1310903Sngie-- 2143611Sphilip-- ---------------------------------------------------------------------------- 3143611Sphilip-- "THE BEER-WARE LICENSE" (Revision 42): 4143611Sphilip-- <philip@FreeBSD.org> wrote this file. As long as you retain this notice you 5143611Sphilip-- can do whatever you want with this stuff. If we meet some day, and you think 6143611Sphilip-- this stuff is worth it, you can buy me a beer in return. -Philip Paeps 7143611Sphilip-- ---------------------------------------------------------------------------- 8143611Sphilip-- 9143611Sphilip-- $FreeBSD: stable/10/usr.sbin/bsnmpd/modules/snmp_pf/BEGEMOT-PF-MIB.txt 310903 2016-12-31 10:34:09Z ngie $ 10310903Sngie-- 11143611Sphilip 12143611SphilipBEGEMOT-PF-MIB DEFINITIONS ::= BEGIN 13143611Sphilip 14143611SphilipIMPORTS 15143611Sphilip MODULE-IDENTITY, OBJECT-TYPE, Counter64, Integer32, 16143611Sphilip TimeTicks, Unsigned32 17143611Sphilip FROM SNMPv2-SMI 18143611Sphilip TruthValue 19143611Sphilip FROM SNMPv2-TC 20205607Ssyrinx InetAddress, InetAddressType, InetAddressPrefixLength 21205607Ssyrinx FROM INET-ADDRESS-MIB 22143611Sphilip begemot 23143611Sphilip FROM BEGEMOT-MIB; 24143611Sphilip 25143611SphilipbegemotPf MODULE-IDENTITY 26205607Ssyrinx LAST-UPDATED "201003180000Z" 27143611Sphilip ORGANIZATION "NixSys BVBA" 28143611Sphilip CONTACT-INFO 29143611Sphilip " Philip Paeps 30143611Sphilip 31143611Sphilip Postal: NixSys BVBA 32143611Sphilip Louizastraat 14 33143611Sphilip BE-2800 Mechelen 34143611Sphilip Belgium 35143611Sphilip 36143611Sphilip E-Mail: philip@FreeBSD.org" 37143611Sphilip DESCRIPTION 38143611Sphilip "The Begemot MIB for the pf packet filter." 39205607Ssyrinx REVISION "201003180000Z" 40205607Ssyrinx DESCRIPTION 41205607Ssyrinx "Modified pfTablesAddrEntry to support IPv6 42205607Ssyrinx addresses - added pfTablesAddrNetType column 43205607Ssyrinx and modified type of pfTablesAddrNet to 44205607Ssyrinx InetAddress." 45205280Ssyrinx REVISION "200912050000Z" 46205280Ssyrinx DESCRIPTION 47205280Ssyrinx "Added support for retrieving counters of labeled 48205280Ssyrinx pf filter rules via pfLabelspfLabels subtree." 49205280Ssyrinx REVISION "200501240000Z" 50205280Ssyrinx DESCRIPTION 51205280Ssyrinx "Initial revision." 52143611Sphilip 53143611Sphilip ::= { begemot 200 } 54143611Sphilip 55143611SphilipbegemotPfObjects OBJECT IDENTIFIER ::= { begemotPf 1 } 56143611Sphilip 57143611Sphilip-- -------------------------------------------------------------------------- 58143611Sphilip 59143611SphilippfStatus OBJECT IDENTIFIER ::= { begemotPfObjects 1 } 60143611SphilippfCounter OBJECT IDENTIFIER ::= { begemotPfObjects 2 } 61143611SphilippfStateTable OBJECT IDENTIFIER ::= { begemotPfObjects 3 } 62143611SphilippfSrcNodes OBJECT IDENTIFIER ::= { begemotPfObjects 4 } 63143611SphilippfLimits OBJECT IDENTIFIER ::= { begemotPfObjects 5 } 64143611SphilippfTimeouts OBJECT IDENTIFIER ::= { begemotPfObjects 6 } 65143611SphilippfLogInterface OBJECT IDENTIFIER ::= { begemotPfObjects 7 } 66143611SphilippfInterfaces OBJECT IDENTIFIER ::= { begemotPfObjects 8 } 67143611SphilippfTables OBJECT IDENTIFIER ::= { begemotPfObjects 9 } 68143611SphilippfAltq OBJECT IDENTIFIER ::= { begemotPfObjects 10 } 69205280SsyrinxpfLabels OBJECT IDENTIFIER ::= { begemotPfObjects 11 } 70143611Sphilip 71143611Sphilip-- -------------------------------------------------------------------------- 72143611Sphilip 73143611Sphilip-- 74143611Sphilip-- status information 75143611Sphilip-- 76143611Sphilip 77143611SphilippfStatusRunning OBJECT-TYPE 78143611Sphilip SYNTAX TruthValue 79143611Sphilip MAX-ACCESS read-only 80143611Sphilip STATUS current 81143611Sphilip DESCRIPTION 82143611Sphilip "True if pf is currently enabled." 83143611Sphilip ::= { pfStatus 1 } 84143611Sphilip 85143611SphilippfStatusRuntime OBJECT-TYPE 86143611Sphilip SYNTAX TimeTicks 87143611Sphilip UNITS "1/100th of a Second" 88143611Sphilip MAX-ACCESS read-only 89143611Sphilip STATUS current 90143611Sphilip DESCRIPTION 91143611Sphilip "Indicates how long pf has been enabled. If pf is not currently 92143611Sphilip enabled, indicates how long it has been disabled. If pf has not 93143611Sphilip been enabled or disabled since the system was started, the value 94143611Sphilip will be 0." 95143611Sphilip ::= { pfStatus 2 } 96143611Sphilip 97143611SphilippfStatusDebug OBJECT-TYPE 98143611Sphilip SYNTAX INTEGER { none(0), urgent(1), misc(2), loud(3) } 99143611Sphilip MAX-ACCESS read-only 100143611Sphilip STATUS current 101143611Sphilip DESCRIPTION 102143611Sphilip "Indicates the debug level at which pf is running." 