HM2-NAT-MIB: View SNMP OID List / Download MIB
VENDOR: RICHARD HIRSCHMANN
| Home | MIB: HM2-NAT-MIB | |||
|---|---|---|---|---|
| Download as: |
Download standard MIB format if you are planning to load a MIB file into some system (OS, Zabbix, PRTG ...) or view it with a MIB browser. CSV is more suitable for analyzing and viewing OID' and other MIB objects in excel. JSON and YAML formats are usually used in programing even though some systems can use MIB in YAML format (like Logstash).
|
|||
| Object Name | OID | Type | Access | Info |
| hm2NatMib | 1.3.6.1.4.1.248.11.80 |
This MIB defines the SNMP interface for Hirschmann DNAT/SNAT/ Double NAT/1:1 NAT implementations Copyright (C) |
||
| hm2NatNotifications | 1.3.6.1.4.1.248.11.80.0 | |||
| hm2DnatRuleAppliedTrap | 1.3.6.1.4.1.248.11.80.0.1 |
A rule of DNAT was applied. The rule is identified by the given rule index of the rule table. |
||
| hm2DnatRuleAppliedAndLoggedTrap | 1.3.6.1.4.1.248.11.80.0.2 |
A rule of DNAT was applied and logged according to the current logging mechanism. The rule is identified by the given rule index of the rule table. |
||
| hm21to1RuleAppliedTrap | 1.3.6.1.4.1.248.11.80.0.5 |
A rule of 1:1 NAT was applied. The rule is identified by the given rule index of the rule table. |
||
| hm21to1RuleAppliedAndLoggedTrap | 1.3.6.1.4.1.248.11.80.0.6 |
A rule of 1:1 NAT was applied and logged according the current logging mechanism. The rule is identified by the given rule index of the rule table. |
||
| hm2MasqRuleAppliedTrap | 1.3.6.1.4.1.248.11.80.0.7 |
A rule of masquerading was applied. The rule is identified by the given rule index of the rule table. |
||
| hm2MasqRuleAppliedAndLoggedTrap | 1.3.6.1.4.1.248.11.80.0.8 |
A rule of masquerading was applied and logged according the current logging mechanism. The rule is identified by the given rule index of the rule table. |
||
| hm2DonatRuleAppliedTrap | 1.3.6.1.4.1.248.11.80.0.9 |
A rule of double NAT was applied. The rule is identified by the given rule index of the rule table. |
||
| hm2DonatRuleAppliedAndLoggedTrap | 1.3.6.1.4.1.248.11.80.0.10 |
A rule of double NAT was applied and logged according the current logging mechanism. The rule is identified by the given rule index of the rule table. |
||
| hm2NatObjects | 1.3.6.1.4.1.248.11.80.1 | |||
| hm2NatGeneralSettings | 1.3.6.1.4.1.248.11.80.1.1 | |||
| hm2DnatMaxRules | 1.3.6.1.4.1.248.11.80.1.1.2 | integer32 | read-only |
Maximum number of allowed rules for DNAT. |
| hm2OneToOneNatMaxRules | 1.3.6.1.4.1.248.11.80.1.1.3 | integer32 | read-only |
Maximum number of allowed rules for 1:1 NAT. |
| hm2MasqMaxRules | 1.3.6.1.4.1.248.11.80.1.1.4 | integer32 | read-only |
Maximum number of allowed rules for Masquerading. |
| hm2DoubleNatMaxRules | 1.3.6.1.4.1.248.11.80.1.1.5 | integer32 | read-only |
Maximum number of allowed rules for Double NAT. |
| hm2NatResetStatistics | 1.3.6.1.4.1.248.11.80.1.1.6 | hmactionvalue | read-write |
Setting this value to action(2) will reset the statistics of the whole NAT module. It will be set to noop(1) automatically after reset. |
| hm2Dnat | 1.3.6.1.4.1.248.11.80.1.2 | |||
| hm2DnatRules | 1.3.6.1.4.1.248.11.80.1.2.1 | |||
| hm2DnatRulesObjects | 1.3.6.1.4.1.248.11.80.1.2.1.1 | |||
| hm2DnatRuleCount | 1.3.6.1.4.1.248.11.80.1.2.1.1.1 | integer32 | read-only |
Number of current DNAT rules |
| hm2DnatIfMappingRuleCount | 1.3.6.1.4.1.248.11.80.1.2.1.1.2 | integer32 | read-only |
Number of current DNAT IF mapping entries. |
| hm2DnatRulePendingActions | 1.3.6.1.4.1.248.11.80.1.2.1.1.3 | truthvalue | read-only |
This value describes, whether the DNAT rule table was modified but not yet written to the firewall implementation (set to true). After writing all modifications to the firewall, the value switches automatically back to false. |
| hm2DnatCommitPendingActions | 1.3.6.1.4.1.248.11.80.1.2.1.1.4 | hmactionvalue | read-write |
Setting this value to action(2) writes not yet committed changes to the firewall (DNAT and Interface Mapping Table). After writing all modifications, the value switches automatically back to noop(1). |
