-- *******************************************************************
-- CISCO-LWAPP-ROGUE-MIB.my
-- February 2007, Devesh Pujari, Srinath Candadai
--
-- Copyright (c) 2007 by Cisco Systems, Inc.
-- All rights reserved.
-- *******************************************************************CISCO-LWAPP-ROGUE-MIB DEFINITIONS::=BEGINIMPORTSMODULE-IDENTITY,NOTIFICATION-TYPE,OBJECT-TYPEFROM SNMPv2-SMI
MODULE-COMPLIANCE,NOTIFICATION-GROUP,OBJECT-GROUPFROM SNMPv2-CONF
TruthValueFROM SNMPv2-TC
ciscoMgmt
FROM CISCO-SMI
cLApName
FROM CISCO-LWAPP-AP-MIB;ciscoLwappRogueMIB MODULE-IDENTITYLAST-UPDATED"200702060000Z"ORGANIZATION"Cisco Systems Inc."CONTACT-INFO"Cisco Systems,
Customer Service
Postal: 170 West Tasman Drive
San Jose, CA 95134
USA
Tel: +1 800 553-NETS
Email: cs-wnbu-snmp@cisco.com"DESCRIPTION"This MIB is intended to be implemented on all those
devices operating as Central Controllers, that
terminate the Light Weight Access Point Protocol
tunnel from Cisco Light-weight LWAPP Access Points.
This MIB provides information about the Rogue APs
and Clients that are detected by the controller.
The relationship between CC and the LWAPP APs
can be depicted as follows:
+......+ +......+ +......+
+ + + + + +
+ CC + + CC + + CC +
+ + + + + +
+......+ +......+ +......+
.. . .
.. . .
. . . .
. . . .
. . . .
. . . .
+......+ +......+ +......+ +......+
+ + + + + + + +
+ AP + + AP + + AP + + AP +
+ + + + + + + +
+......+ +......+ +......+ +......+
. . .
. . . .
. . . .
. . . .
. . . .
+......+ +......+ +......+ +......+
+ + + + + + + +
+ MN + + MN + + MN + + MN +
+ + + + + + + +
+......+ +......+ +......+ +......+
The LWAPP tunnel exists between the controller and
the APs. The MNs communicate with the APs through
the protocol defined by the 802.11 standard.
LWAPP APs, upon bootup, discover and join one of the
controllers and the controller pushes the configuration,
that includes the WLAN parameters, to the LWAPP APs.
The APs then encapsulate all the 802.11 frames from
wireless clients inside LWAPP frames and forward
the LWAPP frames to the controller.
GLOSSARY
Access Point ( AP )
An entity that contains an 802.11 medium access
control ( MAC ) and physical layer ( PHY ) interface
and provides access to the distribution services via
the wireless medium for associated clients.
LWAPP APs encapsulate all the 802.11 frames in
LWAPP frames and sends them to the controller to which
it is logically connected.
Light Weight Access Point Protocol ( LWAPP )
This is a generic protocol that defines the
communication between the Access Points and the
Central Controller.
Mobile Node ( MN )
A roaming 802.11 wireless device in a wireless
network associated with an access point. Mobile Node
and client are used interchangeably.
Rogue
Any 802.11 device which is not part of the RF network
is a Rogue device.
Ad-hoc Network
A set of mobile devices within direct communication
range establishing a network among themselves for
transmitting data, without the use of a Access point
is called a ad-hoc network.
Rogue Ad-hoc Client
Any 802.11 client which is part of that ad-hoc network,
but not in the trusted list.
REFERENCE
[1] Wireless LAN Medium Access Control ( MAC ) and
Physical Layer ( PHY ) Specifications.
[2] Draft-obara-capwap-lwapp-00.txt, IETF Light
Weight Access Point Protocol."REVISION"200702060000Z"DESCRIPTION"Initial version of this MIB module."::={ ciscoMgmt 610}ciscoLwappRogueMIBNotifs OBJECTIDENTIFIER::={ ciscoLwappRogueMIB 0}ciscoLwappRogueMIBObjects OBJECTIDENTIFIER::={ ciscoLwappRogueMIB 1}ciscoLwappRogueMIBConform OBJECTIDENTIFIER::={ ciscoLwappRogueMIB 2}cLRogueConfig OBJECTIDENTIFIER::={ ciscoLwappRogueMIBObjects 1}
cLRoguePolicyConfig OBJECTIDENTIFIER::={ cLRogueConfig 1}cLRogueAdhocRogueReportEnable OBJECT-TYPESYNTAXTruthValueMAX-ACCESSread-writeSTATUScurrentDESCRIPTION"This object is used to turn on and off ad-hoc
rogue reporting. Setting this object to 'true'
will enable ad-hoc rogue reporting. Setting to
'false' will disable ad-hoc rogue reporting."DEFVAL{ true }::={ cLRoguePolicyConfig 1}cLRogueAdhocRogueNotifEnabled OBJECT-TYPESYNTAXTruthValueMAX-ACCESSread-writeSTATUScurrentDESCRIPTION"The object to control the generation of
cLRogueAdhocDetected notification.
A value of 'true' indicates that the agent generates
cLRogueAdhocDetected notification.
A value of 'false' indicates that the agent doesn't
generate cLRogueAdhocDetected notification."DEFVAL{ false }::={ cLRogueConfig 2}
cLRogueAdhocRogueDetected NOTIFICATION-TYPEOBJECTS{ cLApName }STATUScurrentDESCRIPTION"This notification is generated by the controller when a
a rogue is detected. The name of the AP that
detected this rogue is sent in the notification."::={ ciscoLwappRogueMIBNotifs 1}ciscoLwappRogueMIBCompliances OBJECTIDENTIFIER::={ ciscoLwappRogueMIBConform 1}ciscoLwappRogueMIBGroups OBJECTIDENTIFIER::={ ciscoLwappRogueMIBConform 2}ciscoLwappRogueMIBCompliance MODULE-COMPLIANCESTATUScurrentDESCRIPTION"The compliance statement for the SNMP entities that
implement the ciscoLwappRogueMIB module."MODULE-- this moduleMANDATORY-GROUPS{
ciscoLwappRogueConfigGroup,
ciscoLwappRogueNotifsGroup
}::={ ciscoLwappRogueMIBCompliances 1}
ciscoLwappRogueConfigGroup OBJECT-GROUPOBJECTS{
cLRogueAdhocRogueReportEnable,
cLRogueAdhocRogueNotifEnabled
}STATUScurrentDESCRIPTION"This collection of objects represent the
rogue configuration on the controller."::={ ciscoLwappRogueMIBGroups 1}ciscoLwappRogueNotifsGroup NOTIFICATION-GROUPNOTIFICATIONS{ cLRogueAdhocRogueDetected }STATUScurrentDESCRIPTION"This collection of objects specifies the
notifications for rogue detection."::={ ciscoLwappRogueMIBGroups 2}END