draft-ietf-rmonmib-rmon2-v2-00.txt   draft-ietf-rmonmib-rmon2-v2-01.txt 
Remote Network Monitoring Remote Network Monitoring
Management Information Base Management Information Base
Version 2 Version 2
Using SMIv2 Using SMIv2
<draft-ietf-rmonmib-rmon2-v2-00.txt> <draft-ietf-rmonmib-rmon2-v2-01.txt>
August 10, 2003 February 14, 2004
Steven Waldbusser Steven Waldbusser
waldbusser@nextbeacon.com waldbusser@nextbeacon.com
1. Status of this Memo 1. Status of this Memo
Status of this Memo Status of this Memo
This document is an Internet-Draft and is in full conformance This document is an Internet-Draft and is in full conformance
skipping to change at page 2, line ? skipping to change at page 2, line ?
http://www.ietf.org/ietf/1id-abstracts.txt http://www.ietf.org/ietf/1id-abstracts.txt
The list of Internet-Draft Shadow Directories can be accessed The list of Internet-Draft Shadow Directories can be accessed
at http://www.ietf.org/shadow.html. at http://www.ietf.org/shadow.html.
Distribution of this document is unlimited. Please send Distribution of this document is unlimited. Please send
comments to the RMON WG mailing list <rmonmib@ietf.org>. comments to the RMON WG mailing list <rmonmib@ietf.org>.
2. Copyright Notice 2. Copyright Notice
Copyright (C) The Internet Society (2003). All Rights Copyright (C) The Internet Society (2004). All Rights
Reserved. Reserved.
3. Abstract 3. Abstract
This memo defines a portion of the Management Information Base This memo defines a portion of the Management Information Base
(MIB) for use with network management protocols in TCP/IP- (MIB) for use with network management protocols in TCP/IP-
based internets. In particular, it defines objects for based internets. In particular, it defines objects for
managing remote network monitoring devices. managing remote network monitoring devices.
4. The Internet-Standard Management Framework 4. The Internet-Standard Management Framework
skipping to change at page 15, line 8 skipping to change at page 15, line 8
OwnerString, statistics, history, hosts, OwnerString, statistics, history, hosts,
matrix, filter, etherStatsEntry, historyControlEntry, matrix, filter, etherStatsEntry, historyControlEntry,
hostControlEntry, matrixControlEntry, filterEntry, hostControlEntry, matrixControlEntry, filterEntry,
channelEntry FROM RMON-MIB channelEntry FROM RMON-MIB
tokenRing, tokenRingMLStatsEntry, tokenRingPStatsEntry, tokenRing, tokenRingMLStatsEntry, tokenRingPStatsEntry,
ringStationControlEntry, sourceRoutingStatsEntry ringStationControlEntry, sourceRoutingStatsEntry
FROM TOKEN-RING-RMON-MIB; FROM TOKEN-RING-RMON-MIB;
-- Remote Network Monitoring MIB -- Remote Network Monitoring MIB
rmon MODULE-IDENTITY rmon MODULE-IDENTITY
LAST-UPDATED "200308101500Z" -- August 10, 2003 LAST-UPDATED "200402141500Z" -- February 14, 2004
ORGANIZATION "IETF RMON MIB Working Group" ORGANIZATION "IETF RMON MIB Working Group"
CONTACT-INFO CONTACT-INFO
"Author: "Author:
Steve Waldbusser Steve Waldbusser
Phone: +1-650-948-6500 Phone: +1-650-948-6500
Fax : +1-650-745-0671 Fax : +1-650-745-0671
Email: waldbusser@nextbeacon.com Email: waldbusser@nextbeacon.com
Working Group Chair: Working Group Chair:
Andy Bierman Andy Bierman
skipping to change at page 15, line 33 skipping to change at page 15, line 33
E-mail: abierman@cisco.com E-mail: abierman@cisco.com
Working Group Mailing List: <rmonmib@ietf.org> Working Group Mailing List: <rmonmib@ietf.org>
To subscribe send email to: <rmonmib-request@ietf.org> " To subscribe send email to: <rmonmib-request@ietf.org> "
DESCRIPTION DESCRIPTION
"The MIB module for managing remote monitoring "The MIB module for managing remote monitoring
device implementations. This MIB module device implementations. This MIB module
extends the architecture introduced in the original extends the architecture introduced in the original
RMON MIB as specified in RFC 2819. RMON MIB as specified in RFC 2819.
