>> MIB - Management Information Base

>> Table: ipNatOutOperTable - (.1.3.6.1.4.1.272.4.5.61.1)

Description: This table displays all currently active IP address translation policies in 'outgoing' direction. It's similar to the former defined ipNatOutTable. Table entries are created: - either by the IP subsystem itself due to the administratively-defined ipNatOutTable entries (ipNatOutOperType_permanent(1)) - or by several subsystems whenever there is a need for such non-static NAT policies (ipNatOutOperType_temporary(2))

Table entries are deleted: - either by the IP subsystem itself due to the administratively-defined ipNatOutTable entries (ipNatOutOperType_permanent(1)) - or by several subsystems whenever there is a need for such non-static NAT policies (ipNatOutOperType_temporary(2)) - or, in case of non-permanent entries, by the administrator

If no matching entry is found (neither in the IP address is set to the IP address defined on the interface configured for NAT. If a matching entry is found, the source IP address of outgoing IP packets is translated according to the couple 'ipNatOutOperExtAddr /ipNatOutOperExtMask'.

- If external IP address is a 'host IP address', the whole source IP address is mapped. - If external IP address is a 'net IP address', only the 'net part' of source IP address is affected. This table is only used if the outgoing address translation is activated (ipExtIfNatOutXlat).

ipNatOutOperTable
OIDNameTypeAccess
.1IfIndexINTEGERR
.2ProtocolENUMR
.3RemoteAddrIpAddressR
.4RemoteMaskIpAddressR
.5ExtAddrIpAddressR
.6RemotePortINTEGERR
.7RemotePortRangeINTEGERR
.8IntAddrIpAddressR
.9IntMaskIpAddressR
.10IntPortINTEGERR
.11ExtPortINTEGERR
.12ExtMaskIpAddressR
.13TimeoutINTEGERR
.14TypeENUMD
.15ParentINTEGERR
.16NatCategoryENUMR
.17IntPortRangeINTEGERR
.18ExtPortRangeINTEGERR
.19SrcIfIndexINTEGERR

IfIndex
This object specifies the interface index, for which the table entry shall be valid. If set to 0, the entry will be valid for all interfaces configured to use NAT.
Protocol
This object specifies the protocol, for which the table entry shall be valid.

Enumerations:

  • icmp (1)
  • igmp (2)
  • ggp (3)
  • ip (4)
  • tcp (6)
  • egp (8)
  • igp (9)
  • pup (12)
  • chaos (16)
  • udp (17)
  • hmp (20)
  • xns-idp (22)
  • rdp (27)
  • ipv6 (41)
  • rsvp (46)
  • gre (47)
  • esp (50)
  • ah (51)
  • tlsp (56)
  • skip (57)
  • kryptolan (65)
  • iso-ip (80)
  • igrp (88)
  • ospf (89)
  • ipip (94)
  • ipx-in-ip (111)
  • vrrp (112)
  • l2tp (115)
  • any (255)
RemoteAddr
This object specifies together with ipNatOutOperRemoteMask the set of target IP addresses for which the table entry is valid. If both objects are set to 0.0.0.0, the table entry will be valid for any target IP address.
RemoteMask
This object specifies together with ipNatOutOperRemoteAddr the set of target IP addresses for which the table entry is valid. If both objects are set to 0.0.0.0, the table entry will be valid for any target IP address.
ExtAddr
With ipNatOutOperExtMask, this object specifies the external 'IP address' or 'NET address' to which the internal IP address is mapped.

- To map exactly to ipNatOutOperExtAddr (i.e. map to a single IP address), ipNatOutOperExtMask MUST be set to 255.255.255.255

- To keep HOST part of source IP address and map only the NET part, ipNatOutOperExtMask MUST be the related subnet mask (and it should be the same as ipNatOutOperIntMask ).
RemotePort
This object specifies together with ipNatOutRemotePortRange the range of portnumbers for outgoing packets, for which the table entry shall be valid. If both objects are set to -1, the entry is valid for all portnumbers. If ipNatOutOperPortRange is set to -1, the entry is only valid, when the portnumber of an outgoing packet is equal to ipNatOutOperRemotePort. Otherwise, the entry is valid, if the destination portnumber lies in the range RemotePort .. RemotePortRange.

Range: -1 to 65535
RemotePortRange
This object specifies together with ipNatOutOperRemotePort the range of portnumbers for outgoing packets, for which the table entry shall be valid. If both objects are set to -1, the entry is valid for all portnumbers. If ipNatOutOperPortRange is set to -1, the entry is only valid, when the portnumber of an outgoing packet is equal to ipNatOutOperRemotePort. Otherwise, the entry is valid, if the destination portnumber lies in the range RemotePort .. RemotePortRange.

Range: -1 to 65535
IntAddr
This object specifies together with ipNatOutOperIntMask the internal hosts IP address for outgoing packets matching the table entry. If both objects are set to 0.0.0.0, the table entry will be valid for any source IP address.
IntMask
This object specifies together with ipNatOutOperIntAddr the internal hosts IP address for outgoing packets matching the table entry. If both objects are set to 0.0.0.0, the table entry will be valid for any source IP address.
IntPort
This object specifies the internal source port for which the table entry shall be valid. If this object is set to -1, any internal source port matches this entry.

Range: -1 to 65535
ExtPort
This object may be used to specify a fixed external source port to which the internal source port is mapped. If this object is set to -1, the port is mapped to the next free source port available.

Range: -1 to 65535
ExtMask
With ipNatOutOperExtAddr, this object specifies the external 'IP address' or 'NET address' to which the internal IP address is mapped.

- To map exactly to ipNatOutOperExtAddr (i.e. map to a single IP address), ipNatOutOperExtMask MUST be set to 255.255.255.255

- To keep HOST part of source IP address and map only the NET part, ipNatOutOperExtMask MUST be the related subnet mask (and it should be the same as ipNatOutOperIntMask).
Timeout
When there is no traffic associated with a NAT entry, this entry is discarded at the end of a timeout value. This object holds this timeout value in seconds. If set to the default value of 0, the timeout will be set to the value specified either in ipExtIfNatTcpTimeout or ipExtIfNatOtherTimeout, depending on the protocol.

Range: 0 to 5184000
Type
Specifies whether there is an associated ipNatOutTable entry (permanent) or not (temporary). Note that entries with type permanent (1) cannot be deleted by the administrator directly.

Enumerations:

  • permanent (1)
  • temporary (2)
  • delete (3)
Parent
Row number of the associated ipNatOutTable entry.
NatCategory
Specifies the NAT category according RFC 3489 and 5389 to be applied for UDP traffic matching with this entry.

Enumerations:

  • full-cone (1)
  • restricted-cone (2)
  • port-restricted-cone (3)
  • symmetric (4)
IntPortRange
This object specifies together with ipNatOutOperIntPort the internal source port range for which the table entry shall be valid. If this object is set to -1, only ipNatOutOperIntPort is used as selector for this entry.

Range: -1 to 65535
ExtPortRange
This object may be used together with ipNatOutOperExtPort to specify a fixed external source port number range to which the internal source port numbers are mapped. This mapping depends on the position of the original source port number within the range specified by ipNatOutOperIntPort and ipNatOutOperIntPortRange. If this object is set to -1, only ipNatOutExtPort is considered for this entry.

Range: -1 to 65535
SrcIfIndex
This object specifies the source (interface index) of the traffic flows for which the table entry shall be valid. If set to 0, this parameter will not be checked.

MIB Reference to Software Version 10.2.12 generated on 2023/08/29. Provided by webmaster@bintec-elmeg.com
Copyright ©2023 by bintec elmeg GmbH