-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathA3COM-HUAWEI-DOT11-WIDS-MIB
2462 lines (2225 loc) · 83.5 KB
/
A3COM-HUAWEI-DOT11-WIDS-MIB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
-- =============================================================================
-- Copyright (c) 2004-2010 Hangzhou H3C Tech. Co., Ltd. All rights reserved.
--
-- Description:
-- The file defines a MIB to provide wireless detection service feature.
-- Reference:
-- Version: V1.7
-- History:
-- V1.0 created by shiyang (Richard)
-- Initial version 2006-08-20
-- V1.1 2007-05-16 modified by shiyang (Richard)
-- Add new objects of h3cDot11UnauthorSSIDName and h3cDot11WIDSAPID.
-- V1.2 2007-06-19 modified by Deepthi
-- Changed the h3cDot11RogueAPVendorOUI to h3cDot11RogueAPVendorName,
-- Type : OCTET STRING and the Size list: 1: 3 should be removed.
-- Changed the h3cDot11RogueStaVendorOUI to h3cDot11RogueStaVendorName,
-- Type : OCTET STRING and the Size list: 1: 3 should be removed.
-- Changed the field h3cDot11DetectMaxAPSigStrength in
-- h3cDot11WIDSRogueAPExtTable to h3cDot11DetectCurAPSigStrength to
-- h3cDot11DetectCurAPSigStrength
-- Changed the field h3cDot11DetectMaxStaSigStrength
-- H3cDot11WIDSRogueStaExtEntry in h3cDot11WIDSRogueStaExtTable to
-- h3cDot11DetectCurStaSigStrength
-- Add new node h3cDot11WIDSPermitVendorName in
-- h3cDot11WIDSPermitVendorEntry
-- Remove the field Country Spec(2), ChannelSpec(3) in
-- h3cDot11WIDSGlobalConfigGroup in h3cDot11WIDSScanMode.
-- Obsolete the node h3cDot11WIDSScanChannelList in
-- h3cDot11WIDSGlobalConfigGroup
-- Add the node h3cDot11WIDSScanType to h3cDot11WIDSGlobalConfigGroup
-- V1.3 2008-07-25 modified by heziqi
-- Add new node h3cDot11CntMsrEnable, h3cDot11CntMsrMode,
-- h3cDot11DevAgingTime, h3cDot11DynBlkListEnable,
-- h3cDot11DynBlkListLifeTime, h3cDot11FloodAtkDctEnable,
-- h3cDot11SpoofAtkDctEnable, h3cDot11WeakIVAtkDctEnable,
-- h3cDot11ResetWIDSRogueHistory, h3cDot11ResetWIDSHistroy,
-- h3cDot11ResetWIDSStatistics, h3cDot11ResetAllDynBlkList,
-- h3cDot11ResetAllStcBlkList, h3cDot11ResetAllWhtBlkList,
-- h3cDot11ResetAllDctRogueAP, h3cDot11ResetAllDctRogueSta,
-- h3cDot11ResetAllDctAdhoc, h3cDot11ResetAllDctDevice,
-- h3cDot11ResetAllDctSSID in h3cDot11WIDSGlobalConfigGroup.
-- Add new node h3cDot11PermitSSIDDetected
-- in h3cDot11WIDSPermitSSIDTable.
-- Add new node h3cDot11IgnoreMACDetected, h3cDot11IgnoreDevType
-- in h3cDot11WIDSIgnoreListTable.
-- Add new table h3cDot11StaticWhiteListTable,
-- h3cDot11StaticBlackListTable, h3cDot11WIDSRogueAPTable,
-- h3cDot11WIDSRogueStaTable, h3cDot11WIDSDetectedDevTable,
-- h3cDot11WIDSRptAPTable, h3cDot11DynBlackListTable,
-- h3cDot11WIDSRogueHistoryTable, h3cDot11WIDSAtkHistroyTable
-- in h3cDot11WIDSDetectGroup.
-- Add h3cDot11WIDSAtkStatis in h3cDot11WIDSDetectGroup.
-- Add notification h3cDot11WIDSDetectAttack and
-- h3cDot11WIDSDetectWBridge.
