Annotation of src/share/snmp/OPENBSD-PF-MIB.txt, Revision 1.2
1.2 ! sthen 1: -- $OpenBSD: OPENBSD-PF-MIB.txt,v 1.1 2012/02/23 03:54:38 joel Exp $
1.1 joel 2: --
3: -- Copyright (c) 2004-2012 Joel Knight <knight.joel@gmail.com>
4: --
5: -- Permission to use, copy, modify, and distribute this document for any
6: -- purpose with or without fee is hereby granted, provided that the above
7: -- copyright notice and this permission notice appear in all copies.
8: --
9: -- THE DOCUMENT IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10: -- WITH REGARD TO THIS DOCUMENT INCLUDING ALL IMPLIED WARRANTIES OF
11: -- MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12: -- ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13: -- WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14: -- ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15: -- OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS DOCUMENT.
16:
17:
18: OPENBSD-PF-MIB DEFINITIONS ::= BEGIN
19:
20: IMPORTS
21: MODULE-IDENTITY, NOTIFICATION-TYPE, OBJECT-TYPE,
22: Counter32, Counter64, Unsigned32, Integer32, IpAddress,
23: TimeTicks, enterprises
24: FROM SNMPv2-SMI
25:
26: TruthValue
27: FROM SNMPv2-TC
28:
29: openBSD
30: FROM OPENBSD-BASE-MIB
31:
32: MODULE-COMPLIANCE, OBJECT-GROUP
33: FROM SNMPv2-CONF;
34:
35: pfMIBObjects MODULE-IDENTITY
1.2 ! sthen 36: LAST-UPDATED "201302242033Z"
1.1 joel 37: ORGANIZATION "OpenBSD"
38: CONTACT-INFO "
39: Author: Joel Knight
40: email: knight.joel@gmail.com
41: www: http://www.packetmischief.ca/openbsd-snmp-mibs/
42: "
43: DESCRIPTION "The MIB module for gathering information from
44: OpenBSD's packet filter.
45: "
1.2 ! sthen 46: REVISION "201302242033Z"
! 47: DESCRIPTION "Add separate counter for failed translations"
1.1 joel 48: REVISION "201201260000Z"
49: DESCRIPTION "Add OPENBSD-PF-MIB to OpenBSD's snmpd"
50: ::= { openBSD 1 }
51:
52:
53: -- define the sections of the MIB
54:
55: pfInfo OBJECT IDENTIFIER ::= { pfMIBObjects 1 }
56: pfCounters OBJECT IDENTIFIER ::= { pfMIBObjects 2 }
57: pfStateTable OBJECT IDENTIFIER ::= { pfMIBObjects 3 }
58: pfLogInterface OBJECT IDENTIFIER ::= { pfMIBObjects 4 }
59: pfSrcTracking OBJECT IDENTIFIER ::= { pfMIBObjects 5 }
60: pfLimits OBJECT IDENTIFIER ::= { pfMIBObjects 6 }
61: pfTimeouts OBJECT IDENTIFIER ::= { pfMIBObjects 7 }
62: pfInterfaces OBJECT IDENTIFIER ::= { pfMIBObjects 8 }
63: pfTables OBJECT IDENTIFIER ::= { pfMIBObjects 9 }
64: pfLabels OBJECT IDENTIFIER ::= { pfMIBObjects 10 }
65: pfsyncStats OBJECT IDENTIFIER ::= { pfMIBObjects 11 }
66:
67:
68: -- pfInfo
69:
70: pfRunning OBJECT-TYPE
71: SYNTAX TruthValue
72: MAX-ACCESS read-only
73: STATUS current
74: DESCRIPTION
75: "Indicates whether pf is enabled or not."
76: ::= { pfInfo 1 }
77:
78: pfRuntime OBJECT-TYPE
79: SYNTAX TimeTicks
80: UNITS "1/100th of a Second"
81: MAX-ACCESS read-only
82: STATUS current
83: DESCRIPTION
84: "Indicates how long pf has been enabled. If pf is not
85: enabled, indicates how long pf has been disabled. If pf has not
86: been explicitly enabled or disabled since the system was booted,
87: the value will be 0."
88: ::= { pfInfo 2 }
89:
90: pfDebug OBJECT-TYPE
91: SYNTAX INTEGER {
92: emerg(0),
93: alert(1),
94: crit(2),
95: err(3),
96: warning(4),
97: notice(5),
98: info(6),
99: debug(7)
100: }
101: MAX-ACCESS read-only
102: STATUS current
103: DESCRIPTION
104: "Indicates the debug level that pf is running at."
105: ::= { pfInfo 3 }
106:
107: pfHostid OBJECT-TYPE
108: SYNTAX OCTET STRING
109: MAX-ACCESS read-only
110: STATUS current
111: DESCRIPTION
112: "The (unique) host id of the machine running pf."
113: ::= { pfInfo 4 }
114:
115:
116: -- pfCounters
117:
118: pfCntMatch OBJECT-TYPE
119: SYNTAX Counter64
120: MAX-ACCESS read-only
121: STATUS current
122: DESCRIPTION
123: "The number of packets that have matched a filter rule."
124: ::= { pfCounters 1 }
125:
126: pfCntBadOffset OBJECT-TYPE
127: SYNTAX Counter64
128: MAX-ACCESS read-only
129: STATUS current
130: DESCRIPTION
131: "The number of packets that have had a bad offset value."
132: ::= { pfCounters 2 }
133:
134: pfCntFragment OBJECT-TYPE
135: SYNTAX Counter64
136: MAX-ACCESS read-only
137: STATUS current
138: DESCRIPTION
139: "The number of packet fragments."
140: ::= { pfCounters 3 }
141:
142: pfCntShort OBJECT-TYPE
143: SYNTAX Counter64
144: MAX-ACCESS read-only
145: STATUS current
146: DESCRIPTION
147: "The number of packets that were too short to contain a valid header."
148: ::= { pfCounters 4 }
149:
150: pfCntNormalize OBJECT-TYPE
151: SYNTAX Counter64
152: MAX-ACCESS read-only
153: STATUS current
154: DESCRIPTION
155: "The number of packets that were normalized using the packet scrubber."
156: ::= { pfCounters 5 }
157:
158: pfCntMemory OBJECT-TYPE
159: SYNTAX Counter64
160: MAX-ACCESS read-only
161: STATUS current
162: DESCRIPTION
163: "The number of packets that were dropped due to memory limitations."
164: ::= { pfCounters 6 }
165:
166: pfCntTimestamp OBJECT-TYPE
167: SYNTAX Counter64
168: MAX-ACCESS read-only
169: STATUS current
170: DESCRIPTION
171: "The number of packets that were dropped due to improper RFC1323 timestamp."
172: ::= { pfCounters 7 }
173:
174: pfCntCongestion OBJECT-TYPE
175: SYNTAX Counter64
176: MAX-ACCESS read-only
177: STATUS current
178: DESCRIPTION
179: "The number of packets that were dropped due to congestion on the interface."
