ENTERASYS-THREAT-NOTIFICATION-MIB

File: ENTERASYS-THREAT-NOTIFICATION-MIB.mib (26200 bytes)

Imported modules

SNMPv2-SMI SNMPv2-CONF SNMPv2-TC
INET-ADDRESS-MIB IF-MIB ENTERASYS-MIB-NAMES

Imported symbols

MODULE-IDENTITY OBJECT-TYPE NOTIFICATION-TYPE
Integer32 MODULE-COMPLIANCE OBJECT-GROUP
NOTIFICATION-GROUP DateAndTime DisplayString
MacAddress InetAddress InetAddressType
InterfaceIndex etsysModules

Defined Values

etsysThreatNotificationMIB 1.3.6.1.4.1.5624.1.2.45
This MIB module defines the portion of the SNMP enterprise MIBs under Enterasys Networks' enterprise OID pertaining to the Threat Notification feature.
MODULE-IDENTITY    

etsysThreatNotificationObjects 1.3.6.1.4.1.5624.1.2.45.1
OBJECT IDENTIFIER    

etsysThreatNotificationNotificationBranch 1.3.6.1.4.1.5624.1.2.45.1.0
OBJECT IDENTIFIER    

etsysThreatNotificationSystemBranch 1.3.6.1.4.1.5624.1.2.45.1.1
OBJECT IDENTIFIER    

etsysThreatNotificationSenderID 1.3.6.1.4.1.5624.1.2.45.1.1.1
A name that identifies a sender or group of senders. ie. 'Dragon IDS', ACME IDS', 'VIRUS SCAN', 'DRAGON1', 'DRAGON2'
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  DisplayString Size(0..128)  

etsysThreatNotificationSenderName 1.3.6.1.4.1.5624.1.2.45.1.1.2
The name of the sensor that discovered the threat.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  DisplayString Size(0..128)  

etsysThreatNotificationThreatCategory 1.3.6.1.4.1.5624.1.2.45.1.1.3
A name that identifies a group of threat types.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  DisplayString Size(0..128)  

etsysThreatNotificationThreatName 1.3.6.1.4.1.5624.1.2.45.1.1.4
The name of the signature that detected the threat.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  DisplayString Size(0..255)  

etsysThreatNotificationDeviceAddressType 1.3.6.1.4.1.5624.1.2.45.1.1.5
The address type of the device where the initiator of the threat was detected.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  InetAddressType  

etsysThreatNotificationDeviceAddress 1.3.6.1.4.1.5624.1.2.45.1.1.6
The address of the device where the initiator of the threat was detected.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  InetAddress  

etsysThreatNotificationDeviceIfIndex 1.3.6.1.4.1.5624.1.2.45.1.1.7
The interface where the initiator was detected.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  InterfaceIndex  

etsysThreatNotificationInitiatorAddressType 1.3.6.1.4.1.5624.1.2.45.1.1.8
The address type of the endstation that initiated the threat.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  InetAddressType  

etsysThreatNotificationInitiatorAddress 1.3.6.1.4.1.5624.1.2.45.1.1.9
The address of the endstation that initiated the threat.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  InetAddress  

etsysThreatNotificationTargetAddressType 1.3.6.1.4.1.5624.1.2.45.1.1.10
The address type of the endstation that is threatened.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  InetAddressType  

etsysThreatNotificationTargetAddress 1.3.6.1.4.1.5624.1.2.45.1.1.11
The address of the endstation that is threatened.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  InetAddress  

etsysThreatNotificationConsolidatedData 1.3.6.1.4.1.5624.1.2.45.1.1.12
The purpose of this object is to support devices that can only send single varbind notification messages and should only be used in conjunction with etsysThreatNotificationInformationMessage3. The data should be encoded in the following format: object1='data' object2='data' object3='data' ... Here is an example: etsysThreatNotificationSenderID='dragon' etsysThreatNotificationSenderName='dragon' etsysThreatNotificationThreatCategory='ATTACKS' etsysThreatNotificationThreatName='HOST:APACHE:ETC-PASSWD' etsysThreatNotificationInitiatorAddress='1.1.1.1' etsysThreatNotificationTargetAddress='2.2.2.2'
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  DisplayString Size(0..1024)  

