"Fossies" - the Fresh Open Source Software Archive

Member "netxms-3.1.300/contrib/mibs/A3COM-HUAWEI-SSH-MIB.txt" (7 Jan 2020, 14135 Bytes) of package /linux/misc/netxms-3.1.300.tar.gz:


As a special service "Fossies" has tried to format the requested text file into HTML format (style: standard) with prefixed line numbers. Alternatively you can here view or download the uninterpreted source code file. For more information about "A3COM-HUAWEI-SSH-MIB.txt" see the Fossies "Dox" file reference documentation.

    1 -- =========================================================================
    2 -- Copyright (C) 2007 by  H3C TECHNOLOGIES. All rights reserved.
    3 --
    4 -- Description: Secure Shell(SSH) MIB
    5 -- Reference: draft-ylonen-ssh-protocol-00.txt
    6 -- Version: V1.0
    7 -- History:
    8 --  V1.0 2007-11-19 created by ZhangJun 03132
    9 --       Initial version.
   10 -- =========================================================================
   11 A3COM-HUAWEI-SSH-MIB DEFINITIONS ::= BEGIN
   12 
   13 IMPORTS
   14         h3cCommon
   15     FROM A3COM-HUAWEI-OID-MIB
   16         Integer32, OBJECT-TYPE, MODULE-IDENTITY, NOTIFICATION-TYPE
   17     FROM SNMPv2-SMI
   18         InetAddressType, InetAddress
   19     FROM INET-ADDRESS-MIB
   20         DisplayString, RowStatus
   21     FROM SNMPv2-TC;
   22 
   23 h3cSSH MODULE-IDENTITY
   24     LAST-UPDATED "200711190000Z"
   25     ORGANIZATION
   26         "Hangzhou H3C Tech. Co., Ltd."
   27     CONTACT-INFO
   28         "Platform Team Hangzhou H3C Tech. Co., Ltd.
   29         Hai-Dian District Beijing P.R. China
   30         http://www.h3c.com
   31         Zip:100085"
   32     DESCRIPTION
   33         "The initial version."
   34     REVISION "200711190000Z"
   35     DESCRIPTION
   36         "This MIB is used to configure SSH server."
   37     ::= { h3cCommon 22 }
   38 
   39 --
   40 -- Node definitions
   41 --
   42 -- Scalar MIB objects are defined in this section.
   43 h3cSSHServerMIB OBJECT IDENTIFIER ::= { h3cSSH 1 }
   44 
   45 h3cSSHServerMIBObjects OBJECT IDENTIFIER ::= { h3cSSHServerMIB 1 }
   46 
   47 -- Scalar MIB objects, which are considered as global variables
   48 -- to SSH server, are defined in this section.
   49 h3cSSHServerGlobalConfig OBJECT IDENTIFIER ::= { h3cSSHServerMIBObjects 1 }
   50 
   51 h3cSSHServerVersion OBJECT-TYPE
   52     SYNTAX      DisplayString
   53     MAX-ACCESS  read-only
   54     STATUS      current
   55     DESCRIPTION
   56         "The protocol version of the SSH server."
   57     ::= { h3cSSHServerGlobalConfig 1 }
   58 
   59 h3cSSHServerCompatibleSSH1x OBJECT-TYPE
   60     SYNTAX      INTEGER
   61         {
   62             enableCompatibleSSH1x(1),
   63             disableCompatibleSSH1x(2)
   64         }
   65     MAX-ACCESS  read-write
   66     STATUS      current
   67     DESCRIPTION
   68         "Supporting compatibility with SSH versions 1.x.  It is
   69         known that there are still devices using the previous
   70         versions.  During the transition period, it is important to
   71         be able to work in a way that is compatible with the
   72         installed SSH clients and servers that use the older version
   73         of the protocol."
