CISCO-GDOI-MIB

CISCO-GDOI-MIB Download

MIBs list

This MIB module defines objects for managing the GDOI protocol.

IPHost Network Monitor offer an easy way of SNMP monitoring your Cisco Servers, Routers, Switches, Bridges, Firewalls, Repeaters.

OID list for CISCO-GDOI-MIB

cgmGdoiGroupTable
A table of information regarding GDOI Groups in use on the network device being queried.
cgmGdoiGroupEntry
An entry containing GDOI Group information, uniquely identified by the GDOI Group ID.
cgmGdoiGroupIdType
The Identification Type Value used to parse a GDOI Group ID. The GDOI RFC 3547 defines the types that can be used as a GDOI Group ID, and RFC 4306 defines all valid types that can be used as an identifier. This Group ID type is sent as the 'ID Type' fiel ...
cgmGdoiGroupIdLength
The length (i.e. number of octets) of a Group ID. If no length is given (i.e. it has a value of 0), the default length of its cgmGdoiGroupIdType should be used as long as it is not reprsented by an ASCII string. If the value has a type that is represent ...
cgmGdoiGroupIdValue
The value of a Group ID with its type indicated by the cgmGdoiGroupIdType. Use the cgmGdoiGroupIdType to parse the Group ID correctly. This Group ID value is sent as the 'Identification Data' field of the Identification Payload for a GDOI GROUPKEY-PULL ...
cgmGdoiGroupName
The string-readable name configured for or given to a GDOI Group.
cgmGdoiKeyServerTable
A table of information for the GDOI group from the perspective of the Key Servers (GCKSs) on the network device being queried.
cgmGdoiKeyServerEntry
An entry containing GDOI Key Server (KS) information, uniquely identified by the Group & Key Server IDs.
cgmGdoiKeyServerIdType
The Identification Type Value used to parse the identity information for a Key Server. RFC 4306 defines all valid types that can be used as an identifier. These identification types are sent as the 'SRC ID Type' and 'DST ID Type' of the KEK and TEK payl ...
cgmGdoiKeyServerIdLength
The length (i.e. number of octets) of a Key Server ID. If no length is given (i.e. it has a value of 0), the default length of its cgmGdoiKeyServerIdType should be used as long as it is not reprsented by an ASCII string. If the value has a type that is ...
cgmGdoiKeyServerIdValue
The value of the identity information for a Key Server with its type indicated by the cgmGdoiKeyServerIdType. Use the cgmGdoiKeyServerIdType to parse the Key Server ID correctly. This Key Server ID value is sent as the 'SRC Identification Data' and 'DST ...
cgmGdoiKeyServerActiveKEK
The SPI of the Key Encryption Key (KEK) that is currently being used by the Key Server to encrypt the GROUPKEY-PUSH keying & security association material sent to the Key Server's registered Group Members.
cgmGdoiKeyServerRekeysPushed
The sequence number of the last rekey sent from the Key Server to its registered Group Members for this GDOI group.
cgmGdoiGmTable
A table of information regarding GDOI Group Members (GMs) locally configured on the network device being queried. Note that Local Group Members may or may not be registered to a Key Server in its GDOI Group on the same network device being queried.
cgmGdoiGmEntry
An entry containing Local GDOI Group Member information, uniquely identified by Group & GM IDs. Because the Group Member is Local to the network device being queried, TEKs installed for this Group Member can be queried as well.
cgmGdoiGmIdType
The Identification Type Value used to parse the identity information for a Initiator or Group Member. RFC 4306 defines all valid types that can be used as an identifier. These identification types are sent as the 'SRC ID Type' and 'DST ID Type' of the KE ...
cgmGdoiGmIdLength
The length (i.e. number of octets) of a Group Member ID. If no length is given (i.e. it has a value of 0), the default length of its cgmGdoiGmIdType should be used as long as it is not reprsented by an ASCII string. If the value has a type that is repre ...
