TELDAT-MON-PROTOCOL-IPSEC-MIB: View SNMP OID List / Download MIB

VENDOR: TELDAT, S.A.


 Home MIB: TELDAT-MON-PROTOCOL-IPSEC-MIB
Download as:   
SNMPv2-CONFSNMPv2-SMISNMPv2-TCTELDAT-SW-STRUCTURE-MIB

Download standard MIB format if you are planning to load a MIB file into some system (OS, Zabbix, PRTG ...) or view it with a MIB browser. CSV is more suitable for analyzing and viewing OID' and other MIB objects in excel. JSON and YAML formats are usually used in programing even though some systems can use MIB in YAML format (like Logstash).
Keep in mind that standard MIB files can be successfully loaded by systems and programs only if all the required MIB's from the "Imports" section are already loaded.
The tree-like SNMP object navigator requires no explanations because it is very simple to use. And if you stumbled on this MIB from Google note that you can always go back to the home page if you need to perform another MIB or OID lookup.


Object Name OID Type Access Info
 telProdNpMonProtIpsec 1.3.6.1.4.1.2007.4.1.2.3.15
This module defines a MIB for monitoring Internet Protocol Security (IPSec). IPSec is a security platform on network level, which lets securing IP communications by authenticating and encrypting each IP data flow. The MIB is made up of three major groups: Advanced, SA and Statistics. Advanced group shows the counter values of use of SA and cypher queue. In SA group is visualized the state of every Security Association (SA). Statistics group contains statistics of IPSec performance.
       teldatIPSecAdvancedGroup 1.3.6.1.4.1.2007.4.1.2.3.15.1
           iPSecClear 1.3.6.1.4.1.2007.4.1.2.3.15.1.1 unsigned32 read-write
Reset the counter values of cypher queue and SA use. This variable just can take the values 1 (reset counters) or 0 (no effects) on SET operation.
           iPSecActive 1.3.6.1.4.1.2007.4.1.2.3.15.1.2 unsigned32 read-write
Close every Security Association and disable IPSec. This variable just can take the values 1 (enabling IPSec) or 0 (disabling IPSec). GET operation returns the protocol state: 1 (enabled) and 0 (disabled).
           cypherQueueSize 1.3.6.1.4.1.2007.4.1.2.3.15.1.3 unsigned32 read-only
Size of cypher queue.
           cypherQueueWaterMark 1.3.6.1.4.1.2007.4.1.2.3.15.1.4 unsigned32 read-only
Maximum number of messages which have been in the cypher queue.
           currentQueueLevel 1.3.6.1.4.1.2007.4.1.2.3.15.1.5 unsigned32 read-only
Current number of messages in the cypher queue.
           maxSASimultaneous 1.3.6.1.4.1.2007.4.1.2.3.15.1.6 unsigned32 read-only
Maximum number of IPSec SA which have been simultaneously active.
           currentNumberIPSecSa 1.3.6.1.4.1.2007.4.1.2.3.15.1.7 unsigned32 read-only
Current number of active IPSec SA.
           maxNegotiationDuration 1.3.6.1.4.1.2007.4.1.2.3.15.1.8 unsigned32 read-only
Maximum time that has lasted an IKE negotiation phase, in miliseconds.
           maxTunnelSupported 1.3.6.1.4.1.2007.4.1.2.3.15.1.9 unsigned32 read-only
Maximum number of supported tunnels.
           accessListHashSize 1.3.6.1.4.1.2007.4.1.2.3.15.1.10 unsigned32 read-only
Size of access list hash.
       teldatIPSecSaGroup 1.3.6.1.4.1.2007.4.1.2.3.15.2
           teldatIPSecIkeSaTable 1.3.6.1.4.1.2007.4.1.2.3.15.2.1 no-access
This table shows information of active ISAKMP SA.
               teldatIPSecIkeSaEntry 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1 no-access
Each entry identifies an active ISAKMP SA.
                   ikeSaIndex 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.1 unsigned32 read-only
Table index.
                   ikeSaClear 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.2 unsigned32 read-write
Close this active ISAKMP SA. This variable just can take the value 1 on SET operation.
                   saConnection 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.3 unsigned32 read-only
Number of SA connection. This variable internally identifies an active SA in the router.
                   initiatorCookie 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.4 displaystring read-only
Cookie of the negotiation initiator.
                   responderCookie 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.5 displaystring read-only
Cookie of the negotiation responder.
                   negotiationInitiator 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.6 displaystring read-only
IP address or hostname of the negotiation initiator.
                   negotiationResponder 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.7 displaystring read-only
IP address or hostname of the negotiation responder.
                   ikeSaSrc 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.8 ipaddress read-only
Local endpoint IP address of the tunnel.
                   ikeSaDes 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.9 ipaddress read-only
Remote endpoint IP address of the tunnel.
                   ikeSaState 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.10 displaystring read-only
State of negotiation SA. This variable just can take three values: ESTABLISH, DYING and ALIVE.
                   saOakleyGroup 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.11 unsigned32 read-only
Type of Oakley group.