| hm2DnatRulesTables | 1.3.6.1.4.1.248.11.80.1.2.1.2 | |||
| hm2DnatRuleTable | 1.3.6.1.4.1.248.11.80.1.2.1.2.1 | no-access |
The list of DNAT rules for this firewall. |
|
| 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1 | no-access |
DNAT rule entry. |
||
| hm2DnatRuleIndex | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.1 | integer32 | no-access |
Rule index of this DNAT rule. |
| hm2DnatSourceAddress | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.3 | displaystring | read-only |
Source address of packets to be NATed. Can be: - Single address (a.b.c.d), - address range in CIDR notation (a.b.c.d/n) - the name of a Netobject ($NetobjectName) - 'any' for no filtering at all - a prepending '!' selects the complement set |
| hm2DnatSourcePort | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.4 | displaystring | read-only |
The source port of the packet to reroute. Allowed formats are: - keyword 'any' for no filtering or a protocol without ports - single port ('10') - port range with first and last port separated by hyphen ('10-15') - comma separated list of ports ('1235,25,123') - combination of the points above ('10,25-30,125,1993') The number of named ports (1 for each individual port, 2 for port ranges) must not exceed 15. |
| hm2DnatTargetAddress | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.5 | displaystring | read-only |
Destination address of packets to be NATed. Can be: - Single address (a.b.c.d), - address range in CIDR notation (a.b.c.d/n) - the name of a Netobject ($NetobjectName) - 'any' for no filtering at all - a prepending '!' selects the complement set |
| hm2DnatTargetPort | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.6 | displaystring | read-only |
The target port of the packet to reroute. Allowed formats are: - keyword 'any' - single port ('10') - port range with first and last port separated by hyphen ('10-15') - comma separated list of ports ('1235,25,123') - combination of the points above ('10,25-30,125,1993') The number of named ports (1 for each individual port, 2 for port ranges) must not exceed 15. |
| hm2DnatNewTargetAddress | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.7 | displaystring | read-only |
The IP address of the machine to reroute packets to. Must be a single IP address (a.b.c.d). |
| hm2DnatNewTargetPort | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.8 | displaystring | read-only |
The port to reroute packets to. Must be a single port or 'any'. |
| hm2DnatProto | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.9 | integer | read-only |
The IP protocol (RFC 791) for protocol-independent filtering. The following values are currently supported: o icmp(1): Internet Control Message Protocol (RFC 792) o igmp(2): Internet Group Management Protocol o ipip(3): IP in IP tunneling (RFC 1853) o tcp(4): Transmission Control Protocol (RFC 793) o udp(5): User Datagram Protocol (RFC 768) o esp(6): IPsec Encapsulated Security Payload (RFC 2406) o ah(7): IPsec Authentication Header (RFC 2402) o icmpv6(8): Internet Control Message Protocol for IPv6 o any(9): apply to all protocols Enumeration: 'udp': 5, 'esp': 6, 'ah': 7, 'ipip': 3, 'tcp': 4, 'icmpv6': 8, 'icmp': 1, 'any': 9, 'igmp': 2. |
| hm2DnatRuleParams | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.10 | displaystring | read-only |
Additional parameters to this rule as string. Currently only the value 'none' is valid. Reserved for future use. |
| hm2DnatLog | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.11 | truthvalue | read-only |
Set to true if application of this rule shall be logged. |
| hm2DnatTrap | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.12 | truthvalue | read-only |
Set to true if application of this rule shall send a trap. |
| hm2DnatRowStatus | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.13 | rowstatus | read-only |