etsysThreatNotificationInitiatorMacAddress 1.3.6.1.4.1.5624.1.2.45.1.1.13
The MAC address of the endstation that is threatened.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  MacAddress  

etsysThreatNotificationIncidentID 1.3.6.1.4.1.5624.1.2.45.1.1.14
The incident ID of an event. Used by etsysThreatUndoNotificationMessage to undo an action.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  Integer32  

etsysThreatNotificationStatus 1.3.6.1.4.1.5624.1.2.45.1.1.15
The status of an event. Used by etsysThreatResponseNotificationMessage.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  DisplayString Size(0..64)  

etsysThreatNotificationDetails 1.3.6.1.4.1.5624.1.2.45.1.1.16
The details of an event. Used by etsysThreatResponseNotificationMessage.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  DisplayString Size(0..255)  

etsysThreatNotificationAction 1.3.6.1.4.1.5624.1.2.45.1.1.17
The action taken in response to an incident. Used by etsysThreatResponseNotificationMessage.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  DisplayString Size(0..64)  

etsysThreatNotificationRuleName 1.3.6.1.4.1.5624.1.2.45.1.1.18
The name of the rule that was applied to this incident. Used by etsysThreatResponseNotificationMessage.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  DisplayString Size(0..64)  

etsysThreatNotificationDateTime 1.3.6.1.4.1.5624.1.2.45.1.1.19
The date and time the incident was received. Used by etsysThreatResponseNotificationMessage.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  DateAndTime  

etsysThreatNotificationLastUpdated 1.3.6.1.4.1.5624.1.2.45.1.1.20
The date and time the event was last updated. Used by etsysThreatResponseNotificationMessage.
Status: current Access: accessible-for-notify
OBJECT-TYPE    
  DateAndTime  

etsysThreatNotificationInformationMessage1 1.3.6.1.4.1.5624.1.2.45.1.0.1
An etsysThreatNotificationInformationMessage1 indicates that a potential threat has been identified. This trap should be generated when the IP address of the source of the threat is known, but not the device and interface. (etsysThreatNotificationSenderName and etsysThreatNotificationTargetAddress are optional objects)
Status: current Access: accessible-for-notify
NOTIFICATION-TYPE    

etsysThreatNotificationInformationMessage2 1.3.6.1.4.1.5624.1.2.45.1.0.2
An etsysThreatNotificationInformationMessage2 indicates that a potential threat has been identified. This trap should be generated when the device and interface of the threat is known, but the IP address of the source may or may not be known. (etsysThreatNotificationSenderName, etsysThreatNotificationInitiatorAddress and etsysThreatNotificationTargetAddress are optional objects)
Status: current Access: accessible-for-notify
NOTIFICATION-TYPE    

etsysThreatNotificationInformationMessage3 1.3.6.1.4.1.5624.1.2.45.1.0.3
The purpose of etsysThreatNotificationInformationMessage3 is to support devices that can only send single varbind notifications. See etsysThreatNotificationConsolidatedData for more details.
Status: current Access: accessible-for-notify
NOTIFICATION-TYPE    

etsysThreatNotificationInformationMessage4 1.3.6.1.4.1.5624.1.2.45.1.0.4
An etsysThreatNotificationInformationMessage4 indicates that a potential threat has been identified. This trap should be generated when the device and interface of the threat is known, but the IP address of the source may or may not be known. (etsysThreatNotificationSenderName, etsysThreatNotificationInitiatorAddress and etsysThreatNotificationTargetAddress are optional objects)
Status: current Access: accessible-for-notify
NOTIFICATION-TYPE    

etsysThreatUndoNotificationMessage 1.3.6.1.4.1.5624.1.2.45.1.0.5
An etsysThreatUndoNotificationMessage indicates that a potential threat that had been identified has been resolved. When this message is received, if a user was quarantined, the action should be undone.
Status: current Access: accessible-for-notify
NOTIFICATION-TYPE    