                   ikeSaLifeTime 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.12 displaystring read-only
Life time of this ISAKMP SA.
                   ikeSaRemLifeTime 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.13 displaystring read-only
Remaining life time of this ISAKMP SA.
                   ikeSaPurgeTime 1.3.6.1.4.1.2007.4.1.2.3.15.2.1.1.14 displaystring read-only
Time (seconds) for clearing this ISAKMP SA if destinity does not response during negotiation. This variable shows '-' if purge time is not configured.
           teldatIPSecInSaTable 1.3.6.1.4.1.2007.4.1.2.3.15.2.2 no-access
Table of manual or dinamic active input SA. In this table each SA represents a input IPSec data flow.
               teldatIPSecInSaEntry 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1 no-access
Each entry identifies an input IPSec SA.
                   inSaIndex 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.1 unsigned32 read-only
Table index.
                   inSaClear 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.2 unsigned32 read-write
Close this SA if it is dinamic. This variable just can take the values 1 (clear SA) or 0 (not clear) on SET operation. For manual SA it does not effect.
                   inSaConnection 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.3 unsigned32 read-only
Number of SA connection. This variable internally identifies an active SA in the router.
                   inSaSpi 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.4 displaystring read-only
Identification number of the security configuration of the SA.
                   inSaKeyType 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.5 displaystring read-only
Type of keys used by the IPSec tunnel. This variable only can take two values: 'manual-keying' if the keys have been setted by user, and 'IKE' if the keys have been dinamically managed using IKE protocol.
                   inSaStatus 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.6 displaystring read-only
State of the SA. It just can take two values: UP: the SA is active. DOWN: the SA is not active.
                   inSaEncryption 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.7 displaystring read-only
SA encryption protocol.
                   inSaAuthentication 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.8 displaystring read-only
SA authentication protocol.
                   inSaSrc 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.9 ipaddress read-only
Local endpoint IP address of the tunnel.
                   inSaDes 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.10 ipaddress read-only
Remote endpoint IP address of the tunnel.
                   inSaLifeTime 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.11 displaystring read-only
Life time of the input SA.
                   inSaRemLifeTime 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.12 displaystring read-only
Remaining life time of the input SA.
                   inSaEncodePkts 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.13 unsigned32 read-only
Number of packets sent by this tunnel.
                   inSaEncodePktsErr 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.14 unsigned32 read-only
Number of errors in sent packets.
                   inSaDecodePkts 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.15 unsigned32 read-only
Number of packets received by this tunnel.
                   inSaDecodePktsErr 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.16 unsigned32 read-only
Number of errors in received packets.
                   inSaDpd 1.3.6.1.4.1.2007.4.1.2.3.15.2.2.1.17 displaystring read-only
This variable indicates if the Dead Peer Detection is enabled. It just can take two possible values: ON (enabled) and OFF (disabled).
           teldatIPSecOutSaTable 1.3.6.1.4.1.2007.4.1.2.3.15.2.3 no-access
Table of manual or dinamic active output SA. In this table each SA represents a output IPSec data flow.
               teldatIPSecOutSaEntry 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1 no-access
Each entry identifies an output IPSec SA.
                   outSaIndex 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.1 unsigned32 read-only
Table index.
                   outSaClear 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.2 unsigned32 read-write
Close this SA if it is dinamic. This variable just can take the values 1 (clear SA) or 0 (not clear) on SET operation. For manual SA it does not effect.
                   outSaConnection 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.3 unsigned32 read-only
Number of SA connection. This variable internally identifies an active SA in the router.
                   outSaSpi 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.4 displaystring read-only
Identification number of the security configuration of the SA.
                   outSaKeyType 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.5 displaystring read-only
Type of keys used by the IPSec tunnel. This variable only can take two values: 'manual-keying' if the keys have been setted by the user, and 'IKE' if the keys have been setted by IKE protocol.
                   outSaStatus 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.6 displaystring read-only
State of the SA. It just can take two values: UP: the SA is active. DOWN: the SA is not active.
                   outSaEncryption 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.7 displaystring read-only
SA encryption protocol.
                   outSaAuthentication 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.8 displaystring read-only
SA authentication protocol.
                   outSaSrc 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.9 ipaddress read-only
Local endpoint IP address of the tunnel.
                   outSaDes 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.10 ipaddress read-only
Remote endpoint IP address of the tunnel.
                   outSaLifeTime 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.11 displaystring read-only
Life time of the output SA.
                   outSaRemLifeTime 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.12 displaystring read-only
Remaining life time of the output SA.
                   outSaEncodePkts 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.13 unsigned32 read-only
Number of packets sent by this tunnel.
                   outSaEncodePktsErr 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.14 unsigned32 read-only
Number of errors in sent packets.
                   outSaDecodePkts 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.15 unsigned32 read-only
Number of packets received by this tunnel.
                   outSaDecodePktsErr 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.16 unsigned32 read-only
Number of errors in received packets.
                   outSaDpd 1.3.6.1.4.1.2007.4.1.2.3.15.2.3.1.17 displaystring read-only
This variable indicates if the Dead Peer Detection is enabled. It just can take two possible values: ON (enabled) and OFF (disabled).