Copyright (C) The Internet Society (2003). All Rights Reserved. Copyright (C) The Internet Society (2004). All Rights Reserved.
This document and translations of it may be copied and furnished to This document and translations of it may be copied and furnished to
others, and derivative works that comment on or otherwise explain it others, and derivative works that comment on or otherwise explain it
or assist in its implementation may be prepared, copied, published or assist in its implementation may be prepared, copied, published
and distributed, in whole or in part, without restriction of any and distributed, in whole or in part, without restriction of any
kind, provided that the above copyright notice and this paragraph are kind, provided that the above copyright notice and this paragraph are
included on all such copies and derivative works. However, this included on all such copies and derivative works. However, this
document itself may not be modified in any way, such as by removing document itself may not be modified in any way, such as by removing
the copyright notice or references to the Internet Society or other the copyright notice or references to the Internet Society or other
Internet organizations, except as needed for the purpose of Internet organizations, except as needed for the purpose of
skipping to change at page 16, line 15 skipping to change at page 16, line 15
The limited permissions granted above are perpetual and will not be The limited permissions granted above are perpetual and will not be
revoked by the Internet Society or its successors or assigns. revoked by the Internet Society or its successors or assigns.
This document and the information contained herein is provided on an This document and the information contained herein is provided on an
'AS IS' basis and THE INTERNET SOCIETY AND THE INTERNET ENGINEERING 'AS IS' basis and THE INTERNET SOCIETY AND THE INTERNET ENGINEERING
TASK FORCE DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING TASK FORCE DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING
BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION
HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF
MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE." MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE."
REVISION "200308101500Z" -- August 10, 2003 REVISION "200402141500Z" -- February 14, 2004
DESCRIPTION DESCRIPTION
"Added new enumerations to the nlMatrixTopNControlRateBase and "Added new enumerations to the nlMatrixTopNControlRateBase and
alMatrixTopNControlRateBase objects, deprecated a number of alMatrixTopNControlRateBase objects, deprecated a number of
infrequently implemented objects and various bug fixes and infrequently implemented objects and various bug fixes and
typos." typos."
REVISION "200110231500Z" -- 23 October, 2001 REVISION "200110231500Z" -- 23 October, 2001
DESCRIPTION DESCRIPTION
"Added new enumerations to support the High-Capacity RMON "Added new enumerations to support the High-Capacity RMON
MIB as defined in RFC 3273. Also fixed some typos and add MIB as defined in RFC 3273. Also fixed some typos and add
skipping to change at page 101, line 5 skipping to change at page 101, line 5
value during the current sampling period is not made available value during the current sampling period is not made available
until the period is completed. until the period is completed.
To obtain the true value for this sampling interval, the To obtain the true value for this sampling interval, the
associated instance of usrHistoryValStatus must be checked, associated instance of usrHistoryValStatus must be checked,
and usrHistoryAbsValue adjusted as necessary. and usrHistoryAbsValue adjusted as necessary.
If the MIB instance could not be accessed during the sampling If the MIB instance could not be accessed during the sampling
interval, then this object will have a value of zero and the interval, then this object will have a value of zero and the
associated instance of usrHistoryValStatus will be set to associated instance of usrHistoryValStatus will be set to
'valueNotAvailable(1)'.
The access control check prescribed in the definition of
usrHistoryObjectVariable SHOULD be checked for each sampling
interval. If this check determines that access should not be
allowed, then this object will have a value of zero and the
associated instance of usrHistoryValStatus will be set to
'valueNotAvailable(1)'." 'valueNotAvailable(1)'."
