>> MIB - Management Information Base

>> Table: ipFilterTable - (.1.3.6.1.4.1.272.4.5.15.1)

Description: The ipFilterTable defines filters that describe subsets of IP packets. The filter matches if all conditions defined are true when comparing with the header of an IP packet.

ipFilterTable
OIDNameTypeAccess
.1IndexINTEGERR
.2DescrDisplayStringRW
.3ProtocolENUMD
.4SrcAddrIpAddressRW
.5SrcMaskIpAddressRW
.6SrcPortINTEGERRW
.7SrcPortRangeINTEGERRW
.8DstAddrIpAddressRW
.9DstMaskIpAddressRW
.10DstPortINTEGERRW
.11DstPortRangeINTEGERRW
.12TcpConnStateENUMRW
.13IcmpTypeENUMRW
.14TosINTEGERRW
.15TosMaskINTEGERRW
.16Level2PrioINTEGERRW
.17Level2PrioMaskINTEGERRW
.18SrcIfIndexINTEGERRW
.19Ip6SrcAddrInetAddressIPv6RW
.20Ip6SrcAddrLenINTEGERRW
.21Ip6DstAddrInetAddressIPv6RW
.22Ip6DstAddrLenINTEGERRW

Index
This object uniquely references this filter. The index value is generated automatically.
Descr
A textual string describing this filter.

Length: 0 to 255
Protocol
This object specifies the value of the protocol field in the ip header for all IP-datagrams belonging to the set. If this object is set to dont-verify, the value of the protocol field is not specified and can take any value.

Enumerations:

  • icmp (1)
  • igmp (2)
  • ggp (3)
  • ip (4)
  • tcp (6)
  • egp (8)
  • igp (9)
  • pup (12)
  • chaos (16)
  • udp (17)
  • hmp (20)
  • xns-idp (22)
  • rdp (27)
  • ipv6 (41)
  • rsvp (46)
  • gre (47)
  • esp (50)
  • ah (51)
  • tlsp (56)
  • skip (57)
  • kryptolan (65)
  • iso-ip (80)
  • igrp (88)
  • ospf (89)
  • ipip (94)
  • pim (103)
  • ipx-in-ip (111)
  • vrrp (112)
  • l2tp (115)
  • delete (255)
  • dont-verify (256)
SrcAddr
This object specifies together with ipFilterSrcMask the set of IP addresses of datagrams that belong to the subset defined by this entry. If both objects are set to 0.0.0.0 the source-addresses for the datagrams in the set is not specified and can take any value.
SrcMask
This object specifies together with ipFilterSrcAddr the set of IP addresses of datagrams that belong to the subset defined by this entry. If both objects are set to 0.0.0.0 the source-addresses for the datagrams in the set is not specified and can take any value.
SrcPort
This object describes together with ipFilterSrcPortRange the range of source portnumbers of the IP-datagrams belonging to the set. All portnumbers between and including the two objects are within the range.

If both objects are the to -1, the value of the source portnumber is not specified and can take any value.

Range: -1 to 65535
SrcPortRange
This object describes together with ipFilterDstPort the range of source portnumbers of the IP-datagrams belonging to the set. All portnumbers between and including the two objects are within the range.

If both objects are the to -1, the value of the source portnumber is not specified and can take any value.

Range: -1 to 65535
DstAddr
This object describes together with ipFilterDstMask the range of the target-addresses of the IP-datagrams belonging to the set. If both objects are set to 0.0.0.0 the target- addresses for the datagrams in the set is not specified and can take any value.
DstMask
This object describes together with ipFilterDstAddr the range of the target-addresses of the IP-datagrams belonging to the set. If both objects are set to 0.0.0.0 the target- addresses for the datagrams in the set is not specified and can take any value.
DstPort
This object describes together with ipFilterDstPortRange the range of target-portnumbers of the IP-datagrams belonging to the set. All portnumbers between and including the two objects are within the range.

If both objects are the to -1, the value of the target portnumber is not specified and can take any value.

Range: -1 to 65535
DstPortRange
This object describes together with ipFilterDstPort the range of target-portnumbers of the IP-datagrams belonging to the set. All portnumbers between and including the two objects are within the range.

If both objects are the to -1, the value of the target portnumber is not specified and can take any value.

Range: -1 to 65535
TcpConnState
This object describes the state of the TCP connection associated with the packets belonging to the set. If this object is set to established, the value of the TCP flags of incoming packets is checked. Packets with flags that initiate TCP connections are excluded from the set. If this object is set to dont-verify, the TCP flags are not checked and can be any value.

Enumerations:

  • dont-verify (1)
  • established (2)
IcmpType
This object describes the ICMP type of the packets belonging to the set. If this object is set to dont-verify, the value of the ICMP type field is not specified and can take any value.

Enumerations:

  • echoRep (1)
  • destUnreach (4)
  • srcQuench (5)
  • redirect (6)
  • echo (9)
  • timeExcds (12)
  • parmProb (13)
  • timestamp (14)
  • timestampRep (15)
  • addrMask (16)
  • addrMaskRep (17)
  • dont-verify (31)
Tos
This object describes together with ipFilterTosMask the range of the Type of Service field (TOS) in the IP-header of the IP-datagrams belonging to the set. A TOS value is considered within the range, when the following equation is valid:

(tos & ipFilterTosMask) == (ipFilterTos & ipFilterTosMask)

If both objects are set to 0 the TOS value of the datagrams in the set is not specified and can take any value.

Range: 0 to 255
TosMask
This object describes together with ipFilterTos the range of the Type of Service field (TOS) in the IP-header of the IP-datagrams belonging to the set. A TOS value is considered within the range, when the following equation is valid:

(tos & ipFilterTosMask) == (ipFilterTos & ipFilterTosMask)

If both objects are set to 0 the TOS value of the datagrams in the set is not specified and can take any value.

Range: 0 to 255
Level2Prio
This object describes together with ipFilterLevel2PrioMask the range of the level 2 priority field associated with the IP-datagrams belonging to the set. A priority value is considered within the range, when the following equation is valid:

(priority & ipFilterLevel2PrioMask) == (ipFilterLevel2Prio & ipFilterLevel2PrioMask)

If both objects are set to 0 the level 2 priority of the datagrams in the set is not specified and can take any value.

Range: 0 to 7
Level2PrioMask
This object describes together with ipFilterLevel2PrioMask the range of the level 2 priority field associated with the IP-datagrams belonging to the set. A priority value is considered within the range, when the following equation is valid:

(priority & ipFilterLevel2PrioMask) == (ipFilterLevel2Prio & ipFilterLevel2PrioMask)

If both objects are set to 0 the level 2 priority of the datagrams in the set is not specified and can take any value.

Range: 0 to 7
SrcIfIndex
This object specifies the source index of the IP-datagrams. If this object has a value other than 0, only datagrams received over the interface with the appropriate interface index are considered to be part of the set. If this object is set to 0, the source interface index for the datagrams belonging to the set is not specified.
Ip6SrcAddr
Indicates the the source (local) IPv6 address condition for this filter.
Ip6SrcAddrLen
Indicates the mask length associated with the source (local) IPv6 address comparison, if set to '0' any address will match.
Ip6DstAddr
Indicates the the destination (remote) IPv6 address condition for this filter.
Ip6DstAddrLen
Indicates the mask length associated with the destination (remote) IPv6 address comparison, if set to '0' any address will match.

MIB Reference to Software Version 10.2.12 generated on 2023/08/29. Provided by webmaster@bintec-elmeg.com
Copyright ©2023 by bintec elmeg GmbH