103143611Sphilip ::= { pfStatus 3 } 104143611Sphilip 105143611SphilippfStatusHostId OBJECT-TYPE 106143611Sphilip SYNTAX OCTET STRING 107143611Sphilip MAX-ACCESS read-only 108143611Sphilip STATUS current 109143611Sphilip DESCRIPTION 110143611Sphilip "The (unique) host identifier of the machine running pf." 111143611Sphilip ::= { pfStatus 4 } 112143611Sphilip 113143611Sphilip-- -------------------------------------------------------------------------- 114143611Sphilip 115143611Sphilip-- 116143611Sphilip-- counters 117143611Sphilip-- 118143611Sphilip 119143611SphilippfCounterMatch OBJECT-TYPE 120143611Sphilip SYNTAX Counter64 121143611Sphilip MAX-ACCESS read-only 122143611Sphilip STATUS current 123143611Sphilip DESCRIPTION 124143611Sphilip "Number of packets that matched a filter rule." 125143611Sphilip ::= { pfCounter 1 } 126143611Sphilip 127143611SphilippfCounterBadOffset OBJECT-TYPE 128143611Sphilip SYNTAX Counter64 129143611Sphilip MAX-ACCESS read-only 130143611Sphilip STATUS current 131143611Sphilip DESCRIPTION 132143611Sphilip "Number of packets with bad offset." 133143611Sphilip ::= { pfCounter 2 } 134143611Sphilip 135143611SphilippfCounterFragment OBJECT-TYPE 136143611Sphilip SYNTAX Counter64 137143611Sphilip MAX-ACCESS read-only 138143611Sphilip STATUS current 139143611Sphilip DESCRIPTION 140143611Sphilip "Number of fragmented packets." 141143611Sphilip ::= { pfCounter 3 } 142143611Sphilip 143143611SphilippfCounterShort OBJECT-TYPE 144143611Sphilip SYNTAX Counter64 145143611Sphilip MAX-ACCESS read-only 146143611Sphilip STATUS current 147143611Sphilip DESCRIPTION 148143611Sphilip "Number of short packets." 149143611Sphilip ::= { pfCounter 4 } 150143611Sphilip 151143611SphilippfCounterNormalize OBJECT-TYPE 152143611Sphilip SYNTAX Counter64 153143611Sphilip MAX-ACCESS read-only 154143611Sphilip STATUS current 155143611Sphilip DESCRIPTION 156143611Sphilip "Number of normalized packets." 157143611Sphilip ::= { pfCounter 5 } 158143611Sphilip 159143611SphilippfCounterMemDrop OBJECT-TYPE 160143611Sphilip SYNTAX Counter64 161143611Sphilip MAX-ACCESS read-only 162143611Sphilip STATUS current 163143611Sphilip DESCRIPTION 164143611Sphilip "Number of packets dropped due to memory limitations." 165143611Sphilip ::= { pfCounter 6 } 166143611Sphilip 167143611Sphilip-- -------------------------------------------------------------------------- 168143611Sphilip 169143611Sphilip-- 170143611Sphilip-- state table 171143611Sphilip-- 172143611Sphilip 173143611SphilippfStateTableCount OBJECT-TYPE 174143611Sphilip SYNTAX Unsigned32 175143611Sphilip MAX-ACCESS read-only 176143611Sphilip STATUS current 177143611Sphilip DESCRIPTION 178143611Sphilip "Number of entries in the state table." 179143611Sphilip ::= { pfStateTable 1 } 180143611Sphilip 181143611SphilippfStateTableSearches OBJECT-TYPE 182143611Sphilip SYNTAX Counter64 183143611Sphilip MAX-ACCESS read-only 184143611Sphilip STATUS current 185143611Sphilip DESCRIPTION 186143611Sphilip "Number of searches against the state table." 187143611Sphilip ::= { pfStateTable 2 } 188143611Sphilip 189143611SphilippfStateTableInserts OBJECT-TYPE 190143611Sphilip SYNTAX Counter64 191143611Sphilip MAX-ACCESS read-only 192143611Sphilip STATUS current 193143611Sphilip DESCRIPTION 194143611Sphilip "Number of entries inserted into the state table." 195143611Sphilip ::= { pfStateTable 3 } 196143611Sphilip 197143611SphilippfStateTableRemovals OBJECT-TYPE 198143611Sphilip SYNTAX Counter64 199143611Sphilip MAX-ACCESS read-only 200143611Sphilip STATUS current 201143611Sphilip DESCRIPTION 202143611Sphilip "Number of entries removed from the state table." 203143611Sphilip ::= { pfStateTable 4 } 204143611Sphilip 205143611Sphilip-- -------------------------------------------------------------------------- 206143611Sphilip 207143611Sphilip-- 208143611Sphilip-- source nodes 209143611Sphilip-- 210143611Sphilip 211143611SphilippfSrcNodesCount OBJECT-TYPE 212143611Sphilip SYNTAX Unsigned32 213143611Sphilip MAX-ACCESS read-only 214143611Sphilip STATUS current 215143611Sphilip DESCRIPTION 216143611Sphilip "Number of entries in the source tracking table." 217143611Sphilip ::= { pfSrcNodes 1 } 218143611Sphilip 219143611SphilippfSrcNodesSearches OBJECT-TYPE 220143611Sphilip SYNTAX Counter64 221143611Sphilip MAX-ACCESS read-only 222143611Sphilip STATUS current 223143611Sphilip DESCRIPTION 224143611Sphilip "Number of searches against the source tracking table." 