180: ::= { pfCounters 8 }
181:
182: pfCntIpOption OBJECT-TYPE
183: SYNTAX Counter64
184: MAX-ACCESS read-only
185: STATUS current
186: DESCRIPTION
187: "The number of packets that were dropped due to having options set in
188: the IP header."
189: ::= { pfCounters 9 }
190:
191: pfCntProtoCksum OBJECT-TYPE
192: SYNTAX Counter64
193: MAX-ACCESS read-only
194: STATUS current
195: DESCRIPTION
196: "The number of packets that were dropped due to memory limitations."
197: ::= { pfCounters 10 }
198:
199: pfCntStateMismatch OBJECT-TYPE
200: SYNTAX Counter64
201: MAX-ACCESS read-only
202: STATUS current
203: DESCRIPTION
204: "The number of packets that were dropped due to a state table mismatch."
205: ::= { pfCounters 11 }
206:
207: pfCntStateInsert OBJECT-TYPE
208: SYNTAX Counter64
209: MAX-ACCESS read-only
210: STATUS current
211: DESCRIPTION
212: "The number of packets that were dropped due to errors creating a
213: state table entry."
214: ::= { pfCounters 12 }
215:
216: pfCntStateLimit OBJECT-TYPE
217: SYNTAX Counter64
218: MAX-ACCESS read-only
219: STATUS current
220: DESCRIPTION
221: "The number of packets that were dropped due to the per-rule max
222: state limit being reached."
223: ::= { pfCounters 13 }
224:
225: pfCntSrcLimit OBJECT-TYPE
226: SYNTAX Counter64
227: MAX-ACCESS read-only
228: STATUS current
229: DESCRIPTION
230: "The number of packets that were dropped due to stateful connection
231: tracking. A packet could be dropped due to resource limits (memory)
232: or due to a tracking limit being reached."
233: ::= { pfCounters 14 }
234:
235: pfCntSynproxy OBJECT-TYPE
236: SYNTAX Counter64
237: MAX-ACCESS read-only
238: STATUS current
239: DESCRIPTION
240: "The number of packets that were dropped during the TCP synproxy process."
241: ::= { pfCounters 15 }
1.2 ! sthen 242:
! 243: pfCntTranslate OBJECT-TYPE
! 244: SYNTAX Counter64
! 245: MAX-ACCESS read-only
! 246: STATUS current
! 247: DESCRIPTION
! 248: "The number of packets that were dropped because network address
! 249: translation was requested and no unused port was available."
! 250: ::= { pfCounters 16 }
1.1 joel 251:
252:
253: -- pfStateTable
254:
255: pfStateCount OBJECT-TYPE
256: SYNTAX Unsigned32
257: MAX-ACCESS read-only
258: STATUS current
259: DESCRIPTION
260: "The number of entries in the state table."
261: ::= { pfStateTable 1 }
262:
263: pfStateSearches OBJECT-TYPE
264: SYNTAX Counter64
265: MAX-ACCESS read-only
266: STATUS current
267: DESCRIPTION
268: "The number of searches against the state table."
269: ::= { pfStateTable 2 }
270:
271: pfStateInserts OBJECT-TYPE
272: SYNTAX Counter64
273: MAX-ACCESS read-only
274: STATUS current
275: DESCRIPTION
276: "The number of inserts into the state table."
277: ::= { pfStateTable 3 }
278:
279: pfStateRemovals OBJECT-TYPE
280: SYNTAX Counter64
281: MAX-ACCESS read-only
282: STATUS current
283: DESCRIPTION
284: "The number of removals from the state table."
285: ::= { pfStateTable 4 }
286:
287:
288: -- pfLogInterface
289:
290: pfLogIfName OBJECT-TYPE
291: SYNTAX OCTET STRING
292: MAX-ACCESS read-only
293: STATUS current
294: DESCRIPTION
295: "The name of the interface configured using 'set loginterface'.
296: If no interface has been configured, the object will be empty."
297: ::= { pfLogInterface 1 }
298:
299: pfLogIfIpBytesIn OBJECT-TYPE
300: SYNTAX Counter64
301: MAX-ACCESS read-only
302: STATUS current
303: DESCRIPTION
304: "The number of IPv4 bytes passed in on the loginterface."
305: ::= { pfLogInterface 2 }
306:
307: pfLogIfIpBytesOut OBJECT-TYPE
308: SYNTAX Counter64
309: MAX-ACCESS read-only
310: STATUS current
311: DESCRIPTION
312: "The number of IPv4 bytes passed out on the loginterface."
313: ::= { pfLogInterface 3 }
314:
315: pfLogIfIpPktsInPass OBJECT-TYPE
316: SYNTAX Counter64
317: MAX-ACCESS read-only
318: STATUS current
319: DESCRIPTION
320: "The number of IPv4 packets passed in on the loginterface."
321: ::= { pfLogInterface 4 }
322:
323: pfLogIfIpPktsInDrop OBJECT-TYPE
324: SYNTAX Counter64
325: MAX-ACCESS read-only
326: STATUS current
327: DESCRIPTION
328: "The number of dropped IPv4 packets coming in on the loginterface."
329: ::= { pfLogInterface 5 }
330:
331: pfLogIfIpPktsOutPass OBJECT-TYPE
332: SYNTAX Counter64
333: MAX-ACCESS read-only
334: STATUS current
335: DESCRIPTION
336: "The number of IPv4 packets passed out on the loginterface."
337: ::= { pfLogInterface 6 }
338:
339: pfLogIfIpPktsOutDrop OBJECT-TYPE
340: SYNTAX Counter64
341: MAX-ACCESS read-only
342: STATUS current
343: DESCRIPTION
344: "The number of dropped IPv4 packets going out on the loginterface."
345: ::= { pfLogInterface 7 }
346:
347: pfLogIfIp6BytesIn OBJECT-TYPE
348: SYNTAX Counter64
349: MAX-ACCESS read-only
350: STATUS current
351: DESCRIPTION
352: "The number of IPv6 bytes passed in on the loginterface."
353: ::= { pfLogInterface 8 }
354:
355: pfLogIfIp6BytesOut OBJECT-TYPE
356: SYNTAX Counter64
357: MAX-ACCESS read-only
358: STATUS current
359: DESCRIPTION
360: "The number of IPv6 bytes passed out on the loginterface."
361: ::= { pfLogInterface 9 }
362:
363: pfLogIfIp6PktsInPass OBJECT-TYPE
364: SYNTAX Counter64
365: MAX-ACCESS read-only
366: STATUS current
367: DESCRIPTION
368: "The number of IPv6 packets passed in on the loginterface."
369: ::= { pfLogInterface 10 }
370:
371: pfLogIfIp6PktsInDrop OBJECT-TYPE
372: SYNTAX Counter64
373: MAX-ACCESS read-only
374: STATUS current
375: DESCRIPTION
376: "The number of dropped IPv6 packets coming in on the loginterface."