This is a standard row status value: - active(1): The rule is active. Note that until committed, the rule will not be applied. - notInService(2): The rule is inactive because of user action. - notReady(3):The rule is inactive because it has an incomplete configuration. - createAndGo(4): Create the rule with default parameters activated. - createAndWait(5): Create the rule inactive. - destroy(6): Delete the rule. You cannot delete a rule with interface mappings to it. |
| hm2DnatDescription | 1.3.6.1.4.1.248.11.80.1.2.1.2.1.1.14 | displaystring | read-only |
User defined textual description related to this rule. |
| hm2DnatRuleIfMappingTable | 1.3.6.1.4.1.248.11.80.1.2.1.2.2 | no-access |
Table for mapping DNAT rules to interfaces. |
|
| 1.3.6.1.4.1.248.11.80.1.2.1.2.2.1 | no-access |
Entry in rule interface mapping table. |
||
| hm2DnatIfmRuleIndex | 1.3.6.1.4.1.248.11.80.1.2.1.2.2.1.1 | integer32 | no-access |
The index of the DNAT rule this mapping entry is assigned to. |
| hm2DnatIfmDirection | 1.3.6.1.4.1.248.11.80.1.2.1.2.2.1.2 | integer | no-access |
For DNAT, this can only be set to ingress, which is the interface on which a packet that is to be forwarded will arrive. Enumeration: 'both': 3, 'ingress': 1, 'egress': 2. |
| hm2DnatIfmPriority | 1.3.6.1.4.1.248.11.80.1.2.1.2.2.1.3 | unsigned32 | read-only |
The priority is the sorting key for rules in the chain to this interface. They don't need to be unique per interface, but in that case, no clear order can be assumed. Priorities are processed in ascending order (0 highest priority). |
| hm2DnatIfmInterface | 1.3.6.1.4.1.248.11.80.1.2.1.2.2.1.4 | interfaceindex | no-access |
The interface this mapping entry is assigned to. This has to be either an hm2AgentSwitchIpInterfaceIfIndex or an hm2AgentSwitchIpVlanIfIndex. Note that for physical interfaces this only works if the corresponding hm2AgentSwitchIpInterfaceRoutingMode is set to enable. |
| hm2DnatIfmRowStatus | 1.3.6.1.4.1.248.11.80.1.2.1.2.2.1.5 | rowstatus | read-only |
The RowStatus value for this entry with the usual meanings: - active(1): The interface mapping is in place - notInService(2): The interface mapping is not in place because the user said so - notReady(3): The interface mapping is not in place because the agent said so - createAndGo(4): Create this mapping with the default priority and activate it. - createAndWait(5): Create this mapping deactivated. - destroy(6): Destroy this interface mapping. |
| hm2DnatStats | 1.3.6.1.4.1.248.11.80.1.2.2 | |||
| hm2DnatGlobalStats | 1.3.6.1.4.1.248.11.80.1.2.2.1 | |||
| hm2DnatStatsTotalPck | 1.3.6.1.4.1.248.11.80.1.2.2.1.1 | counter64 | read-only |
Total number of packets processed by the DNAT firewall. |
| hm2DnatStatsTotalPckSize | 1.3.6.1.4.1.248.11.80.1.2.2.1.2 | counter64 | read-only |
Total number of bytes processed by the DNAT firewall. |
| hm2DnatStatsTotalPckDenDrop | 1.3.6.1.4.1.248.11.80.1.2.2.1.3 | counter64 | read-only |
Total number of packets dropped or denied by the DNAT firewall. |
| hm2DnatStatsTotalPckAccepted | 1.3.6.1.4.1.248.11.80.1.2.2.1.4 | counter64 | read-only |
Total number of packets accepted by the DNAT firewall. |
| hm2DnatRuleStats | 1.3.6.1.4.1.248.11.80.1.2.2.2 | |||
| hm2DnatStatsRuleTable | 1.3.6.1.4.1.248.11.80.1.2.2.2.1 | no-access |
Table of per-rule statistics of the DNAT firewall. |
|
| 1.3.6.1.4.1.248.11.80.1.2.2.2.1.1 | no-access |
Statistics table entry for DNAT. |
||
| hm2DnatStatsPckCount | 1.3.6.1.4.1.248.11.80.1.2.2.2.1.1.1 | counter64 | read-only |
Number of packets DNATed. |
| hm2DnatStatsPckSize | 1.3.6.1.4.1.248.11.80.1.2.2.2.1.1.2 | counter64 | read-only |
Number of bytes DNATed. |
| hm2DnatStatsLastApplied | 1.3.6.1.4.1.248.11.80.1.2.2.2.1.1.3 | hmtimeseconds1970 | read-only |
Time of last application of the rule in seconds since 1.1.1970. |
| hm21to1 | 1.3.6.1.4.1.248.11.80.1.4 | |||
| hm21to1RuleObjects | 1.3.6.1.4.1.248.11.80.1.4.1 | |||
| hm21to1RuleCount | 1.3.6.1.4.1.248.11.80.1.4.1.1 | integer32 | read-only |
Number of current 1:1 NAT rules. |
| hm21to1IfMappingRuleCount | 1.3.6.1.4.1.248.11.80.1.4.1.2 | integer32 | read-only |