225143611Sphilip ::= { pfSrcNodes 2 } 226143611Sphilip 227143611SphilippfSrcNodesInserts OBJECT-TYPE 228143611Sphilip SYNTAX Counter64 229143611Sphilip MAX-ACCESS read-only 230143611Sphilip STATUS current 231143611Sphilip DESCRIPTION 232143611Sphilip "Number of entries inserted into the source tracking table." 233143611Sphilip ::= { pfSrcNodes 3 } 234143611Sphilip 235143611SphilippfSrcNodesRemovals OBJECT-TYPE 236143611Sphilip SYNTAX Counter64 237143611Sphilip MAX-ACCESS read-only 238143611Sphilip STATUS current 239143611Sphilip DESCRIPTION 240143611Sphilip "Number of entries removed from the source tracking table." 241143611Sphilip ::= { pfSrcNodes 4 } 242143611Sphilip 243143611Sphilip-- -------------------------------------------------------------------------- 244143611Sphilip 245143611Sphilip-- 246143611Sphilip-- limits 247143611Sphilip-- 248143611Sphilip 249143611SphilippfLimitsStates OBJECT-TYPE 250143611Sphilip SYNTAX Unsigned32 251143611Sphilip MAX-ACCESS read-only 252143611Sphilip STATUS current 253143611Sphilip DESCRIPTION 254143611Sphilip "Maximum number of 'keep state' rules in the ruleset." 255143611Sphilip ::= { pfLimits 1 } 256143611Sphilip 257143611SphilippfLimitsSrcNodes OBJECT-TYPE 258143611Sphilip SYNTAX Unsigned32 259143611Sphilip MAX-ACCESS read-only 260143611Sphilip STATUS current 261143611Sphilip DESCRIPTION 262143611Sphilip "Maximum number of 'sticky-address' or 'source-track' rules 263143611Sphilip in the ruleset." 264143611Sphilip ::= { pfLimits 2 } 265143611Sphilip 266143611SphilippfLimitsFrags OBJECT-TYPE 267143611Sphilip SYNTAX Unsigned32 268143611Sphilip MAX-ACCESS read-only 269143611Sphilip STATUS current 270143611Sphilip DESCRIPTION 271143611Sphilip "Maximum number of 'scrub' rules in the ruleset." 272143611Sphilip ::= { pfLimits 3 } 273143611Sphilip 274143611Sphilip-- -------------------------------------------------------------------------- 275143611Sphilip 276143611Sphilip-- 277143611Sphilip-- timeouts 278143611Sphilip-- 279143611Sphilip 280143611SphilippfTimeoutsTcpFirst OBJECT-TYPE 281143611Sphilip SYNTAX Integer32 282143611Sphilip MAX-ACCESS read-only 283143611Sphilip STATUS current 284143611Sphilip DESCRIPTION 285143611Sphilip "State after the first packet in a connection." 286143611Sphilip ::= { pfTimeouts 1 } 287143611Sphilip 288143611SphilippfTimeoutsTcpOpening OBJECT-TYPE 289143611Sphilip SYNTAX Integer32 290143611Sphilip MAX-ACCESS read-only 291143611Sphilip STATUS current 292143611Sphilip DESCRIPTION 293143611Sphilip "State before the destination host ever sends a packet." 294143611Sphilip ::= { pfTimeouts 2 } 295143611Sphilip 296143611SphilippfTimeoutsTcpEstablished OBJECT-TYPE 297143611Sphilip SYNTAX Integer32 298143611Sphilip MAX-ACCESS read-only 299143611Sphilip STATUS current 300143611Sphilip DESCRIPTION 301143611Sphilip "The fully established state." 302143611Sphilip ::= { pfTimeouts 3 } 303143611Sphilip 304143611SphilippfTimeoutsTcpClosing OBJECT-TYPE 305143611Sphilip SYNTAX Integer32 306143611Sphilip MAX-ACCESS read-only 307143611Sphilip STATUS current 308143611Sphilip DESCRIPTION 309143611Sphilip "State after the first FIN has been sent." 310143611Sphilip ::= { pfTimeouts 4 } 311143611Sphilip 312143611SphilippfTimeoutsTcpFinWait OBJECT-TYPE 313143611Sphilip SYNTAX Integer32 314143611Sphilip MAX-ACCESS read-only 315143611Sphilip STATUS current 316143611Sphilip DESCRIPTION 317143611Sphilip "State after both FINs have been exchanged and the 318143611Sphilip connection is closed." 319143611Sphilip ::= { pfTimeouts 5 } 320143611Sphilip 321143611SphilippfTimeoutsTcpClosed OBJECT-TYPE 322143611Sphilip SYNTAX Integer32 323143611Sphilip MAX-ACCESS read-only 324143611Sphilip STATUS current 325143611Sphilip DESCRIPTION 326143611Sphilip "State after one endpoint sends an RST." 327143611Sphilip ::= { pfTimeouts 6 } 328143611Sphilip 329143611SphilippfTimeoutsUdpFirst OBJECT-TYPE 330143611Sphilip SYNTAX Integer32 331143611Sphilip MAX-ACCESS read-only 332143611Sphilip STATUS current 333143611Sphilip DESCRIPTION 334143611Sphilip "State after the first packet." 