-- V1.4 2009-05-07 modified by Li Yugang, Wang Shaojie, Sun Shuai
-- Add h3cDot11WidsFloodInterval, h3cDot11WidsBlackListThreshold,
-- h3cDot11SSIDFilterOnOff, h3cDot11BSSIDFilterOnOff to
-- h3cDot11WIDSGlobalConfigGroup.
-- Add h3cDot11WIDSPermitBSSIDTable to h3cDot11WIDSConfigGroup.
-- Add h3cDot11WIDSFloodTrap, h3cDot11WIDSSpoofTrap,
-- h3cDot11WIDSWeakIVTrap to h3cDot11WIDSTraps.
-- Add h3cDot11MonitorAPID,h3cDot11MonitorApRadioID,
-- h3cDot11WIDSAtkMac, h3cDot11WIDSAtkFrameType
-- to h3cDot11WIDSTrapVarObjects.
-- V1.5 2009-07-29 modified by heziqi
-- Add new node h3cDot11WIDSDevSnr for h3cDot11WIDSDetectedDevTable.
-- V1.6 2010-01-07 modified by Wang Shaojie
-- Add new node h3cDot11RogueAPFirstDetectTmStr,
-- h3cDot11RogueAPLastDetectTmStr to h3cDot11WIDSRogueAPTable
-- Add new node h3cDot11RogueStaFirstDetectTmStr,
-- h3cDot11RogueStaLastDetectTmStr to h3cDot11WIDSRogueStaTable
-- Add h3cDot11WIDSAtkChannel, h3cDot11WIDSAtkTime,
-- h3cDot11WIDSAtkDestMac to h3cDot11WIDSTrapVarObjects.
-- 2010-03-18 Modified by Deng Gaoliang
-- Add h3cDot11BlackListTable
-- 2010-05-31 Modified by LiuChen
-- Add new node h3cDot11DynBlackListTimeTicks to
-- h3cDot11DynBlackListTable.
-- Add new node h3cDot11BlackListTimeTicks to
-- h3cDot11BlackListTable.
-- V1.7 2011-10-28 modified by jiaolibin
-- Add h3cDot11WIDSFirstTrapTime to h3cDot11WIDSTrapVarObjects and
-- varialbe bingings h3cDot11WIDSFirstTrapTime for h3cDot11WIDSFloodTrap,
-- h3cDot11WIDSSpoofTrap,h3cDot11WIDSWeakIVTrap.
-- =============================================================================
A3COM-HUAWEI-DOT11-WIDS-MIB DEFINITIONS ::= BEGIN
IMPORTS
TruthValue,
MacAddress,
RowStatus,
DateAndTime,
TEXTUAL-CONVENTION
FROM SNMPv2-TC
MODULE-IDENTITY,
OBJECT-TYPE,
NOTIFICATION-TYPE,
Integer32,
Unsigned32,
TimeTicks
FROM SNMPv2-SMI
h3cDot11,
H3cDot11SSIDStringType,
H3cDot11ChannelScopeType,
H3cDot11RadioScopeType,
H3cDot11ObjectIDType,
H3cDot11RadioType
FROM A3COM-HUAWEI-DOT11-REF-MIB;
h3cDot11WIDS MODULE-IDENTITY
LAST-UPDATED "201005311800Z" -- May 31, 2010 at 18:00 GMT
ORGANIZATION
"Hangzhou H3C Technologies Co., Ltd."
CONTACT-INFO
"Platform Team H3C Technologies Co., Ltd.
Hai-Dian District Beijing P.R. China
http://www.h3c.com
Zip: 100085"
DESCRIPTION
"This MIB provides information about WIDS feature.
GLOSSARY
Wireless Intrusion Detection Sensor (WIDS)
WIDS is designed to be employed in an area that is serviced
by an existing wireless network.
It aids in the early detection of malicious outsider attacks
and intrusions via wireless networks.
Rogue AP
A rogue access point is any Wi-Fi access point connected to
the network without authorization.
As it is not authorized, if there is any weakness in
the AP, the hacker will have chance to compromise the
network.
Rogue Station
It is similiar to Rogue AP, while it is a station.
Monitor AP
An AP will scan or listen to the air, and try to detect
wireless attack in the network.
Some AP products will work only in monitor role, while some
AP products could switch between normal AP role (only
provide wireless access service)and monitor AP role.
