|
Packit |
022b05 |
PPP-SEC-MIB DEFINITIONS ::= BEGIN
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
IMPORTS
|
|
Packit |
022b05 |
Counter
|
|
Packit |
022b05 |
FROM RFC1155-SMI
|
|
Packit |
022b05 |
OBJECT-TYPE
|
|
Packit |
022b05 |
FROM RFC-1212
|
|
Packit |
022b05 |
ppp
|
|
Packit |
022b05 |
FROM PPP-LCP-MIB;
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecurity OBJECT IDENTIFIER ::= { ppp 2 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecurityProtocols OBJECT IDENTIFIER ::= { pppSecurity 1 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
-- The following uniquely identify the various protocols
|
|
Packit |
022b05 |
-- used by PPP security. These OBJECT IDENTIFIERS are
|
|
Packit |
022b05 |
-- used in the pppSecurityConfigProtocol and
|
|
Packit |
022b05 |
-- pppSecuritySecretsProtocol objects to identify to which
|
|
Packit |
022b05 |
-- protocols the table entries apply.
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecurityPapProtocol OBJECT IDENTIFIER ::=
|
|
Packit |
022b05 |
{ pppSecurityProtocols 1 }
|
|
Packit |
022b05 |
pppSecurityChapMD5Protocol OBJECT IDENTIFIER ::=
|
|
Packit |
022b05 |
{ pppSecurityProtocols 2 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
-- PPP Security Group
|
|
Packit |
022b05 |
-- Implementation of this group is optional.
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
-- This table allows the network manager to configure
|
|
Packit |
022b05 |
-- which security protocols are to be used on which
|
|
Packit |
022b05 |
-- link and in what order of preference each is to be tried
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecurityConfigTable OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX SEQUENCE OF PppSecurityConfigEntry
|
|
Packit |
022b05 |
ACCESS not-accessible
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"Table containing the configuration and
|
|
Packit |
022b05 |
preference parameters for PPP Security."
|
|
Packit |
022b05 |
::= { pppSecurity 2 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecurityConfigEntry OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX PppSecurityConfigEntry
|
|
Packit |
022b05 |
ACCESS not-accessible
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"Security configuration information for a
|
|
Packit |
022b05 |
particular PPP link."
|
|
Packit |
022b05 |
INDEX { pppSecurityConfigLink,
|
|
Packit |
022b05 |
pppSecurityConfigPreference }
|
|
Packit |
022b05 |
::= { pppSecurityConfigTable 1 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
PppSecurityConfigEntry ::= SEQUENCE {
|
|
Packit |
022b05 |
pppSecurityConfigLink
|
|
Packit |
022b05 |
INTEGER,
|
|
Packit |
022b05 |
pppSecurityConfigPreference
|
|
Packit |
022b05 |
INTEGER,
|
|
Packit |
022b05 |
pppSecurityConfigProtocol
|
|
Packit |
022b05 |
OBJECT IDENTIFIER,
|
|
Packit |
022b05 |
pppSecurityConfigStatus
|
|
Packit |
022b05 |
INTEGER
|
|
Packit |
022b05 |
}
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecurityConfigLink OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX INTEGER(0..2147483647)
|
|
Packit |
022b05 |
ACCESS read-write
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"The value of ifIndex that identifies the entry
|
|
Packit |
022b05 |
in the interface table that is associated with
|
|
Packit |
022b05 |
the local PPP entity's link for which this
|
|
Packit |
022b05 |
particular security algorithm shall be
|
|
Packit |
022b05 |
attempted. A value of 0 indicates the default
|
|
Packit |
022b05 |
algorithm - i.e., this entry applies to all
|
|
Packit |
022b05 |
links for which explicit entries in the table
|
|
Packit |
022b05 |
do not exist."
|
|
Packit |
022b05 |
::= { pppSecurityConfigEntry 1 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecurityConfigPreference OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX INTEGER(0..2147483647)
|
|
Packit |
022b05 |
ACCESS read-write
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"The relative preference of the security
|
|
Packit |
022b05 |
protocol identified by
|
|
Packit |
022b05 |
pppSecurityConfigProtocol. Security protocols
|
|
Packit |
022b05 |
with lower values of
|
|
Packit |
022b05 |
pppSecurityConfigPreference are tried before
|
|
Packit |
022b05 |
protocols with higher values of
|
|
Packit |
022b05 |
pppSecurityConfigPreference."