Number of current 1:1 NAT IF mapping entries. |
| hm21to1RulePendingActions | 1.3.6.1.4.1.248.11.80.1.4.1.3 | truthvalue | read-only |
This value describes, whether the 1:1 NAT rule table was modified but not yet written to the firewall implementation (set to true). After writing all modifications to the firewall, the value switches automatically back to false. |
| hm21to1CommitPendingActions | 1.3.6.1.4.1.248.11.80.1.4.1.4 | hmactionvalue | read-write |
Setting this value to action(2) writes not yet committed changes to the firewall (1:1 NAT and Interface Mapping Table). After writing all modifications, the value switches automatically back to noop(1). |
| hm21to1Alg | 1.3.6.1.4.1.248.11.80.1.4.1.5 | bits | read-write |
Global bitmask for application level gateway of all the 1:1 NAT rules. Bits: 'ftp': 0, 'icmp': 1. |
| hm21to1PublicIntf | 1.3.6.1.4.1.248.11.80.1.4.1.6 | interfaceindexorzero | read-write |
The index of the public interface defined on the uplink port. |
| hm21to1RuleTables | 1.3.6.1.4.1.248.11.80.1.4.2 | |||
| hm21to1RuleTable | 1.3.6.1.4.1.248.11.80.1.4.2.1 | no-access |
The list of 1:1 NAT rules for this firewall. |
|
| 1.3.6.1.4.1.248.11.80.1.4.2.1.1 | no-access |
1:1 NAT rule entry. |
||
| hm21to1RuleIndex | 1.3.6.1.4.1.248.11.80.1.4.2.1.1.1 | integer32 | no-access |
Rule index of this 1:1 NAT rule. |
| hm21to1TargetAddress | 1.3.6.1.4.1.248.11.80.1.4.2.1.1.2 | displaystring | read-only |
Destination address of packets to be NATed. Can be: - Single address (a.b.c.d), - address range in CIDR notation (a.b.c.d/n) - the name of a Netobject ($NetobjectName) - 'any' for no filtering at all |
| hm21to1NewTargetAddress | 1.3.6.1.4.1.248.11.80.1.4.2.1.1.3 | displaystring | read-only |
New Destination address of packets to be NATed. Can be: - Single address (a.b.c.d), - address range in CIDR notation (a.b.c.d/n) - the name of a Netobject ($NetobjectName) - 'any' for no filtering at all |
| hm21to1RuleParams | 1.3.6.1.4.1.248.11.80.1.4.2.1.1.4 | displaystring | read-only |
Additional parameters to this rule as string. Currently only the value 'none' is valid. Reserved for future use. |
| hm21to1Log | 1.3.6.1.4.1.248.11.80.1.4.2.1.1.5 | truthvalue | read-only |
Set to true if application of this rule shall be logged. |
| hm21to1Trap | 1.3.6.1.4.1.248.11.80.1.4.2.1.1.6 | truthvalue | read-only |
Set to true if application of this rule shall send a trap. |
| hm21to1RowStatus | 1.3.6.1.4.1.248.11.80.1.4.2.1.1.7 | rowstatus | read-only |
This is a standard row status value: - active(1): The rule is active. Note that until committed, the rule will not be applied. - notInService(2): The rule is inactive because of user action. - notReady(3):The rule is inactive because it has an incomplete configuration. - createAndGo(4): Create the rule with default parameters activated. - createAndWait(5): Create the rule inactive. - destroy(6): Delete the rule. You cannot delete a rule with interface mappings to it. |
| hm21to1Description | 1.3.6.1.4.1.248.11.80.1.4.2.1.1.8 | displaystring | read-only |
User defined textual description related to this rule. |
| hm21to1IngressIntf | 1.3.6.1.4.1.248.11.80.1.4.2.1.1.9 | interfaceindexorzero | read-only |
The index of the interface on which packets going to the target address will arrive. This has to be either an hm2AgentSwitchIpInterfaceIfIndex or an hm2AgentSwitchIpVlanIfIndex. Note that for physical interfaces this only works if the corresponding hm2AgentSwitchIpInterfaceRoutingMode is set to enable. |
| hm21to1EgressIntf | 1.3.6.1.4.1.248.11.80.1.4.2.1.1.10 | interfaceindexorzero | read-only |
The index of the interface from which the new target address can be reached. This has to be either an hm2AgentSwitchIpInterfaceIfIndex or an hm2AgentSwitchIpVlanIfIndex. Note that for physical interfaces this only works if the corresponding hm2AgentSwitchIpInterfaceRoutingMode is set to enable. |
| hm21to1Priority | 1.3.6.1.4.1.248.11.80.1.4.2.1.1.11 | unsigned32 | read-only |