Ad Hoc Mode
Station could work under Ad hoc mode, then they
could directly do peer-to-peer communication without
other device support."
REVISION "201005311800Z" -- May 31, 2010 at 18:00 GMT
DESCRIPTION
"Modified to add new nodes."
REVISION "200907291800Z" -- Jul 29, 2009 at 18:00 GMT
DESCRIPTION
"Modified to add new nodes."
REVISION "200905072000Z" -- May 7, 2009 at 20:00 GMT
DESCRIPTION
"Add new nodes and table to support new featrues of WIDS."
REVISION "200807251900Z" -- July 23, 2008 at 19:00 GMT
DESCRIPTION
"Add new nodes to support new featrues of WIDS."
REVISION "200706191900Z" -- June 19, 2007 at 19:00 GMT
DESCRIPTION
"To fix bugs in the MIB file."
REVISION "200705161900Z" -- May 16, 2007 at 19:00 GMT
DESCRIPTION
"To fix bugs in the MIB file."
REVISION "200608201900Z" -- August 20, 2006 at 19:00 GMT
DESCRIPTION
"The initial revision of this MIB module."
::= { h3cDot11 5 }
-- ==================================================================
-- Textual Conventions
-- ==================================================================
H3cDot11WIDSDevType ::= TEXTUAL-CONVENTION
STATUS current
DESCRIPTION
"The type of device detected."
SYNTAX INTEGER
{
client(1),
ap(2),
adhoc(3),
wirelessBridge(4),
unknown(5)
}
H3cDot11WIDSDevPermitType ::= TEXTUAL-CONVENTION
STATUS current
DESCRIPTION
"Represents whether the detected device is permitted or a rogue."
SYNTAX INTEGER
{
permit(1),
rogue(2)
}
H3cDot11WIDSAtkType ::= TEXTUAL-CONVENTION
STATUS current
DESCRIPTION
"The type of attack.
This object has following defined values:
'act': Action Frame
'asr': Association Request
'aur': Authentication Request
'daf': Deauthentication Frame
'dar': Disassociation Request
'ndf': Null Data Frame
'pbr': Probe Request
'rar': Reassociation Request
'saf': Spoofed Disassociation Frame
'sdf': Spoofed Deauthentication Frame
'wiv': Weak IV Detected"
SYNTAX INTEGER
{
act(1),
asr(2),
aur(3),
daf(4),
dar(5),
ndf(6),
pbr(7),
rar(8),
saf(9),
sdf(10),
wiv(11),
unknown(12)
}
-- *****************************************************************************
-- * Major sections
-- *****************************************************************************
-- WIDS Configuration Group
-- DEFINED AS "The group to provide the configuration information
-- for WIDS."
h3cDot11WIDSConfigGroup OBJECT IDENTIFIER ::= { h3cDot11WIDS 1 }
-- The Configuration Group has the following children:
h3cDot11WIDSGlobalConfigGroup OBJECT IDENTIFIER
::= { h3cDot11WIDSConfigGroup 1 }
-- h3cDot11WIDSPermitVendorTable ::= { h3cDot11WIDSConfigGroup 2 }
-- h3cDot11WIDSPermitSSIDTable ::= { h3cDot11WIDSConfigGroup 3 }
-- h3cDot11WIDSIgnoreListTable ::= { h3cDot11WIDSConfigGroup 4 }
-- h3cDot11WIDSAttackListTable ::= { h3cDot11WIDSConfigGroup 5 }
-- WIDS detection Group
-- DEFINED AS "The group to provide the detection information
-- for WIDS."
h3cDot11WIDSDetectGroup OBJECT IDENTIFIER ::= { h3cDot11WIDS 2 }
-- The detection Group has the following children:
-- h3cDot11WIDSRogueAPTable ::= { h3cDot11WIDSDetectGroup 1 }
-- h3cDot11WIDSRogueAPExtTable ::= { h3cDot11WIDSDetectGroup 2 }
-- h3cDot11WIDSRogueStaTable ::= { h3cDot11WIDSDetectGroup 3 }
-- h3cDot11WIDSRogueStaExtTable ::= { h3cDot11WIDSDetectGroup 4 }
-- WIDS Notification
-- DEFINED AS "The notification for WIDS feature."
h3cDot11WIDSNotifyGroup OBJECT IDENTIFIER ::= { h3cDot11WIDS 3 }
-- *****************************************************************************
-- * h3cDot11WIDSGlobalConfigGroup Definition
-- *****************************************************************************
h3cDot11WIDSScanMode OBJECT-TYPE
SYNTAX INTEGER
{
all(1),
auto(2)
}
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"Represents the scope of channels to be scanned.