335143611Sphilip ::= { pfTimeouts 7 } 336143611Sphilip 337143611SphilippfTimeoutsUdpSingle OBJECT-TYPE 338143611Sphilip SYNTAX Integer32 339143611Sphilip MAX-ACCESS read-only 340143611Sphilip STATUS current 341143611Sphilip DESCRIPTION 342143611Sphilip "State if the source host sends more than one packet but 343143611Sphilip the destination host has never sent one back." 344143611Sphilip ::= { pfTimeouts 8 } 345143611Sphilip 346143611SphilippfTimeoutsUdpMultiple OBJECT-TYPE 347143611Sphilip SYNTAX Integer32 348143611Sphilip MAX-ACCESS read-only 349143611Sphilip STATUS current 350143611Sphilip DESCRIPTION 351143611Sphilip "State if both hosts have sent packets." 352143611Sphilip ::= { pfTimeouts 9 } 353143611Sphilip 354143611SphilippfTimeoutsIcmpFirst OBJECT-TYPE 355143611Sphilip SYNTAX Integer32 356143611Sphilip MAX-ACCESS read-only 357143611Sphilip STATUS current 358143611Sphilip DESCRIPTION 359143611Sphilip "State after the first packet." 360143611Sphilip ::= { pfTimeouts 10 } 361143611Sphilip 362143611SphilippfTimeoutsIcmpError OBJECT-TYPE 363143611Sphilip SYNTAX Integer32 364143611Sphilip MAX-ACCESS read-only 365143611Sphilip STATUS current 366143611Sphilip DESCRIPTION 367143611Sphilip "State after an ICMP error came back in response to an 368143611Sphilip ICMP packet." 369143611Sphilip ::= { pfTimeouts 11 } 370143611Sphilip 371143611SphilippfTimeoutsOtherFirst OBJECT-TYPE 372143611Sphilip SYNTAX Integer32 373143611Sphilip MAX-ACCESS read-only 374143611Sphilip STATUS current 375143611Sphilip DESCRIPTION 376143611Sphilip "State after the first packet." 377143611Sphilip ::= { pfTimeouts 12 } 378143611Sphilip 379143611SphilippfTimeoutsOtherSingle OBJECT-TYPE 380143611Sphilip SYNTAX Integer32 381143611Sphilip MAX-ACCESS read-only 382143611Sphilip STATUS current 383143611Sphilip DESCRIPTION 384143611Sphilip "State if the source host sends more than one packet but 385143611Sphilip the destination host has never sent one back." 386143611Sphilip ::= { pfTimeouts 13 } 387143611Sphilip 388143611SphilippfTimeoutsOtherMultiple OBJECT-TYPE 389143611Sphilip SYNTAX Integer32 390143611Sphilip MAX-ACCESS read-only 391143611Sphilip STATUS current 392143611Sphilip DESCRIPTION 393143611Sphilip "State if both hosts have sent packets." 394143611Sphilip ::= { pfTimeouts 14 } 395143611Sphilip 396143611SphilippfTimeoutsFragment OBJECT-TYPE 397143611Sphilip SYNTAX Integer32 398143611Sphilip MAX-ACCESS read-only 399143611Sphilip STATUS current 400143611Sphilip DESCRIPTION 401143611Sphilip "Seconds before an unassembled fragment is expired." 402143611Sphilip ::= { pfTimeouts 15 } 403143611Sphilip 404143611SphilippfTimeoutsInterval OBJECT-TYPE 405143611Sphilip SYNTAX Integer32 406143611Sphilip MAX-ACCESS read-only 407143611Sphilip STATUS current 408143611Sphilip DESCRIPTION 409143611Sphilip "Interval between purging expired states and fragments." 410143611Sphilip ::= { pfTimeouts 16 } 411143611Sphilip 412143611SphilippfTimeoutsAdaptiveStart OBJECT-TYPE 413143611Sphilip SYNTAX Integer32 414143611Sphilip MAX-ACCESS read-only 415143611Sphilip STATUS current 416143611Sphilip DESCRIPTION 417143611Sphilip "When the number of state entries exceeds this value, 418143611Sphilip adaptive scaling begins." 419143611Sphilip ::= { pfTimeouts 17 } 420143611Sphilip 421143611SphilippfTimeoutsAdaptiveEnd OBJECT-TYPE 422143611Sphilip SYNTAX Integer32 423143611Sphilip MAX-ACCESS read-only 424143611Sphilip STATUS current 425143611Sphilip DESCRIPTION 426143611Sphilip "When reaching this number of state entries, all timeout 427143611Sphilip values become zero, effectively purging all state entries 428143611Sphilip immediately." 429143611Sphilip ::= { pfTimeouts 18 } 430143611Sphilip 431143611SphilippfTimeoutsSrcNode OBJECT-TYPE 432143611Sphilip SYNTAX Integer32 433143611Sphilip MAX-ACCESS read-only 434143611Sphilip STATUS current 435143611Sphilip DESCRIPTION 436143611Sphilip "Length of time to retain a source tracking entry after 437143611Sphilip the last state expires." 438143611Sphilip ::= { pfTimeouts 19 } 439143611Sphilip 440143611Sphilip-- -------------------------------------------------------------------------- 441143611Sphilip 442143611Sphilip-- 443143611Sphilip-- log interface 444143611Sphilip-- 445143611Sphilip 446143611SphilippfLogInterfaceName OBJECT-TYPE 447143611Sphilip SYNTAX OCTET STRING 448143611Sphilip MAX-ACCESS read-only 449143611Sphilip STATUS current 450143611Sphilip DESCRIPTION 451143611Sphilip "The name of the interface configured with 'set loginterface'. 452143611Sphilip If no interface has been configured, the object will be empty." 453143611Sphilip ::= { pfLogInterface 1 } 454143611Sphilip 455143611SphilippfLogInterfaceIp4BytesIn OBJECT-TYPE 456143611Sphilip SYNTAX Counter64 457143611Sphilip MAX-ACCESS read-only 458143611Sphilip STATUS current 459143611Sphilip DESCRIPTION 460143611Sphilip "Number of IPv4 bytes passed in on the loginterface." 