS read-only 1397 STATUS current 1398 DESCRIPTION 1399 "This is the local time on the SSG when the Maximum rate 1400 of authorization requests per second, indicated by 1401 cssgTalMaxAuthRate, was recorded." 1402 ::= { cssgTal 6 } 1403 1404cssgTalMinAuthRate OBJECT-TYPE 1405 SYNTAX Unsigned32 1406 MAX-ACCESS read-only 1407 STATUS current 1408 DESCRIPTION 1409 "Minimum rate of authorization requests per second. 1410 At a given time, the minimum rate of authorization 1411 requests will overwrite the previous value." 1412 ::= { cssgTal 7 } 1413 1414cssgTalMinAuthRateTimestamp OBJECT-TYPE 1415 SYNTAX DateAndTime 1416 MAX-ACCESS read-only 1417 STATUS current 1418 DESCRIPTION 1419 "This is the local time on the SSG when the Minimum rate 1420 of authorization requests per second, indicated by 1421 cssgTalMinAuthRate, was recorded." 1422 ::= { cssgTal 8 } 1423 1424cssgTalCurrentAuthRate OBJECT-TYPE 1425 SYNTAX Unsigned32 1426 MAX-ACCESS read-only 1427 STATUS current 1428 DESCRIPTION 1429 "The last recorded rate of authorization requests per second, 1430 on SSG." 1431 ::= { cssgTal 9 } 1432 1433cssgTalCurrentAuthRateTimestamp OBJECT-TYPE 1434 SYNTAX DateAndTime 1435 MAX-ACCESS read-only 1436 STATUS current 1437 DESCRIPTION 1438 "This is the local time on the SSG when cssgTalCurrentAuthRate, 1439 was recorded." 1440 ::= { cssgTal 10 } 1441 1442cssgTalResetAuthRates OBJECT-TYPE 1443 SYNTAX INTEGER { 1444 unknown(1), 1445 reset(2) 1446 } 1447 MAX-ACCESS read-write 1448 STATUS current 1449 DESCRIPTION 1450 "Setting this variable to 'reset' indicates that the Minimum 1451 and Maximum rates of authorization would be reset to the 1452 last recorded rate of authorization requests per second. 1453 Setting it to 'unknown' will not result in any changes. 1454 An snmp-get on this value will always return 'unknown'." 1455 ::= { cssgTal 11 } 1456 1457cssgTalMaxPendingAuthReqs OBJECT-TYPE 1458 SYNTAX Unsigned32 1459 MAX-ACCESS read-write 1460 STATUS current 1461 DESCRIPTION 1462 "The maximum number of outstanding TAL authorization 1463 requests allowed on SSG. If the number of authorization 1464 requests goes beyond this value, SSG does a SYS log 1465 message and any packets received that would result in 1466 SSG sending a new radius request will be dropped at the 1467 CEF path itself. 1468 When this value is set, it will be applicable from that 1469 point onwards. If the number of existing requests exceeds 1470 the new values, these requests will not be discarded." 1471 ::= { cssgTal 12 } 1472 1473cssgTalMaxAuthReqsRate OBJECT-TYPE 1474 SYNTAX Unsigned32 1475 MAX-ACCESS read-write 1476 STATUS current 1477 DESCRIPTION 1478 "The maximum number of authorization requests per second 1479 allowed on SSG. If this value is set, SSG throttles the 1480 authorization requests sent per second as per this value." 