-- extracted from draft-nadeau-mpls-vpn-mib-03.txt -- at Thu Jul 12 06:05:20 2001 MPLS-VPN-MIB DEFINITIONS ::= BEGIN IMPORTS MODULE-IDENTITY, OBJECT-TYPE, NOTIFICATION-TYPE, experimental, Integer32, Counter32, Unsigned32, TimeTicks FROM SNMPv2-SMI MODULE-COMPLIANCE, OBJECT-GROUP, NOTIFICATION-GROUP FROM SNMPv2-CONF TEXTUAL-CONVENTION, TruthValue, RowStatus, StorageType, TimeStamp, DisplayString FROM SNMPv2-TC InterfaceIndex FROM IF-MIB SnmpAdminString FROM SNMP-FRAMEWORK-MIB InetAddress, InetAddressType FROM INET-ADDRESS-MIB; mplsVpnMIB MODULE-IDENTITY LAST-UPDATED "200107101200Z" -- 10 July 2001 12:00:00 GMT ORGANIZATION "Provider Provisioned Virtual Private Networks Working Group." CONTACT-INFO " Thomas D. Nadeau tnadeau@cisco.com Luyuan Fang luyuanfang@att.com Stephen Brannon Fabio M. Chiussi fabio@bell-labs.com Joseph Dube jdube@avici.com Martin Tatham martin.tatham@bt.com Harmen Van Der Linde hvdl@att.com Comments and discussion to ppvpn@ietf.org" DESCRIPTION "This MIB contains managed object definitions for the Multiprotocol Label Switching (MPLS)/Border Gateway Protocol (BGP) Virtual Private Networks (VPNs) as defined in : Rosen, E., Viswanathan, A., and R. Callon, Multiprotocol Label Switching Architecture, Internet Draft , August 1999." -- Revision history. REVISION "200107101200Z" -- 10 July 2001 12:00:00 GMT DESCRIPTION "Renamed mplsNumVrfSecViolationThreshExceeded to mplsNumVrfSecIllegalLabelThreshExceeded, and removed mplsVpnInterfaceConfIndex from varbind. Changed MplsVpnId TC from SnmpAdminString to OCTET STRING. Added mplsVpnVrfSecIllegalLabelRcvThresh to mplsVpnVrfSecEntry. Changed duplicate mplsVpnVrfRouteTargetImport in mplsVpnVrfRouteTargetEntry INDEX to mplsVpnVrfRouteTargetExport." REVISION "200106191200Z" -- 19 June 2001 12:00:00 GMT DESCRIPTION "Fixed several compile errors." REVISION "200105301200Z" -- 30 May 2001 12:00:00 EST DESCRIPTION "Updated most of document and MIB to reflect comments from WG." REVISION "200009301200Z" -- 30 September 2000 12:00:00 EST DESCRIPTION "Initial draft version." ::= { experimental 99 } -- To be assigned -- Textual Conventions. MplsVpnId ::= TEXTUAL-CONVENTION STATUS current DESCRIPTION "An identifier that is assigned to each MPLS/BGP VPN and is used to uniquely identify it. This is assigned by the system operator or NMS and SHOULD be unique throughout the MPLS domain. If this is the case, then this identifier can then be used at any LSR within a specific MPLS domain to identify this MPLS/BGP VPN. It may also be possible to preserve the uniqueness of this identifier across MPLS domain boundaries, in which case this identifier can then be used to uniquely identify MPLS/BGP VPNs on a more global basis." REFERENCE "RFC 2685 [VPN-RFC2685] Fox B., et al, 'Virtual Private Networks Identifier', September 1999." SYNTAX OCTET STRING(SIZE (0..31)) MplsVpnRouteDistinguisher ::= TEXTUAL-CONVENTION STATUS current DESCRIPTION "A route distinguisher." SYNTAX OCTET STRING(SIZE (0..256)) -- Top level components of this MIB. mplsVpnNotifications OBJECT IDENTIFIER ::= { mplsVpnMIB 0 } mplsVpnObjects OBJECT IDENTIFIER ::= { mplsVpnMIB 1 } mplsVpnScalars OBJECT IDENTIFIER ::= { mplsVpnObjects 1 } mplsVpnConf OBJECT IDENTIFIER ::= { mplsVpnObjects 2 } mplsVpnPerf OBJECT IDENTIFIER ::= { mplsVpnObjects 3 } mplsVpnRoute OBJECT IDENTIFIER ::= { mplsVpnObjects 4 } mplsVpnConformance OBJECT IDENTIFIER ::= { mplsVpnMIB 3 } -- Scalar Objects mplsVpnConfiguredVrfs OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The number of VRFs which are configured on this node." ::= { mplsVpnScalars 1 } mplsVpnActiveVrfs OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The number of VRFs which are active on this node. That is, those whose operStatus = Up (1)." ::= { mplsVpnScalars 2 } mplsVpnTrapEnable OBJECT-TYPE SYNTAX TruthValue MAX-ACCESS read-write STATUS current DESCRIPTION "If this object is true, then it enables the generation of mplsVpnUp and mplsVpnDown traps, otherwise these traps are not emitted." DEFVAL { false } ::= { mplsVpnScalars 3 } -- VPN Interface Configuration Table mplsVpnInterfaceConfTable OBJECT-TYPE SYNTAX SEQUENCE OF MplsVpnInterfaceConfEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "This table specifies per-interface MPLS capability and associated information." ::= { mplsVpnConf 1 } mplsVpnInterfaceConfEntry OBJECT-TYPE SYNTAX MplsVpnInterfaceConfEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry in this table is created by an LSR for every interface capable of supporting MPLS/BGP VPN. Each entry in this table is meant to correspond to an entry in the Interfaces Table." INDEX { mplsVpnInterfaceConfIndex } ::= { mplsVpnInterfaceConfTable 1 } MplsVpnInterfaceConfEntry ::= SEQUENCE { mplsVpnInterfaceConfIndex InterfaceIndex, mplsVpnInterfaceLabelEdgeType