The priority is the sorting key for rules in the chain to this interface. They don't need to be unique per interface, but in that case, no clear order can be assumed. Priorities are processed in ascending order (0 highest priority). |
| hm21to1StorageType | 1.3.6.1.4.1.248.11.80.1.4.2.1.1.12 | storagetype | read-only |
The storage type for this row. Rows having the value 'volatile' are not saved. |
| hm21to1Stats | 1.3.6.1.4.1.248.11.80.1.4.3 | |||
| hm21to1GeneralStats | 1.3.6.1.4.1.248.11.80.1.4.3.1 | |||
| hm21to1StatsTotalPck | 1.3.6.1.4.1.248.11.80.1.4.3.1.1 | counter64 | read-only |
Total number of packets processed by 1:1 NAT. |
| hm21to1StatsTotalPckSize | 1.3.6.1.4.1.248.11.80.1.4.3.1.2 | counter64 | read-only |
Total number of bytes processed by the 1:1 NAT. |
| hm21to1StatsTotalPckDenDrop | 1.3.6.1.4.1.248.11.80.1.4.3.1.3 | counter64 | read-only |
Total number of packets dropped or denied by 1:1 NAT. |
| hm21to1StatsTotalPckAccepted | 1.3.6.1.4.1.248.11.80.1.4.3.1.4 | counter64 | read-only |
Total number of packets accepted by 1:1 NAT. |
| hm21to1StatsTables | 1.3.6.1.4.1.248.11.80.1.4.3.2 | |||
| hm21to1StatsRuleTable | 1.3.6.1.4.1.248.11.80.1.4.3.2.1 | no-access |
Table of per-rule statistics of 1:1 NAT. |
|
| 1.3.6.1.4.1.248.11.80.1.4.3.2.1.1 | no-access |
Statistics table entry for 1:1 NAT. |
||
| hm21to1StatsPckCount | 1.3.6.1.4.1.248.11.80.1.4.3.2.1.1.1 | counter64 | read-only |
Number of packets matched by this rule. |
| hm21to1StatsPckSize | 1.3.6.1.4.1.248.11.80.1.4.3.2.1.1.2 | counter64 | read-only |
Number of bytes processed by this rule. |
| hm21to1StatsLastApplied | 1.3.6.1.4.1.248.11.80.1.4.3.2.1.1.3 | hmtimeseconds1970 | read-only |
Time of last application of the rule in seconds since 1.1.1970. |
| hm2Masquerading | 1.3.6.1.4.1.248.11.80.1.5 | |||
| hm2MasqRuleObjects | 1.3.6.1.4.1.248.11.80.1.5.1 | |||
| hm2MasqRuleCount | 1.3.6.1.4.1.248.11.80.1.5.1.1 | integer32 | read-only |
Number of current masquerading rules. |
| hm2MasqIfMappingRuleCount | 1.3.6.1.4.1.248.11.80.1.5.1.2 | integer32 | read-only |
Number of current masquerading IF mapping entries. |
| hm2MasqRulePendingActions | 1.3.6.1.4.1.248.11.80.1.5.1.3 | truthvalue | read-only |
This value describes, whether the masquerading rule table was modified but not yet written to the firewall implementation (set to true). After writing all modifications to the firewall, the value switches automatically back to false. |
| hm2MasqCommitPendingActions | 1.3.6.1.4.1.248.11.80.1.5.1.4 | hmactionvalue | read-write |
Setting this value to action(2) writes not yet committed changes to the firewall (DNAT and Interface Mapping Table). After writing all modifications, the value switches automatically back to noop(1). |
| hm2MasqRuleTables | 1.3.6.1.4.1.248.11.80.1.5.2 | |||
| hm2MasqRuleTable | 1.3.6.1.4.1.248.11.80.1.5.2.1 | no-access |
The list of masquerading rules for this firewall. |
|
| 1.3.6.1.4.1.248.11.80.1.5.2.1.1 | no-access |
Masquerading rule entry. |
||
| hm2MasqRuleIndex | 1.3.6.1.4.1.248.11.80.1.5.2.1.1.1 | integer32 | no-access |
Rule index of this masquerading rule. |
| hm2MasqSourceAddress | 1.3.6.1.4.1.248.11.80.1.5.2.1.1.2 | displaystring | read-only |
The source address of the packets to reroute. Allowed formats are: - keyword 'any' - IP address ('10.0.0.1') - IP address range ('10.0.0.0/8') - a prepending '!' selects the complement set |
| hm2MasqSourcePort | 1.3.6.1.4.1.248.11.80.1.5.2.1.1.3 | displaystring | read-only |
The source port of the packet to reroute. Allowed formats are: - keyword 'any' - single ('10') - range with first and last separated by hyphen ('10-15') - comma separated list of s ('1235,25,123') - combination of the points above ('10,25-30,125,1993') The number of named ports (1 for each individual port, 2 for port ranges) must not exceed 15. |
| hm2MasqProto | 1.3.6.1.4.1.248.11.80.1.5.2.1.1.4 | integer | read-only |
The IP protocol (RFC 791) for protocol-independent filtering. The following values are currently supported: o tcp(4): transmission control protocol (RFC 793) o udp(5): user datagram protocol (RFC 768) o any(9): apply to all protocols Enumeration: 'udp': 5, 'any': 9, 'tcp': 4. |