1481 ::= { cssgTal 13 } 1482 1483cssgTalDropPakDuringAuthorization OBJECT-TYPE 1484 SYNTAX TruthValue 1485 MAX-ACCESS read-write 1486 STATUS current 1487 DESCRIPTION 1488 "The value 'true' indicates that any packets that are 1489 received from the user during user authorization would 1490 be dropped. The value 'false' indicates that the packets 1491 will not be dropped." 1492 DEFVAL { false } 1493 ::= { cssgTal 14 } 1494 1495cssgTalUnidentifiedUserAllowTraff OBJECT-TYPE 1496 SYNTAX TruthValue 1497 MAX-ACCESS read-write 1498 STATUS current 1499 DESCRIPTION 1500 "The value 'true' indicates that traffic from/to 1501 unidentified users would be allowed. A value of 'false' 1502 indicates that traffic from/to unidentified users will 1503 not be allowed." 1504 DEFVAL { false } 1505 ::= { cssgTal 15 } 1506 1507cssgTalMaxSuspectUsers OBJECT-TYPE 1508 SYNTAX Unsigned32 1509 MAX-ACCESS read-write 1510 STATUS current 1511 DESCRIPTION 1512 "The maximum number of suspect users allowed." 1513 DEFVAL { 5000 } 1514 ::= { cssgTal 16 } 1515 1516cssgTalSuspectUserTimeout OBJECT-TYPE 1517 SYNTAX Unsigned32 1518 MAX-ACCESS read-write 1519 STATUS current 1520 DESCRIPTION 1521 "The timeout value for a suspect user in minutes. 1522 If a packet is received for a suspect user, then packets 1523 from/to this user will be dropped/tcp-redirected, until 1524 a value of cssgTalSuspectUserTimeout is reached. 1525 After this timeout, any new traffic received by SSG from the 1526 suspect user will trigger the TAL procedure all over again." 1527 DEFVAL { 60 } 1528 ::= { cssgTal 17 } 1529 1530cssgTalUnidentifiedUserTimeout OBJECT-TYPE 1531 SYNTAX Unsigned32 1532 MAX-ACCESS read-write 1533 STATUS current 1534 DESCRIPTION 1535 "The timeout value for an unidentified user in minutes. 1536 After this time expiry, authorization will be done again 1537 when a packet is received from this user." 1538 DEFVAL { 10 } 1539 ::= { cssgTal 18 } 1540 1541cssgTalUserInfoTable OBJECT-TYPE 1542 SYNTAX SEQUENCE OF CssgTalUserInfoEntry 1543 MAX-ACCESS not-accessible 1544 STATUS current 1545 DESCRIPTION 1546 "A list of all the transparent users, along with 1547 their user-state." 1548 ::= { cssgTal 19 } 1549 1550cssgTalUserInfoEntry OBJECT-TYPE 1551 SYNTAX CssgTalUserInfoEntry 1552 MAX-ACCESS not-accessible 1553 STATUS current 1554 DESCRIPTION 1555 "A conceptual row in the TAL user info table." 1556 INDEX { cssgTalUserIPAddressType, cssgTalUserIPAddress } 1557 ::= { cssgTalUserInfoTable 1 } 1558 1559CssgTalUserInfoEntry ::= 1560 SEQUENCE { 1561 cssgTalUserIPAddressType InetAddressType, 1562 cssgTalUserIPAddress InetAddress, 1563 cssgTalUserState INTEGER 1564 } 1565 1566cssgTalUserIPAddressType OBJECT-TYPE 1567 SYNTAX InetAddressType 1568 MAX-ACCESS not-accessible 1569 STATUS current 1570 DESCRIPTION 1571 "This is the IP address type of a particular 1572 transparent user and is used as index (together with 1573 cssgTalUserIPAddress) to identify a unique entry in 1574 the Tal User Info table." 