Chapter 13 SNMP

13.8 Proxy Over Firewalls

Table 13-5

15600 SNMPv2 Trap Variable Bindings (continued)

 

 

 

 

 

 

 

 

 

 

(Variable

 

 

 

 

 

Binding

 

 

Group

 

Associated Trap Name(s)

Number)

SNMPv2 Variable Bindings

Description

 

 

 

 

 

 

F

 

All other traps (from

(1)

cerentGenericNodeTime

The time that an event occurred.

 

 

CERENT-600-MIB) not

 

 

 

 

 

(2)

cerentGenericAlarmState

The alarm severity and service-affecting status.

 

 

listed above

 

 

 

 

Severities are Minor (MN), Major (MJ), and

 

 

 

 

 

 

 

 

 

 

Critical (CR). Service-affecting statuses are

 

 

 

 

 

Service-Affecting (SA) and Non-Service

 

 

 

 

 

Affecting (NSA).

 

 

 

 

 

 

 

 

 

(3)

cerentGenericAlarmObject

The entity that raised the alarm. The NMS

 

 

 

 

Type

should use this value to decide which table to

 

 

 

 

 

poll for further information about the alarm.

 

 

 

 

 

 

 

 

 

(4)

cerentGenericAlarmObject

Every alarm is raised by an object entry in a

 

 

 

 

Index

specific table. This variable is the index of

 

 

 

 

 

objects in each table; if the alarm is

 

 

 

 

 

interface-related, this is the index of the

 

 

 

 

 

interface in the interface table.

 

 

 

 

 

 

 

 

 

(5)

cerentGenericAalrmSlot

The slot of the object that raised the alarm. If a

 

 

 

 

Number

slot is not relevant to the alarm, the slot number

 

 

 

 

 

is zero.

 

 

 

 

 

 

 

 

 

(6)

cerentGenericAlarmPort

The port of the object that raised the alarm. If a

 

 

 

 

Number

port is not relevant to the alarm, the port number

 

 

 

 

 

is zero.

 

 

 

 

 

 

 

 

 

(7)

cerentGenericAlarmLine

The object line that raised the alarm. If a line is

 

 

 

 

Number

not relevant to the alarm, the line number is

 

 

 

 

 

zero.

 

 

 

 

 

 

 

 

 

(8)

cerentGenericAlarmObject

The TL1-style user-visible name that uniquely

 

 

 

 

Name

identifies an object in the system.

 

 

 

 

 

 

 

 

 

(9)

snmpTrapAddress

The address of the SNMP trap.

 

 

 

 

 

 

13.8 Proxy Over Firewalls

SNMP and NMS applications have traditionally been unable to cross firewalls used for isolating security risks inside or outside networks.CTC enables network operations centers (NOCs) to access performance monitoring data such as RMON statistics or autonomous messages across firewalls by using an SNMP proxy element installed on a firewall.

The application-level proxy transports SNMP protocol data units (PDU) between the NMS and NEs, allowing requests and responses between the NMS and NEs and forwarding NE autonomous messages to the NMS. The proxy agent requires little provisioning at the NOC and no additional provisioning at the NEs.

The firewall proxy is intended for use in a gateway network element-end network element (GNE-ENE) topology with many NEs through a single NE gateway. Up to 64 SNMP requests (such as get, getnext, or getbulk) are supported at any time behind single or multiple firewalls. The proxy interoperates with common NMS such as HP OpenView.

Cisco ONS 15600 Reference Manual, R7.2

13-11

Page 268 Page 270
Page 269
Image 269
Cisco Systems ONS 15600 manual Proxy Over Firewalls, 13-11
Page 268 Page 270

ONS 15600 specifications

Cisco Systems ONS 15600 is a highly versatile optical networking platform designed to meet the demands of modern telecommunications and data services. This multiservice edge platform supports various transmission mediums and offers a wide array of features that enable efficient data transport. Ideal for service providers and large enterprises, the ONS 15600 is engineered to provide scalable and reliable optical transport solutions.

One of the notable features of the ONS 15600 is its capability to support multiple protocols, including SONET/SDH, Ethernet, OTN, and legacy TDM services. This flexibility allows users to tailor their networks according to specific service requirements while ensuring interoperability with existing infrastructure. The platform is designed to facilitate seamless service migration, accommodating both legacy and next-generation services.

The modular architecture of the ONS 15600 enhances its scalability. It allows for easy expansion by incorporating additional line cards or interface modules without requiring significant downtime. This modularity ensures that service providers can evolve their networks over time, responding to increasing bandwidth demands and new service offerings with ease.

Incorporating advanced technologies, the ONS 15600 employs Dense Wavelength Division Multiplexing (DWDM), significantly increasing the capacity of fiber networks by allowing multiple signals to be transmitted simultaneously over a single optical fiber. This capability helps to optimize fiber utilization and reduce operational costs. In addition, the platform supports Optical Transport Network (OTN) for improved error detection and correction, contributing to higher reliability and performance.

Another key characteristic of the ONS 15600 is its robust management capabilities. The platform can be managed through Cisco's Optical Networking Manager (ONM), providing a centralized interface for network configuration, monitoring, and troubleshooting. This enhances operational efficiency and minimizes downtime, allowing service providers to focus on delivering quality services to their customers.

The ONS 15600 also prioritizes security, offering various features like encryption and access control to safeguard sensitive data during transmission. With its combination of scalability, flexibility, and security, the Cisco ONS 15600 stands out as a reliable choice for organizations looking to enhance their optical networking capabilities while meeting the evolving demands of the digital landscape. Its commitment to quality and performance makes it a cornerstone of modern optical networks.
Top Page Image Contents