| hm2MasqRuleParams | 1.3.6.1.4.1.248.11.80.1.5.2.1.1.5 | displaystring | read-only |
Additional parameters to this rule as string. Currently only the value 'none' is valid. Reserved for future use. |
| hm2MasqLog | 1.3.6.1.4.1.248.11.80.1.5.2.1.1.6 | truthvalue | read-only |
Set to true if application of this rule shall be logged. |
| hm2MasqTrap | 1.3.6.1.4.1.248.11.80.1.5.2.1.1.7 | truthvalue | read-only |
Set to true if application of this rule shall send a trap. |
| hm2MasqRowStatus | 1.3.6.1.4.1.248.11.80.1.5.2.1.1.8 | rowstatus | read-only |
This is a standard row status value: - active(1): The rule is active. Note that until committed, the rule will not be applied. - notInService(2): The rule is inactive because of user action. - notReady(3):The rule is inactive because it has an incomplete configuration. - createAndGo(4): Create the rule with default parameters activated. - createAndWait(5): Create the rule inactive. - destroy(6): Delete the rule. You cannot delete a rule with interface mappings to it. |
| hm2MasqDescription | 1.3.6.1.4.1.248.11.80.1.5.2.1.1.9 | displaystring | read-only |
User defined textual description related to this rule. |
| hm2MasqIpsecExempt | 1.3.6.1.4.1.248.11.80.1.5.2.1.1.10 | truthvalue | read-only |
Set to true if application of this rule should ignore IPsec traffic. |
| hm2MasqRuleIfMappingTable | 1.3.6.1.4.1.248.11.80.1.5.2.2 | no-access |
Table for mapping masquerading rules to interfaces. |
|
| 1.3.6.1.4.1.248.11.80.1.5.2.2.1 | no-access |
Entry in rule interface mapping table. |
||
| hm2MasqIfmRuleIndex | 1.3.6.1.4.1.248.11.80.1.5.2.2.1.1 | integer32 | no-access |
The index of the 1:1 NAT rule this mapping entry is assigned to. |
| hm2MasqIfmDirection | 1.3.6.1.4.1.248.11.80.1.5.2.2.1.2 | integer | no-access |
For masquerading, this can only be set to egress which is the interface packets will be masqueraded to. Enumeration: 'both': 3, 'ingress': 1, 'egress': 2. |
| hm2MasqIfmPriority | 1.3.6.1.4.1.248.11.80.1.5.2.2.1.3 | unsigned32 | read-only |
The priority is the sorting key for rules in the chain to this interface. They don't need to be unique per interface, but in that case, no clear order can be assumed. Priorities are processed in ascending order (0 highest priority). |
| hm2MasqIfmInterface | 1.3.6.1.4.1.248.11.80.1.5.2.2.1.4 | interfaceindex | no-access |
The interface this mapping entry is assigned to. This has to be either an hm2AgentSwitchIpInterfaceIfIndex or an hm2AgentSwitchIpVlanIfIndex. Note that for physical interfaces this only works if the corresponding hm2AgentSwitchIpInterfaceRoutingMode is set to enable. |
| hm2MasqIfmRowStatus | 1.3.6.1.4.1.248.11.80.1.5.2.2.1.5 | rowstatus | read-only |
The RowStatus value for this entry with the usual meanings: - active(1): The interface mapping is in place - notInService(2): The interface mapping is not in place because the user said so - notReady(3): The interface mapping is not in place because the agent said so - createAndGo(4): Create this mapping with the default priority and activate it. - createAndWait(5): Create this mapping deactivated. - destroy(6): Destroy this interface mapping. |
| hm2MasqStats | 1.3.6.1.4.1.248.11.80.1.5.3 | |||
| hm2MasqGeneralStats | 1.3.6.1.4.1.248.11.80.1.5.3.1 | |||
| hm2MasqStatsTotalPck | 1.3.6.1.4.1.248.11.80.1.5.3.1.1 | counter64 | read-only |
Total number of packets processed by Masquerading |
| hm2MasqStatsTotalPckSize | 1.3.6.1.4.1.248.11.80.1.5.3.1.2 | counter64 | read-only |
Total number of bytes processed by Masquerading |
| hm2MasqStatsTotalPckDenDrop | 1.3.6.1.4.1.248.11.80.1.5.3.1.3 | counter64 | read-only |
Total number of packets dropped or denied by Masquerading |
| hm2MasqStatsTotalPckAccepted | 1.3.6.1.4.1.248.11.80.1.5.3.1.4 | counter64 | read-only |
Total number of packets accepted by masquerading. |
| hm2MasqStatsRuleTables | 1.3.6.1.4.1.248.11.80.1.5.3.2 | |||
| hm2MasqStatsRuleTable | 1.3.6.1.4.1.248.11.80.1.5.3.2.1 | no-access |
Table of per-rule statistics of masquerading. |