::= { usrHistoryEntry 4 } ::= { usrHistoryEntry 4 }
usrHistoryValStatus OBJECT-TYPE usrHistoryValStatus OBJECT-TYPE
SYNTAX INTEGER { SYNTAX INTEGER {
valueNotAvailable(1), valueNotAvailable(1),
valuePositive(2), valuePositive(2),
valueNegative(3) valueNegative(3)
} }
MAX-ACCESS read-only MAX-ACCESS read-only
skipping to change at page 112, line 43 skipping to change at page 113, line 4
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The IP Address of the default gateway. If this value is "The IP Address of the default gateway. If this value is
undefined or unknown, it shall have the value 0.0.0.0." undefined or unknown, it shall have the value 0.0.0.0."
::= { probeConfig 12 } ::= { probeConfig 12 }
-- Trap Destination Table -- Trap Destination Table
-- --
-- This table defines the destination addresses for traps generated -- This table defines the destination addresses for traps generated
-- from the device. This table maps a community to one or more trap -- from the device. This table maps a community to one or more trap
-- destination entries. -- destination entries.
-- --
-- The same trap will be sent to all destinations specified in the -- The same trap will be sent to all destinations specified in the
-- entries that have the same trapDestCommunity as the eventCommunity -- entries that have the same trapDestCommunity as the eventCommunity
-- (as defined by RMON MIB), as long as no access control mechanism
-- (e.g., VACM) prohibits sending to one or mor of the destinations.
-- Information in this table will be stored in non-volatile memory.
-- If the device has gone through a hard restart, this information
-- will be reset to its default state.
trapDestTable OBJECT-TYPE trapDestTable OBJECT-TYPE
SYNTAX SEQUENCE OF TrapDestEntry SYNTAX SEQUENCE OF TrapDestEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS deprecated
DESCRIPTION DESCRIPTION
"A list of trap destination entries." "A list of trap destination entries."
::= { probeConfig 13 } ::= { probeConfig 13 }
trapDestEntry OBJECT-TYPE trapDestEntry OBJECT-TYPE
SYNTAX TrapDestEntry SYNTAX TrapDestEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS deprecated
DESCRIPTION DESCRIPTION
"This entry includes a destination IP address to which to send "This entry includes a destination IP address to which to send
traps for this community." traps for this community."
INDEX { trapDestIndex } INDEX { trapDestIndex }
::= { trapDestTable 1 } ::= { trapDestTable 1 }
TrapDestEntry ::= SEQUENCE { TrapDestEntry ::= SEQUENCE {
trapDestIndex Integer32, trapDestIndex Integer32,
trapDestCommunity OCTET STRING, trapDestCommunity OCTET STRING,
trapDestProtocol INTEGER, trapDestProtocol INTEGER,
trapDestAddress OCTET STRING, trapDestAddress OCTET STRING,
trapDestOwner OwnerString, trapDestOwner OwnerString,
trapDestStatus RowStatus trapDestStatus RowStatus
} }
trapDestIndex OBJECT-TYPE trapDestIndex OBJECT-TYPE
SYNTAX Integer32 (1..65535) SYNTAX Integer32 (1..65535)
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS deprecated
DESCRIPTION DESCRIPTION
"A value that uniquely identifies this trapDestEntry." "A value that uniquely identifies this trapDestEntry."
::= { trapDestEntry 1 } ::= { trapDestEntry 1 }
trapDestCommunity OBJECT-TYPE trapDestCommunity OBJECT-TYPE
SYNTAX OCTET STRING (SIZE(0..127)) SYNTAX OCTET STRING (SIZE(0..127))
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS current STATUS deprecated
DESCRIPTION DESCRIPTION
"A community to which this destination address belongs. "A community to which this destination address belongs.