INTEGER, mplsVpnInterfaceVpnClassification INTEGER, mplsVpnInterfaceConfStorageType StorageType } mplsVpnInterfaceConfIndex OBJECT-TYPE SYNTAX InterfaceIndex MAX-ACCESS accessible-for-notify STATUS current DESCRIPTION "This is a unique index for an entry in the MplsVPNInterfaceConfTable. A non-zero index for an entry indicates the ifIndex for the corresponding interface entry in the MPLS-VPN-layer in the ifTable. Note that this table does not necessarily correspond one-to-one with all entries in the Interface MIB having an ifType of MPLS-layer; rather, only those which are enabled for MPLS/BGP VPN functionality." REFERENCE "RFC 2233 - The Interfaces Group MIB using SMIv2, McCloghrie, K., and F. Kastenholtz, Nov. 1997" ::= { mplsVpnInterfaceConfEntry 1 } mplsVpnInterfaceLabelEdgeType OBJECT-TYPE SYNTAX INTEGER { providerEdge (1), customerEdge (2) } MAX-ACCESS read-only STATUS current DESCRIPTION "Either the providerEdge(0) (PE) or customerEdge(1) (CE) bit MUST be set." ::= { mplsVpnInterfaceConfEntry 2 } mplsVpnInterfaceVpnClassification OBJECT-TYPE SYNTAX INTEGER { carrierOfCarrier (1), enterprise (2), interProvider (3) } MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes whether this link participates in a carrier-of-carrier's, enterprise, or inter-provider scenario." ::= { mplsVpnInterfaceConfEntry 3 } mplsVpnInterfaceConfStorageType OBJECT-TYPE SYNTAX StorageType MAX-ACCESS read-create STATUS current DESCRIPTION "The storage type for this entry." ::= { mplsVpnInterfaceConfEntry 4 } -- VRF Configuration Table mplsVpnVrfConfTable OBJECT-TYPE SYNTAX SEQUENCE OF MplsVpnVrfConfEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "This table specifies per-interface MPLS/BGP VPN VRF Table capability and associated information. Entries in this table define VRF routing instances associated with MPLS/VPN interfaces. Note that multiple interfaces can belong to the same VRF instance. The collection of all VRF instances comprises an actual VPN." ::= { mplsVpnConf 2 } mplsVpnVrfConfEntry OBJECT-TYPE SYNTAX MplsVpnVrfConfEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry in this table is created by an LSR for every VRF capable of supporting MPLS/BGP VPN. The indexing provides an ordering of VRFs per-VPN interface." INDEX { mplsVpnVrfName } ::= { mplsVpnVrfConfTable 1 } MplsVpnVrfConfEntry ::= SEQUENCE { mplsVpnVrfName MplsVpnId, mplsVpnVrfDescription SnmpAdminString, mplsVpnVrfRouteDistinguisher MplsVpnRouteDistinguisher, mplsVpnVrfRouteSiteOrigin MplsVpnRouteDistinguisher, mplsVpnVrfCreationTime TimeStamp, mplsVpnVrfUpTime TimeTicks, mplsVpnVrfNetPrefixType INTEGER, mplsVpnVrfRipNetPrefix InetAddress, mplsVpnVrfOspfNetPrefix InetAddress, mplsVpnVrfIsisNetPrefix InetAddress, mplsVpnVrfIpRouteVrfForwByType InetAddressType, mplsVpnVrfIpRouteVrfForwByAddr InetAddress, mplsVpnVrfBgpAddrFamilyVpnv4Unicast TruthValue, mplsVpnVrfBgpAFNeighborPEAct TruthValue, mplsVpnVrfIpRouteRedistributeConn TruthValue, mplsVpnVrfConfMidRouteThreshold Unsigned32, mplsVpnVrfConfHighRouteThreshold Unsigned32, mplsVpnVrfConfMaxRoutes Unsigned32, mplsVpnVrfConfMaxPossibleRoutes Unsigned32, mplsVpnVrfConfLastChanged TimeTicks, mplsVpnVrfIpRouteVrfDest InetAddress, mplsVpnVrfBgpAFNeighborPEAddr InetAddress, mplsVpnVrfBgpAFNeighborPEType InetAddressType, mplsVpnVrfBgpAFNeighborCEAddr InetAddress, mplsVpnVrfBgpAFNeighborCEType InetAddressType, mplsVpnVrfConfRowStatus RowStatus, mplsVpnVrfConfStorageType StorageType } mplsVpnVrfName OBJECT-TYPE SYNTAX MplsVpnId MAX-ACCESS accessible-for-notify STATUS current DESCRIPTION "The human-readable name of this VPN. This MAY be equivalent to the RFC2685 VPN-ID." REFERENCE "RFC 2685 [VPN-RFC2685] Fox B., et al, `Virtual Private Networks Identifier`, September 1999." ::= { mplsVpnVrfConfEntry 1 } mplsVpnVrfDescription OBJECT-TYPE SYNTAX SnmpAdminString MAX-ACCESS read-create STATUS current DESCRIPTION "The human-readable description of this VRF." ::= { mplsVpnVrfConfEntry 2 } mplsVpnVrfRouteDistinguisher OBJECT-TYPE SYNTAX MplsVpnRouteDistinguisher MAX-ACCESS read-create STATUS current DESCRIPTION "The route distinguisher for this VRF." ::= { mplsVpnVrfConfEntry 3 } mplsVpnVrfRouteSiteOrigin OBJECT-TYPE SYNTAX MplsVpnRouteDistinguisher MAX-ACCESS read-create STATUS current DESCRIPTION "The site origin distribution policy." ::= { mplsVpnVrfConfEntry 4 } mplsVpnVrfCreationTime OBJECT-TYPE SYNTAX TimeStamp MAX-ACCESS read-create STATUS current DESCRIPTION "The time at which this VRF entry was created." ::= { mplsVpnVrfConfEntry 5 } mplsVpnVrfUpTime OBJECT-TYPE SYNTAX TimeTicks MAX-ACCESS read-create STATUS current DESCRIPTION "The amount of time that this VRF entry has been operational." ::= { mplsVpnVrfConfEntry 6 } mplsVpnVrfNetPrefixType OBJECT-TYPE SYNTAX INTEGER { other(1), rip(2), ospf(3), isis(4) } MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes the type network prefix in use for the PE-CE connections. If this value is set to rip(2), then the operators should consult the value found in mplsVpnVrfRipNetPrefix. If the value is set to ospf(2), the operator should consult mplsVpnVrfOspfNetPrefix. If the value is set to isis(4), then the administrator should see mplsVpnVrfIsisNetPrefix. In all cases, when a particular value is selected, the other remaining two values should ignored as their values MAY be invalid." ::= { mplsVpnVrfConfEntry 7 } mplsVpnVrfRipNetPrefix OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes the RIP network prefix for the PE-CE connections." ::= { mplsVpnVrfConfEntry 8 } mplsVpnVrfOspfNetPrefix OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes the OSPF network prefix for the PE-CE connections." ::= { mplsVpnVrfConfEntry 9 } mplsVpnVrfIsisNetPrefix OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes the IS-IS network prefix for the PE-CE connections." ::= { mplsVpnVrfConfEntry 10 } mplsVpnVrfIpRouteVrfForwByType OBJECT-TYPE SYNTAX InetAddressType MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes the address family of the BGP forwarding address." ::= { mplsVpnVrfConfEntry 11 } mplsVpnVrfIpRouteVrfForwByAddr OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes the BGP forwarding address." ::= { mplsVpnVrfConfEntry 12 } mplsVpnVrfBgpAddrFamilyVpnv4Unicast OBJECT-TYPE SYNTAX TruthValue MAX-ACCESS read-create STATUS current DESCRIPTION "Defines an IBGP parameter for VPNv4 NLRI exchange, true for Unicast, false for Multicast." ::= { mplsVpnVrfConfEntry 13 } mplsVpnVrfBgpAFNeighborPEAct OBJECT-TYPE SYNTAX TruthValue MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes the activation of the advertisement of the VPNv4 address family for PE-CE connection." ::= { mplsVpnVrfConfEntry 14 } mplsVpnVrfIpRouteRedistributeConn OBJECT-TYPE SYNTAX TruthValue MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes the redistribution of directly connected networks into the VRF BGP table." ::= { mplsVpnVrfConfEntry 15 } mplsVpnVrfConfMidRouteThreshold OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes mid-level water marker for the number of routes which this VRF may hold." ::= { mplsVpnVrfConfEntry 16 } mplsVpnVrfConfHighRouteThreshold OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes high-level water marker for the number of routes which this VRF may hold." ::= { mplsVpnVrfConfEntry 17 } mplsVpnVrfConfMaxRoutes OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes maximum number of routes which this VRF is configured to hold. This value MUST be less than or equal to mplsVrfMaxPossibleRoutes." ::= { mplsVpnVrfConfEntry 18 } mplsVpnVrfConfMaxPossibleRoutes OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Denotes maximum number of routes which the device will allow any one VRF to hold." ::= { mplsVpnVrfConfEntry 19 } mplsVpnVrfConfLastChanged OBJECT-TYPE SYNTAX TimeTicks MAX-ACCESS read-only STATUS current DESCRIPTION "The value of sysUpTime at the time of the last creation or deletion of an entry in this table. If the number of entries has been unchanged since the last re-initialization of the local network management subsystem, then this object contains a zero value." ::= { mplsVpnVrfConfEntry 20 } mplsVpnVrfIpRouteVrfDest OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS read-create STATUS current DESCRIPTION "The destination prefix when defining static route parameters for the PE-CE session." ::= { mplsVpnVrfConfEntry 21 } mplsVpnVrfBgpAFNeighborPEAddr OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS read-create STATUS current DESCRIPTION "The PE prefix under the VPN ipv4 address-family when defining an EBGP session between PE and CE routers." ::= { mplsVpnVrfConfEntry 22 } mplsVpnVrfBgpAFNeighborPEType OBJECT-TYPE SYNTAX InetAddressType MAX-ACCESS read-create STATUS current DESCRIPTION "The address type of the mplsVpnVrfBgpAFNeighborPEAddr entry." ::= { mplsVpnVrfConfEntry 23 } mplsVpnVrfBgpAFNeighborCEAddr OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS read-create STATUS current DESCRIPTION "The CE prefix under the VPN ipv4 address-family when defining an EBGP session between PE and CE routers." ::= { mplsVpnVrfConfEntry 24 } mplsVpnVrfBgpAFNeighborCEType OBJECT-TYPE SYNTAX InetAddressType MAX-ACCESS read-create STATUS current DESCRIPTION "The address type of the mplsVpnVrfBgpAFNeighborCEAddr entry." ::= { mplsVpnVrfConfEntry 25 } mplsVpnVrfConfRowStatus OBJECT-TYPE SYNTAX RowStatus MAX-ACCESS read-create STATUS current DESCRIPTION "This variable is used to create, modify, and/or delete a row in this table." ::= { mplsVpnVrfConfEntry 26 } mplsVpnVrfConfStorageType OBJECT-TYPE