>> MIB - Management Information Base

>> Table: ipExtIfTable - (.1.3.6.1.4.1.272.4.5.3.1)

Description: The ipExtIfTable contains extended information related to IP and the interfaces found on the system. Entries can only be added or deleted by the system.

ipExtIfTable
OIDNameTypeAccess
.1IndexINTEGERR
.3RipSendENUMRW
.4RipReceiveENUMRW
.5ProxyArpENUMRW
.6NatENUMRW
.7NatRmvFinENUMRW
.8NatTcpTimeoutINTEGERRW
.9NatOtherTimeoutINTEGERRW
.10NatOutXlatENUMRW
.11AccountingENUMRW
.12TcpSpoofingENUMRW
.13AccessActionENUMRW
.14AccessReportENUMRW
.15OspfENUMRW
.16OspfMetricENUMRW
.17TcpCksumENUMRW
.18BackRtVerifyENUMRW
.19RuleIndexINTEGERRW
.20AuthenticationENUMRW
.21AuthModeENUMRW
.22AuthLifeTimeINTEGERRW
.23AuthKeepaliveINTEGERRW
.24RouteAnnounceENUMRW
.25IpFragmentationENUMRW
.26ReroutingENUMRW
.27BodRuleIndexINTEGERRW
.28QosRuleIndexINTEGERRW
.29IpsecAccountingENUMRW
.30MulticastENUMRW
.31NatSilentDenyENUMRW
.33NatPPTPXlatENUMRW
.34TcpMssClampingINTEGERRW
.35NbdgmRelayAddressIpAddressRW
.36NatMaxSessionsINTEGERRW
.37AllowedPeersENUMRW
.38NatFlushENUMRW
.39HttpRedirectENUMRW
.40WolRuleIndexINTEGERRW
.41PolicyENUMRW

Index
Unique interface index
RipSend
specifies which versions of RIP messages are sent to that interface. Usually RIP messages are sent as broadcast, except this object is set to ripV2mcast. In this case RIP V2 messages are sent to the multicast address 224.0.0.9 .

Enumerations:

  • ripV1 (1)
  • ripV2 (2)
  • both (3)
  • none (4)
  • ripV2mcast (5)
  • ripV1trig (6)
  • ripV2trig (7)
RipReceive
specifies which versions of RIP messages are accepted from that interface. RIP V2 messages are received regardless if they are sent as broadcast or multicast.

Enumerations:

  • ripV1 (1)
  • ripV2 (2)
  • both (3)
  • none (4)
  • ripV1trig (5)
  • ripV2trig (6)
ProxyArp
Switch for Proxy ARP on this interface.

Enumerations:

  • off (1)
  • on (2)
  • up-only (3)
Nat
This object can be used to switch NAT on and off for a specific interface.

Enumerations:

  • off (1)
  • on (2)
  • reverse (3)
  • loopback (4)
NatRmvFin
This object specifies, whether entries in the IpNatTable shall be removed, when TCP-FINS have been received and acknowledged in both directions, a TCP-RST has been received or a ICMP-ERROR message has been received for the entry.

Enumerations:

  • no (1)
  • yes (2)
NatTcpTimeout
TCP NAT entries vanish unconditionally after not being used for the amount of time specified by this object in seconds.

Range: 0 to 5184000

NatOtherTimeout
Non-TCP NAT entries vanish unconditionally after not being used for the amount of time specified by this object in seconds.

Range: 0 to 5184000

NatOutXlat
This object can be used to switch the outgoing address translation off. Then, all addresses are passed instead of being translated. The session mechanism remains active and implements a security mechanism.

Enumerations:

  • on (1)
  • off (2)
Accounting
Switch for accounting on the specified interface. An IP packet is being accounted, when this object is set to on for either the source or the destination interface.

Enumerations:

  • off (1)
  • on (2)
TcpSpoofing
Switch for TCP spoofing on this interface. TCP keepalive polls are answered by the BRICK to prevent unnecessary ISDN connections. Set this object to on for ISDN dialup interfaces.

Enumerations:

  • off (1)
  • on (2)
AccessAction
This object describes the action, that is done, when a packet received from the interface has been filtered out. When set to ignore, no action takes place. When set to refuse, an ICMP unreachable message is being sent to the originator of the packet.

Enumerations:

  • ignore (1)
  • refuse (2)
AccessReport
This object specifies, how a packed filtered by accesslists should be logged. When set to none, no logging takes place. When set to info, protocol, ip-addresses and portnumbers are logged. When set to dump, a dump of the first 64 bytes of the packet will be written to the syslog table.

Enumerations:

  • none (1)
  • info (2)
  • dump (3)
Ospf
Configure the OSPF status of this interface. Routing information about routes on passive and active interfaces is propagated on active interfaces. Only active interfaces run the OSPF protocol. When set to off the interface and its associated routes are invisible to the OSPF protocol.

Enumerations:

  • passive (1)
  • active (2)
  • off (3)
OspfMetric
Configure the metric calculation of OSPF interfaces. If set to auto the metric is calculated based on ifSpeed. If set to fixed the metric is taken from the ospfIfMetricTable. Additionaly the metric adjustment for dialup interfaces can be configured. If set to auto-adjust or fixed-adjust the basic metric value is reduced if the operational status of the dialup interface is up.

Enumerations:

  • auto (1)
  • fixed (2)
  • auto-adjust (3)
  • fixed-adjust (4)
TcpCksum
Enable or disable the TCP checksum check for local packets received on the corresponding interface. Disabling the check may improve performance for some local applications (i.e. remote CAPI). This object should only be set to dont-check on interfaces for LANs without further routers. Packets received from routers may have a corrupted TCP checksum and TCP will no longer be able to detect those packets. The TCP checksum must be checked by the receiving TCP under any circumstances, when TCP header compression is used on any router.