This entry is associated with any eventEntries in the RMON This entry is associated with any eventEntries in the RMON
MIB whose value of eventCommunity is equal to the value of MIB whose value of eventCommunity is equal to the value of
this object. Every time an associated event entry sends a this object. Every time an associated event entry sends a
trap due to an event, that trap will be sent to each trap due to an event, that trap will be sent to each
address in the trapDestTable with a trapDestCommunity equal to address in the trapDestTable with a trapDestCommunity equal to
eventCommunity. eventCommunity, as long as no access control mechanism
precludes it (e.g., VACM).
This object may not be modified if the associated This object may not be modified if the associated
trapDestStatus object is equal to active(1)." trapDestStatus object is equal to active(1)."
::= { trapDestEntry 2 } ::= { trapDestEntry 2 }
trapDestProtocol OBJECT-TYPE trapDestProtocol OBJECT-TYPE
SYNTAX INTEGER { SYNTAX INTEGER {
ip(1), ip(1),
ipx(2) ipx(2)
} }
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS current STATUS deprecated
DESCRIPTION DESCRIPTION
"The protocol with which to send this trap." "The protocol with which to send this trap."
::= { trapDestEntry 3 } ::= { trapDestEntry 3 }
trapDestAddress OBJECT-TYPE trapDestAddress OBJECT-TYPE
SYNTAX OCTET STRING SYNTAX OCTET STRING
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS current STATUS deprecated
DESCRIPTION DESCRIPTION
"The address to send traps on behalf of this entry. "The address to send traps on behalf of this entry.
If the associated trapDestProtocol object is equal to ip(1), If the associated trapDestProtocol object is equal to ip(1),
the encoding of this object is the same as the snmpUDPAddress the encoding of this object is the same as the snmpUDPAddress
textual convention in [3]: textual convention in [3]:
-- for a SnmpUDPAddress of length 6: -- for a SnmpUDPAddress of length 6:
-- --
-- octets contents encoding -- octets contents encoding
-- 1-4 IP-address network-byte order -- 1-4 IP-address network-byte order
skipping to change at page 114, line 39 skipping to change at page 115, line 4
"The address to send traps on behalf of this entry. "The address to send traps on behalf of this entry.
If the associated trapDestProtocol object is equal to ip(1), If the associated trapDestProtocol object is equal to ip(1),
the encoding of this object is the same as the snmpUDPAddress the encoding of this object is the same as the snmpUDPAddress
textual convention in [3]: textual convention in [3]:
-- for a SnmpUDPAddress of length 6: -- for a SnmpUDPAddress of length 6:
-- --
-- octets contents encoding -- octets contents encoding
-- 1-4 IP-address network-byte order -- 1-4 IP-address network-byte order
-- 5-6 UDP-port network-byte order -- 5-6 UDP-port network-byte order
If the associated trapDestProtocol object is equal to ipx(2), If the associated trapDestProtocol object is equal to ipx(2),
the encoding of this object is the same as the snmpIPXAddress the encoding of this object is the same as the snmpIPXAddress
textual convention in [3]: textual convention in [3]:
-- for a SnmpIPXAddress of length 12: -- for a SnmpIPXAddress of length 12:
-- --
-- octets contents encoding -- octets contents encoding
-- 1-4 network-number network-byte order -- 1-4 network-number network-byte order
-- 5-10 physical-address network-byte order -- 5-10 physical-address network-byte order
-- 11-12 socket-number network-byte order -- 11-12 socket-number network-byte order
This object may not be modified if the associated This object may not be modified if the associated
trapDestStatus object is equal to active(1)." trapDestStatus object is equal to active(1)."
::= { trapDestEntry 4 } ::= { trapDestEntry 4 }
trapDestOwner OBJECT-TYPE trapDestOwner OBJECT-TYPE
SYNTAX OwnerString SYNTAX OwnerString
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS current STATUS deprecated
DESCRIPTION DESCRIPTION
"The entity that configured this entry and is "The entity that configured this entry and is
therefore using the resources assigned to it." therefore using the resources assigned to it."