377: ::= { pfLogInterface 11 }
378:
379: pfLogIfIp6PktsOutPass OBJECT-TYPE
380: SYNTAX Counter64
381: MAX-ACCESS read-only
382: STATUS current
383: DESCRIPTION
384: "The number of IPv6 packets passed out on the loginterface."
385: ::= { pfLogInterface 12 }
386:
387: pfLogIfIp6PktsOutDrop OBJECT-TYPE
388: SYNTAX Counter64
389: MAX-ACCESS read-only
390: STATUS current
391: DESCRIPTION
392: "The number of dropped IPv6 packets going out on the loginterface."
393: ::= { pfLogInterface 13 }
394:
395:
396: -- pfSrcTracking
397:
398: pfSrcTrackCount OBJECT-TYPE
399: SYNTAX Unsigned32
400: MAX-ACCESS read-only
401: STATUS current
402: DESCRIPTION
403: "The number of entries in the source tracking table."
404: ::= { pfSrcTracking 1 }
405:
406: pfSrcTrackSearches OBJECT-TYPE
407: SYNTAX Counter64
408: MAX-ACCESS read-only
409: STATUS current
410: DESCRIPTION
411: "The number of searches against the source tracking table."
412: ::= { pfSrcTracking 2 }
413:
414: pfSrcTrackInserts OBJECT-TYPE
415: SYNTAX Counter64
416: MAX-ACCESS read-only
417: STATUS current
418: DESCRIPTION
419: "The number of inserts into the source tracking table."
420: ::= { pfSrcTracking 3 }
421:
422: pfSrcTrackRemovals OBJECT-TYPE
423: SYNTAX Counter64
424: MAX-ACCESS read-only
425: STATUS current
426: DESCRIPTION
427: "The number of removals from the source tracking table."
428: ::= { pfSrcTracking 4 }
429:
430:
431: -- pfLimits
432:
433: pfLimitStates OBJECT-TYPE
434: SYNTAX Unsigned32
435: MAX-ACCESS read-only
436: STATUS current
437: DESCRIPTION
438: "The maximum number of entries in the memory pool used by state
439: table entries (filter rules that specify 'keep state')."
440: ::= { pfLimits 1 }
441:
442: pfLimitSourceNodes OBJECT-TYPE
443: SYNTAX Unsigned32
444: MAX-ACCESS read-only
445: STATUS current
446: DESCRIPTION
447: "The maximum number of entries in the memory pool used for tracking
448: source IP addresses (filter rules that specify 'sticky-address' or
449: 'source-track' options)."
450: ::= { pfLimits 2 }
451:
452: pfLimitFragments OBJECT-TYPE
453: SYNTAX Unsigned32
454: MAX-ACCESS read-only
455: STATUS current
456: DESCRIPTION
457: "The maximum number of entries in the memory pool used for packet
458: reassembly (scrub rules)."
459: ::= { pfLimits 3 }
460:
461: pfLimitMaxTables OBJECT-TYPE
462: SYNTAX Unsigned32
463: MAX-ACCESS read-only
464: STATUS current
465: DESCRIPTION
466: "The maximum number of tables that can be created as part of the
467: active ruleset."
468: ::= { pfLimits 4 }
469:
470: pfLimitMaxTableEntries OBJECT-TYPE
471: SYNTAX Unsigned32
472: MAX-ACCESS read-only
473: STATUS current
474: DESCRIPTION
475: "The overall maximum number of addresses that can be stored in
476: tables."
477: ::= { pfLimits 5 }
478:
479:
480: -- pfTimeouts
481:
482: pfTimeoutTcpFirst OBJECT-TYPE
483: SYNTAX Integer32
484: MAX-ACCESS read-only
485: STATUS current
486: DESCRIPTION
487: "State after receiving the first TCP packet in a new connection."
488: ::= { pfTimeouts 1 }
489:
490: pfTimeoutTcpOpening OBJECT-TYPE
491: SYNTAX Integer32
492: MAX-ACCESS read-only
493: STATUS current
494: DESCRIPTION
495: "State before the destination host ever sends a packet in response
496: to a new connection from this host."
497: ::= { pfTimeouts 2 }
498:
499: pfTimeoutTcpEstablished OBJECT-TYPE
500: SYNTAX Integer32
501: MAX-ACCESS read-only
502: STATUS current
503: DESCRIPTION
504: "State when a TCP connection is fully established."
505: ::= { pfTimeouts 3 }
506:
507: pfTimeoutTcpClosing OBJECT-TYPE
508: SYNTAX Integer32
509: MAX-ACCESS read-only
510: STATUS current
511: DESCRIPTION
512: "State after the first FIN has been sent."
513: ::= { pfTimeouts 4 }
514:
515: pfTimeoutTcpFinWait OBJECT-TYPE
516: SYNTAX Integer32
517: MAX-ACCESS read-only
518: STATUS current
519: DESCRIPTION
520: "State after both FINs are sent and the connection is closed."
521: ::= { pfTimeouts 5 }
522:
523: pfTimeoutTcpClosed OBJECT-TYPE
524: SYNTAX Integer32
525: MAX-ACCESS read-only
526: STATUS current
527: DESCRIPTION
528: "State after the first RST has been sent."
529: ::= { pfTimeouts 6 }
530:
531: pfTimeoutUdpFirst OBJECT-TYPE
532: SYNTAX Integer32
533: MAX-ACCESS read-only
534: STATUS current
535: DESCRIPTION
536: "State after receiving the first UDP packet."
537: ::= { pfTimeouts 7 }
538:
539: pfTimeoutUdpSingle OBJECT-TYPE
540: SYNTAX Integer32
541: MAX-ACCESS read-only
542: STATUS current
543: DESCRIPTION
544: "State if the source sends more than 1 packet but the destination
545: has never sent a packet back."
546: ::= { pfTimeouts 8 }
547:
548: pfTimeoutUdpMultiple OBJECT-TYPE
549: SYNTAX Integer32
550: MAX-ACCESS read-only
551: STATUS current
552: DESCRIPTION
553: "State when both hosts have sent packets."
554: ::= { pfTimeouts 9 }
555:
556: pfTimeoutIcmpFirst OBJECT-TYPE
557: SYNTAX Integer32
558: MAX-ACCESS read-only
559: STATUS current
560: DESCRIPTION
561: "State after receiving the first ICMP packet."
562: ::= { pfTimeouts 10 }
563:
564: pfTimeoutIcmpError OBJECT-TYPE
565: SYNTAX Integer32
566: MAX-ACCESS read-only
567: STATUS current
568: DESCRIPTION
569: "State when an ICMP error comes back in response to an ICMP
570: packet."