The following value are supported
all(1) - Do scan on all the channels.
auto(2) - Do scan for the channels that automatically
selected by WIDS."
DEFVAL { auto }
::= { h3cDot11WIDSGlobalConfigGroup 1 }
h3cDot11WIDSScanChannelList OBJECT-TYPE
SYNTAX OCTET STRING(SIZE(0..128))
MAX-ACCESS read-write
STATUS obsolete
DESCRIPTION
"Represents the channel scope to be scanned when
h3cDot11WIDSScanMode is configurated as channelSpec mode.
Each channel value will be separated by comma character."
::= { h3cDot11WIDSGlobalConfigGroup 2 }
h3cDot11CntMsrMode OBJECT-TYPE
SYNTAX BITS
{
rogue(0),
adhoc(1),
config(2)
}
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"Represents the countermeasures mode."
::= { h3cDot11WIDSGlobalConfigGroup 3 }
h3cDot11DevAgingTime OBJECT-TYPE
SYNTAX Integer32(300..1800)
UNITS "second"
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"Represents the age time for entries in the detected device table.
If an entry is not detected within the interval, it is deleted from
the detected device table. If the deleted entry is that of a rogue, it
is added into the rogue history table."
::= { h3cDot11WIDSGlobalConfigGroup 4 }
h3cDot11DynBlkListEnable OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"Represents whether the dynamic blacklist feature is enabled or not.
'true' : Enable the dynamic blacklist feature to filter out unwanted
clients, which will not get associated.
'false' : Disable the dynamic blacklist feature."
::= { h3cDot11WIDSGlobalConfigGroup 5 }
h3cDot11DynBlkListLifeTime OBJECT-TYPE
SYNTAX Integer32(60..3600)
UNITS "second"
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"Represents the lifetime for dynamic blacklist entries.
If a dynamic blacklist entry is not detected within the lifetime, the
entry will be removed from the dynamic blacklist.
The lifetime becomes active only if dynamic blacklist feature is
enabled."
::= { h3cDot11WIDSGlobalConfigGroup 6 }
h3cDot11FloodAtkDctEnable OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"Represents whether detection of flood attack is enabled or not.
'true' : Enable the detection of flood attack.
'false' : Disable the detection of flood attack."
::= { h3cDot11WIDSGlobalConfigGroup 7 }
h3cDot11SpoofAtkDctEnable OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"Represents whether detection of Spoof attack is enabled or not.
'true' : Enable the detection of Spoof attack.
'false' : Disable the detection of Spoof attack."
::= { h3cDot11WIDSGlobalConfigGroup 8 }
h3cDot11WeakIVAtkDctEnable OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"Represents whether detection of weak-iv attack is enabled or not.
'true' : Enable the detection of weak-iv attack.
'false' : Disable the detection of weak-iv attack."
::= { h3cDot11WIDSGlobalConfigGroup 9 }
h3cDot11ResetWIDSRogueHistory OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to clear all entries from the rogue history table.
It will return false for get operation."
::= { h3cDot11WIDSGlobalConfigGroup 10 }
h3cDot11ResetWIDSHistroy OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to clear the history information of attacks
detected in the WLAN system.
It will return false for get operation."
::= { h3cDot11WIDSGlobalConfigGroup 11 }
h3cDot11ResetWIDSStatistics OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to clear the statistics of attacks detected in the
WLAN system.
It will return false for get operation."
::= { h3cDot11WIDSGlobalConfigGroup 12 }
h3cDot11ResetAllDynBlkList OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to remove all entries from the dynamic blacklist.
It will return false for get operation."
::= { h3cDot11WIDSGlobalConfigGroup 13 }
h3cDot11ResetAllStcBlkList OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to remove all entries from the static blacklist.