461143611Sphilip ::= { pfLogInterface 2 } 462143611Sphilip 463143611SphilippfLogInterfaceIp4BytesOut OBJECT-TYPE 464143611Sphilip SYNTAX Counter64 465143611Sphilip MAX-ACCESS read-only 466143611Sphilip STATUS current 467143611Sphilip DESCRIPTION 468143611Sphilip "Number of IPv4 bytes passed out on the loginterface." 469143611Sphilip ::= { pfLogInterface 3 } 470143611Sphilip 471143611SphilippfLogInterfaceIp4PktsInPass OBJECT-TYPE 472143611Sphilip SYNTAX Counter64 473143611Sphilip MAX-ACCESS read-only 474143611Sphilip STATUS current 475143611Sphilip DESCRIPTION 476143611Sphilip "Number of IPv4 packets passed in on the loginterface." 477143611Sphilip ::= { pfLogInterface 4 } 478143611Sphilip 479143611SphilippfLogInterfaceIp4PktsInDrop OBJECT-TYPE 480143611Sphilip SYNTAX Counter64 481143611Sphilip MAX-ACCESS read-only 482143611Sphilip STATUS current 483143611Sphilip DESCRIPTION 484143611Sphilip "Number of IPv4 packets dropped coming in on the loginterface." 485143611Sphilip ::= { pfLogInterface 5 } 486143611Sphilip 487143611SphilippfLogInterfaceIp4PktsOutPass OBJECT-TYPE 488143611Sphilip SYNTAX Counter64 489143611Sphilip MAX-ACCESS read-only 490143611Sphilip STATUS current 491143611Sphilip DESCRIPTION 492143611Sphilip "Number of IPv4 packets passed out on the loginterface." 493143611Sphilip ::= { pfLogInterface 6 } 494143611Sphilip 495143611SphilippfLogInterfaceIp4PktsOutDrop OBJECT-TYPE 496143611Sphilip SYNTAX Counter64 497143611Sphilip MAX-ACCESS read-only 498143611Sphilip STATUS current 499143611Sphilip DESCRIPTION 500143611Sphilip "Number of IPv4 packets dropped going out on the loginterface." 501143611Sphilip ::= { pfLogInterface 7 } 502143611Sphilip 503143611SphilippfLogInterfaceIp6BytesIn OBJECT-TYPE 504143611Sphilip SYNTAX Counter64 505143611Sphilip MAX-ACCESS read-only 506143611Sphilip STATUS current 507143611Sphilip DESCRIPTION 508143611Sphilip "Number of IPv6 bytes passed in on the loginterface." 509143611Sphilip ::= { pfLogInterface 8 } 510143611Sphilip 511143611SphilippfLogInterfaceIp6BytesOut OBJECT-TYPE 512143611Sphilip SYNTAX Counter64 513143611Sphilip MAX-ACCESS read-only 514143611Sphilip STATUS current 515143611Sphilip DESCRIPTION 516143611Sphilip "Number of IPv6 bytes passed out on the loginterface." 517143611Sphilip ::= { pfLogInterface 9 } 518143611Sphilip 519143611SphilippfLogInterfaceIp6PktsInPass OBJECT-TYPE 520143611Sphilip SYNTAX Counter64 521143611Sphilip MAX-ACCESS read-only 522143611Sphilip STATUS current 523143611Sphilip DESCRIPTION 524143611Sphilip "Number of IPv6 packets passed in on the loginterface." 525143611Sphilip ::= { pfLogInterface 10 } 526143611Sphilip 527143611SphilippfLogInterfaceIp6PktsInDrop OBJECT-TYPE 528143611Sphilip SYNTAX Counter64 529143611Sphilip MAX-ACCESS read-only 530143611Sphilip STATUS current 531143611Sphilip DESCRIPTION 532143611Sphilip "Number of IPv6 packets dropped coming in on the loginterface." 533143611Sphilip ::= { pfLogInterface 11 } 534143611Sphilip 535143611SphilippfLogInterfaceIp6PktsOutPass OBJECT-TYPE 536143611Sphilip SYNTAX Counter64 537143611Sphilip MAX-ACCESS read-only 538143611Sphilip STATUS current 539143611Sphilip DESCRIPTION 540143611Sphilip "Number of IPv6 packets passed out on the loginterface." 541143611Sphilip ::= { pfLogInterface 12 } 542143611Sphilip 543143611SphilippfLogInterfaceIp6PktsOutDrop OBJECT-TYPE 544143611Sphilip SYNTAX Counter64 545143611Sphilip MAX-ACCESS read-only 546143611Sphilip STATUS current 547143611Sphilip DESCRIPTION 548143611Sphilip "Number of IPv6 packets dropped going out on the loginterface." 549143611Sphilip ::= { pfLogInterface 13 } 550143611Sphilip 551143611Sphilip-- -------------------------------------------------------------------------- 552143611Sphilip 553143611Sphilip-- 554143611Sphilip-- interfaces 555143611Sphilip-- 556143611Sphilip 557143611SphilippfInterfacesIfNumber OBJECT-TYPE 558143611Sphilip SYNTAX Integer32 559143611Sphilip MAX-ACCESS read-only 560143611Sphilip STATUS current 561143611Sphilip DESCRIPTION 562143611Sphilip "The number of network interfaces on this system." 563143611Sphilip ::= { pfInterfaces 1 } 564143611Sphilip 565143611SphilippfInterfacesIfTable OBJECT-TYPE 566143611Sphilip SYNTAX SEQUENCE OF PfInterfacesIfEntry 567143611Sphilip MAX-ACCESS not-accessible 568143611Sphilip STATUS current 569143611Sphilip DESCRIPTION 570143611Sphilip "Table of network interfaces, indexed on pfInterfacesIfNumber." 