|
|
Packit |
022b05 |
::= { pppSecurityConfigEntry 2 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecurityConfigProtocol OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX OBJECT IDENTIFIER
|
|
Packit |
022b05 |
ACCESS read-write
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"Identifies the security protocol to be
|
|
Packit |
022b05 |
attempted on the link identified by
|
|
Packit |
022b05 |
pppSecurityConfigLink at the preference level
|
|
Packit |
022b05 |
identified by pppSecurityConfigPreference. "
|
|
Packit |
022b05 |
::= { pppSecurityConfigEntry 3 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecurityConfigStatus OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX INTEGER {
|
|
Packit |
022b05 |
invalid(1),
|
|
Packit |
022b05 |
valid(2)
|
|
Packit |
022b05 |
}
|
|
Packit |
022b05 |
ACCESS read-write
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"Setting this object to the value invalid(1)
|
|
Packit |
022b05 |
has the effect of invalidating the
|
|
Packit |
022b05 |
corresponding entry in the
|
|
Packit |
022b05 |
pppSecurityConfigTable. It is an
|
|
Packit |
022b05 |
implementation-specific matter as to whether
|
|
Packit |
022b05 |
the agent removes an invalidated entry from the
|
|
Packit |
022b05 |
table. Accordingly, management stations must
|
|
Packit |
022b05 |
be prepared to receive tabular information from
|
|
Packit |
022b05 |
agents that corresponds to entries not
|
|
Packit |
022b05 |
currently in use. Proper interpretation of
|
|
Packit |
022b05 |
such entries requires examination of the
|
|
Packit |
022b05 |
relevant pppSecurityConfigStatus object."
|
|
Packit |
022b05 |
DEFVAL { valid }
|
|
Packit |
022b05 |
::= { pppSecurityConfigEntry 4 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
-- This table contains all of the ID/Secret pair information.
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecuritySecretsTable OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX SEQUENCE OF PppSecuritySecretsEntry
|
|
Packit |
022b05 |
ACCESS not-accessible
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"Table containing the identities and secrets
|
|
Packit |
022b05 |
used by the PPP authentication protocols. As
|
|
Packit |
022b05 |
this table contains secret information, it is
|
|
Packit |
022b05 |
expected that access to this table be limited
|
|
Packit |
022b05 |
to those SNMP Party-Pairs for which a privacy
|
|
Packit |
022b05 |
protocol is in use for all SNMP messages that
|
|
Packit |
022b05 |
the parties exchange. This table contains both
|
|
Packit |
022b05 |
the ID and secret pair(s) that the local PPP
|
|
Packit |
022b05 |
entity will advertise to the remote entity and
|
|
Packit |
022b05 |
the pair(s) that the local entity will expect
|
|
Packit |
022b05 |
from the remote entity. This table allows for
|
|
Packit |
022b05 |
multiple id/secret password pairs to be
|
|
Packit |
022b05 |
specified for a particular link by using the
|
|
Packit |
022b05 |
pppSecuritySecretsIdIndex object."
|
|
Packit |
022b05 |
::= { pppSecurity 3 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecuritySecretsEntry OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX PppSecuritySecretsEntry
|
|
Packit |
022b05 |
ACCESS not-accessible
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"Secret information."
|
|
Packit |
022b05 |
INDEX { pppSecuritySecretsLink,
|
|
Packit |
022b05 |
pppSecuritySecretsIdIndex }
|
|
Packit |
022b05 |
::= { pppSecuritySecretsTable 1 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
PppSecuritySecretsEntry ::= SEQUENCE {
|
|
Packit |
022b05 |
pppSecuritySecretsLink
|
|
Packit |
022b05 |
INTEGER,
|
|
Packit |
022b05 |
pppSecuritySecretsIdIndex
|
|
Packit |
022b05 |
INTEGER,
|
|
Packit |
022b05 |
pppSecuritySecretsDirection
|
|
Packit |
022b05 |
INTEGER,
|
|
Packit |
022b05 |
pppSecuritySecretsProtocol
|
|
Packit |
022b05 |
OBJECT IDENTIFIER,
|
|
Packit |
022b05 |
pppSecuritySecretsIdentity
|
|
Packit |
022b05 |
OCTET STRING,
|
|
Packit |
022b05 |
pppSecuritySecretsSecret
|
|
Packit |
022b05 |
OCTET STRING,
|
|
Packit |
022b05 |
pppSecuritySecretsStatus
|
|
Packit |
022b05 |
INTEGER
|
|
Packit |
022b05 |
}
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecuritySecretsLink OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX INTEGER(0..2147483647)
|
|
Packit |
022b05 |
ACCESS read-only
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"The link to which this ID/Secret pair applies.
|
|
Packit |
022b05 |
By convention, if the value of this object is 0
|
|
Packit |
022b05 |
then the ID/Secret pair applies to all links."
|
|
Packit |
022b05 |
::= { pppSecuritySecretsEntry 1 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecuritySecretsIdIndex OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX INTEGER(0..2147483647)
|
|
Packit |
022b05 |
ACCESS read-only
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"A unique value for each ID/Secret pair that
|
|
Packit |
022b05 |
has been defined for use on this link. This
|
|
Packit |
022b05 |
allows multiple ID/Secret pairs to be defined
|
|
Packit |
022b05 |
for each link. How the local entity selects
|
|
Packit |
022b05 |
which pair to use is a local implementation
|
|
Packit |
022b05 |
decision."