SYNTAX StorageType MAX-ACCESS read-create STATUS current DESCRIPTION "The storage type for this entry." ::= { mplsVpnVrfConfEntry 27 } -- MplsVpnRouteTargetTable mplsVpnVrfRouteTargetTable OBJECT-TYPE SYNTAX SEQUENCE OF MplsVpnVrfRouteTargetEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "This table specifies per-VRF route target association" ::= { mplsVpnConf 3 } mplsVpnVrfRouteTargetEntry OBJECT-TYPE SYNTAX MplsVpnVrfRouteTargetEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION " An entry in this table is created by an LSR for each route target configured for a VRF supporting a MPLS/BGP VPN instance. The indexing provides an ordering per-VRF instance." INDEX { mplsVpnVrfName, mplsVpnVrfRouteTargetImport, mplsVpnVrfRouteTargetExport } ::= { mplsVpnVrfRouteTargetTable 1 } MplsVpnVrfRouteTargetEntry ::= SEQUENCE { mplsVpnVrfRouteTargetImport MplsVpnRouteDistinguisher, mplsVpnVrfRouteTargetExport MplsVpnRouteDistinguisher, mplsVpnVrfRouteTargetDescr DisplayString, mplsVpnVrfRouteTargetRowStatus RowStatus } mplsVpnVrfRouteTargetImport OBJECT-TYPE SYNTAX MplsVpnRouteDistinguisher MAX-ACCESS not-accessible STATUS current DESCRIPTION "The route target import distribution policy." ::= { mplsVpnVrfRouteTargetEntry 1 } mplsVpnVrfRouteTargetExport OBJECT-TYPE SYNTAX MplsVpnRouteDistinguisher MAX-ACCESS not-accessible STATUS current DESCRIPTION "The route target export distribution policy." ::= { mplsVpnVrfRouteTargetEntry 2 } mplsVpnVrfRouteTargetDescr OBJECT-TYPE SYNTAX DisplayString MAX-ACCESS read-create STATUS current DESCRIPTION "Description of the route target." ::= { mplsVpnVrfRouteTargetEntry 3 } mplsVpnVrfRouteTargetRowStatus OBJECT-TYPE SYNTAX RowStatus MAX-ACCESS read-create STATUS current DESCRIPTION "Row status for this entry." ::= { mplsVpnVrfRouteTargetEntry 4 } -- MplsVpnVrfBgpNbrAddrTable -- Ed Note: how does this table relate to the BGP peering table; -- this is only EBGP; what about IBGP info? -- route/tag distributions mplsVpnVrfBgpNbrAddrTable OBJECT-TYPE SYNTAX SEQUENCE OF MplsVpnVrfBgpNbrAddrEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "This table specifies per-interface MPLS/BGP neighbor addresses for both PEs and CEs." ::= { mplsVpnConf 4 } mplsVpnVrfBgpNbrAddrEntry OBJECT-TYPE SYNTAX MplsVpnVrfBgpNbrAddrEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry in this table is created by an LSR for every VRF capable of supporting MPLS/BGP VPN. The indexing provides an ordering of VRFs per-VPN interface." INDEX { mplsVpnVrfName, mplsVpnInterfaceConfIndex, mplsVpnVrfBgpNbrIndex } ::= { mplsVpnVrfBgpNbrAddrTable 1 } MplsVpnVrfBgpNbrAddrEntry ::= SEQUENCE { mplsVpnVrfBgpNbrIndex Unsigned32, mplsVpnVrfBgpNbrRole INTEGER, mplsVpnVrfBgpNbrType InetAddressType, mplsVpnVrfBgpNbrAddr InetAddress, mplsVpnVrfBgpNbrRowStatus RowStatus, mplsVpnVrfBgpNbrStorageType StorageType } mplsVpnVrfBgpNbrIndex OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS not-accessible STATUS current DESCRIPTION "This is a unique tertiary index for an entry in the MplsVpnVrfBgpNbrAddrEntry Table." ::= { mplsVpnVrfBgpNbrAddrEntry 1 } mplsVpnVrfBgpNbrRole OBJECT-TYPE SYNTAX INTEGER { ce(1), pe(2), both(3) } MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes the role played by this BGP neighbor with respect to this VRF." ::= { mplsVpnVrfBgpNbrAddrEntry 2 } mplsVpnVrfBgpNbrType OBJECT-TYPE SYNTAX InetAddressType MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes the address family of the PE address." ::= { mplsVpnVrfBgpNbrAddrEntry 3 } mplsVpnVrfBgpNbrAddr OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS read-create STATUS current DESCRIPTION "Denotes the BGP neighbor address." ::= { mplsVpnVrfBgpNbrAddrEntry 4 } mplsVpnVrfBgpNbrRowStatus OBJECT-TYPE SYNTAX RowStatus MAX-ACCESS read-create STATUS current DESCRIPTION "This variable is used to create, modify, and/or delete a row in this table." ::= { mplsVpnVrfBgpNbrAddrEntry 5 } mplsVpnVrfBgpNbrStorageType OBJECT-TYPE SYNTAX StorageType MAX-ACCESS read-create STATUS current DESCRIPTION "The storage type for this entry." ::= { mplsVpnVrfBgpNbrAddrEntry 6 } -- Ed Note: What still needed: -- EBGP traffic counts, state, last reported error; -- We need additional BGP traps right now only state change traps -- also error traps Same deal for IBGP stuff; make clear -- linkage with the BGP MIB (1657) -- VRF Security Table mplsVpnVrfSecTable OBJECT-TYPE SYNTAX SEQUENCE OF MplsVpnVrfSecEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "This table specifies per MPLS/BGP VPN VRF Table security features." ::= { mplsVpnConf 5 } mplsVpnVrfSecEntry OBJECT-TYPE SYNTAX MplsVpnVrfSecEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry in this table is created by an LSR for every VRF capable of supporting MPLS/BGP VPN. Each entry in this