::= { trapDestEntry 5 } ::= { trapDestEntry 5 }
trapDestStatus OBJECT-TYPE trapDestStatus OBJECT-TYPE
SYNTAX RowStatus SYNTAX RowStatus
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS current STATUS deprecated
DESCRIPTION DESCRIPTION
"The status of this trap destination entry. "The status of this trap destination entry.
An entry may not exist in the active state unless all An entry may not exist in the active state unless all
objects in the entry have an appropriate value." objects in the entry have an appropriate value."
::= { trapDestEntry 6 } ::= { trapDestEntry 6 }
-- Serial Connection Table -- Serial Connection Table
-- --
-- The device may communicate with a management station using -- The device may communicate with a management station using
skipping to change at page 136, line 24 skipping to change at page 136, line 35
serialConnectDialString, serialConnectSwitchConnectSeq, serialConnectDialString, serialConnectSwitchConnectSeq,
serialConnectSwitchDisconnectSeq, serialConnectSwitchDisconnectSeq,
serialConnectSwitchResetSeq, serialConnectSwitchResetSeq,
serialConnectOwner, serialConnectStatus } serialConnectOwner, serialConnectStatus }
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"This group controls the configuration of various operating "This group controls the configuration of various operating
parameters of the probe." parameters of the probe."
::= { rmon2MIBGroups 10 } ::= { rmon2MIBGroups 10 }
probeConfigurationGroup2 OBJECT-GROUP
OBJECTS { probeResetControl,
trapDestCommunity, trapDestProtocol, trapDestAddress,
trapDestOwner, trapDestStatus }
STATUS current
DESCRIPTION
"This group controls the configuration of various operating
parameters of the probe."
::= { rmon2MIBGroups 14 }
rmon1EnhancementGroup OBJECT-GROUP rmon1EnhancementGroup OBJECT-GROUP
OBJECTS { historyControlDroppedFrames, hostControlDroppedFrames, OBJECTS { historyControlDroppedFrames, hostControlDroppedFrames,
hostControlCreateTime, matrixControlDroppedFrames, hostControlCreateTime, matrixControlDroppedFrames,
matrixControlCreateTime, channelDroppedFrames, matrixControlCreateTime, channelDroppedFrames,
channelCreateTime, filterProtocolDirDataLocalIndex, channelCreateTime, filterProtocolDirDataLocalIndex,
filterProtocolDirLocalIndex } filterProtocolDirLocalIndex }
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"This group adds some enhancements to RMON-1 that help "This group adds some enhancements to RMON-1 that help
management stations." management stations."
skipping to change at page 138, line 15 skipping to change at page 138, line 15
10. Security Considerations 10. Security Considerations
In order to implement this MIB, a probe must capture all In order to implement this MIB, a probe must capture all
packets on the locally-attached network, including packets packets on the locally-attached network, including packets
between third parties. These packets are analyzed to collect between third parties. These packets are analyzed to collect
network addresses, protocol usage information, and network addresses, protocol usage information, and
conversation statistics. Data of this nature may be considered conversation statistics. Data of this nature may be considered
sensitive in some environments. In such environments the sensitive in some environments. In such environments the
administrator may wish to restrict SNMP access to the probe. administrator may wish to restrict SNMP access to the probe.
The usrHistoryGroup periodically samples the values of user-
specified variables on the probe and stores them in another
table. Since the access-control specified for stored snapshot
may be different than the access-control for the sampled
variable, the agent MUST ensure that usrHistoryObjectVariable
is not writable in MIB views that don't already have read
access to the entire agent. Because the access control
configuration can change over time, information could later be
deemed sensitive that would still be accessible to this
function. For this reason, an agent SHOULD check the access
control on every sample. If an agent doesn't implement the
latter check, there is a potential for sensitive information
to be revealed.
