-- These MIBs were created on 01/08/2001 -- This module defines NetScreen private MIBs Firewall Setting. -- -- Copyright (c) 1999 - 2001 by NetScreen Technologies, Inc. -- All rights reserved. -- -- MODULE-IDENTITY -- OrgName -- Netscreen Technologies, Inc. -- ContactInfo -- Customer Support -- -- 350 Oakmead Parkway -- Sunnyvale, CA 94085 -- USA -- -- Tel: 1.877.NETSCREEN -- E-mail: support@netscreen.com -- Http://www.netscreen.com -- -- Last modified date: 09/28/2001 -- NETSCREEN-IDS-MIB DEFINITIONS ::= BEGIN IMPORTS DisplayString FROM RFC1213-MIB netscreenIDS FROM NETSCREEN-SMI; nsIdsProtect OBJECT IDENTIFIER ::= { netscreenIDS 1 } nsIdsProtectSetTable OBJECT-TYPE SYNTAX SEQUENCE OF NsIdsProtectSetEntry ACCESS not-accessible STATUS mandatory DESCRIPTION "NetScreen ScreenOS can allow firewall protection on each of NetScreen device's physical interface. This table collects the firewall protection configuration on each physical interface." ::= {nsIdsProtect 1} nsIdsProtectSetEntry OBJECT-TYPE SYNTAX NsIdsProtectSetEntry ACCESS not-accessible STATUS mandatory DESCRIPTION "Hold the firewall setting attribute." INDEX { nsIdsProtectIfIdx } ::= { nsIdsProtectSetTable 1 } NsIdsProtectSetEntry ::= SEQUENCE { nsIdsProtectIfIdx INTEGER, nsIdsDetectPingOfDeath INTEGER, nsIdsDetectTearDrop INTEGER, nsIdsDetectWinNuke INTEGER, nsIdsFilterIpSrcRoute INTEGER, nsIdsDetectPortScan INTEGER, nsIdsDetectAddrSweep INTEGER, nsIdsDetectLand INTEGER, nsIdsBlockComponent INTEGER, nsIdsDetectIpSpoof INTEGER, nsIdsDetectSyn INTEGER, nsIdsDetectIcmpFlood INTEGER, nsIdsDetectUdpFlood INTEGER } nsIdsProtectIfIdx OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "unique interface id." ::= { nsIdsProtectSetEntry 1 } nsIdsDetectPingOfDeath OBJECT-TYPE SYNTAX INTEGER { disable(0), enabled(1) } ACCESS read-only STATUS mandatory DESCRIPTION "Detect Ping of Death." ::= { nsIdsProtectSetEntry 2 } nsIdsDetectTearDrop OBJECT-TYPE SYNTAX INTEGER { disable(0), enabled(1) } ACCESS read-only STATUS mandatory DESCRIPTION "Detect Tear Drop Attack." ::= { nsIdsProtectSetEntry 3 } nsIdsDetectWinNuke OBJECT-TYPE SYNTAX INTEGER { disable(0), enabled(1) } ACCESS read-only STATUS mandatory DESCRIPTION "Detect Win Nuke Attack." ::= { nsIdsProtectSetEntry 4 } nsIdsFilterIpSrcRoute OBJECT-TYPE SYNTAX INTEGER { disable(0), enabled(1) } ACCESS read-only STATUS mandatory DESCRIPTION "Detect Filter IP Source Route Option attack." ::= { nsIdsProtectSetEntry 5 } nsIdsDetectPortScan OBJECT-TYPE SYNTAX INTEGER { disable(0), enabled(1) } ACCESS read-only STATUS mandatory DESCRIPTION "Detect Port Scan Death attack." ::= { nsIdsProtectSetEntry 6 } nsIdsDetectAddrSweep OBJECT-TYPE SYNTAX INTEGER { disable(0), enabled(1) } ACCESS read-only STATUS mandatory DESCRIPTION "Detect Address Sweep Attack." ::= { nsIdsProtectSetEntry 7 } nsIdsDetectLand OBJECT-TYPE SYNTAX INTEGER { disable(0), enabled(1) } ACCESS read-only STATUS mandatory DESCRIPTION "Detect Land Attack." ::= { nsIdsProtectSetEntry 8 } nsIdsBlockComponent OBJECT-TYPE SYNTAX INTEGER { disable(0), enabled(1) } ACCESS read-only STATUS mandatory DESCRIPTION "Block Java/ActiveX/ZIP/EXE Component." ::= { nsIdsProtectSetEntry 9 } nsIdsDetectIpSpoof OBJECT-TYPE SYNTAX INTEGER { disable(0), enabled(1) } ACCESS read-only STATUS mandatory DESCRIPTION "Detect IP Spoofing attack." ::= { nsIdsProtectSetEntry 10 } nsIdsDetectSyn OBJECT-TYPE SYNTAX INTEGER { disable(0), enabled(1) } ACCESS read-only STATUS mandatory DESCRIPTION "Detect SYN attack." ::= { nsIdsProtectSetEntry 11 } nsIdsDetectIcmpFlood OBJECT-TYPE SYNTAX INTEGER { disable(0), enabled(1) } ACCESS read-only STATUS mandatory DESCRIPTION "Detect ICMP Flood attack." ::= { nsIdsProtectSetEntry 12 } nsIdsDetectUdpFlood OBJECT-TYPE SYNTAX INTEGER { disable(0), enabled(1) } ACCESS read-only STATUS mandatory DESCRIPTION "Detect UDP Flood attack." ::= { nsIdsProtectSetEntry 13 } nsIdsProtectThreshTable OBJECT-TYPE SYNTAX SEQUENCE OF NsIdsProtectThreshEntry ACCESS not-accessible STATUS mandatory DESCRIPTION "NetScreen ScreenOS can allow firewall protection on each of NetScreen device's physical interface. This table collects the firewall protection configuration on each physical interface." ::= {nsIdsProtect 2} nsIdsProtectThreshEntry OBJECT-TYPE SYNTAX NsIdsProtectThreshEntry ACCESS not-accessible STATUS mandatory DESCRIPTION "Hold the firewall setting attribute." INDEX { nsIdsProtectThreshIfIdx } ::= { nsIdsProtectThreshTable 1 } NsIdsProtectThreshEntry ::= SEQUENCE { nsIdsProtectThreshIfIdx INTEGER, nsIdsSynAttackThresh INTEGER, nsIdsSynAttackTimeout INTEGER, nsIdsSynAttackAlmTh INTEGER, nsIdsSynAttackQueSize INTEGER, nsIdsSynAttackAgeTime INTEGER, nsIdsIcmpFloodThresh INTEGER, nsIdsUdpFloodThresh INTEGER, nsIdsPortScanThresh INTEGER, nsIdsIpSweepThresh INTEGER } nsIdsProtectThreshIfIdx OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "unique interface id." ::= { nsIdsProtectThreshEntry 1 } nsIdsSynAttackThresh OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "SYN attack threshold." ::= { nsIdsProtectThreshEntry 2 } nsIdsSynAttackTimeout OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "SYN attack timeout." ::= { nsIdsProtectThreshEntry 3 } nsIdsSynAttackAlmTh OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "SYN attack alarm threshold." ::= { nsIdsProtectThreshEntry 4 } nsIdsSynAttackQueSize OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "SYN attack queue size." ::= { nsIdsProtectThreshEntry 5 } nsIdsSynAttackAgeTime OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "SYN flood age time." ::= { nsIdsProtectThreshEntry 6 } nsIdsIcmpFloodThresh OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "ICMP attack alarm threshold." ::= { nsIdsProtectThreshEntry 7 } nsIdsUdpFloodThresh OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "UDP attack alarm threshold." ::= { nsIdsProtectThreshEntry 8 } nsIdsPortScanThresh OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "ICMP attack alarm threshold." ::= { nsIdsProtectThreshEntry 9 } nsIdsIpSweepThresh OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "UDP attack alarm threshold." ::= { nsIdsProtectThreshEntry 10 } nsIdsAttkMonTable OBJECT-TYPE SYNTAX SEQUENCE OF NsIdsAttkMonEntry ACCESS not-accessible STATUS mandatory DESCRIPTION "The table monitors the intrusion attack attemps amount to NetScreen Device." ::= { netscreenIDS 2 } nsIdsAttkMonEntry OBJECT-TYPE SYNTAX NsIdsAttkMonEntry ACCESS not-accessible STATUS mandatory DESCRIPTION "An entry containing intrusion attack couters." INDEX { nsIdsAttkMonIndex } ::= { nsIdsAttkMonTable 1 } NsIdsAttkMonEntry ::= SEQUENCE { nsIdsAttkMonIfIdx INTEGER, nsIdsAttkMonVsys INTEGER, nsIdsAttkMonSynAttk INTEGER, nsIdsAttkMonTearDrop INTEGER, nsIdsAttkMonSrcRoute INTEGER, nsIdsAttkMonPingDeath INTEGER, nsIdsAttkMonAddrSpoof INTEGER, nsIdsAttkMonLand INTEGER, nsIdsAttkMonIcmpFlood INTEGER, nsIdsAttkMonUdpFlood INTEGER, nsIdsAttkMonWinnuke INTEGER, nsIdsAttkMonPortScan INTEGER, nsIdsAttkMonIpSweep INTEGER } nsIdsAttkMonIfIdx OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "unique interface id." ::= { nsIdsAttkMonEntry 1 } nsIdsAttkMonVsys OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "according NetScreen's concepts. each interface belongs to one virtual system. This attribute displays the virtual system name an interface belongs to." ::= { nsIdsAttkMonEntry 2 } nsIdsAttkMonSynAttk OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "sync attack packet counter." ::= { nsIdsAttkMonEntry 3 } nsIdsAttkMonTearDrop OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "tear drop attack packet counter." ::= { nsIdsAttkMonEntry 4 } nsIdsAttkMonSrcRoute OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "source route option attack packet counter." ::= { nsIdsAttkMonEntry 5 } nsIdsAttkMonPingDeath OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "ping of death attack packet counter." ::= { nsIdsAttkMonEntry 6 } nsIdsAttkMonAddrSpoof OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "address spoofing attack packet counter." ::= { nsIdsAttkMonEntry 7 } nsIdsAttkMonLand OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "land attack packet counter." ::= { nsIdsAttkMonEntry 8 } nsIdsAttkMonIcmpFlood OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "icmp flood attack packet counter." ::= { nsIdsAttkMonEntry 9 } nsIdsAttkMonUdpFlood OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "udp flood attack packet counter." ::= { nsIdsAttkMonEntry 10 } nsIdsAttkMonWinnuke OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "weired netbios attack packet counter." ::= { nsIdsAttkMonEntry 11 } nsIdsAttkMonPortScan OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "port scan attempt attack packet counter." ::= { nsIdsAttkMonEntry 12 } nsIdsAttkMonIpSweep OBJECT-TYPE SYNTAX INTEGER ACCESS read-only STATUS mandatory DESCRIPTION "address sweep attemp attack packet counter." ::= { nsIdsAttkMonEntry 13 } END