-- This module defines enterprise MIBs for VPN User
--
-- Copyright (c) 1999-2004, Juniper Networks, Inc.
-- All rights reserved.NETSCREEN-VPN-USER-MIB DEFINITIONS::=BEGINIMPORTS--PSIM(Modif) netscreenVpnMibModulenetscreenVpnMibModule, netscreenVpn
FROM NETSCREEN-SMI
Integer32,IpAddress,MODULE-IDENTITY,OBJECT-TYPEFROM SNMPv2-SMI
DisplayStringFROM SNMPv2-TC
;netscreenUserMibModule MODULE-IDENTITYLAST-UPDATED"200405032022Z"-- May 03, 2004ORGANIZATION"Juniper Networks, Inc."CONTACT-INFO"Customer Support
1194 North Mathilda Avenue
Sunnyvale, California 94089-1206
USA
Tel: 1-800-638-8296
E-mail: customerservice@juniper.net
HTTP://www.juniper.net"DESCRIPTION"This module defines NetScreen private MIBs for VPN User"REVISION"200405030000Z"-- May 03, 2004
DESCRIPTION"Modified copyright and contact information"REVISION"200403030000Z"-- March 03, 2004DESCRIPTION"Converted to SMIv2 by Longview Software"REVISION"200311130000Z"-- November 13, 2003DESCRIPTION"Correct spelling mistake"REVISION"200205050000Z"-- May 05, 2002DESCRIPTION"Add dial-up group type"REVISION"200105140000Z"-- May 14, 2001DESCRIPTION"Creation Date"::={ netscreenVpnMibModule 10}
NsVpnAILUsrEntry ::=SEQUENCE{
nsVpnAILUsrIndex Integer32,
nsVpnAILUsrName DisplayString,
nsVpnAILUsrGrp DisplayString,
nsVpnAILUsrStatus INTEGER,
nsVpnAILUsrIKE INTEGER,
nsVpnAILUsrIKEIdType INTEGER,
nsVpnAILUsrIKEId DisplayString,
nsVpnAILUsrAuth INTEGER,
nsVpnAILUsrL2TP INTEGER,
nsVpnAILUsrL2tpRemoteIp IpAddress,
nsVpnAILUsrL2tpIpPool DisplayString,
nsVpnAILUsrL2tpIp IpAddress,
nsVpnAILUsrL2tpPriDnsIp IpAddress,
nsVpnAILUsrL2tpSecDnsIp IpAddress,
nsVpnAILUsrL2tpPriWinsIp IpAddress,
nsVpnAILUsrL2tpSecWinsIp IpAddress,
nsVpnAILUsrVsys Integer32}
NsVpnManualKeyUsrEntry ::=SEQUENCE{
nsVpnManualKeyUsrIndex Integer32,
nsVpnManualKeyUsrName DisplayString,
nsVpnManualKeyUsrGrp DisplayString,
nsVpnManualKeyUsrSILocal Integer32,
nsVpnManualKeyUsrSIRemote Integer32,
nsVpnManualKeyUsrTunnelType INTEGER,
nsVpnManualKeyUsrEspEncAlg INTEGER,
nsVpnManualKeyUsrEspAuthAlg INTEGER,
nsVpnManualKeyUsrAhHash INTEGER,
nsVpnManualKeyUsrVsys Integer32}
NsVpnUsrDialupGrpEntry ::=SEQUENCE{
nsVpnUsrDialupGrpIndex Integer32,
nsVpnUsrDialupGrpName DisplayString,
nsVpnUsrDialupGrpType INTEGER,
nsVpnUsrDialupGrpVsys Integer32
}nsVpnUser OBJECTIDENTIFIER::={ netscreenVpn 10}nsVpnUsrDialupGrpTable OBJECT-TYPESYNTAXSEQUENCEOF NsVpnUsrDialupGrpEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"NetScreen supports using dialup group to organize vpn
user.This table collects the information of dialup group in
NetScreen device."::={ nsVpnUser 1}nsVpnUsrDialupGrpEntry OBJECT-TYPESYNTAX NsVpnUsrDialupGrpEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"Each entry in this table holds a set of configuration
information about dialup group."INDEX{ nsVpnUsrDialupGrpIndex }::={ nsVpnUsrDialupGrpTable 1}nsVpnUsrDialupGrpIndex OBJECT-TYPESYNTAXInteger32(0..2147483647)MAX-ACCESSread-onlySTATUScurrentDESCRIPTION
"A unique value for schedule. Its value ranges between 0 and
65535 and may not be contiguous."::={ nsVpnUsrDialupGrpEntry 1}nsVpnUsrDialupGrpName OBJECT-TYPESYNTAXDisplayString(SIZE(0..32))MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"dialup user group name."::={ nsVpnUsrDialupGrpEntry 2}nsVpnUsrDialupGrpType OBJECT-TYPESYNTAXINTEGER{undefined(0),manual(1),ike(2),l2tp(3),xauth(4),auth(5),external(6)}MAX-ACCESSread-onlySTATUScurrent