571143611Sphilip ::= { pfInterfaces 2 } 572143611Sphilip 573143611SphilippfInterfacesIfEntry OBJECT-TYPE 574143611Sphilip SYNTAX PfInterfacesIfEntry 575143611Sphilip MAX-ACCESS not-accessible 576143611Sphilip STATUS current 577143611Sphilip DESCRIPTION 578143611Sphilip "An entry in the pfInterfacesIfTable containing information 579143611Sphilip about a particular network interface in the machine." 580143611Sphilip INDEX { pfInterfacesIfIndex } 581143611Sphilip ::= { pfInterfacesIfTable 1 } 582143611Sphilip 583143611SphilipPfInterfacesIfEntry ::= SEQUENCE { 584143611Sphilip pfInterfacesIfIndex Integer32, 585143611Sphilip pfInterfacesIfDescr OCTET STRING, 586143611Sphilip pfInterfacesIfType INTEGER, 587143611Sphilip pfInterfacesIfTZero TimeTicks, 588240233Sglebius pfInterfacesIfRefsState Null, 589143611Sphilip pfInterfacesIfRefsRule Unsigned32, 590143611Sphilip pfInterfacesIf4BytesInPass Counter64, 591143611Sphilip pfInterfacesIf4BytesInBlock Counter64, 592143611Sphilip pfInterfacesIf4BytesOutPass Counter64, 593143611Sphilip pfInterfacesIf4BytesOutBlock Counter64, 594143611Sphilip pfInterfacesIf4PktsInPass Counter64, 595143611Sphilip pfInterfacesIf4PktsInBlock Counter64, 596143611Sphilip pfInterfacesIf4PktsOutPass Counter64, 597143611Sphilip pfInterfacesIf4PktsOutBlock Counter64, 598143611Sphilip pfInterfacesIf6BytesInPass Counter64, 599143611Sphilip pfInterfacesIf6BytesInBlock Counter64, 600143611Sphilip pfInterfacesIf6BytesOutPass Counter64, 601143611Sphilip pfInterfacesIf6BytesOutBlock Counter64, 602143611Sphilip pfInterfacesIf6PktsInPass Counter64, 603143611Sphilip pfInterfacesIf6PktsInBlock Counter64, 604143611Sphilip pfInterfacesIf6PktsOutPass Counter64, 605143611Sphilip pfInterfacesIf6PktsOutBlock Counter64 606143611Sphilip} 607143611Sphilip 608143611SphilippfInterfacesIfIndex OBJECT-TYPE 609143611Sphilip SYNTAX Integer32 (1..2147483647) 610143611Sphilip MAX-ACCESS not-accessible 611143611Sphilip STATUS current 612143611Sphilip DESCRIPTION 613143611Sphilip "A unique value, greater than zero, for each interface." 614143611Sphilip ::= { pfInterfacesIfEntry 1 } 615310903Sngie 616143611SphilippfInterfacesIfDescr OBJECT-TYPE 617143611Sphilip SYNTAX OCTET STRING 618143611Sphilip MAX-ACCESS read-only 619143611Sphilip STATUS current 620143611Sphilip DESCRIPTION 621143611Sphilip "The name of the interface." 622143611Sphilip ::= { pfInterfacesIfEntry 2 } 623143611Sphilip 624143611SphilippfInterfacesIfType OBJECT-TYPE 625143611Sphilip SYNTAX INTEGER { group(0), instance(1), detached(2) } 626143611Sphilip MAX-ACCESS read-only 627143611Sphilip STATUS current 628143611Sphilip DESCRIPTION 629143611Sphilip "Indicates whether the interface is a group inteface, an 630143611Sphilip interface instance, or whether it has been removed or 631143611Sphilip destroyed." 632143611Sphilip ::= { pfInterfacesIfEntry 3 } 633143611Sphilip 634143611SphilippfInterfacesIfTZero OBJECT-TYPE 635143611Sphilip SYNTAX TimeTicks 636143611Sphilip UNITS "1/100th of a Second" 637143611Sphilip MAX-ACCESS read-only 638143611Sphilip STATUS current 639143611Sphilip DESCRIPTION 640143611Sphilip "Time since statistics were last reset or since the 641143611Sphilip interface was loaded." 642143611Sphilip ::= { pfInterfacesIfEntry 4 } 643143611Sphilip 644143611SphilippfInterfacesIfRefsState OBJECT-TYPE 645143611Sphilip SYNTAX Unsigned32 646143611Sphilip MAX-ACCESS read-only 647143611Sphilip STATUS current 648143611Sphilip DESCRIPTION 649143611Sphilip "The number of state and/or source track entries referencing 650143611Sphilip this interface." 651143611Sphilip ::= { pfInterfacesIfEntry 5 } 652143611Sphilip 653143611SphilippfInterfacesIfRefsRule OBJECT-TYPE 654143611Sphilip SYNTAX Unsigned32 655143611Sphilip MAX-ACCESS read-only 656143611Sphilip STATUS current 657143611Sphilip DESCRIPTION 658143611Sphilip "The number of rules referencing this interface." 659143611Sphilip ::= { pfInterfacesIfEntry 6 } 660143611Sphilip 661143611SphilippfInterfacesIf4BytesInPass OBJECT-TYPE 662143611Sphilip SYNTAX Counter64 663143611Sphilip MAX-ACCESS read-only 664143611Sphilip STATUS current 665143611Sphilip DESCRIPTION 666143611Sphilip "The number of IPv4 bytes passed coming in on this interface." 667143611Sphilip ::= { pfInterfacesIfEntry 7 } 668143611Sphilip 669143611SphilippfInterfacesIf4BytesInBlock OBJECT-TYPE 670143611Sphilip SYNTAX Counter64 671143611Sphilip MAX-ACCESS read-only 672143611Sphilip STATUS current 673143611Sphilip DESCRIPTION 674143611Sphilip "The number of IPv4 bytes blocked coming in on this interface." 