CISCO-TRUSTSEC-POLICY-MIB

CISCO-TRUSTSEC-POLICY-MIB Download

MIBs list

This MIB module defines managed objects that facilitate the management of various policies within the Cisco Trusted Security (TrustSec) infrastructure.

IPHost Network Monitor offer an easy way of SNMP monitoring your Cisco Servers, Routers, Switches, Bridges, Firewalls, Repeaters.

OID list for CISCO-TRUSTSEC-POLICY-MIB

ctspSgaclEnforcementEnable
This object specifies whether SGACL enforcement for all Layer 3 interfaces (excluding SVIs) is enabled at the managed system. 'none' indicates that SGACL enforcement for all Layer 3 interfaces (excluding SVIs) is disabled. 'l3Only' indicates that SGACL en ...
ctspSgaclIpv4DropNetflowMonitor
This object specifies an existing flexible netflow monitor name used to collect and export the IPv4 traffic dropped packets statistics due to SGACL enforcement. The zero-length string indicates that no such netflow monitor is configured in the device.
ctspSgaclIpv6DropNetflowMonitor
This object specifies an existing flexible netflow monitor name used to collect and export the IPv6 traffic dropped packets statistics due to SGACL enforcement. The zero-length string indicates that no such netflow monitor is configured in the device.
ctspVlanConfigTable
This table lists the SGACL enforcement for Layer 2 and Layer 3 switched packet in a VLAN as well as VRF information for VLANs in the device.
ctspVlanConfigEntry
Each row contains the SGACL enforcement information for Layer 2 and Layer 3 switched packets in a VLAN identified by its VlanIndex value. Entry in this table is populated for VLANs which contains SGACL enforcement or VRF configuration.
ctspVlanConfigIndex
This object indicates the VLAN-ID of this VLAN.
ctspVlanConfigSgaclEnforcement
This object specifies the configured SGACL enforcement status for this VLAN i.e., 'true' = enabled and 'false' = disabled.
ctspVlanSviActive
This object indicates if there is an active SVI associated with this VLAN. 'true' indicates that there is an active SVI associated with this VLAN. and SGACL is enforced for both Layer 2 and Layer 3 switched packets within that VLAN. 'false' indicates that ...
ctspVlanConfigVrfName
This object specifies an existing VRF where this VLAN belongs to. The zero length value indicates this VLAN belongs to the default VRF.
ctspVlanConfigStorageType
The objects specifies the storage type for this conceptual row.
ctspVlanConfigRowStatus
The status of this conceptual row entry. This object is used to manage creation and deletion of rows in this table. When this object value is 'active', other writable objects in the same row cannot be modified.
ctspConfigSgaclMappingTable
This table contains the SGACLs information which is applied to unicast IP traffic which carries a source SGT and travels to a destination SGT.
ctspConfigSgaclMappingEntry
Each row contains the SGACL mapping to source and destination SGT for a certain traffic type as well as status of this instance. A row instance can be created or removed by setting the appropriate value of its RowStatus object.
ctspConfigSgaclMappingIpTrafficType
This object indicates the type of the unicast IP traffic carrying the source SGT and travelling to destination SGT and subjected to SGACL enforcement.
ctspConfigSgaclMappingDestSgt
This object indicates the destination SGT value. Value of zero indicates that the destination SGT is unknown.
ctspConfigSgaclMappingSourceSgt
This object indicates the source SGT value. Value of zero indicates that the source SGT is unknown.
ctspConfigSgaclMappingSgaclName
This object specifies the list of existing SGACLs which is administratively configured to apply to unicast IP traffic carrying the source SGT to the destination SGT.
ctspConfigSgaclMappingStorageType
The storage type for this conceptual row.
ctspConfigSgaclMappingRowStatus
This object is used to manage the creation and deletion of rows in this table. ctspConfigSgaclName may be modified at any time.
ctspDefConfigIpv4Sgacls
This object specifies the SGACLs of the unicast default policy for IPv4 traffic. If there is no SGACL configured for unicast default policy for IPv4 traffic, the value of this object is the zero-length string.