DESCRIPTION"dial up group type."::={ nsVpnUsrDialupGrpEntry 3}nsVpnUsrDialupGrpVsys OBJECT-TYPESYNTAXInteger32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"vsys this group belongs to."::={ nsVpnUsrDialupGrpEntry 4}nsVpnManualKeyUsrTable OBJECT-TYPESYNTAXSEQUENCEOF NsVpnManualKeyUsrEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"This table specifies the configuration attributes for manual
key user."::={ nsVpnUser 2}nsVpnManualKeyUsrEntry OBJECT-TYPESYNTAX NsVpnManualKeyUsrEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"Each entry in the nsVpnManualkeyUsrTable holds a set of
configuration parameters associated with an instance of manual
key user."INDEX{ nsVpnManualKeyUsrIndex }::={ nsVpnManualKeyUsrTable 1}
nsVpnManualKeyUsrIndex OBJECT-TYPESYNTAXInteger32(0..2147483647)MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"A unique value for manual key user table. Its value ranges
between 0 and 65535 and may not be contiguous."::={ nsVpnManualKeyUsrEntry 1}nsVpnManualKeyUsrName OBJECT-TYPESYNTAXDisplayString(SIZE(0..32))MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"User name."::={ nsVpnManualKeyUsrEntry 2}nsVpnManualKeyUsrGrp OBJECT-TYPESYNTAXDisplayString(SIZE(0..32))MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"group this user belongs to."
::={ nsVpnManualKeyUsrEntry 3}nsVpnManualKeyUsrSILocal OBJECT-TYPESYNTAXInteger32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Local Security Index"::={ nsVpnManualKeyUsrEntry 4}nsVpnManualKeyUsrSIRemote OBJECT-TYPESYNTAXInteger32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Remote Security Index"::={ nsVpnManualKeyUsrEntry 5}nsVpnManualKeyUsrTunnelType OBJECT-TYPESYNTAXINTEGER{esp(0),ah(1)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"vpn tunnel type."::={ nsVpnManualKeyUsrEntry 6}nsVpnManualKeyUsrEspEncAlg OBJECT-TYPESYNTAXINTEGER{
null(0),des-cbc(1),triple-des-cbc(2),aes(3),aes-192(4),aes-256(5)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"ESP Encryption Algorithm."::={ nsVpnManualKeyUsrEntry 7}nsVpnManualKeyUsrEspAuthAlg OBJECT-TYPESYNTAXINTEGER{null(0),md5(1),sha(2)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"ESP Authentication Algorithm."::={ nsVpnManualKeyUsrEntry 8}nsVpnManualKeyUsrAhHash OBJECT-TYPE
SYNTAXINTEGER{null(0),md5(1),sha(2)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"AH Hash Algorithm."::={ nsVpnManualKeyUsrEntry 9}nsVpnManualKeyUsrVsys OBJECT-TYPESYNTAXInteger32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"vsys this user belongs to."::={ nsVpnManualKeyUsrEntry 10}nsVpnAILUsrTable OBJECT-TYPESYNTAXSEQUENCEOF NsVpnAILUsrEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"This table specifies the configuration attributes for
AUTH/IKE/L2TP user."::={ nsVpnUser 3}nsVpnAILUsrEntry OBJECT-TYPESYNTAX NsVpnAILUsrEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"Each entry in the nsVpnManualkeyUsrTable holds a set of
configuration parameters associated with an instance of