It will return false for get operation."
::= { h3cDot11WIDSGlobalConfigGroup 14 }
h3cDot11ResetAllWhtBlkList OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to remove all entries from the static whitelist.
It will return false for get operation."
::= { h3cDot11WIDSGlobalConfigGroup 15 }
h3cDot11ResetAllDctRogueAP OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to clear the information of all detected rogue APs.
It will return false for get operation."
::= { h3cDot11WIDSGlobalConfigGroup 16 }
h3cDot11ResetAllDctRogueSta OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to clear the information of all detected rogue
clients.
It will return false for get operation."
::= { h3cDot11WIDSGlobalConfigGroup 17 }
h3cDot11ResetAllDctAdhoc OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to clear the information of all detected ad hoc
devices.
It will return false for get operation."
::= { h3cDot11WIDSGlobalConfigGroup 18 }
h3cDot11ResetAllDctDevice OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to clear the information of all detected devices.
It will return false for get operation."
::= { h3cDot11WIDSGlobalConfigGroup 19 }
h3cDot11ResetAllDctSSID OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to clear the information of all detected SSIDs.
It will return false for get operation."
::= { h3cDot11WIDSGlobalConfigGroup 20 }
h3cDot11WidsFloodInterval OBJECT-TYPE
SYNTAX Unsigned32
UNITS "second"
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"The interval of WIDS flood detection."
DEFVAL { 1 }
::= { h3cDot11WIDSGlobalConfigGroup 21 }
h3cDot11WidsBlackListThreshold OBJECT-TYPE
SYNTAX Unsigned32
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"When flood attack exceeds the value of this node,
the MAC address will be added into black list."
DEFVAL { 100 }
::= { h3cDot11WIDSGlobalConfigGroup 22 }
h3cDot11SSIDFilterOnOff OBJECT-TYPE
SYNTAX INTEGER
{
on(1),
off(2)
}
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"Represents whether the SSID permit feature is enabled or not."
DEFVAL { on }
::= { h3cDot11WIDSGlobalConfigGroup 23 }
h3cDot11BSSIDFilterOnOff OBJECT-TYPE
SYNTAX INTEGER
{
on(1),
off(2)
}
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"Represents whether the BSSID permit feature is enabled or not."
DEFVAL { on }
::= { h3cDot11WIDSGlobalConfigGroup 24 }
-- **********************************************************************
-- * End of h3cDot11WIDSGlobalConfigGroup Definition
-- *****************************************************************************
-- *****************************************************************************
-- * h3cDot11WIDSPermitVendorTable Definition
-- *****************************************************************************
h3cDot11WIDSPermitVendorTable OBJECT-TYPE
SYNTAX SEQUENCE OF H3cDot11WIDSPermitVendorEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"The table provides the permitted vendor list, and each vendor
will be identified by OUI.
The legal device should be made by the permitted vendors."
::= { h3cDot11WIDSConfigGroup 2 }
h3cDot11WIDSPermitVendorEntry OBJECT-TYPE
SYNTAX H3cDot11WIDSPermitVendorEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Each entry provides the information of permitted vendor."
INDEX
{
h3cDot11VendorOUI
}
::= { h3cDot11WIDSPermitVendorTable 1 }
H3cDot11WIDSPermitVendorEntry ::= SEQUENCE
{
h3cDot11VendorOUI OCTET STRING,
h3cDot11PermitVendorRowStatus RowStatus,
h3cDot11VendorName OCTET STRING
}
h3cDot11VendorOUI OBJECT-TYPE
SYNTAX OCTET STRING(SIZE(3))
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Represents the vendor OUI information of the wireless device."
::= { h3cDot11WIDSPermitVendorEntry 1 }
h3cDot11PermitVendorRowStatus OBJECT-TYPE
SYNTAX RowStatus
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"The status of this table entry."
::= { h3cDot11WIDSPermitVendorEntry 2 }
h3cDot11VendorName OBJECT-TYPE
SYNTAX OCTET STRING(SIZE(0..127))
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Represents the vendor name of the wireless device."
