Etsysvpnipsecproposal table, Etsysvpnipsecproptransforms table, Etsysvpnahtransform table – Enterasys Networks Security Router X-PeditionTM User Manual

Page 458

Advertising
background image

VPN MIB Tables

B-16 XSR SNMP Proprietary and Associated Standard MIBs

etsysVpnIpsecProposal Table

This table contains the IPSec proposals. The table index is {etsysVpnIpsecPropName}.

etsysVpnIpsecPropTransforms Table

This table aggregates transforms from the ipspAhTransformTable, ipspEspTransformTable, and
ipspIpcompTransformTable into transform sets. The table index is {etsysVpnIpsecPropName,
etsysVpnIpsecPropTranType}. The table also contains read-only rows for XSR EZ-IPSec transforms.

etsysVpnAhTransform Table

This table lists all the AH transforms created by adding AH rows to the
etsysVpnIpsecPropTransformsTable. The table also contains read-only rows for XSR EZ-IPSec
transforms. The table index is {etsysVpnAhTranName}.

Table B-37 etsysVpnIpsecProposalTable

Field

Description

etsysVpnIpsecPropName

The name of an IPSec proposal.

etsysVpnIpsecPropMaxLifetimeSec

Acceptable values are 300-8640000 seconds with a default of
28800. When used to create a row, all other values are defaulted.

etsysVpnIpsecPropMaxLifetimeKB

Since the CLI does not allow this to be set, the XSR implements this
as read-only.

etsysVpnIpsecPropUsePfs
etsysVpnIpsecPropGroupId
etsysVpnIpsecPropRowStatus

Acceptable values are active(1), createAndGo(4) and destroy(6).
When used to create a row, all values are defaulted.

Table B-38 etsysVpnIpsecPropTransformsTable

Field

Description

etsysVpnIpsecPropTranType

Acceptable values: protoIpsecAh(2) and protoIpsecEsp(3). Since the
XSR does not support software compression, protoIpcomp(4) is
unavailable.

etsysVpnIpsecPropTranName

A transform name. This object must be used to create the row. The
corresponding row in the AH or ESP transform table will be created
when this row is created. The transform will have default values.

etsysVpnIpsecPropTranRowStatus

Acceptable values: active(1) and destroy(6). This object cannot be
used to create a row since the transform name is needed first.

Table B-39 etsysVpnAhTransformTable

Field

Description

etsysVpnAhTranName

The name of an AH transform.

etsysVpnAhTranAlgorithm

Acceptable values: hmacMd5(1) and hmacSha(2). This value can be
set after the row is created via the creation of a row in the
etsysVpnIpsecPropTransformsTable.

etsysVpnAhTranMaxLifetimeSec

This is read-only for the XSR since etsysIpsecPropLifetimeSec is used
as a common setting for the proposal.

Advertising