cgmGdoiGmIdValue
The value of the identity information for a Group Member with its type indicated by the cgmGdoiGmIdType. Use the cgmGdoiGmIdType to parse the Group Member ID correctly. This Group Member ID value is sent as the 'SRC Identification Data' and 'DST Identifi ...
cgmGdoiGmRegKeyServerIdType
The Identification Type Value used to parse the identity information of this Group Member's registered Key Server. RFC 4306 defines all valid types that can be used as an identifier. These identification types are sent as the 'SRC ID Type' and 'DST ID Ty ...
cgmGdoiGmRegKeyServerIdLength
The length (i.e. number of octets) of the registered Key Server's ID. If no length is given (i.e. it has a value of 0), the default length of its cgmGdoiGmRegKeyServerIdType should be used as long as it is not reprsented by an ASCII string. If the value ...
cgmGdoiGmRegKeyServerIdValue
The value of the identity information for this Group Member's registered Key Server with its type indicated by the cgmGdoiGmRegKeyServerIdType. Use the cgmGdoiGmRegKeyServerIdType to parse the registered Key Server's ID correctly. This Key Server ID val ...
cgmGdoiGmActiveKEK
The SPI of the Key Encryption Key (KEK) that is currently being used by the Group Member to authenticate & decrypt a rekey from a GROUPKEY-PUSH message.
cgmGdoiGmRekeysReceived
The sequence number of the last rekey successfully received from this Group Member's registered Key Server.
cgmGdoiKsKekTable
A table of information regarding GDOI Key Encryption Key (KEK) Policies & Security Associations (SAs) currently configured/installed for GDOI entities acting as Key Servers on the network device being queried. There is one entry in this table for each KE ...
cgmGdoiKsKekEntry
An entry containing the attributes associated with a GDOI KEK Policy/SA, uniquely identified by the Group ID, Key Server ID, & SPI value assigned by the given Key Server to the KEK. There will be at least one KEK Policy/SA entry for each Key Server & two ...
cgmGdoiKsKekIndex
The index of the KS KEK.The value of the index is a number which begins at one and is incremented with each KS KEK that is to be created by the KS for that GDOI group.
cgmGdoiKsKekSPI
The value of the Security Parameter Index (SPI) of a KEK Policy/SA. The SPI must be the ISAKMP Header cookie pair where the first 8 octets become the 'Initiator Cookie' field of the GROUPKEY-PUSH message ISAKMP HDR, and the second 8 octets become the 'Re ...
cgmGdoiKsKekSrcIdType
The Identification Type Value used to parse the identity information for the source of a KEK Policy/SA. RFC 4306 defines all valid types that can be used as an identifier. This identification type is sent as the 'SRC ID Type' of the KEK payload.
cgmGdoiKsKekSrcIdLength
The length (i.e. number of octets) of the source ID of a KEK Policy/SA. If no length is given (i.e. it has a value of 0), the default length of its cgmGdoiKsKekSrcIdType should be used as long as it is not reprsented by an ASCII string. If the value has ...
cgmGdoiKsKekSrcIdValue
The value of the identity information for the source of a KEK Policy/SA with its type indicated by the cgmGdoiKsKekSrcIdType. Use the cgmGdoiKsKekSrcIdType to parse the KEK Source ID correctly. This ID value is sent as the 'SRC Identification Data' of a ...
cgmGdoiKsKekSrcIdPort
The value specifying a port associated with the source ID of a KEK Policy/SA. A value of zero means that the port should be ignored. This port value is sent as the `SRC ID Port` field of a KEK payload.
cgmGdoiKsKekDstIdType
The Identification Type Value used to parse the identity information for the dest. of a KEK Policy/SA (multicast rekey address). RFC 4306 defines all valid types that can be used as an identifier. This identification type is sent as the 'DST ID Type' of ...
cgmGdoiKsKekDstIdLength
The length (i.e. number of octets) of the destination ID of a KEK Policy/SA (multicast rekey address). If no length is given (i.e. it has a valueof 0), the default length of its cgmGdoiKsKekDstIdType should be used as long as it is not reprsented by an A ...