   74     ::= { h3cSSHServerGlobalConfig 2 }
   75 
   76 h3cSSHServerRekeyInterval OBJECT-TYPE
   77     SYNTAX      Integer32
   78     MAX-ACCESS  read-write
   79     STATUS      current
   80     DESCRIPTION
   81         "The time interval of regenerating SSH server key.  The unit
   82         is hour."
   83     ::= { h3cSSHServerGlobalConfig 3 }
   84 
   85 h3cSSHServerAuthRetries OBJECT-TYPE
   86     SYNTAX      Integer32
   87     MAX-ACCESS  read-write
   88     STATUS      current
   89     DESCRIPTION
   90         "The limit times of a specified user can retry."
   91     ::= { h3cSSHServerGlobalConfig 4 }
   92 
   93 h3cSSHServerAuthTimeout OBJECT-TYPE
   94     SYNTAX      Integer32
   95     MAX-ACCESS  read-write
   96     STATUS      current
   97     DESCRIPTION
   98         "The SSH server has a timeout for authentication and
   99         disconnect if the authentication has not been accepted
  100         within the timeout period.  The unit is second."
  101     ::= { h3cSSHServerGlobalConfig 5 }
  102 
  103 h3cSFTPServerIdleTimeout OBJECT-TYPE
  104     SYNTAX      Integer32
  105     MAX-ACCESS  read-write
  106     STATUS      current
  107     DESCRIPTION
  108         "The SFTP server has a timeout for idle connection if a user
  109         has no activities within the timeout period.  The unit is
  110         minute."
  111     ::= { h3cSSHServerGlobalConfig 6 }
  112 
  113 h3cSSHServerEnable OBJECT-TYPE
  114     SYNTAX      INTEGER
  115         {
  116             enableSSHServer(1),
  117             disableSSHServer(2)
  118         }
  119     MAX-ACCESS  read-write
  120     STATUS      current
  121     DESCRIPTION
  122         "Enable SSH server function."
  123     ::= { h3cSSHServerGlobalConfig 7 }
  124 
  125 h3cSFTPServerEnable OBJECT-TYPE
  126     SYNTAX      INTEGER
  127         {
  128             enableSFTPService(1),
  129             disableSFTPService(2)
  130         }
  131     MAX-ACCESS  read-write
  132     STATUS      current
  133     DESCRIPTION
  134         "Enable SFTP server function."
  135     ::= { h3cSSHServerGlobalConfig 8 }
  136 
  137 -- SSH users are defined in this section.
  138 h3cSSHUserConfig OBJECT IDENTIFIER ::= { h3cSSHServerMIBObjects 2 }
  139 
  140 -- Define a group which consists of all objects used for users.
  141 h3cSSHUserConfigTable OBJECT-TYPE
  142     SYNTAX      SEQUENCE OF H3cSSHUserConfigEntry
  143     MAX-ACCESS  not-accessible
  144     STATUS      current
  145     DESCRIPTION
  146         "A table for managing SSH users."
  147     ::= { h3cSSHUserConfig 1 }
  148 
  149 h3cSSHUserConfigEntry OBJECT-TYPE
  150     SYNTAX      H3cSSHUserConfigEntry
  151     MAX-ACCESS  not-accessible
  152     STATUS      current
  153     DESCRIPTION
  154         "SSH users configuration entry."
  155     INDEX
  156         {
  157             h3cSSHUserName
  158         }
  159     ::= { h3cSSHUserConfigTable 1 }
  160 
  161 H3cSSHUserConfigEntry ::= SEQUENCE
  162     {
  163         h3cSSHUserName             DisplayString,
  164         h3cSSHUserServiceType      INTEGER,
  165         h3cSSHUserAuthType         INTEGER,
  166         h3cSSHUserPublicKeyName    DisplayString,
  167         h3cSSHUserWorkDirectory    DisplayString,
  168         h3cSSHUserRowStatus        RowStatus
  169     }
  170 
  171 h3cSSHUserName OBJECT-TYPE
  172     SYNTAX      DisplayString
  173     MAX-ACCESS  not-accessible
  174     STATUS      current
  175     DESCRIPTION
  176         "The name of SSH user."