675143611Sphilip ::= { pfInterfacesIfEntry 8 } 676143611Sphilip 677143611SphilippfInterfacesIf4BytesOutPass OBJECT-TYPE 678143611Sphilip SYNTAX Counter64 679143611Sphilip MAX-ACCESS read-only 680143611Sphilip STATUS current 681143611Sphilip DESCRIPTION 682143611Sphilip "The number of IPv4 bytes passed going out on this interface." 683143611Sphilip ::= { pfInterfacesIfEntry 9 } 684143611Sphilip 685143611SphilippfInterfacesIf4BytesOutBlock OBJECT-TYPE 686143611Sphilip SYNTAX Counter64 687143611Sphilip MAX-ACCESS read-only 688143611Sphilip STATUS current 689143611Sphilip DESCRIPTION 690143611Sphilip "The number of IPv4 bytes blocked going out on this interface." 691143611Sphilip ::= { pfInterfacesIfEntry 10 } 692143611Sphilip 693143611SphilippfInterfacesIf4PktsInPass OBJECT-TYPE 694143611Sphilip SYNTAX Counter64 695143611Sphilip MAX-ACCESS read-only 696143611Sphilip STATUS current 697143611Sphilip DESCRIPTION 698143611Sphilip "The number of IPv4 packets passed coming in on this interface." 699143611Sphilip ::= { pfInterfacesIfEntry 11 } 700143611Sphilip 701143611SphilippfInterfacesIf4PktsInBlock OBJECT-TYPE 702143611Sphilip SYNTAX Counter64 703143611Sphilip MAX-ACCESS read-only 704143611Sphilip STATUS current 705143611Sphilip DESCRIPTION 706143611Sphilip "The number of IPv4 packets blocked coming in on this interface." 707143611Sphilip ::= { pfInterfacesIfEntry 12 } 708143611Sphilip 709143611SphilippfInterfacesIf4PktsOutPass OBJECT-TYPE 710143611Sphilip SYNTAX Counter64 711143611Sphilip MAX-ACCESS read-only 712143611Sphilip STATUS current 713143611Sphilip DESCRIPTION 714143611Sphilip "The number of IPv4 packets passed going out on this interface." 715143611Sphilip ::= { pfInterfacesIfEntry 13 } 716143611Sphilip 717143611SphilippfInterfacesIf4PktsOutBlock OBJECT-TYPE 718143611Sphilip SYNTAX Counter64 719143611Sphilip MAX-ACCESS read-only 720143611Sphilip STATUS current 721143611Sphilip DESCRIPTION 722143611Sphilip "The number of IPv4 packets blocked going out on this interface." 723143611Sphilip ::= { pfInterfacesIfEntry 14 } 724143611Sphilip 725143611SphilippfInterfacesIf6BytesInPass OBJECT-TYPE 726143611Sphilip SYNTAX Counter64 727143611Sphilip MAX-ACCESS read-only 728143611Sphilip STATUS current 729143611Sphilip DESCRIPTION 730143611Sphilip "The number of IPv6 bytes passed coming in on this interface." 731143611Sphilip ::= { pfInterfacesIfEntry 15 } 732143611Sphilip 733143611SphilippfInterfacesIf6BytesInBlock OBJECT-TYPE 734143611Sphilip SYNTAX Counter64 735143611Sphilip MAX-ACCESS read-only 736143611Sphilip STATUS current 737143611Sphilip DESCRIPTION 738143611Sphilip "The number of IPv6 bytes blocked coming in on this interface." 739143611Sphilip ::= { pfInterfacesIfEntry 16 } 740143611Sphilip 741143611SphilippfInterfacesIf6BytesOutPass OBJECT-TYPE 742143611Sphilip SYNTAX Counter64 743143611Sphilip MAX-ACCESS read-only 744143611Sphilip STATUS current 745143611Sphilip DESCRIPTION 746143611Sphilip "The number of IPv6 bytes passed going out on this interface." 747143611Sphilip ::= { pfInterfacesIfEntry 17 } 748143611Sphilip 749143611SphilippfInterfacesIf6BytesOutBlock OBJECT-TYPE 750143611Sphilip SYNTAX Counter64 751143611Sphilip MAX-ACCESS read-only 752143611Sphilip STATUS current 753143611Sphilip DESCRIPTION 754143611Sphilip "The number of IPv6 bytes blocked going out on this interface." 755143611Sphilip ::= { pfInterfacesIfEntry 18 } 756143611Sphilip 757143611Sphilip 758143611SphilippfInterfacesIf6PktsInPass OBJECT-TYPE 759143611Sphilip SYNTAX Counter64 760143611Sphilip MAX-ACCESS read-only 761143611Sphilip STATUS current 762143611Sphilip DESCRIPTION 763143611Sphilip "The number of IPv6 packets passed coming in on this interface." 764143611Sphilip ::= { pfInterfacesIfEntry 19 } 765143611Sphilip 766143611SphilippfInterfacesIf6PktsInBlock OBJECT-TYPE 767143611Sphilip SYNTAX Counter64 768143611Sphilip MAX-ACCESS read-only 769143611Sphilip STATUS current 770143611Sphilip DESCRIPTION 771143611Sphilip "The number of IPv6 packets blocked coming in on this interface." 772143611Sphilip ::= { pfInterfacesIfEntry 20 } 773143611Sphilip 774143611SphilippfInterfacesIf6PktsOutPass OBJECT-TYPE 775143611Sphilip SYNTAX Counter64 776143611Sphilip MAX-ACCESS read-only 777143611Sphilip STATUS current 778143611Sphilip DESCRIPTION 779143611Sphilip "The number of IPv6 packets passed going out on this interface." 