CISCO-ADMISSION-POLICY-MIB
File:
CISCO-ADMISSION-POLICY-MIB.mib (18597 bytes)
Imported modules
Imported symbols
Defined Types
| CapSessionId |
|
| An octet string describes an unique session identification. |
| TEXTUAL-CONVENTION |
|
|
|
| |
OCTET STRING |
Size(1..64) |
|
| CapQosPolicy |
|
| An octet string, preferably in human-readable form,
describes a QoS policy. |
| TEXTUAL-CONVENTION |
|
|
|
| |
OCTET STRING |
Size(0..255) |
|
| CapAclName |
|
| An octet string, preferably in human-readable form,
describes the name of an ACL. |
| TEXTUAL-CONVENTION |
|
|
|
| |
OCTET STRING |
Size(0..255) |
|
| CapURLString |
|
| This textual convention defines the URL string.
The Universal Resource Locator (URL). The URL strings
are compact string representation for a resource
available via internet. This is the address location
of the page to load. The string should represent a
fully qualifying string with the format
'protocol:/server/page'. In general the string should
point to any value that can be saved/loaded.
Any limitation for the URL must be defined as part of
the description of any object which uses this syntax.
The description of any object which uses this syntax
must specifically describe the meaning of zero length
value. |
| TEXTUAL-CONVENTION |
|
|
|
| |
OCTET STRING |
Size(0..255) |
|
| CapPolicyState |
|
| This textual convention indicates the current state
of a policy applied to host traffic.
'notApplicable' indicates that the policy is not applicable.
'success' indicates that the policy is applied successfully.
'failure' indicates that the policy is failed to apply.
'inProgress' indicates that the policy application is
in progress.
'ipWait' indicates that the policy is waiting for IP
address assignment. |
| TEXTUAL-CONVENTION |
|
|
|
| |
INTEGER |
notApplicable(1), success(2), failure(3), inProgress(4), ipWait(5) |
|
| CapSidSessionInfoEntry |
|
| SEQUENCE |
|
|
|
| |
capSidSessionIndex |
CapSessionId |
|
| |
capSidSessionIfIndex |
InterfaceIndex |
|
| |
capSidSessionMacAddress |
MacAddress |
|
| |
capSidSessionAddressType |
InetAddressType |
|
| |
capSidSessionAddress |
InetAddress |
|
| |
capSidSessionFeatureType |
BITS |
|
| CapSidSessionPolicyEntry |
|
| SEQUENCE |
|
|
|
| |
capSidSessionPolicyIndex |
INTEGER |
|
| |
capSidIngressQosPolicy |
CapQosPolicy |
|
| |
capSidIngressQosPolicyState |
CapPolicyState |
|
| |
capSidEgressQosPolicy |
CapQosPolicy |
|
| |
capSidEgressQosPolicyState |
CapPolicyState |
|
| |
capSidDownloadableAclName |
CapAclName |
|
| |
capSidDownloadableAclState |
CapPolicyState |
|
| |
capSidUrlRedirectAclName |
CapAclName |
|
| |
capSidUrlRedirectAclState |
CapPolicyState |
|
| |
capSidRedirectUrlString |
CapURLString |
|
| |
capSidRedirectUrlStringState |
CapPolicyState |
|
| |
capSidSecurityGroupTag |
Integer32 |
|
Defined Values
| ciscoAdmissionPolicyMIB |
1.3.6.1.4.1.9.9.653 |
| This MIB module defines managed objects that facilitate
the management of policies upon host(s) admission to
a network.
The information available through this MIB includes:
o Statistics information such as number of total and
active sessions.
o Session information such as IP and MAC address of
host, client type, and session state.
o QoS and Security policy applied to host traffic upon
host admission to a network.
The following terms are used throughout this MIB:
QoS (Quality of Service) is the method which attempts
to ensure that the network requirements of different
applications can be met by giving preferential forwarding
treatment to some traffic.
ACL (Access Control List) which contains filters used
to identify traffic flows with certain characteristics.
Downloadable ACL is a set of filters, configured on the
RADIUS server which are downloaded during authorization
phase of admission features like dot1x, authProxy, etc.
SGT (Security Group Tag) is a unique 16 bits value assigned
to every security group and used by network devices to
enforce network policies.
URL: Universal Resource Locator.
URL-Redirect ACL is used for URL redirection feature. Any
ingress HTTP from the host that matches the ACL content
is subjected to redirection to the URL address specified by
the URL-Redirect string.
URL redirect string is the URL to which HTTP traffic to
the host would be redirected. |
| MODULE-IDENTITY |
|
|
|
| capTotalSessions |
1.3.6.1.4.1.9.9.653.1.1.1 |
| This object indicates the total numbers of sessions
created in the device since the last system reset. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
Counter32 |
|
|
| capActiveSessions |
1.3.6.1.4.1.9.9.653.1.1.2 |
| This object indicates the currently active sessions
in the device. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
Gauge32 |
|
|
| capSidSessionInfoTable |
1.3.6.1.4.1.9.9.653.1.1.3 |
| This table lists admission policy sessions based on unique
session identifier.
An entry is created by the agent when an admission policy
session has successfully registered to the system.