  177     ::= { h3cSSHUserConfigEntry 1 }
  178 
  179 h3cSSHUserServiceType OBJECT-TYPE
  180     SYNTAX      INTEGER
  181         {
  182             invalid(1),
  183             all(2),
  184             stelnet(3),
  185             sftp(4)
  186         }
  187     MAX-ACCESS  read-create
  188     STATUS      current
  189     DESCRIPTION
  190         "The service type of SSH user uses."
  191     DEFVAL      { invalid }
  192     ::= { h3cSSHUserConfigEntry 2 }
  193 
  194 h3cSSHUserAuthType OBJECT-TYPE
  195     SYNTAX      INTEGER
  196         {
  197             invalid(1),
  198             password(2),
  199             publicKey(3),
  200             any(4),
  201             publicKeyPassword(5)
  202         }
  203     MAX-ACCESS  read-create
  204     STATUS      current
  205     DESCRIPTION
  206         "The authentication type of SSH user chooses."
  207     DEFVAL      { invalid }
  208     ::= { h3cSSHUserConfigEntry 3 }
  209 
  210 h3cSSHUserPublicKeyName OBJECT-TYPE
  211     SYNTAX      DisplayString
  212     MAX-ACCESS  read-create
  213     STATUS      current
  214     DESCRIPTION
  215         "The public key which is used for authentication."
  216     DEFVAL      { "" }
  217     ::= { h3cSSHUserConfigEntry 4 }
  218 
  219 h3cSSHUserWorkDirectory OBJECT-TYPE
  220     SYNTAX      DisplayString
  221     MAX-ACCESS  read-create
  222     STATUS      current
  223     DESCRIPTION
  224         "The SFTP user's work directory associates with an existing user."
  225     DEFVAL      { "" }
  226     ::= { h3cSSHUserConfigEntry 5 }
  227 
  228 
  229 h3cSSHUserRowStatus OBJECT-TYPE
  230     SYNTAX      RowStatus
  231     MAX-ACCESS  read-create
  232     STATUS      current
  233     DESCRIPTION
  234         "The row status variable, used in accordance to installation
  235         and removal conventions for conceptual rows.
  236 
  237         When the `h3cSSHUserRowStatus' is set to active(1), no objects
  238         in this table can be modified.
  239 
  240         When 'h3cSSHUserRowStatus' is set to notInService(2), every object
  241         except the 'h3cSSHUserName' object in this table can be modified.
  242 
  243         To create a row in this table, a manager must set this object
  244         to createAndGo(4).  Until instances of all corresponding columns
  245         are appropriately configured, the value of the corresponding
  246         instance of the h3cSSHUserRowStatus column is 'notReady'."
  247     ::= { h3cSSHUserConfigEntry 6 }
  248 
  249 -- Define a group which consists of all objects used for sessions.
  250 h3cSSHSessionInfoTable OBJECT-TYPE
  251     SYNTAX      SEQUENCE OF H3cSSHSessionInfoEntry
  252     MAX-ACCESS  not-accessible
  253     STATUS      current
  254     DESCRIPTION
  255         "A table for SSH sessions."
  256     ::= { h3cSSHServerMIBObjects 3 }
  257 
  258 h3cSSHSessionInfoEntry OBJECT-TYPE
  259     SYNTAX      H3cSSHSessionInfoEntry
  260     MAX-ACCESS  not-accessible
  261     STATUS      current
  262     DESCRIPTION
  263         "The SSH session information entry."