ctspDefConfigIpv6Sgacls
This object specifies the SGACLs of the unicast default policy for IPv6 traffic. If there is no SGACL configured for unicast default policy for IPv6 traffic, the value of this object is the zero-length string.
ctspDownloadedSgaclMappingTable
This table contains the downloaded SGACLs information applied to unicast IP traffic which carries a source SGT and travels to a destination SGT.
ctspDownloadedSgaclMappingEntry
Each row contains the downloaded SGACLs mapping. A row instance is added for each pair of which contains SGACL that is dynamically downloaded from ACS server.
ctspDownloadedSgaclDestSgt
This object indicates the destination SGT value. Value of zero indicates that the destination SGT is unknown.
ctspDownloadedSgaclSourceSgt
This object indicates the source SGT value. Value of zero indicates that the source SGT is unknown.
ctspDownloadedSgaclIndex
This object identifies the downloaded SGACL which is applied to unicast IP traffic carrying the source SGT to the destination SGT.
ctspDownloadedSgaclName
This object indicates the name of downloaded SGACL which is applied to unicast IP traffic carrying the source SGT to the destination SGT.
ctspDownloadedSgaclGenId
This object indicates the generation identification of downloaded SGACL which is applied to unicast IP traffic carrying the source SGT to the destination SGT.
ctspDownloadedIpTrafficType
This object indicates the type of the unicast IP traffic carrying the source SGT and travelling to destination SGT and subjected to SGACL enforcement by this downloaded default policy.
ctspDefDownloadedSgaclMappingTable
This table contains the downloaded SGACLs information of the default policy applied to unicast IP traffic.
ctspDefDownloadedSgaclMappingEntry
Each row contains the downloaded SGACLs mapping. A row instance contains the SGACL information of the default policy dynamically downloaded from ACS server for unicast IP traffic.
ctspDefDownloadedSgaclIndex
This object identifies the SGACL of downloaded default policy applied to unicast IP traffic.
ctspDefDownloadedSgaclName
This object indicates the name of the SGACL of downloaded default policy applied to unicast IP traffic.
ctspDefDownloadedSgaclGenId
This object indicates the generation identification of the SGACL of downloaded default policy applied to unicast IP traffic.
ctspDefDownloadedIpTrafficType
This object indicates the type of the IP traffic subjected to SGACL enforcement by this downloaded default policy.
ctspOperSgaclMappingTable
This table contains the operational SGACLs information applied to unicast IP traffic which carries a source SGT and travels to a destination SGT.
ctspOperSgaclMappingEntry
Each row contains the operational SGACLs mapping. A row instance is added for each pair of which contains the SGACL that either statically configured at the device or dynamically downloaded from ACS server.
ctspOperIpTrafficType
This object indicates the type of the unicast IP traffic carrying the source SGT and travelling to destination SGT and subjected to SGACL enforcement.
ctspOperSgaclDestSgt
This object indicates the destination SGT value. Value of zero indicates that the destination SGT is unknown.
ctspOperSgaclSourceSgt
This object indicates the source SGT value. Value of zero indicates that the source SGT is unknown.
ctspOperSgaclIndex
This object identifies the SGACL operationally applied to unicast IP traffic carrying the source SGT to the destination SGT.
ctspOperationalSgaclName
This object indicates the name of the SGACL operationally applied to unicast IP traffic carrying the source SGT to the destination SGT.
ctspOperationalSgaclGenId
This object indicates the generation identification of the SGACL operationally applied to unicast IP traffic carrying the source SGT to the destination SGT.
ctspOperSgaclMappingSource
This object indicates the source of SGACL mapping for the SGACL operationally applied to unicast IP traffic carrying the source SGT to the destination SGT. 'downloaded' indicates that the mapping is downloaded from ACS server. 'configured' indicates that ...
ctspOperSgaclConfigSource
This object indicates the source of SGACL creation for this SGACL. 'configured' indicates that the SGACL is locally configured in the local device. 'downloaded' indicates that the SGACL is created at ACS server and downloaded to the local device.
ctspDefOperSgaclMappingTable
This table contains the operational SGACLs information of the default policy applied to unicast IP traffic.