An entry is deleted by the agent upon de-registration of the
admission policy session with system. |
| Status: current |
Access: not-accessible |
| OBJECT-TYPE |
|
|
|
| |
SEQUENCE OF |
|
|
| |
|
CapSidSessionInfoEntry |
|
| capSidSessionInfoEntry |
1.3.6.1.4.1.9.9.653.1.1.3.1 |
| Each row contains the management information of a particular
active session based on unique session identifier. |
| Status: current |
Access: not-accessible |
| OBJECT-TYPE |
|
|
|
| |
CapSidSessionInfoEntry |
|
|
| capSidSessionIndex |
1.3.6.1.4.1.9.9.653.1.1.3.1.1 |
| This object uniquely identifies a session. |
| Status: current |
Access: not-accessible |
| OBJECT-TYPE |
|
|
|
| |
CapSessionId |
|
|
| capSidSessionIfIndex |
1.3.6.1.4.1.9.9.653.1.1.3.1.2 |
| This object indicates the ifIndex value of the interface
on which the session is established. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
InterfaceIndex |
|
|
| capSidSessionAddress |
1.3.6.1.4.1.9.9.653.1.1.3.1.5 |
| This object indicates the Internet address assigned for
the host. The type of this address is determined by
the value of capSidSessionAddressType object. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
InetAddress |
|
|
| capSidSessionFeatureType |
1.3.6.1.4.1.9.9.653.1.1.3.1.6 |
| This object indicates the admission features associated
with the session.
'dot1x' indicates that the admission feature is
802.1x feature.
'mab' indicates that the admission feature is
Mac Authentication Bypass feature.
'eou' indicates that the admission feature is
Extensible Authentication Protocol over UDP feature.
'authProxy' indicates that the admission feature is
Authentication Proxy feature. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
BITS |
dot1x(0), mab(1), eou(2), authProxy(3) |
|
| capSidSessionPolicyTable |
1.3.6.1.4.1.9.9.653.1.1.4 |
| This table lists the policies that will be enforced
per session per admission feature. The session in this
table should have a corresponding entry in
capSidSessionInfoTable. |
| Status: current |
Access: not-accessible |
| OBJECT-TYPE |
|
|
|
| |
SEQUENCE OF |
|
|
| |
|
CapSidSessionPolicyEntry |
|
| capSidSessionPolicyEntry |
1.3.6.1.4.1.9.9.653.1.1.4.1 |
| Each row contains the management information of a
particular admission feature of a session. |
| Status: current |
Access: not-accessible |
| OBJECT-TYPE |
|
|
|
| |
CapSidSessionPolicyEntry |
|
|
| capSidSessionPolicyIndex |
1.3.6.1.4.1.9.9.653.1.1.4.1.1 |
| This object indicates the admission feature which
a host is subjected to in a session.
'dot1x' indicates that the admission feature is
802.1x feature.
'mab' indicates that the admission feature is
Mac Authentication Bypass feature.
'eou' indicates that the admission feature is
Extensible Authentication Protocol over UDP feature.
'authProxy' indicates that the admission feature is
Authentication Proxy feature. |
| Status: current |
Access: not-accessible |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
dot1x(1), mab(2), eou(3), authProxy(4) |
|
| capSidIngressQosPolicy |
1.3.6.1.4.1.9.9.653.1.1.4.1.2 |
| This object indicates the name of an existing QoS
policy which will be applied to incoming traffic
in this session. An empty string indicates that no such
policy is applied. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
CapQosPolicy |
|
|
| capSidIngressQosPolicyState |
1.3.6.1.4.1.9.9.653.1.1.4.1.3 |
| This object indicates the current state of the
QoS policy which will be applied to incoming traffic
in this session. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
CapPolicyState |
|
|
| capSidEgressQosPolicy |
1.3.6.1.4.1.9.9.653.1.1.4.1.4 |
| This object indicates the name of an existing QoS
policy which will be applied to outgoing traffic
in this session. An empty string indicates that no
such policy is applied. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
CapQosPolicy |
|
|
| capSidEgressQosPolicyState |
1.3.6.1.4.1.9.9.653.1.1.4.1.5 |
| This object indicates the current state of the QoS
policy which will be applied to outgoing traffic
in this session. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
CapPolicyState |
|
|
| capSidDownloadableAclName |
1.3.6.1.4.1.9.9.653.1.1.4.1.6 |
| This object indicates the name of a Downloadable
ACL which will be applied to the host traffic.
An empty string indicates that no such ACL is
applied. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
CapAclName |
|
|
| capSidUrlRedirectAclName |
1.3.6.1.4.1.9.9.653.1.1.4.1.8 |
| This object indicates the ACL name that redirected traffic
from the host will be subjected to. An empty string indicates
that no such ACL is applied. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
CapAclName |
|
|
| capSidRedirectUrlString |
1.3.6.1.4.1.9.9.653.1.1.4.1.10 |
| This object indicates the URL that traffic from
the host will be redirected to. An empty string indicates
that no such URL is applied. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
CapURLString |
|
|
| capSidSecurityGroupTag |
1.3.6.1.4.1.9.9.653.1.1.4.1.12 |
| This object indicates the SGT value assigned to the
host that initiated this session. Value of -1 indicates
that there is no SGT value assigned. |
| Status: current |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
Integer32 |
-1 | 0..65535 |
|
| ciscoAdmissionPolicyMIBCompliance |
1.3.6.1.4.1.9.9.653.2.1.1 |
| The compliance statement for the CISCO-ADMISSION-POLICY-MIB |
| Status: current |
Access: read-only |
| MODULE-COMPLIANCE |
|
|
|
| capSessionStatisticsGroup |
1.3.6.1.4.1.9.9.653.2.2.1 |
| A collection of object which provides session statistics
information in the device. |
| Status: current |
Access: read-only |
| OBJECT-GROUP |
|
|
|
| capSidSessionInfoGroup |
1.3.6.1.4.1.9.9.653.2.2.2 |
| A collection of objects which provides managed information
of a session based on unique session identifier. |
| Status: current |
Access: read-only |
| OBJECT-GROUP |
|
|
|
| capSidSessionPolicyGroup |
1.3.6.1.4.1.9.9.653.2.2.3 |
| A collection of objects which provides policy information
in a session based on unique session identifier. |
| Status: current |
Access: read-only |
| OBJECT-GROUP |
|
|
|