::= { h3cDot11WIDSPermitVendorEntry 3 }
-- *****************************************************************************
-- * End of h3cDot11WIDSPermitVendorTable Definition
-- *****************************************************************************
-- *****************************************************************************
-- * h3cDot11WIDSPermitSSIDTable Definition
-- *****************************************************************************
h3cDot11WIDSPermitSSIDTable OBJECT-TYPE
SYNTAX SEQUENCE OF H3cDot11WIDSPermitSSIDEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"The table represents the list of SSID could be permitted in
the wireless network."
::= { h3cDot11WIDSConfigGroup 3 }
h3cDot11WIDSPermitSSIDEntry OBJECT-TYPE
SYNTAX H3cDot11WIDSPermitSSIDEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Each entry provides the information of permitted SSID."
INDEX
{
h3cDot11PermitSSID
}
::= { h3cDot11WIDSPermitSSIDTable 1 }
H3cDot11WIDSPermitSSIDEntry ::= SEQUENCE
{
h3cDot11PermitSSID H3cDot11SSIDStringType,
h3cDot11PermitSSIDRowStatus RowStatus,
h3cDot11PermitSSIDDetected TruthValue
}
h3cDot11PermitSSID OBJECT-TYPE
SYNTAX H3cDot11SSIDStringType(SIZE(0..127))
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Represents the permitted SSID in the wireless network."
::= { h3cDot11WIDSPermitSSIDEntry 1 }
h3cDot11PermitSSIDRowStatus OBJECT-TYPE
SYNTAX RowStatus
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"The status of this table entry."
::= { h3cDot11WIDSPermitSSIDEntry 2 }
h3cDot11PermitSSIDDetected OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Represents whether the permitted SSID is detected or not."
::= { h3cDot11WIDSPermitSSIDEntry 3 }
-- *****************************************************************************
-- * End of h3cDot11WIDSPermitSSIDTable Definition
-- *****************************************************************************
-- *****************************************************************************
-- * h3cDot11WIDSIgnoreListTable Definition
-- *****************************************************************************
h3cDot11WIDSIgnoreListTable OBJECT-TYPE
SYNTAX SEQUENCE OF H3cDot11WIDSIgnoreListEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"The table provides the MAC address list of stations or APs,
and WIDS always take them as legal stations or APs."
::= { h3cDot11WIDSConfigGroup 4 }
h3cDot11WIDSIgnoreListEntry OBJECT-TYPE
SYNTAX H3cDot11WIDSIgnoreListEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Each entry contains the MAC address of station or AP,
and WIDS always take it as legal station or AP."
INDEX
{
h3cDot11IgnoreMAC
}
::= { h3cDot11WIDSIgnoreListTable 1 }
H3cDot11WIDSIgnoreListEntry ::= SEQUENCE
{
h3cDot11IgnoreMAC MacAddress,
h3cDot11IgnoreListRowStatus RowStatus,
h3cDot11IgnoreMACDetected TruthValue,
h3cDot11IgnoreDevType H3cDot11WIDSDevType
}
h3cDot11IgnoreMAC OBJECT-TYPE
SYNTAX MacAddress
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Represents the MAC address of station or AP, and WIDS always
take it as legal station or AP."
::= { h3cDot11WIDSIgnoreListEntry 1 }
h3cDot11IgnoreListRowStatus OBJECT-TYPE
SYNTAX RowStatus
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"The status of this table entry."
::= { h3cDot11WIDSIgnoreListEntry 2 }
h3cDot11IgnoreMACDetected OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Represents whether the MAC address detected or not."
::= { h3cDot11WIDSIgnoreListEntry 3 }
h3cDot11IgnoreDevType OBJECT-TYPE
SYNTAX H3cDot11WIDSDevType
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Represents the type of the MAC address detected.
The value of this object always is unknown if the MAC address is not
detected."
::= { h3cDot11WIDSIgnoreListEntry 4 }
-- *****************************************************************************
-- * End of h3cDot11WIDSIgnoreListTable Definition
-- *****************************************************************************
-- *****************************************************************************
-- * h3cDot11WIDSAttackListTable Definition
-- *****************************************************************************
h3cDot11WIDSAttackListTable OBJECT-TYPE
SYNTAX SEQUENCE OF H3cDot11WIDSAttackListEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"The table provides the MAC address list of rogue APs or rogue
stations, the WIDS will take countermeasure as per the MAC
address list."
