- Enterasys Security Router User's Guide

ManualsBrandsEnterasys Networks ManualsNetwork RouterSecurity Router X-PeditionTM

451

452

453

454

455

456

457

458

459

460

VPN MIB Tables

B-16 XSR SNMP Proprietary and Associated Standard MIBs

etsysVpnIpsecProposal Table

This table contains the IPSec proposals. The table index is {etsysVpnIpsecPropName}.

etsysVpnIpsecPropTransforms Table

This table aggregates transforms from the ipspAhTransformTable, ipspEspTransformTable, and

ipspIpcompTransformTable into transform sets. The table index is {etsysVpnIpsecPropName,

etsysVpnIpsecPropTranType}. The table also contains read-only rows for XSR EZ-IPSec transforms.

etsysVpnAhTransform Table

This table lists all the AH transforms created by adding AH rows to the

etsysVpnIpsecPropTransformsTable. The table also contains read-only rows for XSR EZ-IPSec

transforms. The table index is {etsysVpnAhTranName}.

Table B-37 etsysVpnIpsecProposalTable

Field Description

etsysVpnIpsecPropName The name of an IPSec proposal.

etsysVpnIpsecPropMaxLifetimeSec Acceptable values are 300-8640000 seconds with a default of

28800. When used to create a row, all other values are defaulted.

etsysVpnIpsecPropMaxLifetimeKB Since the CLI does not allow this to be set, the XSR implements this

as read-only.

etsysVpnIpsecPropUsePfs

etsysVpnIpsecPropGroupId

etsysVpnIpsecPropRowStatus Acceptable values are active(1), createAndGo(4) and destroy(6).

When used to create a row, all values are defaulted.

Table B-38 etsysVpnIpsecPropTransformsTable

Field Description

etsysVpnIpsecPropTranType Acceptable values: protoIpsecAh(2) and protoIpsecEsp(3). Since the

XSR does not support software compression, protoIpcomp(4) is

unavailable.

etsysVpnIpsecPropTranName A transform name. This object must be used to create the row. The

corresponding row in the AH or ESP transform table will be created

when this row is created. The transform will have default values.

etsysVpnIpsecPropTranRowStatus Acceptable values: active(1) and destroy(6). This object cannot be

used to create a row since the transform name is needed first.

Table B-39 etsysVpnAhTransformTable

Field Description

etsysVpnAhTranName The name of an AH transform.

etsysVpnAhTranAlgorithm Acceptable values: hmacMd5(1) and hmacSha(2). This value can be

set after the row is created via the creation of a row in the

etsysVpnIpsecPropTransformsTable.

etsysVpnAhTranMaxLifetimeSec This is read-only for the XSR since etsysIpsecPropLifetimeSec is used

as a common setting for the proposal.