Etsysvpnipsecpolicyrule table, Etsysvpnipsecpolproposals table – Enterasys Networks Security Router X-PeditionTM User Manual

VPN MIB Tables

XSR User’s Guide B-15

etsysVpnIpsecPolicyRule Table

This table defines the IPSec policy rules. The table index is {etsysVpnIpsecPolicyName,
etsysVpnPolRulePriority}.

etsysVpnIpsecPolProposals Table

This table links IPSec proposals in the etsysVpnIpsecProposalTable with IPSec policy rules in the
etsysVpnIpsecPolRuleTable. The XSR implementation permits a maximum of six proposals and
priority values 1, 2, 3, 4, 5, or 6 only. Be aware that the lower priority row must exist before a
higher priority proposal can be created; that is, if no priority row equals 1, then priority rows 2
through 6 cannot be created. Also, be advised that a proposal in the etsysVpnIpsecProposalTable
must exist before the corresponding row can be created in this table. The table index is
{etsysVpnIpsecPolicyName, etsysVpnIpsecPolRulePriority, etsysVpnIpsecPolPropPriority}.

Table B-34 etsysVpnIntfPolicyTable

Field

Description

etsysVpnIntfPolicyName

The name of an IPSec policy. When used to create a row, all other
values are defaulted.

etsysVpnIntfPolicyDFHandling

When used to create a row, all other values are defaulted.

etsysVpnIntfPolicyRowStatus

Acceptable values are active(1) and destroy(6).

Table B-35 etsysVpnIpsecPolicyRuleTable

Field

Description

etsysVpnIpsecPolRulePriority

The priority of the rule, equivalent to the sequence number from
the CLI commands.

etsysVpnIpsecPolRulePeerAddrType

This InetAddressType object is required for future compatibility
with IPv6. For the XSR, this can only be set to IPv4. When used to
create a row, all other values are defaulted.

etsysVpnIpsecPolRulePeerAddress

Since the address type is IPv4, this is always a 4-octet IP address.
When used to create a row, all other values are defaulted.

etsysVpnIpsecPolRuleCommonSA

When used to create a row, all other values are defaulted.

etsysVpnIpsecPolRuleMode

Acceptable values: tunnel(1) and transport(2). When used to
create a row, all other values are defaulted.

etsysVpnIpsecPolRuleSelectorId

On the XSR, this is an ASCII string representing an access group,
e.g. 100. When used to create a row, all other values are defaulted.

etsysVpnIpsecPolRuleRowStatus

Acceptable values: active(1), createAndGo(4) and destroy(6).
When used to create a row, all values are defaulted.

Table B-36 etsysVpnIpsecPolProposalsTable

Field

Description

etsysVpnIpsecPolPropPriority

An index value for the proposal.

etsysVpnIpsecPolPropProposalName

A proposal name from the etsysVpnIpsecProposalTable. This
object must be used to create the row.

etsysVpnIpsecPolPropRowStatus

Acceptable values: active(1) and destroy(6). This object cannot be
used to create a row since the proposal name is needed first.