cgmGdoiKsKekDstIdValue
The value of the identity information for the destination of a KEK Policy/SA (multicast rekey address) with its type indicated by the cgmGdoiKsKekDstIdType. Use the cgmGdoiKsKekDstIdType to parse the KEK Dest. ID correctly. This ID value is sent as the ' ...
cgmGdoiKsKekDstIdPort
The value specifying a port associated with the dest. ID of a KEK Policy/SA. A value of zero means that the port should be ignored. This port value is sent as the `DST ID Port` field of a KEK payload.
cgmGdoiKsKekIpProtocol
The value of the IP protocol ID (e.g. UDP/TCP) being used for the rekey datagram.
cgmGdoiKsKekMgmtAlg
The value of the KEK_MANAGEMENT_ALGORITHM which specifies the group KEK management algorithm used to provide forward or backward access control (i.e. used to exclude group members). KEK Management Type Value ------------------- ----- RESERVED ...
cgmGdoiKsKekEncryptAlg
The value of the KEK_ALGORITHM which specifies the encryption algorithm used with the KEK Policy/SA. A GDOI implementaiton must support KEK_ALG_3DES. Following are the KEK encryption algoritm values defined in the GDOI RFC 3547, however the CgmGdoiEncryp ...
cgmGdoiKsKekEncryptKeyLength
The value of the KEK_KEY_LENGTH which specifies the KEK Algorithm key length (in bits).
cgmGdoiKsKekSigHashAlg
The value of the SIG_HASH_ALGORITHM which specifies the SIG payload hash algorithm. This is not required (i.e. could have a value of zero) if the SIG_ALGORITHM is SIG_ALG_DSS or SIG_ALG_ECDSS, which imply SIG_HASH_SHA1 (i.e. must have a value of zero or ...
cgmGdoiKsKekSigAlg
The value of the SIG_ALGORITHM which specifies the SIG payload signature algorithm. A GDOI implementation must support SIG_ALG_RSA. Following are the Signature Algorithm values defined in the GDOI RFC 3547, however the CgmGdoiSignatureMethod TC defines a ...
cgmGdoiKsKekSigKeyLength
The value of the SIG_KEY_LENGTH which specifies the length of the SIG payload key.
cgmGdoiKsKekOakleyGroup
The value of the KE_OAKLEY_GROUP which specifies the OAKLEY or Diffie-Hellman Group used to compute the PFS secret in the optional KE payload of the GDOI GROUPKEY-PULL exchange.
cgmGdoiKsKekOriginalLifetime
The value of the KEK_KEY_LIFETIME which specifies the maximum time for which a KEK is valid. The GCKS may refresh the KEK at any time before the end of the valid period. The value is a four (4) octet (32-bit) number defining a valid time period in secon ...
cgmGdoiKsKekRemainingLifetime
The value of the remaining time for which a KEK is valid. The value is a four (4) octet (32-bit) number which begins at the value of cgmGdoiKsKekOriginalLifetime when the KEK is sent and counts down to zero in seconds. If the lifetime has already expired ...
cgmGdoiKsKekStatus
The status of the KEK Policy/SA. When this status value is queried, one of the following is returned: inUse(1), new(2), old(3).
cgmGdoiGmKekTable
A table of information regarding GDOI Key Encryption Key (KEK) Security Associations (SAs) currently installed for GDOI entities acting as Group Members on the network device being queried. There is one entry in this table for each KEK SA that has been i ...
cgmGdoiGmKekEntry
An entry containing the attributes associated with a GDOI KEK SA, uniquely identified by the Group ID, Group Member (GM) ID, & SPI value assigned by the GM's registered Key Server to the KEK. There will be at least one KEK SA entry for each GM & two KEK ...
cgmGdoiGmKekIndex
The index of the GM KEK in table.The value of the index is a number which begins at one and is incremented with each KEK that is used by the GM for that GDOI group.