|
|
Packit |
022b05 |
::= { pppSecuritySecretsEntry 2 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecuritySecretsDirection OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX INTEGER {
|
|
Packit |
022b05 |
local-to-remote(1),
|
|
Packit |
022b05 |
remote-to-local(2)
|
|
Packit |
022b05 |
}
|
|
Packit |
022b05 |
ACCESS read-write
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"This object defines the direction in which a
|
|
Packit |
022b05 |
particular ID/Secret pair is valid. If this
|
|
Packit |
022b05 |
object is local-to-remote then the local PPP
|
|
Packit |
022b05 |
entity will use the ID/Secret pair when
|
|
Packit |
022b05 |
attempting to authenticate the local PPP entity
|
|
Packit |
022b05 |
to the remote PPP entity. If this object is
|
|
Packit |
022b05 |
remote-to-local then the local PPP entity will
|
|
Packit |
022b05 |
expect the ID/Secret pair to be used by the
|
|
Packit |
022b05 |
remote PPP entity when the remote PPP entity
|
|
Packit |
022b05 |
attempts to authenticate itself to the local
|
|
Packit |
022b05 |
PPP entity."
|
|
Packit |
022b05 |
::= { pppSecuritySecretsEntry 3 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecuritySecretsProtocol OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX OBJECT IDENTIFIER
|
|
Packit |
022b05 |
ACCESS read-write
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"The security protocol (e.g. CHAP or PAP) to
|
|
Packit |
022b05 |
which this ID/Secret pair applies."
|
|
Packit |
022b05 |
::= { pppSecuritySecretsEntry 4 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecuritySecretsIdentity OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX OCTET STRING (SIZE(0..255))
|
|
Packit |
022b05 |
ACCESS read-write
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"The Identity of the ID/Secret pair. The
|
|
Packit |
022b05 |
actual format, semantics, and use of
|
|
Packit |
022b05 |
pppSecuritySecretsIdentity depends on the
|
|
Packit |
022b05 |
actual security protocol used. For example, if
|
|
Packit |
022b05 |
pppSecuritySecretsProtocol is
|
|
Packit |
022b05 |
pppSecurityPapProtocol then this object will
|
|
Packit |
022b05 |
contain a PAP Peer-ID. If
|
|
Packit |
022b05 |
pppSecuritySecretsProtocol is
|
|
Packit |
022b05 |
pppSecurityChapMD5Protocol then this object
|
|
Packit |
022b05 |
would contain the CHAP NAME parameter."
|
|
Packit |
022b05 |
::= { pppSecuritySecretsEntry 5 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecuritySecretsSecret OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX OCTET STRING (SIZE(0..255))
|
|
Packit |
022b05 |
ACCESS read-write
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"The secret of the ID/Secret pair. The actual
|
|
Packit |
022b05 |
format, semantics, and use of
|
|
Packit |
022b05 |
pppSecuritySecretsSecret depends on the actual
|
|
Packit |
022b05 |
security protocol used. For example, if
|
|
Packit |
022b05 |
pppSecuritySecretsProtocol is
|
|
Packit |
022b05 |
pppSecurityPapProtocol then this object will
|
|
Packit |
022b05 |
contain a PAP Password. If
|
|
Packit |
022b05 |
pppSecuritySecretsProtocol is
|
|
Packit |
022b05 |
pppSecurityChapMD5Protocol then this object
|
|
Packit |
022b05 |
would contain the CHAP MD5 Secret."
|
|
Packit |
022b05 |
::= { pppSecuritySecretsEntry 6 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
pppSecuritySecretsStatus OBJECT-TYPE
|
|
Packit |
022b05 |
SYNTAX INTEGER {
|
|
Packit |
022b05 |
invalid(1),
|
|
Packit |
022b05 |
valid(2)
|
|
Packit |
022b05 |
}
|
|
Packit |
022b05 |
ACCESS read-write
|
|
Packit |
022b05 |
STATUS mandatory
|
|
Packit |
022b05 |
DESCRIPTION
|
|
Packit |
022b05 |
"Setting this object to the value invalid(1)
|
|
Packit |
022b05 |
has the effect of invalidating the
|
|
Packit |
022b05 |
corresponding entry in the
|
|
Packit |
022b05 |
pppSecuritySecretsTable. It is an
|
|
Packit |
022b05 |
implementation-specific matter as to whether
|
|
Packit |
022b05 |
the agent removes an invalidated entry from the
|
|
Packit |
022b05 |
table. Accordingly, management stations must
|
|
Packit |
022b05 |
be prepared to receive tabular information from
|
|
Packit |
022b05 |
agents that corresponds to entries not
|
|
Packit |
022b05 |
currently in use. Proper interpretation of
|
|
Packit |
022b05 |
such entries requires examination of the
|
|
Packit |
022b05 |
relevant pppSecuritySecretsStatus object."
|
|
Packit |
022b05 |
DEFVAL { valid }
|
|
Packit |
022b05 |
::= { pppSecuritySecretsEntry 7 }
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
|
|
Packit |
022b05 |
END
|