ctspDefOperSgaclMappingEntry
A row instance contains the SGACL information of the default policy which is either statically configured at the device or dynamically downloaded from ACS server for unicast IP traffic.
ctspDefOperIpTrafficType
This object indicates the type of the unicast IP traffic subjected to default policy enforcement.
ctspDefOperSgaclIndex
This object identifies the SGACL of default policy operationally applied to unicast IP traffic.
ctspDefOperationalSgaclName
This object indicates the name of the SGACL of default policy operationally applied to unicast IP traffic.
ctspDefOperationalSgaclGenId
This object indicates the generation identification of the SGACL of default policy operationally applied to unicast IP traffic.
ctspDefOperSgaclMappingSource
This object indicates the source of SGACL mapping for the SGACL of default policy operationally applied to unicast IP traffic. 'downloaded' indicates that the mapping is downloaded from ACS server. 'configured' indicates that the mapping is locally config ...
ctspDefOperSgaclConfigSource
This object indicates the source of SGACL creation for the SGACL of default policy operationally applied to unicast IP traffic. 'downloaded' indicates that the SGACL is created at ACS server and downloaded to the local device. 'configured' indicates that ...
ctspSgtStatsTable
This table describes SGACL statistics counters per a pair of that is capable of providing this information.
ctspSgtStatsEntry
Each row contains the SGACL statistics related to IPv4 or IPv6 packets carrying the source SGT travelling to the destination SGT and subjected to SGACL enforcement.
ctspStatsIpTrafficType
This object indicates the type of the unicast IP traffic carrying the source SGT and travelling to destination SGT and subjected to SGACL enforcement.
ctspStatsDestSgt
This object indicates the destination SGT value. Value of zero indicates that the destination SGT is unknown.
ctspStatsSourceSgt
This object indicates the source SGT value. Value of zero indicates that the source SGT is unknown.
ctspStatsIpSwDropPkts
This object indicates the number of software-forwarded IP packets which are dropped by SGACL.
ctspStatsIpHwDropPkts
This object indicates the number of hardware-forwarded IP packets which are dropped by SGACL.
ctspStatsIpSwPermitPkts
This object indicates the number of software-forwarded IP packets which are permitted by SGACL.
ctspStatsIpHwPermitPkts
This object indicates the number of hardware-forwarded IP packets which are permitted by SGACL.
ctspDefStatsTable
This table describes statistics counters for unicast IP traffic subjected to default unicast policy.
ctspDefStatsEntry
Each row contains the statistics counter for each IP traffic type.
ctspDefIpTrafficType
This object indicates the type of the IP traffic subjected to default unicast policy enforcement.
ctspDefIpSwDropPkts
This object indicates the number of software-forwarded IP packets which are dropped by default unicast policy.
ctspDefIpHwDropPkts
This object indicates the number of hardware-forwarded IP packets which are dropped by default unicast policy.
ctspDefIpSwPermitPkts
This object indicates the number of software-forwarded IP packets which are permitted by default unicast policy.
ctspDefIpHwPermitPkts
This object indicates the number of hardware-forwarded IP packets which are permitted by default unicast policy.
ctspAllPeerPolicyAction
This object allows user to specify the action to be taken with respect to all peer policies in the device. When read, this object always returns the value 'none'. 'none' - No operation. 'refresh' - Refresh all peer policies in the device.
ctspPeerPolicyTable
This table lists the peer policy information for each peer device.
ctspPeerPolicyEntry
Each row contains the managed objects for peer policies for each peer device based on its name.
ctspPeerName
This object uniquely identifies a peer device.
ctspPeerSgt
This object indicates the SGT value of this peer device.
ctspPeerSgtGenId
This object indicates the generation identification of the SGT value assigned to this peer device.
ctspPeerTrustState
This object indicates the TrustSec trust state of this peer device. 'trusted' indicates that this is a trusted peer device. 'noTrust' indicates that this peer device is not trusted.
ctspPeerPolicyLifeTime
This object indicates the policy life time which provides the time interval during which the peer policy is valid.