cgmGdoiGmKekSPI
The value of the Security Parameter Index (SPI) of a KEK SA. The SPI must be the ISAKMP Header cookie pair where the first 8 octets become the 'Initiator Cookie' field of the GROUPKEY-PUSH message ISAKMP HDR, and the second 8 octets become the 'Responder ...
cgmGdoiGmKekSrcIdType
The Identification Type Value used to parse the identity information for the source of a KEK SA. RFC 4306 defines all valid types that can be used as an identifier. This identification type is sent as the 'SRC ID Type' of the KEK payload.
cgmGdoiGmKekSrcIdLength
The length (i.e. number of octets) of the source ID of a KEK SA. If no length is given (i.e. it has a value of 0), the default length of its cgmGdoiGmKekSrcIdType should be used as long as it is not reprsented by an ASCII string. If the value has a type ...
cgmGdoiGmKekSrcIdValue
The value of the identity information for the source of a KEK SA with its type indicated by the cgmGdoiGmKekSrcIdType. Use the cgmGdoiGmKekSrcIdType to parse the KEK Source ID correctly. This ID value is sent as the 'SRC Identification Data' of a KEK pa ...
cgmGdoiGmKekSrcIdPort
The value specifying a port associated with the source ID of a KEK SA. A value of zero means that the port should be ignored. This port value is sent as the `SRC ID Port` field of a KEK payload.
cgmGdoiGmKekDstIdType
The Identification Type Value used to parse the identity information for the dest. (multicast rekey address) of a KEK SA. RFC 4306 defines all valid types that can be used as an identifier. This identification type is sent as the 'DST ID Type' of the KEK ...
cgmGdoiGmKekDstIdLength
The length (i.e. number of octets) of the destination ID of a KEK SA. If no length is given (i.e. it has a value of 0), the default length of its cgmGdoiGmKekDstIdType should be used as long as it is not reprsented by an ASCII string. If the value has a ...
cgmGdoiGmKekDstIdValue
The value of the identity information for the destination of a KEK SA (multicast rekey address) with its type indicated by cgmGdoiGmKekDstIdType. Use the cgmGdoiGmKekDstIdType to parse the KEK Dest. ID correctly. This ID value is sent as the 'DST Identi ...
cgmGdoiGmKekDstIdPort
The value specifying a port associated with the dest. ID of a KEK SA. A value of zero means that the port should be ignored. This port value is sent as the `DST ID Port` field of a KEK payload.
cgmGdoiGmKekIpProtocol
The value of the IP protocol ID (e.g. UDP/TCP) being used for the rekey datagram.
cgmGdoiGmKekMgmtAlg
The value of the KEK_MANAGEMENT_ALGORITHM which specifies the group KEK management algorithm used to provide forward or backward access control (i.e. used to exclude group members). KEK Management Type Value ------------------- ----- RESERVED ...
cgmGdoiGmKekEncryptAlg
The value of the KEK_ALGORITHM which specifies the encryption algorithm used with the KEK SA. A GDOI implementaiton must support KEK_ALG_3DES. Following are the KEK encryption algoritm values defined in the GDOI RFC 3547, however the CgmGdoiEncryptionAlg ...
cgmGdoiGmKekEncryptKeyLength
The value of the KEK_KEY_LENGTH which specifies the KEK Algorithm key length (in bits).
cgmGdoiGmKekSigHashAlg
The value of the SIG_HASH_ALGORITHM which specifies the SIG payload hash algorithm. This is not required (i.e. could have a value of zero) if the SIG_ALGORITHM is SIG_ALG_DSS or SIG_ALG_ECDSS, which imply SIG_HASH_SHA1 (i.e. must have a value of zero or ...
cgmGdoiGmKekSigAlg
The value of the SIG_ALGORITHM which specifies the SIG payload signature algorithm. A GDOI implementation must support SIG_ALG_RSA. Following are the Signature Algorithm values defined in the GDOI RFC 3547, however the CgmGdoiSignatureMethod TC defines a ...
