VPN MIB Tables

Table B-34 etsysVpnIntfPolicyTable

Field

Description

 

 

etsysVpnIntfPolicyName

The name of an IPSec policy. When used to create a row, all other

 

values are defaulted.

 

 

etsysVpnIntfPolicyDFHandling

When used to create a row, all other values are defaulted.

 

 

etsysVpnIntfPolicyRowStatus

Acceptable values are active(1) and destroy(6).

 

 

etsysVpnIpsecPolicyRule Table

This table defines the IPSec policy rules. The table index is {etsysVpnIpsecPolicyName, etsysVpnPolRulePriority}.

Table B-35 etsysVpnIpsecPolicyRuleTable

Field

Description

 

 

etsysVpnIpsecPolRulePriority

The priority of the rule, equivalent to the sequence number from

 

the CLI commands.

 

 

etsysVpnIpsecPolRulePeerAddrType

This InetAddressType object is required for future compatibility

 

with IPv6. For the XSR, this can only be set to IPv4. When used to

 

create a row, all other values are defaulted.

 

 

etsysVpnIpsecPolRulePeerAddress

Since the address type is IPv4, this is always a 4-octet IP address.

 

When used to create a row, all other values are defaulted.

 

 

etsysVpnIpsecPolRuleCommonSA

When used to create a row, all other values are defaulted.

 

 

etsysVpnIpsecPolRuleMode

Acceptable values: tunnel(1) and transport(2). When used to

 

create a row, all other values are defaulted.

 

 

etsysVpnIpsecPolRuleSelectorId

On the XSR, this is an ASCII string representing an access group,

 

e.g. 100. When used to create a row, all other values are defaulted.

 

 

etsysVpnIpsecPolRuleRowStatus

Acceptable values: active(1), createAndGo(4) and destroy(6).

 

When used to create a row, all values are defaulted.

 

 

etsysVpnIpsecPolProposals Table

This table links IPSec proposals in the etsysVpnIpsecProposalTable with IPSec policy rules in the etsysVpnIpsecPolRuleTable. The XSR implementation permits a maximum of six proposals and priority values 1, 2, 3, 4, 5, or 6 only. Be aware that the lower priority row must exist before a higher priority proposal can be created; that is, if no priority row equals 1, then priority rows 2 through 6 cannot be created. Also, be advised that a proposal in the etsysVpnIpsecProposalTable must exist before the corresponding row can be created in this table. The table index is {etsysVpnIpsecPolicyName, etsysVpnIpsecPolRulePriority, etsysVpnIpsecPolPropPriority}.

Table B-36 etsysVpnIpsecPolProposalsTable

Field

Description

 

 

etsysVpnIpsecPolPropPriority

An index value for the proposal.

 

 

etsysVpnIpsecPolPropProposalName

A proposal name from the etsysVpnIpsecProposalTable. This

 

object must be used to create the row.

 

 

etsysVpnIpsecPolPropRowStatus

Acceptable values: active(1) and destroy(6). This object cannot be

 

used to create a row since the proposal name is needed first.

 

 

XSR User’s Guide B-15

Page 457
Image 457
Enterasys Networks X-PeditionTM manual EtsysVpnIpsecPolicyRule Table, EtsysVpnIpsecPolProposals Table