table is used to indicate security-related information for each VRF entry." AUGMENTS { mplsVpnVrfConfEntry } ::= { mplsVpnVrfSecTable 1 } MplsVpnVrfSecEntry ::= SEQUENCE { mplsVpnVrfSecIllegalLabelViolations Counter32, mplsVpnVrfSecIllegalLabelRcvThresh Unsigned32 } mplsVpnVrfSecIllegalLabelViolations OBJECT-TYPE SYNTAX Counter32 MAX-ACCESS read-only STATUS current DESCRIPTION "Indicates the number of illegally received labels on this VPN/VRF." ::= { mplsVpnVrfSecEntry 1 } mplsVpnVrfSecIllegalLabelRcvThresh OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-create STATUS current DESCRIPTION "The number of illegally received labels above which this notification is issued." ::= { mplsVpnVrfSecEntry 2 } -- VRF Performance Table mplsVpnVrfPerfTable OBJECT-TYPE SYNTAX SEQUENCE OF MplsVpnVrfPerfEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "This table specifies per MPLS/BGP VPN VRF Table performance information." ::= { mplsVpnPerf 1 } mplsVpnVrfPerfEntry OBJECT-TYPE SYNTAX MplsVpnVrfPerfEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry in this table is created by an LSR for every VRF capable of supporting MPLS/BGP VPN." AUGMENTS { mplsVpnVrfConfEntry } ::= { mplsVpnVrfPerfTable 1 } MplsVpnVrfPerfEntry ::= SEQUENCE { mplsVpnVrfPerfRoutesAdded Counter32, mplsVpnVrfPerfRoutesDeleted Counter32, mplsVpnVrfPerfCurrNumRoutes Unsigned32 } mplsVpnVrfPerfRoutesAdded OBJECT-TYPE SYNTAX Counter32 MAX-ACCESS read-only STATUS current DESCRIPTION "Indicates the number of routes added to this VPN/VRF over the coarse of its lifetime." ::= { mplsVpnVrfPerfEntry 1 } mplsVpnVrfPerfRoutesDeleted OBJECT-TYPE SYNTAX Counter32 MAX-ACCESS read-only STATUS current DESCRIPTION "Indicates the number of routes removed from this VPN/VRF." ::= { mplsVpnVrfPerfEntry 2 } mplsVpnVrfPerfCurrNumRoutes OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "Indicates the number of routes currently used by this VRF." ::= { mplsVpnVrfPerfEntry 3 } -- VRF Routing Table mplsVpnVrfRouteTable OBJECT-TYPE SYNTAX SEQUENCE OF MplsVpnVrfRouteEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "This table specifies per-interface MPLS/BGP VPN VRF Table routing information. Entries in this table define VRF routing entries associated with the specified MPLS/VPN interfaces. Note that this table contains both BGP and IGP routes, as both may appear in the same VRF." REFERENCE "1. RFC 1213 Section 6.6, The IP Group. 2. RFC 2096 " ::= { mplsVpnRoute 1 } mplsVpnVrfRouteEntry OBJECT-TYPE SYNTAX MplsVpnVrfRouteEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry in this table is created by an LSR for every route present configured (either dynamically or statically) within the context of a specific VRF capable of supporting MPLS/BGP VPN. The indexing provides an ordering of VRFs per-VPN interface." INDEX { mplsVpnVrfName, mplsVpnVrfRouteDest, mplsVpnVrfRouteMask, mplsVpnVrfRouteTos, mplsVpnVrfRouteNextHop } ::= { mplsVpnVrfRouteTable 1 } MplsVpnVrfRouteEntry ::= SEQUENCE { mplsVpnVrfRouteDest InetAddress, mplsVpnVrfRouteDestAddrType InetAddressType, mplsVpnVrfRouteMask InetAddress, mplsVpnVrfRouteMaskAddrType InetAddressType, mplsVpnVrfRouteTos Unsigned32, mplsVpnVrfRouteNextHop InetAddress, mplsVpnVrfRouteNextHopAddrType InetAddressType, mplsVpnVrfRouteIfIndex InterfaceIndex, mplsVpnVrfRouteType INTEGER, mplsVpnVrfRouteProto INTEGER, mplsVpnVrfRouteAge Unsigned32, mplsVpnVrfRouteInfo OBJECT IDENTIFIER, mplsVpnVrfRouteNextHopAS Unsigned32, mplsVpnVrfRouteMetric1 Integer32, mplsVpnVrfRouteMetric2 Integer32, mplsVpnVrfRouteMetric3 Integer32, mplsVpnVrfRouteMetric4 Integer32, mplsVpnVrfRouteMetric5 Integer32, mplsVpnVrfRouteRowStatus RowStatus, mplsVpnVrfRouteStorageType StorageType } mplsVpnVrfRouteDest OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS not-accessible STATUS current DESCRIPTION "The destination IP address of this route. This object may not take a Multicast (Class D) address value. Any assignment (implicit or otherwise) of an instance of this object to a value x must be rejected if the bit-wise logical-AND of x with the value of the corresponding instance of the mplsVpnVrfRouteMask object is not equal to x." ::= { mplsVpnVrfRouteEntry 1 } mplsVpnVrfRouteDestAddrType OBJECT-TYPE SYNTAX InetAddressType MAX-ACCESS read-create STATUS current DESCRIPTION "The address type of the mplsVpnVrfRouteDest entry." ::= { mplsVpnVrfRouteEntry 2 } mplsVpnVrfRouteMask OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS not-accessible STATUS current DESCRIPTION "Indicate the mask to be logical-ANDed with the destination address before being compared to the value in the mplsVpnVrfRouteDest field. For those systems that do not support arbitrary subnet masks, an agent constructs the value of the mplsVpnVrfRouteMask by reference to the