cgmGdoiGmKekSigKeyLength
The value of the SIG_KEY_LENGTH which specifies the length of the SIG payload key.
cgmGdoiGmKekOakleyGroup
The value of the KE_OAKLEY_GROUP which specifies the OAKLEY or Diffie-Hellman Group used to compute the PFS secret in the optional KE payload of the GDOI GROUPKEY-PULL exchange.
cgmGdoiGmKekOriginalLifetime
The value of the KEK_KEY_LIFETIME which specifies the maximum time for which a KEK is valid. The GCKS may refresh the KEK at any time before the end of the valid period. The value is a four (4) octet (32-bit) number defining a valid time period in secon ...
cgmGdoiGmKekRemainingLifetime
The value of the remaining time for which a KEK is valid. The value is a four (4) octet (32-bit) number which begins at the value of cgmGdoiGmKekOriginalLifetime and counts down to 0 in seconds. If the lifetime has already expired, this value should rema ...
cgmGdoiGmKekStatus
The status of the KEK SA. When this status value is queried, one of the following is returned: inUse(1), new(2), old(3).
cgmGdoiKsTekSelectorTable
A table of information regarding GDOI Traffic Encryption Key (TEK) Selectors (source, destination, protocol information) that is currently configured/pushed for GDOI entities acting as Key Servers on the network device being queried. There is one entry in ...
cgmGdoiKsTekSelectorEntry
An entry containing the Source/Destination attributes associated with a GDOI TEK Policy, uniquely identified by the Group ID, Key Server ID and TEK Selector index. There will be one entry for each Source/Destination Policy sent by the given Key Server to ...
cgmGdoiKsTekSelectorIndex
The index of the Source/Destination tuple to be secured by the KS TEK.The value of the index is a number which begins at one and is incremented with each Source/Destination pair that is to be secured by the KS TEK policy for that GDOI group.
cgmGdoiKsTekSrcIdType
The Identification Type Value used to parse the identity information for the source of a TEK Policy. RFC 4306 defines all valid types that can be used as an identifier. This identification type is sent as the 'SRC ID Type' of the TEK payload.
cgmGdoiKsTekSrcIdLength
The length (i.e. number of octets) of the source ID of a TEK Policy. If no length is given (i.e. it has a value of 0), the default length of its cgmGdoiKsTekSrcIdType should be used as long as it is not reprsented by an ASCII string. If the value has a ...
cgmGdoiKsTekSrcIdValue
The value of the identity information for the source of a TEK Policy with its type indicated by the cgmGdoiKsTekSrcIdType. Use the cgmGdoiKsTekSrcIdType to parse the TEK Source ID correctly. This ID value is sent as the 'SRC Identification Data' of a TE ...
cgmGdoiKsTekSrcIdPort
The value specifying a port associated with the source ID of a TEK Policy. A value of zero means that the port should be ignored. This port value is sent as the `SRC ID Port` field of a TEK payload.
cgmGdoiKsTekDstIdType
The Identification Type Value used to parse the identity information for the dest. of a TEK Policy. RFC 4306 defines all valid types that can be used as an identifier. This identification type is sent as the 'DST ID Type' of the TEK payload.
cgmGdoiKsTekDstIdLength
The length (i.e. number of octets) of the destination ID of a TEK Policy. If no length is given (i.e. it has a value of 0), the default length of its cgmGdoiKsTekDstIdType should be used as long as it is not reprsented by an ASCII string. If the value h ...
cgmGdoiKsTekDstIdValue
The value of the identity information for the destination of a TEK Policy with its type indicated by the cgmGdoiKsTekDstIdType. Use the cgmGdoiKsTekDstIdType to parse the TEK Dest. ID correctly. This ID value is sent as the 'DST Identification Data' of ...
cgmGdoiKsTekDstIdPort
The value specifying a port associated with the dest. ID of a TEK Policy. A value of zero means that the port should be ignored. This port value is sent as the `DST ID Port` field of a TEK payload.