etsysThreatResponseNotificationMessage 1.3.6.1.4.1.5624.1.2.45.1.0.6
An etsysThreatResponseNotificationMessage indicates that a potential threat that had been identified has been acted upon. When this message is received, a user was either quarantined, or the action was undone.
Status: current Access: accessible-for-notify
NOTIFICATION-TYPE    

etsysThreatNotificationConformance 1.3.6.1.4.1.5624.1.2.45.2
OBJECT IDENTIFIER    

etsysThreatNotificationGroups 1.3.6.1.4.1.5624.1.2.45.2.1
OBJECT IDENTIFIER    

etsysThreatNotificationCompliances 1.3.6.1.4.1.5624.1.2.45.2.2
OBJECT IDENTIFIER    

etsysThreatNotificationMessage1SystemGroup 1.3.6.1.4.1.5624.1.2.45.2.1.1
A collection of objects required for etsysThreatNotificationMessage1 providing information about possible threats on a network.
Status: current Access: accessible-for-notify
OBJECT-GROUP    

etsysThreatNotificationMessage2SystemGroup 1.3.6.1.4.1.5624.1.2.45.2.1.2
A collection of objects required for etsysThreatNotificationMessage2 providing information about possible threats on a network.
Status: current Access: accessible-for-notify
OBJECT-GROUP    

etsysThreatNotificationMessage3SystemGroup 1.3.6.1.4.1.5624.1.2.45.2.1.3
A collection of objects required for etsysThreatNotificationMessage3 providing information about possible threats on a network.
Status: current Access: accessible-for-notify
OBJECT-GROUP    

etsysThreatNotificationMessage1Group 1.3.6.1.4.1.5624.1.2.45.2.1.4
A collection of notifications used to alert a management application of possible threats on a network.
Status: current Access: accessible-for-notify
NOTIFICATION-GROUP    

etsysThreatNotificationMessage2Group 1.3.6.1.4.1.5624.1.2.45.2.1.5
A collection of notifications used to alert a management application of possible threats on a network.
Status: current Access: accessible-for-notify
NOTIFICATION-GROUP    

etsysThreatNotificationMessage3Group 1.3.6.1.4.1.5624.1.2.45.2.1.6
A collection of notifications used to alert a management application of possible threats on a network.
Status: current Access: accessible-for-notify
NOTIFICATION-GROUP    

etsysThreatNotificationMessage4SystemGroup 1.3.6.1.4.1.5624.1.2.45.2.1.7
A collection of objects required for etsysThreatNotificationMessage4 providing information about possible threats on a network.
Status: current Access: accessible-for-notify
OBJECT-GROUP    

etsysThreatNotificationMessage4Group 1.3.6.1.4.1.5624.1.2.45.2.1.8
A collection of notifications used to alert a management application of possible threats on a network.
Status: current Access: accessible-for-notify
NOTIFICATION-GROUP    

etsysThreatUndoNotificationMessageSystemGroup 1.3.6.1.4.1.5624.1.2.45.2.1.9
A collection of objects required for etsysThreatUndoNotificationMessage providing information about possible threats on a network.
Status: current Access: accessible-for-notify
OBJECT-GROUP    

etsysThreatUndoNotificationMessageGroup 1.3.6.1.4.1.5624.1.2.45.2.1.10
A collection of notifications used to alert a management application of possible threats on a network.
Status: current Access: accessible-for-notify
NOTIFICATION-GROUP    

etsysThreatResponseNotificationMessageSystemGroup 1.3.6.1.4.1.5624.1.2.45.2.1.11
A collection of objects required for etsysThreatResponseNotificationMessage providing information about possible threats on a network.
Status: current Access: accessible-for-notify
OBJECT-GROUP    

etsysThreatResponseNotificationMessageGroup 1.3.6.1.4.1.5624.1.2.45.2.1.12
A collection of notifications used to alert a management application of possible threats on a network.
Status: current Access: accessible-for-notify
NOTIFICATION-GROUP    

etsysThreatNotificationCompliance 1.3.6.1.4.1.5624.1.2.45.2.2.1
The compliance statement for devices that support threat notifications.
Status: current Access: accessible-for-notify
MODULE-COMPLIANCE    

Generation date: July 28, 2023, 16:18:13, Copyright © 2007 - 2022 - Circitor