1575 ::= { cssgTalUserInfoEntry 1 } 1576 1577cssgTalUserIPAddress OBJECT-TYPE 1578 SYNTAX InetAddress 1579 MAX-ACCESS not-accessible 1580 STATUS current 1581 DESCRIPTION 1582 "IP Address of the transparent user." 1583 ::= { cssgTalUserInfoEntry 2 } 1584 1585cssgTalUserState OBJECT-TYPE 1586 SYNTAX INTEGER { 1587 other(1), 1588 authorizing(2), 1589 unidentified(3), 1590 suspect(4), 1591 passthrough(5) 1592 } 1593 MAX-ACCESS read-only 1594 STATUS current 1595 DESCRIPTION 1596 "The state of the transparent user." 1597 ::= { cssgTalUserInfoEntry 3 } 1598 1599-- Notifications 1600 1601ciscoSsgMIBNotifications OBJECT IDENTIFIER ::= { ciscoSsgMIB 0 } 1602 1603ciscoSsgRadiusClientReboot NOTIFICATION-TYPE 1604 STATUS current 1605 DESCRIPTION 1606 "The notification is sent when the connectivity to GGSN is 1607 lost." 1608 ::= { ciscoSsgMIBNotifications 1 } 1609 1610ciscoSsgRadiusAAAServerDown NOTIFICATION-TYPE 1611 STATUS current 1612 DESCRIPTION 1613 "The notification is sent when the connectivity to AAA is 1614 lost or when AAA Server is down." 1615 ::= { ciscoSsgMIBNotifications 2 } 1616 1617ciscoSsgMIBConformance OBJECT IDENTIFIER ::= { ciscoSsgMIB 3 } 1618ciscoSsgMIBCompliances OBJECT IDENTIFIER ::= { ciscoSsgMIBConformance 1} 1619ciscoSsgMIBGroups OBJECT IDENTIFIER ::= { ciscoSsgMIBConformance 2} 1620 1621 1622-- Conformance 1623 1624ciscoSsgMIBCompliance MODULE-COMPLIANCE 1625 STATUS deprecated -- superceded by ciscoSsgMIBComplianceRev1 1626 DESCRIPTION 1627 "The compliance statement for entities which implement 1628 CISCO-SSG-MIB." 1629 MODULE 1630 MANDATORY-GROUPS { 1631 ciscoSsgCfgGroup, 1632 ciscoSsgStatsGroup, 1633 ciscoSsgServicesGroup, 1634 ciscoSsgExclusionsGroup, 1635 ciscoSsgTcpRedirectGroup, 1636 ciscoSsgServiceInterfaceGroup, 1637 ciscoSsgRadiusClientsGroup, 1638 ciscoSsgPortMapGroup, 1639 ciscoSsgNotificationGroup 1640 1641 } 1642 ::= { ciscoSsgMIBCompliances 1 } 1643 1644ciscoSsgMIBComplianceRev1 MODULE-COMPLIANCE 1645 STATUS current 1646 DESCRIPTION 1647 "The compliance statement for entities which implement 1648 CISCO-SSG-MIB." 1649 MODULE 1650 MANDATORY-GROUPS { 1651 ciscoSsgCfgGroupRev1, 1652 ciscoSsgStatsGroup, 1653 ciscoSsgServicesGroup, 1654 ciscoSsgExclusionsGroup, 1655 ciscoSsgTcpRedirectGroup, 1656 ciscoSsgServiceInterfaceGroup, 1657 ciscoSsgRadiusClientsGroup, 1658 ciscoSsgPortMapGroup, 1659 ciscoSsgNotificationGroup, 1660 ciscoSsgTalUserInfoGroup 1661 1662 } 1663 ::= { ciscoSsgMIBCompliances 2 } 1664 1665-- Units of Conformance 1666 1667ciscoSsgCfgGroup OBJECT-GROUP 1668 OBJECTS { 1669 cssgCfgSsgEnabled, 1670 cssgCfgAutoDomainMode, 1671 cssgCfgLocalForwardingEnabled, 1672 cssgCfgAutoLogOffMode, 1673 