cgmGdoiKsTekSecurityProtocol
The value of the Protocol-ID field of a SA TEK (SAT) payload which specifies the Security Protocol for a TEK. Following are the Security Protocol values defined in the GDOI RFC 3547, however the CgmGdoiSecurityProtocol TC defines all possible values. Prot ...
cgmGdoiKsTekPolicyTable
A table of information regarding GDOI Traffic Encryption Key (TEK) Policies currently configured/pushed for GDOI entities acting as Key Servers on the network device being queried. There is one entry in this table for each TEK that has been configured & p ...
cgmGdoiKsTekPolicyEntry
An entry containing the attributes associated with a GDOI TEK Policy, uniquely identified by the Group ID, Key Server ID, TEK Selector Index (Source/Destination IDs & Ports), and TEK Policy Index (TEK SPI and direction). There will be one or more TEK ent ...
cgmGdoiKsTekPolicyIndex
The index of the policy that is used to secure the KS TEK. The value of the index is a number which begins at one and is incremented with each row in this table.
cgmGdoiKsTekSPI
The value of the Security Parameter Index (SPI) of a TEK Policy. The SPI must be the SPI for ESP.
cgmGdoiKsTekEncapsulationMode
The value of the Encapsulation Mode of a TEK (IPsec SA). Following are the Encapsulation Mode values defined in RFC 2407, however the CgmGdoiEncapsulationMode TC defines all possible values. Encapsulation Mode Value ------------------ ----- RESERVED ...
cgmGdoiKsTekEncryptionAlgorithm
The value of the Transform ID field of a PROTO_IPSEC_ESP payload which specifies the ESP transform to be used. If no encryption is used, this value will be zero (0). Following are the ESP Transform values defined in RFC 2407, however the CgmGdoiEncryptio ...
cgmGdoiKsTekEncryptionKeyLength
The length of the key used for encryption in a TEK (in bits).
cgmGdoiKsTekIntegrityAlgorithm
The value of the Authentication Algorithm for a TEK IPsec ESP SA. If no authentication is used, this value will be zero (0). Following are the Authentication Algorithm values defined in RFC 2407, however the CgmGdoiEncryptionAlgorithm TC defines all poss ...
cgmGdoiKsTekIntegrityKeyLength
The length of the key used for integrity/authentication in a TEK (in bits).
cgmGdoiKsTekWindowSize
The size of the Time Based Anti-Replay (TBAR) window used by this TEK Policy.
cgmGdoiKsTekOriginalLifetime
The value of the SA Life Type defined in RFC 2407 which specifies the maximum time for which a TEK IPsec SA is valid. The GCKS may refresh the TEK at any time before the end of the valid period. The value is a four (4) octet (32-bit) number defining a va ...
cgmGdoiKsTekRemainingLifetime
The value of the remaining time for which a TEK is valid. The value is a four (4) octet (32-bit) number which begins at the value of cgmGdoiKsTekOriginalLifetime when the TEK is sent and counts down to zero in seconds. If the lifetime has already expired ...
cgmGdoiKsTekStatus
The status of the TEK Policy. When this status value is queried, one of the following is returned: inbound(1), outbound(2), notInUse(3).
cgmGdoiGmTekSelectorTable
A table of information regarding GDOI Traffic Encryption Key (TEK) Security Associations (SAs/Policies) pushed by a Key Server & installed for GDOI entities acting as Group Members (GMs) on the network device being queried. There is one entry in this tab ...
cgmGdoiGmTekSelectorEntry
An entry containing the attributes associated with a GDOI TEK Policy/SA, uniquely identified by the Group ID, Group Member ID, Source/Destination IDs & Ports, and TEK SPI. There will be one or more TEK entries for each TEK Policy/SA received and installe ...
cgmGdoiGmTekSelectorIndex
The index of the Source/Destination pair secured by the GM TEK.The value of the index is a number which begins at one and is incremented with each Source/Destination pair that is secured by the GM TEK policy for that GDOI group.
