| Enumerates the possible types of classification rules which
may be referenced in the etsysPolicyRuleTable. Each
type has an implied length (in bytes) associated with it.
Octet-strings defined as representing one of these types will
be represented in Network-Byte-Order (Big Endian) if the native
representation is other than octets.
The managed entity MUST support sets in which the specified
rule length is less than that specified by the value the entity
reports in etsysPolicyRuleAttributeByteLength, so long as the
associated etsysPolicyRulePrefixBits does not imply the
existence of more etsysPolicyRuleData than is present (i.e. the
specified length MUST be >= ((etsysPolicyRulePrefixBits+7)/8).)
Additionally, the managed entity MUST return a
PolicyClassificationRuleType which carries the number of octets
specified by the associated etsysPolicyRuleAttributeByteLength,
regardless of the number etsysPolicyRulePrefixBits. This yields
a behavior in which, on some devices, a ip4Source rule may be
supported with only 4 bytes of rule data (excluding the TCP/UDP
source port information), while other devices may support the
full syntax using all 6 bytes.
macSource(1) The source MAC address in an Ethernet
frame. Length is 6 bytes.
macDestination(2) The destination MAC address in an
Ethernet frame. Length is 6 bytes.
ipxSource(3) The source address in an IPX header.
Length is 4 bytes (Network prefix).
ipxDestination(4) The destination address in an IPX
header. Length is 4 bytes (Network
prefix).
ipxSourcePort(5) The source IPX port(socket) in an IPX
header. Length is 2 bytes.
ipxDestinationPort(6) The destination IPX port(socket) in an
IPX header. Length is 2 bytes.
ipxCos(7) The CoS(HopCount) field in an IPX
header. Length is 1 byte.
ipxType(8) The protocol type in an IPX header.
Length is 1 byte.
ip6Source(9) The source address in an IPv6 header,
postfixed with the source port (for
TCP/UDP frames). Length is 18 bytes
for IPv6+TCP/UDP, or 16 bytes for
IPv6.
ip6Destination(10) The destination address in an IPv6
header, postfixed with the destination
port (for TCP/UDP frames). Length is 18
bytes for IPv6+TCP/UDP, or 16 bytes for
IPv6.
ip6FlowLabel(11) The flow label field (traffic class and
flow identifier) in an IPv6 header.
Length is 3 bytes, as only the first
20 bits are valid and mask-able, only
the data in the first 20 bits (the first
five nibbles) is considered.
ip4Source(12) The source address in an IPv4 header,
postfixed with the source port (for
TCP/UDP frames). Length is 6 bytes
for IPv4+TCP/UDP, or 4 bytes for
IPv4.
ip4Destination(13) The destination address in an IPv4
header, postfixed with the destination
port (for TCP/UDP frames). Length is 6
bytes for IPv4+TCP/UDP, or 4 bytes for
IPv4.
ipFragment(14) Truth value derived from the FLAGS and
FRAGMENTATION_OFFSET fields of an IP
header. If the MORE bit of the flags
field is set, or the
FRAGMENTATION_OFFSET is non-zero, the
frame is fragmented. Length is 0 bytes
(there is no data, only presence).
udpSourcePort(15) The source UDP port(socket) in a UDP
header, optionally postfixed with a
source IP address. Length is 2 bytes
for UDP, 6 bytes for UDP+IPv4, or 18
bytes for UDP+IPv6.
udpDestinationPort(16) The destination UDP port(socket) in a
UDP header, optionally postfixed with a
destination IP address. Length is 2
bytes for UDP, 6 bytes for UDP+IPv4, or
18 bytes for UDP+IPv6.
tcpSourcePort(17) The source TCP port(socket) in an TCP
header, optionally postfixed with a
source IPv4 address. Length is 2 bytes
for TCP, 6 bytes for TCP+IPv4, or 18
bytes for TCP+IPv6.
tcpDestinationPort(18) The destination TCP port(socket) in an
TCP header, optionally postfixed with a
destination IPv4 address. Length is 2
bytes for TCP, 6 bytes for TCP+IPv4, or
18 bytes for TCP+IPv6.
icmpTypeCode(19) The Type and Code fields from an ICMP
frame. These are encoded in 2 bytes,
network-byte-order, Type in the first
(left-most) byte, Code in the second
byte.
ipTtl(20) The TTL(HopCount) field in an IP header.
Length is 1 byte.
ipTos(21) The ToS(DSCP) field in an IP header.
Length is 1 byte.
ipType(22) The protocol type in an IP header.
Length is 1 byte.
icmpTypeCodeV6(23) The Type and Code fields from an ICMP
frame. These are encoded in 2 bytes,
network-byte-order, Type in the first
(left-most) byte, Code in the second
byte. For ICMPv6, which redefines the
types and codes.
etherType(25) The type field in an Ethernet II frame.
Length is 2 bytes.
llcDsapSsap(26) The DSAP/SSAP/CTRL field in an LLC
encapsulated frame, includes SNAP
encapsulated frames and the associated
Ethernet II type field. Length is 5
bytes.
vlanId(27) The 12 bit Virtual LAN ID field present
in an 802.1D Tagged frame.
Length is 2 bytes, the field is
represented in the FIRST (left-most,
big-endian) 12 bits of the 16 bit field.
A vlanId of 1 would be encoded as 00-10,
a vlanId of 4094 would be encoded as
FF-E0, and a vlanId of 100 would be
encoded as 06-40.
ieee8021dTci(28) The entire 16 bit TCI field present
in an 802.1D Tagged frame (include both
VLAN ID and Priority bits.
Length is 2 bytes.
acl(30) A numbered ACL, represented by a 4 byte
integer value. This is not maskable.
bridgePort(31) The dot1dBasePort on which the frame was
received. Length is 2 bytes. |
| |
INTEGER |
macSource(1), macDestination(2), ipxSource(3), ipxDestination(4), ipxSourcePort(5), ipxDestinationPort(6), ipxCos(7), ipxType(8), ip6Source(9), ip6Destination(10), ip6FlowLabel(11), ip4Source(12), ip4Destination(13), ipFragment(14), udpSourcePort(15), udpDestinationPort(16), tcpSourcePort(17), tcpDestinationPort(18), icmpTypeCode(19), ipTtl(20), ipTos(21), ipType(22), icmpTypeCodeV6(23), etherType(25), llcDsapSsap(26), vlanId(27), ieee8021dTci(28), acl(30), bridgePort(31) |
|