cssgCfgRadiusProxyEnabled, 1674 cssgCfgTcpRedirectEnabled, 1675 cssgCfgAutoDomainNatEnabled, 1676 cssgCfgPortBundleHostKeyEnabled, 1677 cssgCfgTransPassThroughEnabled, 1678 cssgCfgAutoLogOffInterval, 1679 cssgCfgAutoLogOffIcmpRetries, 1680 cssgCfgMaxServicesPerUser, 1681 cssgCfgAccountingEnabled, 1682 cssgCfgDefaultNetworkType, 1683 cssgCfgDefaultNetwork, 1684 cssgCfgRadiusAuthenPort, 1685 cssgCfgRadiusAccountingPort, 1686 cssgCfgRadiusFwdAcctPktsEnabled, 1687 cssgCfgAccountingInterval, 1688 cssgCfgTCPRedirGrpForUnAuthUsers, 1689 cssgCfgTCPRedirGrpForUnAuthServ, 1690 cssgCfgTcpRedirGrpForSMTP, 1691 cssgCfgTcpRedirGrpForInitialCapt, 1692 cssgCfgTcpRedirGrpForAdvCapt, 1693 cssgCfgRadiusClntRbtNotifEnabled, 1694 cssgCfgAAAServerDownNotifEnabled 1695 } 1696 STATUS deprecated -- superceded by ciscoSsgCfgGroupRev1 1697 DESCRIPTION 1698 "A collection of configurable parameters in SSG MIB." 1699 ::= { ciscoSsgMIBGroups 1 } 1700 1701ciscoSsgStatsGroup OBJECT-GROUP 1702 OBJECTS { 1703 cssgStatsLoginAttempts, 1704 cssgStatsLoginsSuccessful, 1705 cssgStatsActiveSessions, 1706 cssgStatsActiveHosts, 1707 cssgStatsActiveServices, 1708 cssgStatsPODs 1709 } 1710 STATUS current 1711 DESCRIPTION 1712 "A collection of statistics objects for SSG MIB." 1713 ::= { ciscoSsgMIBGroups 2 } 1714 1715ciscoSsgServicesGroup OBJECT-GROUP 1716 OBJECTS { 1717 cssgServiceMode, 1718 cssgServiceType, 1719 cssgServiceIdleTimeout, 1720 cssgServiceSessionTimeout, 1721 cssgServiceActiveSessions, 1722 cssgServiceDNSPrimaryIpType, 1723 cssgServiceDNSPrimary, 1724 cssgServiceDNSSecondaryIpType, 1725 cssgServiceDNSSecondary, 1726 cssgServiceUpstreamQOSEnabled, 1727 cssgServiceDownStreamQOSEnabled, 1728 cssgServiceOpenGarden, 1729 cssgServicePrepaid, 1730 cssgServiceRoutePermission 1731 } 1732 STATUS current 1733 DESCRIPTION 1734 "A collection of objects pertaining to Services." 1735 ::= { ciscoSsgMIBGroups 3 } 1736 1737ciscoSsgExclusionsGroup OBJECT-GROUP 1738 OBJECTS { 1739 cssgExcludedAPNRowStatus, 1740 cssgExcludedDomainRowStatus 1741 } 1742 STATUS current 1743 DESCRIPTION 1744 "A collection of objects pertaining to excluded APN/Domain." 1745 ::= { ciscoSsgMIBGroups 4 } 1746 1747ciscoSsgTcpRedirectGroup OBJECT-GROUP 1748 OBJECTS { 1749 cssgTcpRedirectGrpRowStatus, 1750 cssgNetworkGrpNetRowStatus, 1751 cssgPortGrpPortRowStatus, 1752 cssgTcpRedirNetworkMapGrpName, 1753 cssgTcpRedirNetworkGrpMapRowStat, 1754 cssgTcpRedirPortMapGrpName, 1755 cssgTcpRedirPortGrpMapRowStat, 1756 cssgTcpRedirPortNo, 1757 cssgTcpRedirPortNoMapRowStat 1758 } 1759 STATUS current 1760 DESCRIPTION 1761 "A collection of objects pertaining to TCP Redirect." 