cgmGdoiGmTekSrcIdType
The Identification Type Value used to parse the identity information for the source of a TEK Policy/SA. RFC 4306 defines all valid types that can be used as an identifier. This identification type is sent as the 'SRC ID Type' of the TEK payload.
cgmGdoiGmTekSrcIdLength
The length (i.e. number of octets) of the source ID of a TEK Policy/SA. If no length is given (i.e. it has a value of 0), the default length of its cgmGdoiGmTekSrcIdType should be used as long as it is not reprsented by an ASCII string. If the value has ...
cgmGdoiGmTekSrcIdValue
The value of the identity information for the source of a TEK Policy/SA with its type indicated by the cgmGdoiGmTekSrcIdType. Use the cgmGdoiGmTekSrcIdType to parse the TEK Source ID correctly. This ID value is sent as the 'SRC Identification Data' of a ...
cgmGdoiGmTekSrcIdPort
The value specifying a port associated with the source ID of a TEK Policy/SA. A value of zero means that the port should be ignored. This port value is sent as the `SRC ID Port` field of a TEK payload.
cgmGdoiGmTekDstIdType
The Identification Type Value used to parse the identity information for the dest. of a TEK Policy/SA. RFC 4306 defines all valid types that can be used as an identifier. This identification type is sent as the 'DST ID Type' of the TEK payload.
cgmGdoiGmTekDstIdLength
The length (i.e. number of octets) of the destination ID of a TEK Policy/SA. If no length is given (i.e. it has a value of 0), the default length of its cgmGdoiGmTekDstIdType should be used as long as it is not reprsented by an ASCII string. If the valu ...
cgmGdoiGmTekDstIdValue
The value of the identity information for the destination of a TEK Policy/SA with its type indicated by the cgmGdoiGmTekDstIdType. Use the cgmGdoiGmTekDstIdType to parse the TEK Dest. ID correctly. This ID value is sent as the 'DST Identification Data' ...
cgmGdoiGmTekDstIdPort
The value specifying a port associated with the dest. ID of a TEK Policy/SA. A value of zero means that the port should be ignored. This port value is sent as the `DST ID Port` field of a TEK payload.
cgmGdoiGmTekSecurityProtocol
The value of the Protocol-ID field of a SA TEK (SAT) payload which specifies the Security Protocol for a TEK. Following are the Security Protocol values defined in the GDOI RFC 3547, however the CgmGdoiSecurityProtocol TC defines all possible values. Prot ...
cgmGdoiGmTekPolicyTable
A table of information regarding GDOI Traffic Encryption Key (TEK) Security Associations (SAs/Policies) received by a Key Server & installed for GDOI entities acting as Group Members (GMs) on the network device being queried. There is one entry in this t ...
cgmGdoiGmTekPolicyEntry
An entry containing the attributes associated with a GDOI TEK Policy/SA, uniquely identified by the Group ID, Group Member ID, TEK Selector (Source/Destination IDs & Ports), and TEK Policy index (TEK SPI and direction). There will be one or more TEK entr ...
cgmGdoiGmTekPolicyIndex
The index of the SPI used to secure the GM TEK.The value of the index is a number which begins at one and is incremented with each row of the GM TEK SPI table.
cgmGdoiGmTekSPI
The value of the Security Parameter Index (SPI) of a TEK Policy/SA. The SPI must be the SPI for ESP.
cgmGdoiGmTekEncapsulationMode
The value of the Encapsulation Mode of a TEK (IPsec SA). Following are the Encapsulation Mode values defined in RFC 2407, however the CgmGdoiEncapsulationMode TC defines all possible values. Encapsulation Mode Value ------------------ ----- RESERVED ...
cgmGdoiGmTekEncryptionAlgorithm
The value of the Transform ID field of a PROTO_IPSEC_ESP payload which specifies the ESP transform to be used. If no encryption is used, this value will be zero (0). Following are the ESP Transform values defined in RFC 2407, however the CgmGdoiEncryptio ...