       teldatIPSecStatisticsGroup 1.3.6.1.4.1.2007.4.1.2.3.15.3
           statisticsClear 1.3.6.1.4.1.2007.4.1.2.3.15.3.1 unsigned32 read-write
Reset the statistics of IPSec use. This variable just can take the value 1 on SET operation. If reset was successfully, GET operation returns 0 (OK) and otherwise returns 2 (Error).
           teldatIPSecESPAHGroup 1.3.6.1.4.1.2007.4.1.2.3.15.3.2
               inFramesOk 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.1 unsigned32 read-only
Correctly decapsulated and received frames on IPSec data tunnels.
               inFramesError 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.2 unsigned32 read-only
Number of received erroneous frames on IPSec data tunnels. That is the sum of three parameters: - Out order received frames. - Discarded frames by unknown payload protocol. - Discarded frames by ESP authentication error.
               inFramesErrOutOfOrder 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.3 unsigned32 read-only
Number of out order received frames on IPSec data tunnels.
               inFramesErrUnkPayloadProt 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.4 unsigned32 read-only
Number of discarded frames by unknown payload protocol on IPSec data tunnels.
               inFramesInternalErrors 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.5 unsigned32 read-only
Number of discarded frames by ESP authentication error on IPSec data tunnels.
               inFramesPerSec 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.6 unsigned32 read-only
Received traffic (frames/second) on IPSec data tunnels.
               inFramesPerSecMax 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.7 unsigned32 read-only
Maximum received traffic (frames/second) on IPSec data tunnels.
               inKbitsPerSec 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.8 unsigned32 read-only
Decoded traffic (kbytes/second) on IPSec data tunnels.
               inKbitsPerSecMax 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.9 unsigned32 read-only
Maximum decoded traffic (kbytes/second) on IPSec data tunnels.
               outFramesOk 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.10 unsigned32 read-only
Correctly encapsulated and transmitted frames on IPSec data tunnels.
               outFramesUnkAuthAlg 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.11 unsigned32 read-only
Number of frames with unknown authentication algorithm on IPSec data tunnels.
               outFramesPerSec 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.12 unsigned32 read-only
Transmitted traffic (frames/second) on IPSec data tunnels.
               outFramesPerSecMax 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.13 unsigned32 read-only
Maximum transmitted traffic (frames/second) on IPSec data tunnels.
               outKbitsPerSec 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.14 unsigned32 read-only
Encoded traffic (kbytes/second) on IPSec data tunnels.
               outKbitsPerSecMax 1.3.6.1.4.1.2007.4.1.2.3.15.3.2.15 unsigned32 read-only
Maximum encoded traffic (kbytes/second) on IPSec data tunnels.
           teldatIPSecForwardingGroup 1.3.6.1.4.1.2007.4.1.2.3.15.3.3
               inSaNotFound 1.3.6.1.4.1.2007.4.1.2.3.15.3.3.1 unsigned32 read-only
Number of input SA not found.
               outSaTemplateNotFound 1.3.6.1.4.1.2007.4.1.2.3.15.3.3.2 unsigned32 read-only
Number of output SA templates not found.
               outSaNotFound 1.3.6.1.4.1.2007.4.1.2.3.15.3.3.3 unsigned32 read-only
Number of output SA not found.
           teldatIPSecIKEGroup 1.3.6.1.4.1.2007.4.1.2.3.15.3.4
               ikeNegotiationsPhaseI 1.3.6.1.4.1.2007.4.1.2.3.15.3.4.1 unsigned32 read-only
Number of phase I negotiations.
               ikeNegotiationsPhaseII 1.3.6.1.4.1.2007.4.1.2.3.15.3.4.2 unsigned32 read-only
Number of phase II negotiations.
               ikeCheckHashErrorPhaseI 1.3.6.1.4.1.2007.4.1.2.3.15.3.4.3 unsigned32 read-only
Number of check hash errors on phase I.
               ikeCheckHashErrorPhaseII 1.3.6.1.4.1.2007.4.1.2.3.15.3.4.4 unsigned32 read-only
Number of check hash errors on phase II.
               dropsCollisionsIKEMessage 1.3.6.1.4.1.2007.4.1.2.3.15.3.4.5 unsigned32 read-only
Number of packets dropped by collision of IKE messages.
               dropsWaittingIKEMessage 1.3.6.1.4.1.2007.4.1.2.3.15.3.4.6 unsigned32 read-only
Number of packets dropped waiting for IKE processing.
           cypherQueueEmpty 1.3.6.1.4.1.2007.4.1.2.3.15.3.5 unsigned32 read-only
Attempts of getting a free message from the empty queue of free generic cypher messages.
           jobQueueEmpty 1.3.6.1.4.1.2007.4.1.2.3.15.3.6 unsigned32 read-only
Attempts of getting a job from the empty queue of pending jobs.
           openConnectNotNotified 1.3.6.1.4.1.2007.4.1.2.3.15.3.7 unsigned32 read-only
Number of open connections not notified during last connevent-period.