AUTH/IKE/L2TP user."INDEX{ nsVpnAILUsrIndex }::={ nsVpnAILUsrTable 1}nsVpnAILUsrIndex OBJECT-TYPESYNTAXInteger32(0..2147483647)MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"A unique value for Auth/Ike/l2tp user table. Its value ranges
between 1 and 65535 and may not be contiguous."::={ nsVpnAILUsrEntry 1}nsVpnAILUsrName OBJECT-TYPESYNTAXDisplayString(SIZE(0..32))MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"User name."::={ nsVpnAILUsrEntry 2}
nsVpnAILUsrGrp OBJECT-TYPESYNTAXDisplayString(SIZE(0..32))MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"group this user belongs to."::={ nsVpnAILUsrEntry 3}nsVpnAILUsrStatus OBJECT-TYPESYNTAXINTEGER{disable(0),enabled(1)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"User status"::={ nsVpnAILUsrEntry 4}nsVpnAILUsrIKE OBJECT-TYPESYNTAXINTEGER{no(0),yes(1)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Since Authentication, IKE L2TP can be combined together. This
attribute is used to indicate if this user is an IKE user."::={ nsVpnAILUsrEntry 5}nsVpnAILUsrIKEIdType OBJECT-TYPESYNTAXINTEGER{not-set(0),ipv4-addr(1),fqdn(2),usr-fqdn(3),ipv4-addr-subnet(4),ipv6-addr(5),ipv6-addr-subnet(6),ipv4-addr-addr-range(7),ipv6-addr-addr-range(8),der-asn1-dn(9),der-asn1-gn(10)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"IKE user type 1 means auto, other values are undefined."::={ nsVpnAILUsrEntry 6}
nsVpnAILUsrIKEId OBJECT-TYPESYNTAXDisplayStringMAX-ACCESSread-onlySTATUScurrentDESCRIPTION"IKE id."::={ nsVpnAILUsrEntry 7}nsVpnAILUsrAuth OBJECT-TYPESYNTAXINTEGER{no(0),yes(1)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Since Authentication, IKE L2TP can be combined together. This
attribute is used to indicate if this user is an Authentication
user."::={ nsVpnAILUsrEntry 8}nsVpnAILUsrL2TP OBJECT-TYPESYNTAXINTEGER{no(0),yes(1)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Since Authentication, IKE L2TP can be combined together. This
attribute is used to indicate if this user is a L2TP user. The
NetScreen-1000 does not support L2TP."::={ nsVpnAILUsrEntry 9}nsVpnAILUsrL2tpRemoteIp OBJECT-TYPESYNTAXIpAddressMAX-ACCESSread-onlySTATUScurrentDESCRIPTION"L2TP remote peer ip address."::={ nsVpnAILUsrEntry 10}nsVpnAILUsrL2tpIpPool OBJECT-TYPESYNTAXDisplayStringMAX-ACCESSread-onlySTATUScurrentDESCRIPTION"ip pool entity name."::={ nsVpnAILUsrEntry 11}nsVpnAILUsrL2tpIp OBJECT-TYPESYNTAXIpAddressMAX-ACCESSread-onlySTATUScurrentDESCRIPTION"L2TP local ip address."::={ nsVpnAILUsrEntry 12}nsVpnAILUsrL2tpPriDnsIp OBJECT-TYPESYNTAXIpAddressMAX-ACCESSread-only
STATUScurrentDESCRIPTION"primary DNS server IP address for L2TP user."::={ nsVpnAILUsrEntry 13}nsVpnAILUsrL2tpSecDnsIp OBJECT-TYPESYNTAXIpAddressMAX-ACCESSread-onlySTATUScurrentDESCRIPTION"secondary DNS server IP address for L2TP user."::={ nsVpnAILUsrEntry 14}nsVpnAILUsrL2tpPriWinsIp OBJECT-TYPESYNTAXIpAddressMAX-ACCESSread-onlySTATUScurrentDESCRIPTION"primary WINS server IP address for L2TP user."::={ nsVpnAILUsrEntry 15}nsVpnAILUsrL2tpSecWinsIp OBJECT-TYPESYNTAXIpAddressMAX-ACCESSread-onlySTATUScurrentDESCRIPTION"secondary WINS server IP address for L2TP user."::={ nsVpnAILUsrEntry 16}nsVpnAILUsrVsys OBJECT-TYPESYNTAXInteger32
MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"vsys this user belongs to."::={ nsVpnAILUsrEntry 17}END