|
| 1.3.6.1.4.1.248.11.80.1.5.3.2.1.1 | no-access |
Statistics table entry for masquerading. |
||
| hm2MasqStatsPckCount | 1.3.6.1.4.1.248.11.80.1.5.3.2.1.1.1 | counter64 | read-only |
Number of packets matched by this rule. |
| hm2MasqStatsPckSize | 1.3.6.1.4.1.248.11.80.1.5.3.2.1.1.2 | counter64 | read-only |
Number of bytes processed by this rule. |
| hm2MasqStatsLastApplied | 1.3.6.1.4.1.248.11.80.1.5.3.2.1.1.3 | hmtimeseconds1970 | read-only |
Time of last application of the rule in seconds since 1.1.1970 |
| hm2DoubleNat | 1.3.6.1.4.1.248.11.80.1.6 | |||
| hm2DoubleNatRuleObjects | 1.3.6.1.4.1.248.11.80.1.6.1 | |||
| hm2DoubleNatRuleCount | 1.3.6.1.4.1.248.11.80.1.6.1.1 | integer32 | read-only |
Current number of rules for double NAT. |
| hm2DoubleNatIfMappingRuleCount | 1.3.6.1.4.1.248.11.80.1.6.1.2 | integer32 | read-only |
Number of current double NAT IF mapping entries. |
| hm2DoubleNatRulePendingActions | 1.3.6.1.4.1.248.11.80.1.6.1.3 | truthvalue | read-only |
This value describes, whether the double NAT rule table was modified but not yet written to the firewall implementation (set to true). After writing all modifications to the firewall, the value switches automatically back to false. |
| hm2DoubleNatCommitPendingActions | 1.3.6.1.4.1.248.11.80.1.6.1.4 | hmactionvalue | read-write |
Setting this value to action(2) writes not yet committed changes to the firewall (double NAT and interface mapping table). After writing all modifications, the value switches automatically back to noop(1). |
| hm2DoubleNatRuleTables | 1.3.6.1.4.1.248.11.80.1.6.2 | |||
| hm2DoubleNatRuleTable | 1.3.6.1.4.1.248.11.80.1.6.2.1 | no-access |
Table of double NAT rules. |
|
| 1.3.6.1.4.1.248.11.80.1.6.2.1.1 | no-access |
Entry within double NAT rule table. |
||
| hm2DonatRuleIndex | 1.3.6.1.4.1.248.11.80.1.6.2.1.1.1 | integer32 | no-access |
Index of the rule within table. |
| hm2DonatLocalInternalIp | 1.3.6.1.4.1.248.11.80.1.6.2.1.1.2 | displaystring | read-only |
The real IP address of the first net/machine you want to double NAT. Allowed formats are: - keyword 'any' - IP address ('10.0.0.1') - IP address range ('10.0.0.0/8') |
| hm2DonatLocalExternalIp | 1.3.6.1.4.1.248.11.80.1.6.2.1.1.3 | displaystring | read-only |
The IP address where you want the first net/machine to be reachable from the second net/machine. Allowed formats are: - keyword 'any' - IP address ('10.0.0.1') - IP address range ('10.0.0.0/8') |
| hm2DonatRemoteInternalIp | 1.3.6.1.4.1.248.11.80.1.6.2.1.1.4 | displaystring | read-only |
The real IP address of the second net/machine you want to double NAT. Allowed formats are: - keyword 'any' - IP address ('10.0.0.1') - IP address range ('10.0.0.0/8') |
| hm2DonatRemoteExternalIp | 1.3.6.1.4.1.248.11.80.1.6.2.1.1.5 | displaystring | read-only |
The IP address where you want the second net/machine to be reachable from the first net/machine. Allowed formats are: - keyword 'any' - IP address ('10.0.0.1') - IP address range ('10.0.0.0/8') |
| hm2DonatRuleParams | 1.3.6.1.4.1.248.11.80.1.6.2.1.1.6 | displaystring | read-only |
Additional parameters to this rule as string. Currently only the value 'none' is valid. Reserved for future use. |
| hm2DonatLog | 1.3.6.1.4.1.248.11.80.1.6.2.1.1.7 | truthvalue | read-only |
Set to true if application of this rule shall be logged. |
| hm2DonatTrap | 1.3.6.1.4.1.248.11.80.1.6.2.1.1.8 | truthvalue | read-only |
Set to true if application of this rule shall send a trap. |
| hm2DonatRowStatus | 1.3.6.1.4.1.248.11.80.1.6.2.1.1.9 | rowstatus | read-only |
This is a standard row status value: - active(1): The rule is active. Note that until committed, the rule will not be applied. - notInService(2): The rule is inactive because of user action. - notReady(3):The rule is inactive because it has an incomplete configuration. - createAndGo(4): Create the rule with default parameters activated. - createAndWait(5): Create the rule inactive. - destroy(6): Delete the rule. You cannot delete a rule with interface mappings to it. |