::= { h3cDot11WIDSConfigGroup 5 }
h3cDot11WIDSAttackListEntry OBJECT-TYPE
SYNTAX H3cDot11WIDSAttackListEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Each entry contains the MAC address of rogue AP or rogue station,
and the countermeasure will be taken for it."
INDEX
{
h3cDot11AttackDeviceMac
}
::= { h3cDot11WIDSAttackListTable 1 }
H3cDot11WIDSAttackListEntry ::= SEQUENCE
{
h3cDot11AttackDeviceMac MacAddress,
h3cDot11AttackListRowStatus RowStatus,
h3cDot11AttackDevDetected TruthValue,
h3cDot11AttackDevType H3cDot11WIDSDevType
}
h3cDot11AttackDeviceMac OBJECT-TYPE
SYNTAX MacAddress
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Represents the MAC address of rogue AP or rogue station,
and the countermeasure will be taken for it."
::= { h3cDot11WIDSAttackListEntry 1 }
h3cDot11AttackListRowStatus OBJECT-TYPE
SYNTAX RowStatus
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"The status of this table entry."
::= { h3cDot11WIDSAttackListEntry 2 }
h3cDot11AttackDevDetected OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Represents whether the assigned MAC address in attack list is detected
or not."
::= { h3cDot11WIDSAttackListEntry 3 }
h3cDot11AttackDevType OBJECT-TYPE
SYNTAX H3cDot11WIDSDevType
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Represents the type of detected MAC address in attack list. If the
MAC address is not detected, it will return unknown(5) for get
operation."
::= { h3cDot11WIDSAttackListEntry 4 }
-- *****************************************************************************
-- * End of h3cDot11WIDSAttackListTable Definition
-- *****************************************************************************
-- *****************************************************************************
-- * h3cDot11StaticWhiteListTable Definition
-- *****************************************************************************
h3cDot11StaticWhiteListTable OBJECT-TYPE
SYNTAX SEQUENCE OF H3cDot11StaticWhiteListEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"The table provides the information of whitelist."
::= { h3cDot11WIDSConfigGroup 6 }
h3cDot11StaticWhiteListEntry OBJECT-TYPE
SYNTAX H3cDot11StaticWhiteListEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Each entry contains the information of whitelist."
INDEX
{
h3cDot11StaticWhiteListMAC
}
::= { h3cDot11StaticWhiteListTable 1 }
H3cDot11StaticWhiteListEntry ::= SEQUENCE
{
h3cDot11StaticWhiteListMAC MacAddress,
h3cDot11StaticWhiteListRowStatus RowStatus
}
h3cDot11StaticWhiteListMAC OBJECT-TYPE
SYNTAX MacAddress
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Represents the MAC addresses in whitelist."
::= { h3cDot11StaticWhiteListEntry 1 }
h3cDot11StaticWhiteListRowStatus OBJECT-TYPE
SYNTAX RowStatus
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"The status of this table entry."
::= { h3cDot11StaticWhiteListEntry 2 }
-- *****************************************************************************
-- * End of h3cDot11StaticWhiteListTable Definition
-- *****************************************************************************
-- *****************************************************************************
-- * h3cDot11StaticBlackListTable Definition
-- *****************************************************************************
h3cDot11StaticBlackListTable OBJECT-TYPE
SYNTAX SEQUENCE OF H3cDot11StaticBlackListEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"The table provides the information of static blacklist."
::= { h3cDot11WIDSConfigGroup 7 }
h3cDot11StaticBlackListEntry OBJECT-TYPE
SYNTAX H3cDot11StaticBlackListEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Each entry contains the information of static blacklist."
INDEX
{
h3cDot11StaticBlackListMAC
}
::= { h3cDot11StaticBlackListTable 1 }
H3cDot11StaticBlackListEntry ::= SEQUENCE
{
h3cDot11StaticBlackListMAC MacAddress,
h3cDot11StaticBlackListRowStatus RowStatus
}
h3cDot11StaticBlackListMAC OBJECT-TYPE
SYNTAX MacAddress
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Represents the MAC addresses in static blacklist."
::= { h3cDot11StaticBlackListEntry 1 }
h3cDot11StaticBlackListRowStatus OBJECT-TYPE
SYNTAX RowStatus
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"The status of this table entry."