IP Address Class. Any assignment (implicit or otherwise) of an instance of this object to a value x must be rejected if the bit-wise logical-AND of x with the value of the corresponding instance of the mplsVpnVrfRouteDest object is not equal to mplsVpnVrfRouteDest." ::= { mplsVpnVrfRouteEntry 3 } mplsVpnVrfRouteMaskAddrType OBJECT-TYPE SYNTAX InetAddressType MAX-ACCESS read-create STATUS current DESCRIPTION "The address type of mplsVpnVrfRouteMask." ::= { mplsVpnVrfRouteEntry 4 } mplsVpnVrfRouteTos OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-create STATUS current DESCRIPTION "The IP TOS Field is used to specify the policy to be applied to this route. The encoding of IP TOS is as specified by the following convention. Zero indicates the default path if no more specific policy applies. +-----+-----+-----+-----+-----+-----+-----+-----+ | | | | | PRECEDENCE | TYPE OF SERVICE | 0 | | | | | +-----+-----+-----+-----+-----+-----+-----+-----+ IP TOS IP TOS Field Policy Field Policy Contents Code Contents Code 0 0 0 0 ==> 0 0 0 0 1 ==> 2 0 0 1 0 ==> 4 0 0 1 1 ==> 6 0 1 0 0 ==> 8 0 1 0 1 ==> 10 0 1 1 0 ==> 12 0 1 1 1 ==> 14 1 0 0 0 ==> 16 1 0 0 1 ==> 18 1 0 1 0 ==> 20 1 0 1 1 ==> 22 1 1 0 0 ==> 24 1 1 0 1 ==> 26 1 1 1 0 ==> 28 1 1 1 1 ==> 30." ::= { mplsVpnVrfRouteEntry 5 } mplsVpnVrfRouteNextHop OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS read-create STATUS current DESCRIPTION "On remote routes, the address of the next system en route; Otherwise, 0.0.0.0. ." ::= { mplsVpnVrfRouteEntry 6 } mplsVpnVrfRouteNextHopAddrType OBJECT-TYPE SYNTAX InetAddressType MAX-ACCESS read-create STATUS current DESCRIPTION "The address type of the mplsVpnVrfRouteNextHopAddrType object." ::= { mplsVpnVrfRouteEntry 7 } mplsVpnVrfRouteIfIndex OBJECT-TYPE SYNTAX InterfaceIndex MAX-ACCESS read-create STATUS current DESCRIPTION "The ifIndex value that identifies the local interface through which the next hop of this route should be reached." ::= { mplsVpnVrfRouteEntry 8 } mplsVpnVrfRouteType OBJECT-TYPE SYNTAX INTEGER { other (1), -- not specified reject (2), -- route to discard traffic local (3), -- local interface remote (4) -- remote destination } MAX-ACCESS read-create STATUS current DESCRIPTION "The type of route. Note that local(3) refers to a route for which the next hop is the final destination; remote(4) refers to a route for that the next hop is not the final destination. Routes which do not result in traffic forwarding or rejection should not be displayed even if the implementation keeps them stored internally. reject (2) refers to a route which, if matched, discards the message as unreachable. This is used in some protocols as a means of correctly aggregating routes." ::= { mplsVpnVrfRouteEntry 9 } mplsVpnVrfRouteProto OBJECT-TYPE SYNTAX INTEGER { other (1), -- not specified local (2), -- local interface netmgmt (3), -- static route icmp (4), -- result of ICMP Redirect -- the following are all dynamic -- routing protocols egp (5), -- Exterior Gateway Protocol ggp (6), -- Gateway-Gateway Protocol hello (7), -- FuzzBall HelloSpeak rip (8), -- Berkeley RIP or RIP-II isIs (9), -- Dual IS-IS esIs (10), -- ISO 9542 ciscoIgrp (11), -- Cisco IGRP bbnSpfIgp (12), -- BBN SPF IGP ospf (13), -- Open Shortest Path First bgp (14), -- Border Gateway Protocol idpr (15), -- InterDomain Policy Routing ciscoEigrp (16) -- Cisco EIGRP } MAX-ACCESS read-create STATUS current DESCRIPTION "The routing mechanism via which this route was learned. Inclusion of values for gateway rout- ing protocols is not intended to imply that hosts should support those protocols." ::= { mplsVpnVrfRouteEntry 10 } mplsVpnVrfRouteAge OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The number of seconds since this route was last updated or otherwise determined to be correct. Note that no semantics of `too old' can be implied except through knowledge of the routing protocol by which the route was learned." ::= { mplsVpnVrfRouteEntry 11 } mplsVpnVrfRouteInfo OBJECT-TYPE SYNTAX OBJECT IDENTIFIER MAX-ACCESS read-create STATUS current DESCRIPTION "A reference to MIB definitions specific to the particular routing protocol which is responsi- ble for this route, as determined by the value specified in the route's mplsVpnVrfRouteProto value. If this information is not present, its value SHOULD be set to the OBJECT IDENTIFIER { 0 0 }, which is a syntactically valid object identif-ier, and any implementation conforming to ASN.1 and the Basic Encoding Rules must be able to generate and recognize this value." ::= { mplsVpnVrfRouteEntry 12 } mplsVpnVrfRouteNextHopAS OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-create STATUS current DESCRIPTION "The Autonomous System Number of the Next Hop. The semantics of this object are determined by the