ctspPeerPolicyLastUpdate
This object indicates the time when this peer policy is last updated.
ctspPeerPolicyAction
This object allows user to specify the action to be taken with this peer policy. When read, this object always returns the value 'none'. 'none' - No operation. 'refresh' - Refresh this peer policy.
ctspLayer3PolicyTable
This table describes Layer 3 transport policy for IP traffic regarding SGT propagation.
ctspLayer3PolicyEntry
Each row contains the Layer 3 transport policies per IP traffic type per policy type.
ctspLayer3PolicyIpTrafficType
This object indicates the type of the IP traffic affected by Layer-3 transport policy. 'ipv4' indicates that the affected traffic is IPv4 traffic. 'ipv6' indicates that the affected traffic is IPv6 traffic.
ctspLayer3PolicyType
This object indicates the type of the Layer-3 transport policy affecting IP traffic regarding SGT propagation. 'permit' indicates that the transport policy is used to classify Layer-3 traffic which is subject to SGT propagation. 'exception' indicates that ...
ctspLayer3PolicyLocalConfig
This object specifies the name of an ACL that is administratively configured to classify Layer3 traffic. Zero-length string indicates there is no such configured policy.
ctspLayer3PolicyDownloaded
This object specifies the name of an ACL that is downloaded from policy server to classify Layer3 traffic. Zero-length string indicates there is no such downloaded policy.
ctspLayer3PolicyOperational
This object specifies the name of an operational ACL currently used to classify Layer3 traffic. Zero-length string indicates there is no such policy in effect.
ctspIfL3PolicyConfigTable
This table lists the interfaces which support Layer3 Transport policy.
ctspIfL3PolicyConfigEntry
Each row contains managed objects for Layer3 Transport on interface capable of providing this information.
ctspIfL3Ipv4PolicyEnabled
This object specifies whether the Layer3 Transport policies will be applied on this interface for egress IPv4 traffic. 'true' indicates that Layer3 permit and exception policy will be applied at this interface for egress IPv4 traffic. 'false' indicates th ...
ctspIfL3Ipv6PolicyEnabled
This object specifies whether the Layer3 Transport policies will be applied on this interface for egress IPv6 traffic. 'true' indicates that Layer3 permit and exception policy will be applied at this interface for egress IPv6 traffic. 'false' indicates th ...
ctspIpSgtMappingTable
This table contains the IP-to-SGT mapping information in the device.
ctspIpSgtMappingEntry
Each row contains the IP-to-SGT mapping and status of this instance. Entry in this table is either populated automatically by the device or manually configured by a user. A manually configured row instance can be created or removed by setting the appropri ...
ctspIpSgtVrfName
This object indicates the VRF where IP-SGT mapping belongs to. The zero length value indicates the default VRF.
ctspIpSgtAddressType
This object indicates the type of Internet address.
ctspIpSgtIpAddress
This object indicates an Internet address. The type of this address is determined by the value of ctspIpSgtAddressType object.
ctspIpSgtAddressLength
This object indicates the length of an Internet address prefix.
ctspIpSgtValue
This object specifies the SGT value assigned to an Internet address.
ctspIpSgtSource
This object indicates the source of the mapping. 'configured' indicates that the mapping is manually configured by user. 'arp' indicates that the mapping is dynamically learnt from tagged ARP replies. 'localAuthenticated' indicates that the mapping is dyn ...
ctspIpSgtStorageType
The storage type for this conceptual row.
ctspIpSgtRowStatus
This object is used to manage the creation and deletion of rows in this table. If this object value is 'active', user cannot modify any writable object in this row. If value of ctspIpSgtSource object in an entry is not 'configured', user cannot change the ...
ctspAllSgtPolicyAction
This object allows user to specify the action to be taken with respect to all SGT policies in the device. When read, this object always returns the value 'none'. 'none' - No operation. 'refresh' - Refresh all SGT policies in the device.
ctspDownloadedSgtPolicyTable
This table lists the SGT policy information downloaded by the device.
ctspDownloadedSgtPolicyEntry
Each row contains the managed objects for SGT policies downloaded by the device.