::= { h3cDot11StaticBlackListEntry 2 }
-- *****************************************************************************
-- * End of h3cDot11StaticBlackListTable Definition
-- *****************************************************************************
-- *****************************************************************************
-- * h3cDot11WIDSPermitBSSIDTable Definition
-- *****************************************************************************
h3cDot11WIDSPermitBSSIDTable OBJECT-TYPE
SYNTAX SEQUENCE OF H3cDot11WIDSPermitBSSIDEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"The table represents the list of BSSID could be permitted in
the wireless network."
::= { h3cDot11WIDSConfigGroup 8 }
h3cDot11WIDSPermitBSSIDEntry OBJECT-TYPE
SYNTAX H3cDot11WIDSPermitBSSIDEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Each entry provides the information of permitted BSSID."
INDEX
{
h3cDot11PermitBSSID
}
::= { h3cDot11WIDSPermitBSSIDTable 1 }
H3cDot11WIDSPermitBSSIDEntry ::= SEQUENCE
{
h3cDot11PermitBSSID MacAddress,
h3cDot11PermitBSSIDDetected TruthValue,
h3cDot11PermitBSSIDRowStatus RowStatus
}
h3cDot11PermitBSSID OBJECT-TYPE
SYNTAX MacAddress
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Represents the permitted BSSID in the wireless network."
::= { h3cDot11WIDSPermitBSSIDEntry 1 }
h3cDot11PermitBSSIDDetected OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Represents whether the permitted BSSID is detected or not."
::= { h3cDot11WIDSPermitBSSIDEntry 2 }
h3cDot11PermitBSSIDRowStatus OBJECT-TYPE
SYNTAX RowStatus
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"Represents the row status of permit BSSID table."
::= { h3cDot11WIDSPermitBSSIDEntry 3 }
-- *****************************************************************************
-- * End of h3cDot11StaticBlackListTable Definition
-- *****************************************************************************
-- *****************************************************************************
-- * h3cDot11WIDSRogueAPTable Definition
-- *****************************************************************************
h3cDot11WIDSRogueAPTable OBJECT-TYPE
SYNTAX SEQUENCE OF H3cDot11WIDSRogueAPEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"The table represents the list of possible BSS information for
rogue APs detected by the WIDS."
::= { h3cDot11WIDSDetectGroup 1 }
h3cDot11WIDSRogueAPEntry OBJECT-TYPE
SYNTAX H3cDot11WIDSRogueAPEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Each entry contains possible BSS information of each rogue AP
detected by WIDS."
INDEX
{
h3cDot11RogueAPBSSMAC
}
::= { h3cDot11WIDSRogueAPTable 1 }
H3cDot11WIDSRogueAPEntry ::= SEQUENCE
{
h3cDot11RogueAPBSSMAC MacAddress,
h3cDot11RogueAPVendorName OCTET STRING,
h3cDot11RogueAPMonitorNum Integer32,
h3cDot11RogueAPFirstDetectTm TimeTicks,
h3cDot11RogueAPLastDetectTm TimeTicks,
h3cDot11RogueAPSSID H3cDot11SSIDStringType,
h3cDot11RogueAPMaxSigStrength Integer32,
h3cDot11RogueAPChannel H3cDot11ChannelScopeType,
h3cDot11RogueAPBeaconInterval Integer32,
h3cDot11RogueAPAttackedStatus TruthValue,
h3cDot11RogueAPToIgnore TruthValue,
h3cDot11RogueAPEncryptStatus TruthValue,
h3cDot11RogueAPReset TruthValue,
h3cDot11RogueAPFirstDetectTmStr OCTET STRING,
h3cDot11RogueAPLastDetectTmStr OCTET STRING
}
h3cDot11RogueAPBSSMAC OBJECT-TYPE
SYNTAX MacAddress
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Represents the BSS MAC address of rogue AP."
::= { h3cDot11WIDSRogueAPEntry 1 }
h3cDot11RogueAPVendorName OBJECT-TYPE
SYNTAX OCTET STRING(SIZE(0..127))
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Represents the vendor name of rogue AP."
::= { h3cDot11WIDSRogueAPEntry 2 }