cgmGdoiGmTekEncryptionKeyLength
The length of the key used for encryption in a TEK (in bits).
cgmGdoiGmTekIntegrityAlgorithm
The value of the Authentication Algorithm for a TEK IPsec ESP SA. If no authentication is used, this value will be zero (0). Following are the Authentication Algorithm values defined in RFC 2407, however the CgmGdoiEncryptionAlgorithm TC defines all poss ...
cgmGdoiGmTekIntegrityKeyLength
The length of the key used for integrity/authentication in a TEK (in bits).
cgmGdoiGmTekWindowSize
The size of the Time Based Anti-Replay (TBAR) window used by this TEK Policy/SA.
cgmGdoiGmTekOriginalLifetime
The value of the SA Life Type defined in RFC 2407 which specifies the maximum time for which a TEK IPsec SA is valid. The GCKS may refresh the TEK at any time before the end of the valid period. The value is a four (4) octet (32-bit) number defining a va ...
cgmGdoiGmTekRemainingLifetime
The value of the remaining time for which a TEK is valid. The value is a four (4) octet (32-bit) number which begins at the value of cgmGdoiGmTekOriginalLifetime and counts down to 0 in seconds. If the lifetime has already expired, this value should rema ...
cgmGdoiGmTekStatus
The status of the TEK Policy/SA. When this status value is queried, one of the following is returned: inbound(1), outbound(2), notInUse(3).
cgmGdoiKSNewRegNotifEnable
Indicates whether or not a notification should be generated on a Key Server when a new Group Member begins registration to a GDOI group.
cgmGdoiKSRegCompNotifEnable
Indicates whether or not a notification should be generated on a Key Server when a new Group Member successfully registers to a GDOI group.
cgmGdoiKSRekeyPushNotifEnable
Indicates whether or not a notification should be generated on a Key Server when a rekey is sent to a GDOI group.
cgmGdoiKSNoRSANotifEnable
Indicates whether or not an error notification should be generated on a Key Server when an RSA key is not set up.
cgmGdoiGMRegNotifEnable
Indicates whether or not a notification should be generated on a Group Member when it starts registration to a Key Server in a GDOI group.
cgmGdoiGmRegCompNotifEnable
Indicates whether or not a notification should be generated on a Group Member when it successfully registers to a Key Server in a GDOI group.
cgmGdoiGmReRegNotifEnable
Indicates whether or not a notification should be generated on a Group Member when it starts to re-register to a Key Server in a GDOI group.
cgmGdoiGmRekeyRecNotifEnable
Indicates whether or not a notification should be generated on a Group Member when it receives and processes a rekey sent by a Key Server in a GDOI group.
cgmGdoiGmIncompCfgNotifEnable
Indicates whether or not an error notification should be generated on a Group Member when there is missing information for configuring a GDOI group.
cgmGdoiGmNoIpSecFlowsNotifEnable
Indicates whether or not an error notification should be generated on a Group Member when no more security associations can be installed after receiving a rekey from a Key Server in a GDOI group.
cgmGdoiGmRekeyFailNotifEnable
Indicates whether or not an error notification should be generated on a Group Member when it is unable to successfully process and install a rekey.
cgmGdoiGroupIdGroup
This group consists of: 1) GDOI Group Table
cgmGdoiKeyServerGroup
This group consists of: 1) GDOI Key Server Table
cgmGdoiGmGroup
This group consists of: 1) GDOI GM Table
cgmGdoiKsSecurityAssociationsGroup
This group consists of: 1) GDOI Key Server KEK Policy/SA Table 2) GDOI Key Server TEK Policy Table
cgmGdoiGmSecurityAssociationsGroup
This group consists of: 1) GDOI Group Member KEK Policy/SA Table 2) GDOI Group Member TEK Policy/SA Table
cgmGdoiNotificationControlGroup
This group contains the GDOI notification control objects for the GDOI MIB.

Download IPHost Network Monitor (500 monitors for 30 days, 50 monitors free forever) to start monitoring network devices right now.

MIBs list