571: ::= { pfTimeouts 11 }
572:
573: pfTimeoutOtherFirst OBJECT-TYPE
574: SYNTAX Integer32
575: MAX-ACCESS read-only
576: STATUS current
577: DESCRIPTION
578: "State after receiving the first packet."
579: ::= { pfTimeouts 12 }
580:
581: pfTimeoutOtherSingle OBJECT-TYPE
582: SYNTAX Integer32
583: MAX-ACCESS read-only
584: STATUS current
585: DESCRIPTION
586: "State if the source sends more than 1 packet but the destination
587: has never sent a packet back."
588: ::= { pfTimeouts 13 }
589:
590: pfTimeoutOtherMultiple OBJECT-TYPE
591: SYNTAX Integer32
592: MAX-ACCESS read-only
593: STATUS current
594: DESCRIPTION
595: "State when both hosts have sent packets."
596: ::= { pfTimeouts 14 }
597:
598: pfTimeoutFragment OBJECT-TYPE
599: SYNTAX Integer32
600: MAX-ACCESS read-only
601: STATUS current
602: DESCRIPTION
603: "How long before an unassembled fragment is expired."
604: ::= { pfTimeouts 15 }
605:
606: pfTimeoutInterval OBJECT-TYPE
607: SYNTAX Integer32
608: MAX-ACCESS read-only
609: STATUS current
610: DESCRIPTION
611: "Interval before purging expired states and fragments."
612: ::= { pfTimeouts 16 }
613:
614: pfTimeoutAdaptiveStart OBJECT-TYPE
615: SYNTAX Integer32
616: MAX-ACCESS read-only
617: STATUS current
618: DESCRIPTION
619: "When the number of state entries exceeds this value, adaptive
620: scaling begins."
621: ::= { pfTimeouts 17 }
622:
623: pfTimeoutAdaptiveEnd OBJECT-TYPE
624: SYNTAX Integer32
625: MAX-ACCESS read-only
626: STATUS current
627: DESCRIPTION
628: "When reaching this number of state entries, all timeout values
629: become zero, effectively purging all state entries immediately."
630: ::= { pfTimeouts 18 }
631:
632: pfTimeoutSrcTrack OBJECT-TYPE
633: SYNTAX Integer32
634: MAX-ACCESS read-only
635: STATUS current
636: DESCRIPTION
637: "Time that a source tracking entry will stay around after the
638: last state expires."
639: ::= { pfTimeouts 19 }
640:
641:
642: -- pfInterfaces
643:
644: pfIfNumber OBJECT-TYPE
645: SYNTAX Integer32
646: MAX-ACCESS read-only
647: STATUS current
648: DESCRIPTION
649: "The number of network interfaces present on this system."
650: ::= { pfInterfaces 1 }
651:
652: pfIfTable OBJECT-TYPE
653: SYNTAX SEQUENCE OF PfIfEntry
654: MAX-ACCESS not-accessible
655: STATUS current
656: DESCRIPTION
657: "A list of individual interfaces. The number of entries is
658: given by the value of pfIfNumber."
659: ::= { pfInterfaces 128 }
660:
661: pfIfEntry OBJECT-TYPE
662: SYNTAX PfIfEntry
663: MAX-ACCESS not-accessible
664: STATUS current
665: DESCRIPTION
666: "An entry containing management information applicable to a
667: particular interface."
668: INDEX { pfIfIndex }
669: ::= { pfIfTable 1 }
670:
671: PfIfEntry ::=
672: SEQUENCE {
673: pfIfIndex Integer32,
674: pfIfDescr OCTET STRING,
675: pfIfType INTEGER,
676: pfIfRefs Unsigned32,
677: pfIfRules Unsigned32,
678: pfIfIn4PassPkts Counter64,
679: pfIfIn4PassBytes Counter64,
680: pfIfIn4BlockPkts Counter64,
681: pfIfIn4BlockBytes Counter64,
682: pfIfOut4PassPkts Counter64,
683: pfIfOut4PassBytes Counter64,
684: pfIfOut4BlockPkts Counter64,
685: pfIfOut4BlockBytes Counter64,
686: pfIfIn6PassPkts Counter64,
687: pfIfIn6PassBytes Counter64,
688: pfIfIn6BlockPkts Counter64,
689: pfIfIn6BlockBytes Counter64,
690: pfIfOut6PassPkts Counter64,
691: pfIfOut6PassBytes Counter64,
692: pfIfOut6BlockPkts Counter64,
693: pfIfOut6BlockBytes Counter64
694: }
695:
696: pfIfIndex OBJECT-TYPE
697: SYNTAX Integer32 (1..2147483647)
698: MAX-ACCESS read-only
699: STATUS current
700: DESCRIPTION
701: "A unique value, greater than zero, for each interface. It
702: is recommended that values are assigned contiguously
703: starting from 1. The value for each interface sub-layer
704: must remain constant at least from one re-initialization of
705: the entity's network management system to the next re-
706: initialization."
707: ::= { pfIfEntry 1 }
708:
709: pfIfDescr OBJECT-TYPE
710: SYNTAX OCTET STRING
711: MAX-ACCESS read-only
712: STATUS current
713: DESCRIPTION
714: "The name of the interface."
715: ::= { pfIfEntry 2 }
716:
717: pfIfType OBJECT-TYPE
718: SYNTAX INTEGER { group(0), instance(1), detached(2) }
719: MAX-ACCESS read-only
720: STATUS current
721: DESCRIPTION
722: "Denotes whether the interface is a group interface, an interface
723: instance, or whether it's been removed or destroyed."
724: ::= { pfIfEntry 3 }
725:
726: pfIfRefs OBJECT-TYPE
727: SYNTAX Unsigned32
728: MAX-ACCESS read-only
729: STATUS current
730: DESCRIPTION
731: "The number of state and/or source track entries which reference
732: the interface."
733: ::= { pfIfEntry 4 }
734:
735: pfIfRules OBJECT-TYPE
736: SYNTAX Unsigned32
737: MAX-ACCESS read-only
738: STATUS current
739: DESCRIPTION
740: "The number of rules which reference the interface."
741: ::= { pfIfEntry 5 }
742:
743: pfIfIn4PassPkts OBJECT-TYPE
744: SYNTAX Counter64
745: MAX-ACCESS read-only
746: STATUS current
747: DESCRIPTION
748: "The number of IPv4 packets passed in."
749: ::= { pfIfEntry 6 }
750:
751: pfIfIn4PassBytes OBJECT-TYPE
752: SYNTAX Counter64
753: MAX-ACCESS read-only
754: STATUS current
755: DESCRIPTION
756: "The number of IPv4 bytes passed in."
757: ::= { pfIfEntry 7 }
758:
759: pfIfIn4BlockPkts OBJECT-TYPE
760: SYNTAX Counter64
761: MAX-ACCESS read-only
762: STATUS current
763: DESCRIPTION
764: "The number of incoming IPv4 packets blocked."
