253 lines
8.8 KiB
Plaintext
253 lines
8.8 KiB
Plaintext
FASTPATH-MGMT-SECURITY-MIB DEFINITIONS ::= BEGIN
|
|
|
|
-- Broadcom Corporation FastPath Mgmt Security MIB
|
|
-- Copyright Broadcom Corporation (2003-2007) All rights reserved.
|
|
|
|
-- This SNMP Management Information Specification
|
|
-- embodies Broadcom Corporation's confidential and proprietary
|
|
-- intellectual property. Broadcom Corporation retains all title
|
|
-- and ownership in the Specification including any revisions.
|
|
|
|
-- This Specification is supplied "AS IS", Broadcom Corporation
|
|
-- makes no warranty, either expressed or implied,
|
|
-- as to the use, operation, condition, or performance of the
|
|
-- Specification.
|
|
|
|
|
|
IMPORTS
|
|
MODULE-IDENTITY, OBJECT-TYPE, NOTIFICATION-TYPE,
|
|
IpAddress, Integer32 FROM SNMPv2-SMI
|
|
fastPath FROM BROADCOM-REF-MIB
|
|
DisplayString FROM RFC1213-MIB
|
|
TruthValue FROM SNMPv2-TC;
|
|
|
|
fastPathMgmtSecurity MODULE-IDENTITY
|
|
LAST-UPDATED "200705230000Z" -- 23 May 2007 12:00:00 GMT
|
|
ORGANIZATION "Broadcom Corporation"
|
|
CONTACT-INFO
|
|
" Customer Support
|
|
Postal: Broadcom Corporation
|
|
100, Perimeter Park Drive
|
|
Morrisville, NC 27560
|
|
Tel: +1 919 865 2700"
|
|
DESCRIPTION
|
|
"The Broadcom Private MIB for FastPath Security"
|
|
|
|
-- Revision history.
|
|
REVISION
|
|
"200705230000Z" -- 23 May 2007 12:00:00 GMT
|
|
DESCRIPTION
|
|
"Broadcom branding related changes."
|
|
REVISION
|
|
"200311210000Z" -- 21 Nov 2003 12:00:00 GMT
|
|
DESCRIPTION
|
|
"Initial revision."
|
|
|
|
::= { fastPath 11 }
|
|
|
|
|
|
--**************************************************************************************
|
|
-- agentSSLConfigGroup
|
|
--
|
|
--**************************************************************************************
|
|
|
|
agentSSLConfigGroup OBJECT IDENTIFIER ::= { fastPathMgmtSecurity 1 }
|
|
|
|
agentSSLAdminMode OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
enable(1),
|
|
disable(2)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Configures whether the SSL service is enabled on this switch. The
|
|
default value is disable(2)."
|
|
::= { agentSSLConfigGroup 1 }
|
|
|
|
agentSSLSecurePort OBJECT-TYPE
|
|
SYNTAX Integer32 (1..65535)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Configures the port the SSL service will respond on. The default
|
|
value is 443."
|
|
::= { agentSSLConfigGroup 2 }
|
|
|
|
agentSSLProtocolLevel OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
ssl30(1), -- SSL 3.0
|
|
tls10(2), -- TSL 1.0
|
|
both(3)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Displays which protocol versions of SSL are enabled on this
|
|
switch. The default value is both(3)."
|
|
::= { agentSSLConfigGroup 3 }
|
|
|
|
agentSSLMaxSessions OBJECT-TYPE
|
|
SYNTAX Integer32 (0..16)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Configures the maximum number of allowable SSL sessions. The default
|
|
value is 16."
|
|
::= { agentSSLConfigGroup 4 }
|
|
|
|
agentSSLHardTimeout OBJECT-TYPE
|
|
SYNTAX Integer32 (1..168)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Configures the hard timeout for SSL sessions in hours. The default
|
|
value is 24 hours."
|
|
::= { agentSSLConfigGroup 5 }
|
|
|
|
agentSSLSoftTimeout OBJECT-TYPE
|
|
SYNTAX Integer32 (1..60)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Configures the soft (activity) timeout for SSL sessions in minutes.
|
|
The default value is 5 minutes."
|
|
::= { agentSSLConfigGroup 6 }
|
|
|
|
agentSSLCertificatePresent OBJECT-TYPE
|
|
SYNTAX TruthValue
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Boolean value indicating whether SSL certificate files exist on the device."
|
|
::= { agentSSLConfigGroup 7 }
|
|
|
|
agentSSLCertificateControl OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
noop(1),
|
|
generate(2),
|
|
delete(3)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Controls certificate generation and deletion. Always returns noop(1)."
|
|
::= { agentSSLConfigGroup 8 }
|
|
|
|
agentSSLCertificateGenerationStatus OBJECT-TYPE
|
|
SYNTAX TruthValue
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates whether certificate files are currently being generated."
|
|
::= { agentSSLConfigGroup 9 }
|
|
|
|
--**************************************************************************************
|
|
-- agentSSHConfigGroup
|
|
--
|
|
--**************************************************************************************
|
|
|
|
agentSSHConfigGroup OBJECT IDENTIFIER ::= { fastPathMgmtSecurity 2 }
|
|
|
|
agentSSHAdminMode OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
enable(1),
|
|
disable(2)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Configures whether the SSH service is enabled on this switch. The
|
|
default value is disable(2)."
|
|
::= { agentSSHConfigGroup 1 }
|
|
|
|
agentSSHProtocolLevel OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
ssh10(1), -- SSH 1.0
|
|
ssh20(2), -- SSH 2.0
|
|
both(3)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Displays which protocol versions of SSH are enabled on this
|
|
switch. The default value is both(3)."
|
|
::= { agentSSHConfigGroup 2 }
|
|
|
|
agentSSHSessionsCount OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Current number of active SSH sessions on this switch."
|
|
::= { agentSSHConfigGroup 3 }
|
|
|
|
agentSSHMaxSessionsCount OBJECT-TYPE
|
|
SYNTAX Integer32 (0..5)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Max number of SSH sessions permitted on this switch."
|
|
::= { agentSSHConfigGroup 4 }
|
|
|
|
agentSSHSessionTimeout OBJECT-TYPE
|
|
SYNTAX Integer32 (1..3932159)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"SSH idle timeout value for this switch in seconds. The
|
|
upper limit represents 65535 minutes and 59 seconds."
|
|
::= { agentSSHConfigGroup 5 }
|
|
|
|
agentSSHKeysPresent OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
dsa(1),
|
|
rsa(2),
|
|
both(3),
|
|
none(4)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates what key files are present on the device, if any."
|
|
::= { agentSSHConfigGroup 6 }
|
|
|
|
agentSSHKeyGenerationStatus OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
dsa(1),
|
|
rsa(2),
|
|
both(3),
|
|
none(4)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Indicates what key files are currently being generated, if any."
|
|
::= { agentSSHConfigGroup 7 }
|
|
|
|
agentSSHRSAKeyControl OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
noop(1),
|
|
generate(2),
|
|
delete(3)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Controls RSA key generation and deletion. Always returns noop(1)."
|
|
::= { agentSSHConfigGroup 8 }
|
|
|
|
agentSSHDSAKeyControl OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
noop(1),
|
|
generate(2),
|
|
delete(3)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Controls DSA key generation and deletion. Always returns noop(1)."
|
|
::= { agentSSHConfigGroup 9 }
|
|
|
|
END
|