Enumerations:

  • check (1)
  • dont-check (2)
BackRtVerify
This object activates an additional check for incoming packets. If set to on, incoming packets are only accepted if return packets sent back to their source IP address would be sent over the same interface. This prevents packets being passed from untrusted interfaces to this interface.

Enumerations:

  • off (1)
  • on (2)
RuleIndex
This object defines the index of the first access rule that is applied for incoming packets. If set to 0 or if there is no access rule with this index no access rules are applied for this interface.
Authentication
This object defines the authentication scheme used for incoming packets.

Enumerations:

  • off (1)
  • securID (2)
AuthMode
This object defines the authentication mode. If set to strict each source IP address must be authenticated. If set to loose all source IP addresses are allowed if at least one IP address is successfully authenticated.

Enumerations:

  • strict (1)
  • loose (2)
AuthLifeTime
This object defines the time in seconds a successful authentication is valid since the IP partner was authenticated.

Range: 180 to 36000

AuthKeepalive
This object defines the period between short authentications that are invisible to the user
RouteAnnounce
This object defines the condition when routes on this interface are propagated by routing protocols. If set to up-only routes are only propagated if the operational status of the interface is up. If set to up-dormant routes are propagated if the status is up or dormant. If set to always routes are propagated independent of the operational status.

Enumerations:

  • up-only (1)
  • up-dormant (2)
  • always (3)
IpFragmentation
This object defines different modes used for fragmentation of IP datagrams greater than the MTU of the destination interface. If set to enabled (1) each IP datagram will be splitted into a first fragment MTU sized and the last one smaller than the first. If set to disabled (2) an ICMP unreachable message will be performed. The equal (3) mode defines a fragmentation technique wich generates fragments having approximately the same size whereon the reverse (4) mode starts with a small fragment followed by MTU sized fragment(s).

Enumerations:

  • enabled (1)
  • disabled (2)
  • equal (3)
  • reverse (4)
Rerouting
This object enables or disables rerouting on this interface. The default value is enabled. If set to disabled, then only the better one route from two or more possible routes is chosen, even if the ifOperStatus of the interface for this route is dormant.

Enumerations:

  • enabled (1)
  • disabled (2)
BodRuleIndex
This object defines the index of the first rule used for Bandwidth on Demand (BOD) that is applied for incoming and/or outgoing traffic. If set to 0 or if there is no entry in the ipBodRuleTable with this index no BOD-specific information is applied for this interface.
QosRuleIndex
This object defines the index of the first rule used for Qos (Qualtiy of Service) rules applied for IP traffic. If set to 0 or if there is no entry in the ipQoSTable with this index no QoS-specific information is applied for this interface.
IpsecAccounting
This object determines, whether packets which are en- or decapsulated by IPSec should be accounted with encapsulation header(ipsec) or without the encapsulation header (clear), or even twice (both).

Enumerations:

  • ipsec (1)
  • clear (2)
  • both (3)
Multicast
Enable that multicast frames are accepted from that interface.

Enumerations:

  • off (1)
  • on (2)
NatSilentDeny
This object specifies - if NAT is enabled (see ipExtIfNat) - whether incoming IP packets not passed by the NAT barrier should answered with an ICMP Host Unreachable or TCP RST message addressed to to packet originator. If set to enabled(2), such incoming IP packets will be silently discarded.

Enumerations:

  • disabled (1)
  • enabled (2)
NatPPTPXlat
This object specifies - if NAT is enabled (see ipExtIfNat) - whether PPTP (point to point protocol) connections are translated. This is needed if there are more than one PPTP client behind NAT.

Enumerations:

  • disabled (1)
  • enabled (2)
TcpMssClamping
This object specifies whether TCP MSS clamping is enabled on the interface. -1 disables clamping, 0 clamps the MSS depending on the interface MTU. A value > 0 will be used as clamping size.

Range: -1 to 32000

NbdgmRelayAddress
This object contains the destination IP address to which Netbios Datagram request are forwarded by the router.
NatMaxSessions
This object limits the maximum number of NAT sessions on a interface.

Range: 1 to 65535

AllowedPeers
If this object is set to 'dhcpclients', the router refuses to exchange data with hosts which are not DHCP clients on this interface. If this object is set to 'all', the router accepts to exchange data with any host.

Enumerations:

  • all (1)
  • dhcpclients (2)
NatFlush
If this object in enabled NAT-Flushing is done else not. NAT-Flushing means that the NAT Entries for this interface will be deleted in the case of an OperStatus change to down or dormant.

Enumerations:

  • off (1)
  • on (2)
HttpRedirect
If not set to 'disabled' all HTTP requests on this interface will be directed either to the local HTTP daemon or HTTP proxy.

Enumerations:

  • disabled (1)
  • local (2)
  • proxy (3)
WolRuleIndex
This object defines the index of the first rule used for Wake-On-LAN (WOL) that is applied for incoming and/or outgoing traffic. If set to 0 or if there is no entry in the ipWolRuleTable with this index no WOL-specific information is applied for this interface.
Policy
The kind of connection. trusted = Secure, filtering deactivated untrusted = not secure (WAN) filter activated

Enumerations:

  • untrusted (1)
  • trusted (2)


MIB Reference to Software Version 10.2.12 generated on 2023/08/29. Provided by webmaster@bintec-elmeg.com
Copyright ©2023 by bintec elmeg GmbH