A probe implementing this MIB is likely to also implement RMON A probe implementing this MIB is likely to also implement RMON
[5], which includes functions for returning the contents of [5], which includes functions for returning the contents of
captured packets, potentially including sensitive user data or captured packets, potentially including sensitive user data or
passwords. It is recommended that SNMP access to these passwords. It is recommended that SNMP access to these
functions be restricted. functions be restricted.
There are a number of management objects defined in this MIB There are a number of management objects defined in this MIB
that have a MAX-ACCESS clause of read-write and/or read- that have a MAX-ACCESS clause of read-write and/or read-
create. Such objects may be considered sensitive or create. Such objects may be considered sensitive or
vulnerable in some network environments. The support for SET vulnerable in some network environments. The support for SET
skipping to change at page 150, line 7 skipping to change at page 151, line 7
Secretariat. Secretariat.
The IETF invites any interested party to bring to its The IETF invites any interested party to bring to its
attention any copyrights, patents or patent applications, or attention any copyrights, patents or patent applications, or
other proprietary rights which may cover technology that may other proprietary rights which may cover technology that may
be required to practice this standard. Please address the be required to practice this standard. Please address the
information to the IETF Executive Director. information to the IETF Executive Director.
17. Full Copyright Statement 17. Full Copyright Statement
Copyright (C) The Internet Society (2003). All Rights Reserved. Copyright (C) The Internet Society (2004). All Rights Reserved.
This document and translations of it may be copied and This document and translations of it may be copied and
furnished to others, and derivative works that comment on or furnished to others, and derivative works that comment on or
otherwise explain it or assist in its implementation may be otherwise explain it or assist in its implementation may be
prepared, copied, published and distributed, in whole or in prepared, copied, published and distributed, in whole or in
part, without restriction of any kind, provided that the above part, without restriction of any kind, provided that the above
copyright notice and this paragraph are included on all such copyright notice and this paragraph are included on all such
copies and derivative works. However, this document itself copies and derivative works. However, this document itself
may not be modified in any way, such as by removing the may not be modified in any way, such as by removing the
copyright notice or references to the Internet Society or copyright notice or references to the Internet Society or
skipping to change at page 151, line 25 skipping to change at page 152, line 25
6.1 Resource Sharing Among Multiple Management Sta- 6.1 Resource Sharing Among Multiple Management Sta-
tions .............................................. 8 tions .............................................. 8
6.2 Row Addition Among Multiple Management Stations ..... 10 6.2 Row Addition Among Multiple Management Stations ..... 10
7 Conventions ........................................... 12 7 Conventions ........................................... 12
8 RMON 2 Conventions .................................... 13 8 RMON 2 Conventions .................................... 13
8.1 Usage of the term Application Level ................. 13 8.1 Usage of the term Application Level ................. 13
8.2 Protocol Directory and Limited Extensibility ........ 13 8.2 Protocol Directory and Limited Extensibility ........ 13
8.3 Errors in packets ................................... 14 8.3 Errors in packets ................................... 14
9 Definitions ........................................... 14 9 Definitions ........................................... 14
10 Security Considerations .............................. 138 10 Security Considerations .............................. 138
11 Appendix - TimeFilter Implementation Notes ........... 139 11 Appendix - TimeFilter Implementation Notes ........... 140
12 Changes since RFC 2021 ............................... 145 12 Changes since RFC 2021 ............................... 146
13 Acknowledgments ...................................... 147 13 Acknowledgments ...................................... 148
14 Author's Address ..................................... 147 14 Author's Address ..................................... 148
15 References ........................................... 148 15 References ........................................... 149
15.1 Normative References ............................... 148 15.1 Normative References ............................... 149
15.2 Informative References ............................. 148 15.2 Informative References ............................. 149
16 Intellectual Property Statement ...................... 149 16 Intellectual Property Statement ...................... 150
17 Full Copyright Statement ............................. 150 17 Full Copyright Statement ............................. 151
 End of changes. 

This html diff was produced by rfcdiff 1.23, available from http://www.levkowetz.com/ietf/tools/rfcdiff/