routing-protocol specified in the route's mplsVpnVrfRouteProto value. When this object is unknown or not relevant its value should be set to zero." ::= { mplsVpnVrfRouteEntry 13 } mplsVpnVrfRouteMetric1 OBJECT-TYPE SYNTAX Integer32 MAX-ACCESS read-create STATUS current DESCRIPTION "The primary routing metric for this route. The semantics of this metric are determined by the routing-protocol specified in the route's mplsVpnVrfRouteProto value. If this metric is not used, its value should be set to -1." ::= { mplsVpnVrfRouteEntry 14 } mplsVpnVrfRouteMetric2 OBJECT-TYPE SYNTAX Integer32 MAX-ACCESS read-create STATUS current DESCRIPTION "An alternate routing metric for this route. The semantics of this metric are determined by the routing-protocol specified in the route's mplsVpnVrfRouteProto value. If this metric is not used, its value should be set to -1." ::= { mplsVpnVrfRouteEntry 15 } mplsVpnVrfRouteMetric3 OBJECT-TYPE SYNTAX Integer32 MAX-ACCESS read-create STATUS current DESCRIPTION "An alternate routing metric for this route. The semantics of this metric are determined by the routing-protocol specified in the route's mplsVpnVrfRouteProto value. If this metric is not used, its value should be set to -1." ::= { mplsVpnVrfRouteEntry 16 } mplsVpnVrfRouteMetric4 OBJECT-TYPE SYNTAX Integer32 MAX-ACCESS read-create STATUS current DESCRIPTION "An alternate routing metric for this route. The semantics of this metric are determined by the routing-protocol specified in the route's mplsVpnVrfRouteProto value. If this metric is not used, its value should be set to -1." ::= { mplsVpnVrfRouteEntry 17 } mplsVpnVrfRouteMetric5 OBJECT-TYPE SYNTAX Integer32 MAX-ACCESS read-create STATUS current DESCRIPTION "An alternate routing metric for this route. The semantics of this metric are determined by the routing-protocol specified in the route's mplsVpnVrfRouteProto value. If this metric is not used, its value should be set to -1." ::= { mplsVpnVrfRouteEntry 18 } mplsVpnVrfRouteRowStatus OBJECT-TYPE SYNTAX RowStatus MAX-ACCESS read-create STATUS current DESCRIPTION "Row status for this table. It is used according to row installation and removal conventions." ::= { mplsVpnVrfRouteEntry 19 } mplsVpnVrfRouteStorageType OBJECT-TYPE SYNTAX StorageType MAX-ACCESS read-create STATUS current DESCRIPTION "Storage type value." ::= { mplsVpnVrfRouteEntry 20 } -- MPLS/BGP VPN Notifications mplsVrfUp NOTIFICATION-TYPE OBJECTS { mplsVpnInterfaceConfIndex, mplsVpnVrfName } STATUS current DESCRIPTION "This notification is generated when the specified VRF is initialized or its status changes into the up state." ::= { mplsVpnNotifications 1 } mplsVrfDown NOTIFICATION-TYPE OBJECTS { mplsVpnInterfaceConfIndex, mplsVpnVrfName } STATUS current DESCRIPTION "This notification is generated when the specified VRF initialized or its status goes from the up state." ::= { mplsVpnNotifications 2 } mplsNumVrfRouteMidThreshExceeded NOTIFICATION-TYPE OBJECTS { mplsVpnVrfName, mplsVpnVrfPerfCurrNumRoutes } STATUS current DESCRIPTION "This notification is generated when the number of routes contained by the specified VRF exceeds the value indicated by mplsVrfMidRouteThreshold." ::= { mplsVpnNotifications 3 } mplsNumVrfRouteMaxThreshExceeded NOTIFICATION-TYPE OBJECTS { mplsVpnVrfName, mplsVpnVrfPerfCurrNumRoutes } STATUS current DESCRIPTION "This notification is generated when the number of routes contained by the specified VRF reaches or attempts to exceed the maximum allowed value as indicated by mplsVrfMaxRouteThreshold." ::= { mplsVpnNotifications 4 } mplsNumVrfSecIllegalLabelThreshExceeded NOTIFICATION-TYPE OBJECTS { mplsVpnVrfName, mplsVpnVrfSecIllegalLabelViolations } STATUS current DESCRIPTION "This notification is generated when the number of illegal label violations on a VRF as indicated by mplsVpnVrfSecIllegalLabelViolations has exceeded mplsVpnVrfSecIllegalLabelRcvThresh. The threshold is not included in the varbind here because the value of mplsVpnVrfSecIllegalLabelViolations should be one greater than the threshold at the time this notification is issued." ::= { mplsVpnNotifications 5 } -- Conformance Statement mplsVpnGroups OBJECT IDENTIFIER ::= { mplsVpnConformance 1 } mplsVpnCompliances OBJECT IDENTIFIER ::= { mplsVpnConformance 2 } -- Module Compliance mplsVpnModuleCompliance MODULE-COMPLIANCE STATUS current DESCRIPTION "Compliance statement for agents that support the MPLS VPN MIB." MODULE -- this module -- The mandatory groups have to be implemented -- by all LSRs supporting MPLS BGP/VPNs. However, -- they may all be supported -- as read-only objects in the case where manual -- configuration is unsupported. MANDATORY-GROUPS { mplsVpnScalars, mplsVpnVrfConfGroup, mplsVpnInterfaceGroup, mplsVpnPerfGroup, mplsVpnVrfBgpNbrGroup, mplsVpnVrfRouteGroup, mplsVpnVrfRouteTargetGroup } ::= { mplsVpnCompliances 1 } -- Units of conformance. mplsVpnScalarGroup OBJECT-GROUP OBJECTS { mplsVpnConfiguredVrfs, mplsVpnActiveVrfs, mplsVpnTrapEnable } STATUS current DESCRIPTION "Collection of scalar objects required for MPLS VPN management." ::= { mplsVpnGroups 1 } mplsVpnVrfConfGroup OBJECT-GROUP OBJECTS { mplsVpnVrfName, mplsVpnVrfDescription, mplsVpnVrfRouteDistinguisher, mplsVpnVrfRouteSiteOrigin, mplsVpnVrfCreationTime, mplsVpnVrfUpTime, mplsVpnVrfNetPrefixType, mplsVpnVrfRipNetPrefix, mplsVpnVrfOspfNetPrefix, mplsVpnVrfIsisNetPrefix, mplsVpnVrfIpRouteVrfForwByType, mplsVpnVrfIpRouteVrfForwByAddr, mplsVpnVrfBgpAddrFamilyVpnv4Unicast, mplsVpnVrfBgpAFNeighborPEAct, mplsVpnVrfIpRouteRedistributeConn, mplsVpnVrfConfMidRouteThreshold, mplsVpnVrfConfHighRouteThreshold, mplsVpnVrfConfMaxRoutes, mplsVpnVrfConfMaxPossibleRoutes, mplsVpnVrfConfLastChanged, mplsVpnVrfIpRouteVrfDest, mplsVpnVrfBgpAFNeighborPEAddr, mplsVpnVrfBgpAFNeighborPEType, mplsVpnVrfBgpAFNeighborCEAddr, mplsVpnVrfBgpAFNeighborCEType, mplsVpnVrfConfStorageType, mplsVpnVrfConfRowStatus } STATUS current DESCRIPTION "Collection of objects needed for MPLS VPN VRF management." ::= { mplsVpnGroups 2 } mplsVpnInterfaceGroup OBJECT-GROUP OBJECTS { mplsVpnInterfaceConfIndex, mplsVpnInterfaceLabelEdgeType, mplsVpnInterfaceVpnClassification, mplsVpnInterfaceConfStorageType } STATUS current DESCRIPTION "Collection of objects needed for MPLS VPN interface management." ::= { mplsVpnGroups 3 } mplsVpnPerfGroup OBJECT-GROUP OBJECTS { mplsVpnVrfPerfRoutesAdded, mplsVpnVrfPerfRoutesDeleted, mplsVpnVrfPerfCurrNumRoutes } STATUS current DESCRIPTION "Collection of objects needed for MPLS VPN performance information." ::= { mplsVpnGroups 4 } mplsVpnVrfBgpNbrGroup OBJECT-GROUP OBJECTS { mplsVpnVrfBgpNbrRowStatus, mplsVpnVrfBgpNbrStorageType } STATUS current DESCRIPTION "Collection of objects needed for MPLS VPN bgp neighbor-related information." ::= { mplsVpnGroups 5 } mplsVpnSecGroup OBJECT-GROUP OBJECTS { mplsVpnVrfSecIllegalLabelViolations, mplsVpnVrfSecIllegalLabelRcvThresh } STATUS current DESCRIPTION "Collection of objects needed for MPLS VPN security-related information." ::= { mplsVpnGroups 6 } mplsVpnVrfRouteGroup OBJECT-GROUP OBJECTS { mplsVpnVrfRouteDestAddrType, mplsVpnVrfRouteMaskAddrType, mplsVpnVrfRouteTos, mplsVpnVrfRouteNextHop, mplsVpnVrfRouteNextHopAddrType, mplsVpnVrfRouteIfIndex, mplsVpnVrfRouteType, mplsVpnVrfRouteProto, mplsVpnVrfRouteAge, mplsVpnVrfRouteInfo, mplsVpnVrfRouteNextHopAS, mplsVpnVrfRouteMetric1, mplsVpnVrfRouteMetric2, mplsVpnVrfRouteMetric3, mplsVpnVrfRouteMetric4, mplsVpnVrfRouteMetric5, mplsVpnVrfRouteRowStatus, mplsVpnVrfRouteStorageType } STATUS current DESCRIPTION "Objects required for VRF route table management." ::= { mplsVpnGroups 7 } mplsVpnVrfRouteTargetGroup OBJECT-GROUP OBJECTS { mplsVpnVrfRouteTargetDescr, mplsVpnVrfRouteTargetRowStatus } STATUS current DESCRIPTION "Objects required for VRF route target management." ::= { mplsVpnGroups 8 } mplsVpnNotificationGroup NOTIFICATION-GROUP NOTIFICATIONS { mplsVrfUp, mplsVrfDown, mplsNumVrfRouteMidThreshExceeded, mplsNumVrfRouteMaxThreshExceeded, mplsNumVrfSecIllegalLabelThreshExceeded } STATUS current DESCRIPTION "Objects required for MPLS VPN notifications." ::= { mplsVpnGroups 9 } -- End of MPLS-VPN-MIB END -- -- Copyright (C) The Internet Society (2000). All Rights Reserved. -- This document and translations of it may be copied and furnished to -- others, and derivative works that comment on or otherwise explain it or -- assist in its implementation may be prepared, copied, published and -- distributed, in whole or in part, without restriction of any kind, -- provided that the above copyright notice and this paragraph are included -- on all such copies and derivative works. However, this document itself -- may not be modified in any way, such as by removing the copyright notice -- or references to the Internet Society or other Internet organizations, -- except as needed for the purpose of developing Internet standards in -- which case the procedures for copyrights defined in the Internet -- Standards process must be followed, or as required to translate it into -- languages other than English. -- -- The limited permissions granted above are perpetual and will not be -- revoked by the Internet Society or its successors or assigns. This -- document and the information contained herein is provided on an "AS IS" -- basis and THE INTERNET SOCIETY AND THE INTERNET ENGINEERING TASK FORCE -- DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED -- TO ANY WARRANTY THAT THE USE OF THE INFORMATION HEREIN WILL NOT INFRINGE -- ANY RIGHTS OR ANY IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A -- PARTICULAR PURPOSE.