1762 ::= { ciscoSsgMIBGroups 5 } 1763 1764ciscoSsgServiceInterfaceGroup OBJECT-GROUP 1765 OBJECTS { 1766 cssgServiceIfIndex, 1767 cssgServiceIfRowStatus 1768 } 1769 STATUS current 1770 DESCRIPTION 1771 "A collection of objects pertaining to Service-Interface bind." 1772 ::= { ciscoSsgMIBGroups 6 } 1773 1774ciscoSsgRadiusClientsGroup OBJECT-GROUP 1775 OBJECTS { 1776 cssgRadiusClientRowStatus 1777 } 1778 STATUS current 1779 DESCRIPTION 1780 "A collection of objects pertaining to Radius Client." 1781 ::= { ciscoSsgMIBGroups 7 } 1782 1783ciscoSsgPortMapGroup OBJECT-GROUP 1784 OBJECTS { 1785 cssgPortMapLength, 1786 cssgPortMapPortRangeFrom, 1787 cssgPortMapPortRangeTo, 1788 cssgPortMapRowStatus 1789 } 1790 STATUS current 1791 DESCRIPTION 1792 "A collection of objects pertaining to Port Map Group." 1793 ::= { ciscoSsgMIBGroups 8 } 1794 1795ciscoSsgNotificationGroup NOTIFICATION-GROUP 1796 NOTIFICATIONS { 1797 ciscoSsgRadiusClientReboot, 1798 ciscoSsgRadiusAAAServerDown 1799 } 1800 STATUS current 1801 DESCRIPTION 1802 "A collection of notifications generated by SSG." 1803 ::= { ciscoSsgMIBGroups 9 } 1804 1805ciscoSsgCfgGroupRev1 OBJECT-GROUP 1806 OBJECTS { 1807 cssgCfgSsgEnabled, 1808 cssgCfgAutoDomainMode, 1809 cssgCfgLocalForwardingEnabled, 1810 cssgCfgAutoLogOffMode, 1811 cssgCfgRadiusProxyEnabled, 1812 cssgCfgTcpRedirectEnabled, 1813 cssgCfgAutoDomainNatEnabled, 1814 cssgCfgPortBundleHostKeyEnabled, 1815 cssgCfgTransPassThroughEnabled, 1816 cssgCfgAutoLogOffInterval, 1817 cssgCfgAutoLogOffIcmpRetries, 1818 cssgCfgMaxServicesPerUser, 1819 cssgCfgAccountingEnabled, 1820 cssgCfgDefaultNetworkType, 1821 cssgCfgDefaultNetwork, 1822 cssgCfgRadiusAuthenPort, 1823 cssgCfgRadiusAccountingPort, 1824 cssgCfgRadiusFwdAcctPktsEnabled, 1825 cssgCfgAccountingInterval, 1826 cssgCfgTCPRedirGrpForUnAuthUsers, 1827 cssgCfgTCPRedirGrpForUnAuthServ, 1828 cssgCfgTcpRedirGrpForSMTP, 1829 cssgCfgTcpRedirGrpForInitialCapt, 1830 cssgCfgTcpRedirGrpForAdvCapt, 1831 cssgCfgRadiusClntRbtNotifEnabled, 1832 cssgCfgAAAServerDownNotifEnabled, 1833 cssgCfgTalEnabled 1834 } 1835 STATUS current 1836 DESCRIPTION 1837 "A collection of configurable parameters in SSG MIB." 1838 ::= { ciscoSsgMIBGroups 10 } 1839 1840ciscoSsgTalUserInfoGroup OBJECT-GROUP 1841 OBJECTS { 1842 cssgTalWaitingForAuthUsers, 1843 cssgTalUnidentifiedUsers, 1844 cssgTalSuspectUsers, 1845 cssgTalPassthroughUsers, 1846 cssgTalMaxAuthRate, 1847 cssgTalMaxAuthRateTimestamp, 1848 cssgTalMinAuthRate, 1849 cssgTalMinAuthRateTimestamp, 1850 cssgTalCurrentAuthRate, 1851 cssgTalCurrentAuthRateTimestamp, 1852 cssgTalResetAuthRates, 1853 cssgTalMaxPendingAuthReqs, 1854 cssgTalMaxAuthReqsRate, 1855 cssgTalDropPakDuringAuthorization, 1856 cssgTalUnidentifiedUserAllowTraff, 1857 cssgTalMaxSuspectUsers, 1858 cssgTalSuspectUserTimeout, 1859 cssgTalUnidentifiedUserTimeout, 1860 1861 cssgTalUserState 1862 } 1863 STATUS current 1864 DESCRIPTION 1865 "A collection of objects pertaining to 1866 Transparent Auto-Logon Group." 1867 ::= { ciscoSsgMIBGroups 11 } 1868 1869END 1870 1871