| hm2DonatDescription | 1.3.6.1.4.1.248.11.80.1.6.2.1.1.10 | displaystring | read-only |
User defined textual description related to this rule. |
| hm2DonatRuleIfMappingTable | 1.3.6.1.4.1.248.11.80.1.6.2.2 | no-access |
Table for mapping double NAT rules to interfaces. |
|
| 1.3.6.1.4.1.248.11.80.1.6.2.2.1 | no-access |
Entry in rule interface mapping table. |
||
| hm2DonatIfmRuleIndex | 1.3.6.1.4.1.248.11.80.1.6.2.2.1.1 | integer32 | no-access |
The index of the double NAT rule this mapping entry is assigned to. |
| hm2DonatIfmDirection | 1.3.6.1.4.1.248.11.80.1.6.2.2.1.2 | integer | no-access |
Meanings: - ingress(1): The first net/machine can be reached through this interface - egress(2): The second net/machine can be reached through this interface - both(3): Both machines/nets can be reached through this interface Enumeration: 'both': 3, 'ingress': 1, 'egress': 2. |
| hm2DonatIfmPriority | 1.3.6.1.4.1.248.11.80.1.6.2.2.1.3 | unsigned32 | read-only |
The priority is the sorting key for rules in the chain to this interface. They don't need to be unique per interface, but in that case, no clear order can be assumed. Priorities are processed in ascending order (0 highest priority). |
| hm2DonatIfmInterface | 1.3.6.1.4.1.248.11.80.1.6.2.2.1.4 | interfaceindex | no-access |
The interface this mapping entry is assigned to. This has to be either an hm2AgentSwitchIpInterfaceIfIndex or an hm2AgentSwitchIpVlanIfIndex. Note that for physical interfaces this only works if the corresponding hm2AgentSwitchIpInterfaceRoutingMode is set to enable. |
| hm2DonatIfmRowStatus | 1.3.6.1.4.1.248.11.80.1.6.2.2.1.5 | rowstatus | read-only |
The RowStatus value for this entry with the usual meanings: - active(1): The interface mapping is in place - notInService(2): The interface mapping is not in place because the user said so - notReady(3): The interface mapping is not in place because the agent said so - createAndGo(4): Create this mapping with the default priority and activate it. - createAndWait(5): Create this mapping deactivated. - destroy(6): Destroy this interface mapping. |
| hm2DonatStats | 1.3.6.1.4.1.248.11.80.1.6.3 | |||
| hm2DonatGeneralStats | 1.3.6.1.4.1.248.11.80.1.6.3.1 | |||
| hm2DonatStatsTotalPck | 1.3.6.1.4.1.248.11.80.1.6.3.1.1 | counter64 | read-only |
Total number of packets processed by double NAT. |
| hm2DonatStatsTotalPckSize | 1.3.6.1.4.1.248.11.80.1.6.3.1.2 | counter64 | read-only |
Total number of bytes processed by double NAT. |
| hm2DonatStatsTotalPckDenDrop | 1.3.6.1.4.1.248.11.80.1.6.3.1.3 | counter64 | read-only |
Total number of packets dropped or denied by double NAT. |
| hm2DonatStatsTotalPckAcc | 1.3.6.1.4.1.248.11.80.1.6.3.1.4 | counter64 | read-only |
Total number of packets accepted by double NAT. |
| hm2DonatStatsRuleTables | 1.3.6.1.4.1.248.11.80.1.6.3.2 | |||
| hm2DonatStatsRuleTable | 1.3.6.1.4.1.248.11.80.1.6.3.2.1 | no-access |
Table of per-rule statistics of double NAT. |
|
| 1.3.6.1.4.1.248.11.80.1.6.3.2.1.1 | no-access |
Statistics table entry for double NAT. |
||
| hm2DonatStatsPckCount | 1.3.6.1.4.1.248.11.80.1.6.3.2.1.1.1 | counter64 | read-only |
Number of packets matched by this rule. |
| hm2DonatStatsPckSize | 1.3.6.1.4.1.248.11.80.1.6.3.2.1.1.2 | counter64 | read-only |
Number of bytes processed by this rule. |
| hm2DonatStatsLastApplied | 1.3.6.1.4.1.248.11.80.1.6.3.2.1.1.3 | hmtimeseconds1970 | read-only |
Time of last application of the rule in seconds since 1.1.1970. |
| hm2NatConformance | 1.3.6.1.4.1.248.11.80.2 | |||
| hm2NatCompliances | 1.3.6.1.4.1.248.11.80.2.1 | |||
| hm2NatCompliance | 1.3.6.1.4.1.248.11.80.2.1.1 |
The compliance statement for an SNMP entity which implements the Hirschmann NAT MIB. |
||
| hm2NatGroups | 1.3.6.1.4.1.248.11.80.2.2 | |||
| hm2NatGeneralGroup | 1.3.6.1.4.1.248.11.80.2.2.1 |
A collection of all Hirschmann objects provided by the Firewall module. |
||
| hm2NatNotificationsGroup | 1.3.6.1.4.1.248.11.80.2.2.2 |
A collection of all Hirschmann notifications provided by the NAT module. |
||