- Enterasys Security Router User's Guide

ManualsBrandsEnterasys Networks ManualsNetwork RouterSecurity Router X-PeditionTM

451

452

453

454

455

456

457

458

459

460

VPN MIB Tables

B-14 XSR SNMP Proprietary and Associated Standard MIBs

etsysVpnIkeProposal Table

This table contains the IKE proposals used during IKE negotiation. The named row is equivalent

to the

crypto isakmp proposal CLI command. The table index is {etsysVpnIkePropName}, which

is the name referenced in the etsysVpnIkePeerProposalsTable.

etsysVpnIpsecPolicy Table

This read-only table lists the IPSec policy names on the XSR. This table includes those policies

configured by means other than this MIB or CLI (that is, EZ-IPSec). The table index is

{etsysVpnIpsecPolicyName}. These policy names are used as values for etsysVpnIntfPolicyName

when applying policy to an interface.

etsysVpnIntfPolicy Table

This table applies IPSec policy to an interface. The table index is {ifIndex} from the mib-2 ifTable.

etsysVpnIkePeerPropName A proposal name from the etsysVpnIkeProposalTable. This object must

be used to create the row.

etsysVpnIkePeerPropRowStatus Acceptable values: active(1) and destroy(6). You cannot use this object

to create a row since the proposal name is needed first.

Table B-31 etsysVpnIkePeerProposalsTable (continued)

Field Description

Table B-32 etsysVpnIkeProposalTable

Field Description

etsysVpnIkePropName The index of the table.

etsysVpnIkePropEncryptAlgorithm Acceptable values are desCbc(1), tripleDesCbc(5), and aesCbc(7).

When used to create a row, all other values are defaulted.

etsysVpnIkePropHashAlgorithm Acceptable values are md5(1) and sha(2). When used to create a

row, all other values are defaulted.

etsysVpnIkePropDhGroup Acceptable values: modp768(1), modp1024(2) and modp1536(5).

When used to create a row, all other values are defaulted.

etsysVpnIkePropAuthMethod Acceptable values are preSharedKey(1) and rsaSignatures(3).

When used to create a row, all other values are defaulted.

etsysVpnIkePropMaxLifetimeSecs Acceptable values are 300-8640000. Default value is 28800. When

used to create a row all other values are defaulted.

etsysVpnIkePropMaxLifetimeKB Since the CLI does not allow this to be set, the XSR will implement

this as read-only.

etsysVpnIkePropRowStatus Acceptable values are active(1), createAndGo(4) and destroy(6).

When used to create a row, all values are defaulted.

Table B-33 etsysVpnIpsecPolicyTable

Field Description

etsysVpnIpsecPolicyName The name of an IPSec policy.