  264     INDEX
  265         {
  266             h3cSSHSessionID
  267         }
  268     ::= { h3cSSHSessionInfoTable 1 }
  269 
  270 H3cSSHSessionInfoEntry ::= SEQUENCE
  271     {
  272         h3cSSHSessionID               Integer32,
  273         h3cSSHSessionUserName         DisplayString,
  274         h3cSSHSessionUserIpAddrType   InetAddressType,
  275         h3cSSHSessionUserIpAddr       InetAddress,
  276         h3cSSHSessionClientVersion    DisplayString,
  277         h3cSSHSessionServiceType      INTEGER,
  278         h3cSSHSessionEncry            INTEGER,
  279         h3cSSHSessionState            INTEGER
  280     }
  281 
  282 h3cSSHSessionID OBJECT-TYPE
  283     SYNTAX      Integer32
  284     MAX-ACCESS  not-accessible
  285     STATUS      current
  286     DESCRIPTION
  287         "The identifier of SSH session."
  288     ::= { h3cSSHSessionInfoEntry 1 }
  289 
  290 h3cSSHSessionUserName OBJECT-TYPE
  291     SYNTAX      DisplayString
  292     MAX-ACCESS  read-only
  293     STATUS      current
  294     DESCRIPTION
  295         "The user name of SSH session."
  296     ::= { h3cSSHSessionInfoEntry 2 }
  297 
  298 h3cSSHSessionUserIpAddrType OBJECT-TYPE
  299     SYNTAX      InetAddressType
  300     MAX-ACCESS  read-only
  301     STATUS      current
  302     DESCRIPTION
  303         "The user IP address type of SSH session."
  304     ::= { h3cSSHSessionInfoEntry 3 }
  305 
  306 h3cSSHSessionUserIpAddr OBJECT-TYPE
  307     SYNTAX      InetAddress
  308     MAX-ACCESS  read-only
  309     STATUS      current
  310     DESCRIPTION
  311         "The user IP address of SSH session."
  312     ::= { h3cSSHSessionInfoEntry 4 }
  313 
  314 h3cSSHSessionClientVersion OBJECT-TYPE
  315     SYNTAX      DisplayString
  316     MAX-ACCESS  read-only
  317     STATUS      current
  318     DESCRIPTION
  319         "The client version of SSH session.  It is known that there are still
  320         devices using the previous versions."
  321     ::= { h3cSSHSessionInfoEntry 5 }
  322 
  323 h3cSSHSessionServiceType OBJECT-TYPE
  324     SYNTAX      INTEGER
  325         {
  326             invalid(1),
  327             stelnet(2),
  328             sftp(3)
  329         }
  330     MAX-ACCESS  read-only
  331     STATUS      current
  332     DESCRIPTION
  333         "The service type of SSH session."
  334     ::= { h3cSSHSessionInfoEntry 6 }
  335 
  336 h3cSSHSessionEncry OBJECT-TYPE
  337     SYNTAX      INTEGER
  338         {
  339             invalid(1),
  340             aes128CBC(2),
  341             desCBC(3),
  342             des3CBC(4)
  343         }
  344     MAX-ACCESS  read-only
  345     STATUS      current
  346     DESCRIPTION
  347         "The encryption algorithm of SSH session.  There are several encryption
  348         algorithms used in SSH protocol, please refer to RFC4253 Section 6.3."
  349     ::= { h3cSSHSessionInfoEntry 7 }
  350 
  351 h3cSSHSessionState OBJECT-TYPE
  352     SYNTAX      INTEGER
  353         {
  354             init(1),
  355             verExchange(2),
  356             keysExchange(3),
  357             authRequest(4),
  358             serviceRequest(5),
  359             established(6),
  360             disconnect(7)
  361         }
  362     MAX-ACCESS  read-only
  363     STATUS      current
  364     DESCRIPTION
  365         "The status of SSH session.
  366         init           : This session is in initial status.
  367         verExchange    : This session is in version exchanging.
  368         keysExchange   : This session is in keys exchanging.
  369         authRequest    : This session is in authentication requesting.
  370         serviceRequest : This session is in service requesting.
  371         established    : This session has been established.
  372         disconnected   : This session has been disconnected."
  373     ::= { h3cSSHSessionInfoEntry 8 }
  374 
  375 
  376 -- Define a group which consists of all objects used for trap.