765: ::= { pfIfEntry 8 }
766:
767: pfIfIn4BlockBytes OBJECT-TYPE
768: SYNTAX Counter64
769: MAX-ACCESS read-only
770: STATUS current
771: DESCRIPTION
772: "The number of incoming IPv4 bytes blocked."
773: ::= { pfIfEntry 9 }
774:
775: pfIfOut4PassPkts OBJECT-TYPE
776: SYNTAX Counter64
777: MAX-ACCESS read-only
778: STATUS current
779: DESCRIPTION
780: "The number of IPv4 bytes passed out."
781: ::= { pfIfEntry 10 }
782:
783: pfIfOut4PassBytes OBJECT-TYPE
784: SYNTAX Counter64
785: MAX-ACCESS read-only
786: STATUS current
787: DESCRIPTION
788: "The number of IPv4 bytes passed out."
789: ::= { pfIfEntry 11 }
790:
791: pfIfOut4BlockPkts OBJECT-TYPE
792: SYNTAX Counter64
793: MAX-ACCESS read-only
794: STATUS current
795: DESCRIPTION
796: "The number of outgoing IPv4 bytes blocked."
797: ::= { pfIfEntry 12 }
798:
799: pfIfOut4BlockBytes OBJECT-TYPE
800: SYNTAX Counter64
801: MAX-ACCESS read-only
802: STATUS current
803: DESCRIPTION
804: "The number of outgoing IPv4 bytes blocked."
805: ::= { pfIfEntry 13 }
806:
807: pfIfIn6PassPkts OBJECT-TYPE
808: SYNTAX Counter64
809: MAX-ACCESS read-only
810: STATUS current
811: DESCRIPTION
812: "The number of IPv6 packets passed in."
813: ::= { pfIfEntry 14 }
814:
815: pfIfIn6PassBytes OBJECT-TYPE
816: SYNTAX Counter64
817: MAX-ACCESS read-only
818: STATUS current
819: DESCRIPTION
820: "The number of IPv6 bytes passed in."
821: ::= { pfIfEntry 15 }
822:
823: pfIfIn6BlockPkts OBJECT-TYPE
824: SYNTAX Counter64
825: MAX-ACCESS read-only
826: STATUS current
827: DESCRIPTION
828: "The number of incoming IPv6 packets blocked."
829: ::= { pfIfEntry 16 }
830:
831: pfIfIn6BlockBytes OBJECT-TYPE
832: SYNTAX Counter64
833: MAX-ACCESS read-only
834: STATUS current
835: DESCRIPTION
836: "The number of incoming IPv6 bytes blocked."
837: ::= { pfIfEntry 17 }
838:
839: pfIfOut6PassPkts OBJECT-TYPE
840: SYNTAX Counter64
841: MAX-ACCESS read-only
842: STATUS current
843: DESCRIPTION
844: "The number of IPv6 bytes passed out."
845: ::= { pfIfEntry 18 }
846:
847: pfIfOut6PassBytes OBJECT-TYPE
848: SYNTAX Counter64
849: MAX-ACCESS read-only
850: STATUS current
851: DESCRIPTION
852: "The number of IPv6 bytes passed out."
853: ::= { pfIfEntry 19 }
854:
855: pfIfOut6BlockPkts OBJECT-TYPE
856: SYNTAX Counter64
857: MAX-ACCESS read-only
858: STATUS current
859: DESCRIPTION
860: "The number of outgoing IPv6 bytes blocked."
861: ::= { pfIfEntry 20 }
862:
863: pfIfOut6BlockBytes OBJECT-TYPE
864: SYNTAX Counter64
865: MAX-ACCESS read-only
866: STATUS current
867: DESCRIPTION
868: "The number of outgoing IPv6 bytes blocked."
869: ::= { pfIfEntry 21 }
870:
871:
872: -- pfTables
873:
874: pfTblNumber OBJECT-TYPE
875: SYNTAX Integer32
876: MAX-ACCESS read-only
877: STATUS current
878: DESCRIPTION
879: "The number of tables present on this system."
880: ::= { pfTables 1 }
881:
882: pfTblTable OBJECT-TYPE
883: SYNTAX SEQUENCE OF TblEntry
884: MAX-ACCESS not-accessible
885: STATUS current
886: DESCRIPTION
887: "A list of individual tables. The number of entries is
888: given by the value of tblNumber."
889: ::= { pfTables 128 }
890:
891: pfTblEntry OBJECT-TYPE
892: SYNTAX TblEntry
893: MAX-ACCESS not-accessible
894: STATUS current
895: DESCRIPTION
896: "An entry containing management information applicable to a
897: particular table."
898: INDEX { pfTblIndex }
899: ::= { pfTblTable 1 }
900:
901: TblEntry ::=
902: SEQUENCE {
903: pfTblIndex Integer32,
904: pfTblName OCTET STRING,
905: pfTblAddresses Integer32,
906: pfTblAnchorRefs Integer32,
907: pfTblRuleRefs Integer32,
908: pfTblEvalsMatch Counter64,
909: pfTblEvalsNoMatch Counter64,
910: pfTblInPassPkts Counter64,
911: pfTblInPassBytes Counter64,
912: pfTblInBlockPkts Counter64,
913: pfTblInBlockBytes Counter64,
914: pfTblInXPassPkts Counter64,
915: pfTblInXPassBytes Counter64,
916: pfTblOutPassPkts Counter64,
917: pfTblOutPassBytes Counter64,
918: pfTblOutBlockPkts Counter64,
919: pfTblOutBlockBytes Counter64,
920: pfTblOutXPassPkts Counter64,
921: pfTblOutXPassBytes Counter64,
922: pfTblStatsCleared TimeTicks
923: }
924:
925: pfTblIndex OBJECT-TYPE
926: SYNTAX Integer32 (1..2147483647)
927: MAX-ACCESS read-only
928: STATUS current
929: DESCRIPTION
930: "A unique value, greater than zero, for each table."
931: ::= { pfTblEntry 1 }
932:
933: pfTblName OBJECT-TYPE
934: SYNTAX OCTET STRING
935: MAX-ACCESS read-only
936: STATUS current
937: DESCRIPTION
938: "The name of the table."
939: ::= { pfTblEntry 2 }
940:
941: pfTblAddresses OBJECT-TYPE
942: SYNTAX Integer32
943: MAX-ACCESS read-only
944: STATUS current
945: DESCRIPTION
946: "The number of addresses currently stored in the table."
947: ::= { pfTblEntry 3 }
948:
949: pfTblAnchorRefs OBJECT-TYPE
950: SYNTAX Integer32
951: MAX-ACCESS read-only
952: STATUS current
953: DESCRIPTION
954: "The number of anchors which reference the table."
955: ::= { pfTblEntry 4 }
956:
957: pfTblRuleRefs OBJECT-TYPE
958: SYNTAX Integer32
959: MAX-ACCESS read-only
960: STATUS current
961: DESCRIPTION
962: "The number of rules which reference the table."