ctspDownloadedSgtPolicySgt
This object indicates the SGT value for which the downloaded policy is applied to. Value of zero indicates that the SGT is unknown.
ctspDownloadedSgtPolicySgtGenId
This object indicates the generation identification of the SGT value denoted by ctspDownloadedSgtPolicySgt object.
ctspDownloadedSgtPolicyLifeTime
This object indicates the policy life time which provides the time interval during which this downloaded policy is valid.
ctspDownloadedSgtPolicyLastUpdate
This object indicates the time when this downloaded SGT policy is last updated.
ctspDownloadedSgtPolicyAction
This object allows user to specify the action to be taken with this downloaded SGT policy. When read, this object always returns the value 'none'. 'none' - No operation. 'refresh' - Refresh this SGT policy.
ctspDownloadedDefSgtPolicyTable
This table lists the default SGT policy information downloaded by the device.
ctspDownloadedDefSgtPolicyEntry
Each row contains the managed objects for default SGT policies downloaded by the device.
ctspDownloadedDefSgtPolicyType
This object indicates the downloaded default SGT policy type. 'unicastDefault' indicates the SGT policy applied to traffic which carries the default unicast SGT.
ctspDownloadedDefSgtPolicySgtGenId
This object indicates the generation identification of the downloaded default SGT policy.
ctspDownloadedDefSgtPolicyLifeTime
This object indicates the policy life time which provides the time interval during which this download default policy is valid.
ctspDownloadedDefSgtPolicyLastUpdate
This object indicates the time when this downloaded SGT policy is last updated.
ctspDownloadedDefSgtPolicyAction
This object allows user to specify the action to be taken with this default downloaded SGT policy. When read, this object always returns the value 'none'. 'none' - No operation. 'refresh' - Refresh this default SGT policy.
ctspGlobalSgaclEnforcementGroup
A collection of object which provides the SGACL enforcement information for all TrustSec capable Layer 3 interfaces (excluding SVIs) at the device level.
ctspSgaclIpv4DropNetflowMonitorGroup
A collection of object which provides netflow monitor information for IPv4 traffic drop packet due to SGACL enforcement in the device.
ctspSgaclIpv6DropNetflowMonitorGroup
A collection of object which provides netflow monitor information for IPv6 traffic drop packet due to SGACL enforcement in the device.
ctspVlanConfigGroup
A collection of object which provides the SGACL enforcement and VRF information for each VLAN.
ctspConfigSgaclMappingGroup
A collection of objects which provides the administratively configured SGACL mapping information in the device.
ctspDownloadedSgaclMappingGroup
A collection of objects which provides the downloaded SGACL mapping information in the device.
ctspOperSgaclMappingGroup
A collection of objects which provides the operational SGACL mapping information in the device.
ctspIpSwStatisticsGroup
A collection of objects which provides software statistics counters for unicast IP traffic subjected to SGACL enforcement.
ctspIpHwStatisticsGroup
A collection of objects which provides hardware statistics counters for unicast IP traffic subjected to SGACL enforcement.
ctspDefSwStatisticsGroup
A collection of objects which provides software statistics counters for unicast IP traffic subjected to unicast default policy enforcement.
ctspDefHwStatisticsGroup
A collection of objects which provides hardware statistics counters for unicast IP traffic subjected to unicast default policy enforcement.
ctspPeerPolicyActionGroup
A collection of object which provides refreshing of all peer policies in the device.
ctspPeerPolicyGroup
A collection of object which provides peer policy information in the device.
ctspLayer3TransportGroup
A collection of objects which provides managed information regarding the SGT propagation along with Layer 3 traffic in the device.
ctspIfL3PolicyConfigGroup
A collection of objects which provides managed information for Layer3 Tranport policy enforcement on capable interface in the device.
ctspIpSgtMappingGroup
A collection of objects which provides managed information regarding IP-to-Sgt mapping in the device.
ctspSgtPolicyGroup
A collection of object which provides SGT policy information in the device.

Download IPHost Network Monitor (500 monitors for 30 days, 50 monitors free forever) to start monitoring network devices right now.

MIBs list