  377 h3cSSHServerObjForTrap OBJECT IDENTIFIER ::= { h3cSSHServerMIB 2 }
  378 
  379 h3cSSHAttemptUserName OBJECT-TYPE
  380     SYNTAX      DisplayString
  381     MAX-ACCESS  accessible-for-notify
  382     STATUS      current
  383     DESCRIPTION
  384         "The user name of the attacker who attempted to log in."
  385     ::= { h3cSSHServerObjForTrap 1 }
  386 
  387 h3cSSHAttemptIpAddrType OBJECT-TYPE
  388     SYNTAX      InetAddressType
  389     MAX-ACCESS  accessible-for-notify
  390     STATUS      current
  391     DESCRIPTION
  392         "The IP address type of the attacker who attempted to log in."
  393     ::= { h3cSSHServerObjForTrap 2 }
  394 
  395 h3cSSHAttemptIpAddr OBJECT-TYPE
  396     SYNTAX      InetAddress
  397     MAX-ACCESS  accessible-for-notify
  398     STATUS      current
  399     DESCRIPTION
  400         "The IP address of the attacker who attempted to log in."
  401     ::= { h3cSSHServerObjForTrap 3 }
  402 
  403 h3cSSHUserAuthFailureReason OBJECT-TYPE
  404     SYNTAX      INTEGER
  405         {
  406             exceedRetries(1),
  407             authTimeout(2),
  408             otherReason(3)
  409         }
  410     MAX-ACCESS  accessible-for-notify
  411     STATUS      current
  412     DESCRIPTION
  413         "The reason for that a user failed to log in."
  414     ::= { h3cSSHServerObjForTrap 4 }
  415 
  416 --
  417 -- Notification definitions
  418 --
  419 -- =================================================================
  420 -- Traps are defined below.
  421 h3cSSHServerNotifications OBJECT IDENTIFIER ::= { h3cSSHServerMIB 3 }
  422 
  423 -- All trap definitions should be placed under this object.
  424 h3cSSHServerNotificationsPrefix OBJECT IDENTIFIER ::= { h3cSSHServerNotifications 0 }
  425 
  426 -- All objects used for TRAP only are defined here.
  427 h3cSSHUserAuthFailure NOTIFICATION-TYPE
  428     OBJECTS
  429         {
  430             h3cSSHAttemptUserName,
  431             h3cSSHAttemptIpAddrType,
  432             h3cSSHAttemptIpAddr,
  433             h3cSSHUserAuthFailureReason
  434         }
  435     STATUS      current
  436     DESCRIPTION
  437         "The trap is generated when a user fails to authentication."
  438     ::= { h3cSSHServerNotificationsPrefix 1 }
  439 
  440 h3cSSHVersionNegotiationFailure NOTIFICATION-TYPE
  441     OBJECTS
  442         {
  443             h3cSSHAttemptIpAddrType,
  444             h3cSSHAttemptIpAddr
  445         }
  446     STATUS      current
  447     DESCRIPTION
  448         "The trap is generated when a user fails to negotiate SSH
  449         protocol version."
  450     ::= { h3cSSHServerNotificationsPrefix 2 }
  451 
  452 h3cSSHUserLogin NOTIFICATION-TYPE
  453     OBJECTS
  454         {
  455             h3cSSHSessionUserName,
  456             h3cSSHSessionUserIpAddrType,
  457             h3cSSHSessionUserIpAddr
  458         }
  459     STATUS      current
  460     DESCRIPTION
  461         "The trap is generated when a user logs in successfully."
  462     ::= { h3cSSHServerNotificationsPrefix 3 }
  463 
  464 h3cSSHUserLogoff NOTIFICATION-TYPE
  465     OBJECTS
  466         {
  467             h3cSSHSessionUserName,
  468             h3cSSHSessionUserIpAddrType,
  469             h3cSSHSessionUserIpAddr
  470         }
  471     STATUS      current
  472     DESCRIPTION
  473         "The trap is generated when a user logs off."
  474     ::= { h3cSSHServerNotificationsPrefix 4 }
  475 
  476 END