963: ::= { pfTblEntry 5 }
964:
965: pfTblEvalsMatch OBJECT-TYPE
966: SYNTAX Counter64
967: MAX-ACCESS read-only
968: STATUS current
969: DESCRIPTION
970: "The number of table evaluations that produced a match."
971: ::= { pfTblEntry 6 }
972:
973: pfTblEvalsNoMatch OBJECT-TYPE
974: SYNTAX Counter64
975: MAX-ACCESS read-only
976: STATUS current
977: DESCRIPTION
978: "The number of table evaluations that didn't match."
979: ::= { pfTblEntry 7 }
980:
981: pfTblInPassPkts OBJECT-TYPE
982: SYNTAX Counter64
983: MAX-ACCESS read-only
984: STATUS current
985: DESCRIPTION
986: "The number of packets passed in that matched the table."
987: ::= { pfTblEntry 8 }
988:
989: pfTblInPassBytes OBJECT-TYPE
990: SYNTAX Counter64
991: MAX-ACCESS read-only
992: STATUS current
993: DESCRIPTION
994: "The number of bytes passed in that matched the table."
995: ::= { pfTblEntry 9 }
996:
997: pfTblInBlockPkts OBJECT-TYPE
998: SYNTAX Counter64
999: MAX-ACCESS read-only
1000: STATUS current
1001: DESCRIPTION
1002: "The number of incoming packets blocked that matched the table."
1003: ::= { pfTblEntry 10 }
1004:
1005: pfTblInBlockBytes OBJECT-TYPE
1006: SYNTAX Counter64
1007: MAX-ACCESS read-only
1008: STATUS current
1009: DESCRIPTION
1010: "The number incoming bytes blocked that matched the table."
1011: ::= { pfTblEntry 11 }
1012:
1013: pfTblInXPassPkts OBJECT-TYPE
1014: SYNTAX Counter64
1015: MAX-ACCESS read-only
1016: STATUS current
1017: DESCRIPTION
1018: "The number of packets statefully passed in where the state
1019: entry refers to the table, but the table no longer contains
1020: the address in question."
1021: ::= { pfTblEntry 12 }
1022:
1023: pfTblInXPassBytes OBJECT-TYPE
1024: SYNTAX Counter64
1025: MAX-ACCESS read-only
1026: STATUS current
1027: DESCRIPTION
1028: "The number of bytes statefully passed in where the state
1029: entry refers to the table, but the table no longer contains
1030: the address in question."
1031: ::= { pfTblEntry 13 }
1032:
1033: pfTblOutPassPkts OBJECT-TYPE
1034: SYNTAX Counter64
1035: MAX-ACCESS read-only
1036: STATUS current
1037: DESCRIPTION
1038: "The number of packets passed out that matched the table."
1039: ::= { pfTblEntry 14 }
1040:
1041: pfTblOutPassBytes OBJECT-TYPE
1042: SYNTAX Counter64
1043: MAX-ACCESS read-only
1044: STATUS current
1045: DESCRIPTION
1046: "The number of bytes passed out that matched the table."
1047: ::= { pfTblEntry 15 }
1048:
1049: pfTblOutBlockPkts OBJECT-TYPE
1050: SYNTAX Counter64
1051: MAX-ACCESS read-only
1052: STATUS current
1053: DESCRIPTION
1054: "The number of outgoing packets blocked that matched the table."
1055: ::= { pfTblEntry 16 }
1056:
1057: pfTblOutBlockBytes OBJECT-TYPE
1058: SYNTAX Counter64
1059: MAX-ACCESS read-only
1060: STATUS current
1061: DESCRIPTION
1062: "The number outgoing bytes blocked that matched the table."
1063: ::= { pfTblEntry 17 }
1064:
1065: pfTblOutXPassPkts OBJECT-TYPE
1066: SYNTAX Counter64
1067: MAX-ACCESS read-only
1068: STATUS current
1069: DESCRIPTION
1070: "The number of packets statefully passed out where the state
1071: entry refers to the table, but the table no longer contains
1072: the address in question."
1073: ::= { pfTblEntry 18 }
1074:
1075: pfTblOutXPassBytes OBJECT-TYPE
1076: SYNTAX Counter64
1077: MAX-ACCESS read-only
1078: STATUS current
1079: DESCRIPTION
1080: "The number of bytes statefully passed out where the state
1081: entry refers to the table, but the table no longer contains
1082: the address in question."
1083: ::= { pfTblEntry 19 }
1084:
1085: pfTblStatsCleared OBJECT-TYPE
1086: SYNTAX TimeTicks
1087: UNITS "1/100th of a Second"
1088: MAX-ACCESS read-only
1089: STATUS current
1090: DESCRIPTION
1091: "The number of seconds that have passed since the statistics
1092: for this pf table were zeroed."
1093: ::= { pfTblEntry 20 }
1094:
1095: pfTblAddrTable OBJECT-TYPE
1096: SYNTAX SEQUENCE OF TblAddrEntry
1097: MAX-ACCESS not-accessible
1098: STATUS current
1099: DESCRIPTION
1100: "A table containing the addresses/CIDR network blocks from
1101: every table on the system."
1102: ::= { pfTables 129 }
1103:
1104: pfTblAddrEntry OBJECT-TYPE
1105: SYNTAX TblAddrEntry
1106: MAX-ACCESS not-accessible
1107: STATUS current
1108: DESCRIPTION
1109: "An entry containing management information applicable to a
1110: particular table."
1111: INDEX { pfTblAddrTblIndex, pfTblAddrNet, pfTblAddrMask }
1112: ::= { pfTblAddrTable 1 }
1113:
1114: TblAddrEntry ::=
1115: SEQUENCE {
1116: pfTblAddrTblIndex Integer32,
1117: pfTblAddrNet IpAddress,
1118: pfTblAddrMask Integer32,
1119: pfTblAddrCleared TimeTicks,
1120: pfTblAddrInBlockPkts Counter64,
1121: pfTblAddrInBlockBytes Counter64,
1122: pfTblAddrInPassPkts Counter64,
1123: pfTblAddrInPassBytes Counter64,
1124: pfTblAddrOutBlockPkts Counter64,
1125: pfTblAddrOutBlockBytes Counter64,
1126: pfTblAddrOutPassPkts Counter64,
1127: pfTblAddrOutPassBytes Counter64
1128: }
1129:
1130: pfTblAddrTblIndex OBJECT-TYPE
1131: SYNTAX Integer32 (1..2147483647)
1132: MAX-ACCESS read-only
1133: STATUS current
1134: DESCRIPTION
1135: "The index value which uniquely identifies the table which
1136: contains this pfTblAddrNet/pfTblAddrMask pair."
1137: ::= { pfTblAddrEntry 1 }
1138:
1139: pfTblAddrNet OBJECT-TYPE
1140: SYNTAX IpAddress
1141: MAX-ACCESS read-only
1142: STATUS current
1143: DESCRIPTION
1144: "The IP address portion of the CIDR network for this
1145: particular table entry."
