Enterasys Networks X-PeditionTM etsysVpnIpsecPolicyRule Table, etsysVpnIpsecPolProposals Table

VPN MIB Tables

XSR User’s Guide B-15

etsysVpnIpsecPolicyRule Table

This table defines the IPSec policy rules. The table index is {etsysVpnIpsecPolicyName,

etsysVpnPolRulePriority}.

etsysVpnIpsecPolProposals Table

This table links IPSec proposals in the etsysVpnIpsecProposalTable with IPSec policy rules in the

etsysVpnIpsecPolRuleTable. The XSR implementation permits a maximum of six proposals and

priority values 1, 2, 3, 4, 5, or 6 only. Be aware that the lower priority row must exist before a

higher priority proposal can be created; that is, if no priority row equals 1, then priority rows 2

through 6 cannot be created. Also, be advised that a proposal in the etsysVpnIpsecProposalTable

must exist before the corresponding row can be created in this table. The table index is

{etsysVpnIpsecPolicyName, etsysVpnIpsecPolRulePriority, etsysVpnIpsecPolPropPriority}.

Table B-34 etsysVpnIntfPolicyTable

Field Description

etsysVpnIntfPolicyName The name of an IPSec policy. When used to create a row, all other

values are defaulted.

etsysVpnIntfPolicyDFHandling When used to create a row, all other values are defaulted.

etsysVpnIntfPolicyRowStatus Acceptable values are active(1) and destroy(6).

Table B-35 etsysVpnIpsecPolicyRuleTable

Field Description

etsysVpnIpsecPolRulePriority The priority of the rule, equivalent to the sequence number from

the CLI commands.

etsysVpnIpsecPolRulePeerAddrType This InetAddressType object is required for future compatibility

with IPv6. For the XSR, this can only be set to IPv4. When used to

create a row, all other values are defaulted.

etsysVpnIpsecPolRulePeerAddress Since the address type is IPv4, this is always a 4-octet IP address.

When used to create a row, all other values are defaulted.

etsysVpnIpsecPolRuleCommonSA When used to create a row, all other values are defaulted.

etsysVpnIpsecPolRuleMode Acceptable values: tunnel(1) and transport(2). When used to

create a row, all other values are defaulted.

etsysVpnIpsecPolRuleSelectorId On the XSR, this is an ASCII string representing an access group,

e.g. 100. When used to create a row, all other values are defaulted.

etsysVpnIpsecPolRuleRowStatus Acceptable values: active(1), createAndGo(4) and destroy(6).

When used to create a row, all values are defaulted.

Table B-36 etsysVpnIpsecPolProposalsTable

Field Description

etsysVpnIpsecPolPropPriority An index value for the proposal.

etsysVpnIpsecPolPropProposalName A proposal name from the etsysVpnIpsecProposalTable. This

object must be used to create the row.

etsysVpnIpsecPolPropRowStatus Acceptable values: active(1) and destroy(6). This object cannot be

used to create a row since the proposal name is needed first.