1146: ::= { pfTblAddrEntry 2 }
1147:
1148: pfTblAddrMask OBJECT-TYPE
1149: SYNTAX Integer32 (0..32)
1150: MAX-ACCESS read-only
1151: STATUS current
1152: DESCRIPTION
1153: "The CIDR bitmask for this particular table entry."
1154: ::= { pfTblAddrEntry 3 }
1155:
1156: pfTblAddrCleared OBJECT-TYPE
1157: SYNTAX TimeTicks
1158: UNITS "1/100th of a Second"
1159: MAX-ACCESS read-only
1160: STATUS current
1161: DESCRIPTION
1162: "The time that's passed since the statistics where last cleared, or
1163: since the pfTblAddrNet/pfTblAddrMask pair was loaded into the table,
1164: whichever is sooner."
1165: ::= { pfTblAddrEntry 4 }
1166:
1167: pfTblAddrInBlockPkts OBJECT-TYPE
1168: SYNTAX Counter64
1169: MAX-ACCESS read-only
1170: STATUS current
1171: DESCRIPTION
1172: "The number of inbound packets blocked as a result of matching
1173: this table entry."
1174: ::= { pfTblAddrEntry 5 }
1175:
1176: pfTblAddrInBlockBytes OBJECT-TYPE
1177: SYNTAX Counter64
1178: MAX-ACCESS read-only
1179: STATUS current
1180: DESCRIPTION
1181: "The number of inbound bytes blocked as a result of matching
1182: this table entry."
1183: ::= { pfTblAddrEntry 6 }
1184:
1185: pfTblAddrInPassPkts OBJECT-TYPE
1186: SYNTAX Counter64
1187: MAX-ACCESS read-only
1188: STATUS current
1189: DESCRIPTION
1190: "The number of inbound packets passed as a result of matching
1191: this table entry."
1192: ::= { pfTblAddrEntry 7 }
1193:
1194: pfTblAddrInPassBytes OBJECT-TYPE
1195: SYNTAX Counter64
1196: MAX-ACCESS read-only
1197: STATUS current
1198: DESCRIPTION
1199: "The number of inbound bytes passed as a result of matching
1200: this table entry."
1201: ::= { pfTblAddrEntry 8 }
1202:
1203: pfTblAddrOutBlockPkts OBJECT-TYPE
1204: SYNTAX Counter64
1205: MAX-ACCESS read-only
1206: STATUS current
1207: DESCRIPTION
1208: "The number of outbound packets blocked as a result of matching
1209: this table entry."
1210: ::= { pfTblAddrEntry 9 }
1211:
1212: pfTblAddrOutBlockBytes OBJECT-TYPE
1213: SYNTAX Counter64
1214: MAX-ACCESS read-only
1215: STATUS current
1216: DESCRIPTION
1217: "The number of outbound bytes blocked as a result of matching
1218: this table entry."
1219: ::= { pfTblAddrEntry 10 }
1220:
1221: pfTblAddrOutPassPkts OBJECT-TYPE
1222: SYNTAX Counter64
1223: MAX-ACCESS read-only
1224: STATUS current
1225: DESCRIPTION
1226: "The number of outbound packets passed as a result of matchin
1227: this table entry."
1228: ::= { pfTblAddrEntry 11 }
1229:
1230: pfTblAddrOutPassBytes OBJECT-TYPE
1231: SYNTAX Counter64
1232: MAX-ACCESS read-only
1233: STATUS current
1234: DESCRIPTION
1235: "The number of outbound bytes passed as a result of matchg
1236: this table entry."
1237: ::= { pfTblAddrEntry 12 }
1238:
1239:
1240: -- pfLabels
1241:
1242: pfLabelNumber OBJECT-TYPE
1243: SYNTAX Integer32
1244: MAX-ACCESS read-only
1245: STATUS current
1246: DESCRIPTION
1247: "The number of labels in the active pf ruleset."
1248: ::= { pfLabels 1 }
1249:
1250: pfLabelTable OBJECT-TYPE
1251: SYNTAX SEQUENCE OF PfLabelEntry
1252: MAX-ACCESS not-accessible
1253: STATUS current
1254: DESCRIPTION
1255: "A list of individual labels. The number of entries is
1256: given by the value of pfLabelNumber."
1257: ::= { pfLabels 128 }
1258:
1259: pfLabelEntry OBJECT-TYPE
1260: SYNTAX PfLabelEntry
1261: MAX-ACCESS not-accessible
1262: STATUS current
1263: DESCRIPTION
1264: "An entry containing management information applicable to a
1265: particular label."
1266: INDEX { pfLabelIndex }
1267: ::= { pfLabelTable 1 }
1268:
1269: PfLabelEntry ::=
1270: SEQUENCE {
1271: pfLabelIndex Integer32,
1272: pfLabelName OCTET STRING,
1273: pfLabelEvals Counter64,
1274: pfLabelPkts Counter64,
1275: pfLabelBytes Counter64,
1276: pfLabelInPkts Counter64,
1277: pfLabelInBytes Counter64,
1278: pfLabelOutPkts Counter64,
1279: pfLabelOutBytes Counter64,
1280: pfLabelTotalStates Counter32
1281: }
1282:
1283: pfLabelIndex OBJECT-TYPE
1284: SYNTAX Integer32 (1..2147483647)
1285: MAX-ACCESS read-only
1286: STATUS current
1287: DESCRIPTION
1288: "A unique value, greater than zero, for each label."
1289: ::= { pfLabelEntry 1 }
1290:
1291: pfLabelName OBJECT-TYPE
1292: SYNTAX OCTET STRING
1293: MAX-ACCESS read-only
1294: STATUS current
1295: DESCRIPTION
1296: "The name of the label."
1297: ::= { pfLabelEntry 2 }
1298:
1299: pfLabelEvals OBJECT-TYPE
1300: SYNTAX Counter64
1301: MAX-ACCESS read-only
1302: STATUS current
1303: DESCRIPTION
1304: "The number of rule evaluations."
1305: ::= { pfLabelEntry 3 }
1306:
1307: pfLabelPkts OBJECT-TYPE
1308: SYNTAX Counter64
1309: MAX-ACCESS read-only
1310: STATUS current
1311: DESCRIPTION
1312: "The total number of packets matched by the rule."
1313: ::= { pfLabelEntry 4 }
1314:
1315: pfLabelBytes OBJECT-TYPE
1316: SYNTAX Counter64
1317: MAX-ACCESS read-only
1318: STATUS current
1319: DESCRIPTION
1320: "The total number of bytes matched by the rule."
1321: ::= { pfLabelEntry 5 }
1322:
1323: pfLabelInPkts OBJECT-TYPE
1324: SYNTAX Counter64
1325: MAX-ACCESS read-only
1326: STATUS current
1327: DESCRIPTION
1328: "The number of incoming packets matched by the rule."
1329: ::= { pfLabelEntry 6 }
1330:
1331: pfLabelInBytes OBJECT-TYPE
1332: SYNTAX Counter64
1333: MAX-ACCESS read-only
1334: STATUS current
1335: DESCRIPTION
1336: "The number of incoming bytes matched by the rule."
1337: ::= { pfLabelEntry 7 }
1338:
1339: pfLabelOutPkts OBJECT-TYPE
1340: SYNTAX Counter64
1341: MAX-ACCESS read-only
1342: STATUS current
1343: DESCRIPTION
1344: "The number of outgoing packets matched by the rule."
1345: ::= { pfLabelEntry 8 }
1346:
1347: pfLabelOutBytes OBJECT-TYPE
1348: SYNTAX Counter64
1349: MAX-ACCESS read-only
1350: STATUS current
1351: DESCRIPTION
1352: "The number of outgoing bytes matched by the rule."
1353: ::= { pfLabelEntry 9 }
1354:
1355: pfLabelTotalStates OBJECT-TYPE
1356: SYNTAX Counter32
1357: MAX-ACCESS read-only
1358: STATUS current
1359: DESCRIPTION
1360: "The total number of state table entries created by this rule
1361: since the ruleset was loaded."
1362: ::= { pfLabelEntry 10 }
1363:
1364:
1365: -- pfsyncStats
1366:
1367: pfsyncIpPktsRecv OBJECT-TYPE
1368: SYNTAX Counter64
1369: MAX-ACCESS read-only
1370: STATUS current
1371: DESCRIPTION
1372: "Number of IPv4 pfsync packets received on all interfaces."
1373: ::= { pfsyncStats 1 }
1374:
1375: pfsyncIp6PktsRecv OBJECT-TYPE
1376: SYNTAX Counter64
1377: MAX-ACCESS read-only
1378: STATUS current
1379: DESCRIPTION
1380: "Number of IPv6 pfsync packets received on all interfaces."
1381: ::= { pfsyncStats 2 }
1382:
1383: pfsyncPktDiscardsForBadInterface OBJECT-TYPE
1384: SYNTAX Counter64
1385: MAX-ACCESS read-only
1386: STATUS current
1387: DESCRIPTION
1388: "Number of pfsync packets discarded because it was received
1389: on an interface that is not running pfsync."
1390: ::= { pfsyncStats 3 }
1391:
1392: pfsyncPktDiscardsForBadTtl OBJECT-TYPE
1393: SYNTAX Counter64
1394: MAX-ACCESS read-only
1395: STATUS current
1396: DESCRIPTION
1397: "Number of pfsync packets discarded due to having a TTL less
1398: than 255."
1399: ::= { pfsyncStats 4 }
1400:
1401: pfsyncPktShorterThanHeader OBJECT-TYPE
1402: SYNTAX Counter64
1403: MAX-ACCESS read-only
1404: STATUS current
1405: DESCRIPTION
1406: "Number of pfsync packets received that had a length shorter
1407: than the pfsync packet header."
1408: ::= { pfsyncStats 5 }
1409:
1410: pfsyncPktDiscardsForBadVersion OBJECT-TYPE
1411: SYNTAX Counter64
1412: MAX-ACCESS read-only
1413: STATUS current
1414: DESCRIPTION
1415: "Number of pfsync packets discarded due to incorrect protocol
1416: version."
1417: ::= { pfsyncStats 6 }
1418:
1419: pfsyncPktDiscardsForBadAction OBJECT-TYPE
1420: SYNTAX Counter64
1421: MAX-ACCESS read-only
1422: STATUS current
1423: DESCRIPTION
1424: "Number of pfsync packets discarded due to an invalid pfsync
1425: action in the header."
1426: ::= { pfsyncStats 7 }
1427:
1428: pfsyncPktDiscardsForBadLength OBJECT-TYPE
1429: SYNTAX Counter64
1430: MAX-ACCESS read-only
1431: STATUS current
1432: DESCRIPTION
1433: "Number of pfsync packets discarded due to incorrect size."
1434: ::= { pfsyncStats 8 }
1435:
1436: pfsyncPktDiscardsForBadAuth OBJECT-TYPE
1437: SYNTAX Counter64
1438: MAX-ACCESS read-only
1439: STATUS current
1440: DESCRIPTION
1441: "Number of pfsync packets discarded due to authentication failure."
1442: ::= { pfsyncStats 9 }
1443:
1444: pfsyncPktDiscardsForStaleState OBJECT-TYPE
1445: SYNTAX Counter64
1446: MAX-ACCESS read-only
1447: STATUS current
1448: DESCRIPTION
1449: "Number of pfsync packets discarded because they tried to update
1450: a stale state entry."
1451: ::= { pfsyncStats 10 }
1452:
1453: pfsyncPktDiscardsForBadValues OBJECT-TYPE
1454: SYNTAX Counter64
1455: MAX-ACCESS read-only
1456: STATUS current
1457: DESCRIPTION
1458: "Number of pfsync packets discarded due to containing bad values."
1459: ::= { pfsyncStats 11 }
1460:
1461: pfsyncPktDiscardsForBadState OBJECT-TYPE
1462: SYNTAX Counter64
1463: MAX-ACCESS read-only
1464: STATUS current
1465: DESCRIPTION
1466: "Number of pfsync packets discarded due to state insert/lookup
1467: failure."
1468: ::= { pfsyncStats 12 }
1469:
1470: pfsyncIpPktsSent OBJECT-TYPE
1471: SYNTAX Counter64
1472: MAX-ACCESS read-only
1473: STATUS current
1474: DESCRIPTION
1475: "Number of IPv4 pfsync packets sent on all interfaces."
1476: ::= { pfsyncStats 13 }
1477:
1478: pfsyncIp6PktsSent OBJECT-TYPE
1479: SYNTAX Counter64
1480: MAX-ACCESS read-only
1481: STATUS current
1482: DESCRIPTION
1483: "Number of IPv6 pfsync packets sent on all interfaces."
1484: ::= { pfsyncStats 14 }
1485:
1486: pfsyncNoMemory OBJECT-TYPE
1487: SYNTAX Counter64
1488: MAX-ACCESS read-only
1489: STATUS current
1490: DESCRIPTION
1491: "Number of pfsync packets which could not be sent due to
1492: insufficient memory."
1493: ::= { pfsyncStats 15 }
1494:
1495: pfsyncOutputErrors OBJECT-TYPE
1496: SYNTAX Counter64
1497: MAX-ACCESS read-only
1498: STATUS current
1499: DESCRIPTION
1500: "Number of pfsync packets which could not be sent."
1501: ::= { pfsyncStats 16 }
1502:
1503: END
1504:
![[BACK]](/icons/back.gif){kind=icon}
Return to OPENBSD-PF-MIB.txt CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / share / snmp