780143611Sphilip ::= { pfInterfacesIfEntry 21 } 781143611Sphilip 782143611SphilippfInterfacesIf6PktsOutBlock OBJECT-TYPE 783143611Sphilip SYNTAX Counter64 784143611Sphilip MAX-ACCESS read-only 785143611Sphilip STATUS current 786143611Sphilip DESCRIPTION 787143611Sphilip "The number of IPv6 packets blocked going out on this interface." 788143611Sphilip ::= { pfInterfacesIfEntry 22 } 789143611Sphilip 790143611Sphilip-- -------------------------------------------------------------------------- 791143611Sphilip 792143611Sphilip-- 793143611Sphilip-- tables 794143611Sphilip-- 795143611Sphilip 796143611SphilippfTablesTblNumber OBJECT-TYPE 797143611Sphilip SYNTAX Integer32 798143611Sphilip MAX-ACCESS read-only 799143611Sphilip STATUS current 800143611Sphilip DESCRIPTION 801143611Sphilip "The number of tables on this system." 802143611Sphilip ::= { pfTables 1 } 803143611Sphilip 804143611SphilippfTablesTblTable OBJECT-TYPE 805143611Sphilip SYNTAX SEQUENCE OF PfTablesTblEntry 806143611Sphilip MAX-ACCESS not-accessible 807143611Sphilip STATUS current 808143611Sphilip DESCRIPTION 809143611Sphilip "Table of tables, index on pfTablesTblIndex." 810143611Sphilip ::= { pfTables 2 } 811143611Sphilip 812143611SphilippfTablesTblEntry OBJECT-TYPE 813143611Sphilip SYNTAX PfTablesTblEntry 814143611Sphilip MAX-ACCESS not-accessible 815143611Sphilip STATUS current 816143611Sphilip DESCRIPTION 817143611Sphilip "Any entry in the pfTablesTblTable containing information 818143611Sphilip about a particular table on the system." 819143611Sphilip INDEX { pfTablesTblIndex } 820143611Sphilip ::= { pfTablesTblTable 1 } 821143611Sphilip 822143611SphilipPfTablesTblEntry ::= SEQUENCE { 823143611Sphilip pfTablesTblIndex Integer32, 824143611Sphilip pfTablesTblDescr OCTET STRING, 825143611Sphilip pfTablesTblCount Integer32, 826143611Sphilip pfTablesTblTZero TimeTicks, 827143611Sphilip pfTablesTblRefsAnchor Integer32, 828143611Sphilip pfTablesTblRefsRule Integer32, 829143611Sphilip pfTablesTblEvalMatch Counter64, 830143611Sphilip pfTablesTblEvalNoMatch Counter64, 831143611Sphilip pfTablesTblBytesInPass Counter64, 832143611Sphilip pfTablesTblBytesInBlock Counter64, 833143611Sphilip pfTablesTblBytesInXPass Counter64, 834143611Sphilip pfTablesTblBytesOutPass Counter64, 835143611Sphilip pfTablesTblBytesOutBlock Counter64, 836143611Sphilip pfTablesTblBytesOutXPass Counter64, 837143611Sphilip pfTablesTblPktsInPass Counter64, 838143611Sphilip pfTablesTblPktsInBlock Counter64, 839143611Sphilip pfTablesTblPktsInXPass Counter64, 840143611Sphilip pfTablesTblPktsOutPass Counter64, 841143611Sphilip pfTablesTblPktsOutBlock Counter64, 842143611Sphilip pfTablesTblPktsOutXPass Counter64 843143611Sphilip} 844143611Sphilip 845143611SphilippfTablesTblIndex OBJECT-TYPE 846143611Sphilip SYNTAX Integer32 (1..2147483647) 847143611Sphilip MAX-ACCESS not-accessible 848143611Sphilip STATUS current 849143611Sphilip DESCRIPTION 850143611Sphilip "A unique value, greater than zero, for each table." 851143611Sphilip ::= { pfTablesTblEntry 1 } 852143611Sphilip 853143611SphilippfTablesTblDescr OBJECT-TYPE 854143611Sphilip SYNTAX OCTET STRING 855143611Sphilip MAX-ACCESS read-only 856143611Sphilip STATUS current 857143611Sphilip DESCRIPTION 858143611Sphilip "The name of the table." 859143611Sphilip ::= { pfTablesTblEntry 2 } 860143611Sphilip 861143611SphilippfTablesTblCount OBJECT-TYPE 862143611Sphilip SYNTAX Integer32 863143611Sphilip MAX-ACCESS read-only 864143611Sphilip STATUS current 865143611Sphilip DESCRIPTION 866143611Sphilip "The number of addresses in the table." 867143611Sphilip ::= { pfTablesTblEntry 3 } 868143611Sphilip 869143611SphilippfTablesTblTZero OBJECT-TYPE 870143611Sphilip SYNTAX TimeTicks 871143611Sphilip UNITS "1/100th of a Second" 872143611Sphilip MAX-ACCESS read-only 873143611Sphilip STATUS current 874143611Sphilip DESCRIPTION 875143611Sphilip "The time passed since the statistics of this table were last 876143611Sphilip cleared or the time since this table was loaded, whichever is 877143611Sphilip sooner." 878143611Sphilip ::= { pfTablesTblEntry 4 } 879310903Sngie 880143611SphilippfTablesTblRefsAnchor OBJECT-TYPE 881143611Sphilip SYNTAX Integer32 882143611Sphilip MAX-ACCESS read-only 883143611Sphilip STATUS current 884143611Sphilip DESCRIPTION 885143611Sphilip "The number of anchors referencing this table." 886143611Sphilip ::= { pfTablesTblEntry 5 } 887143611Sphilip 888143611SphilippfTablesTblRefsRule OBJECT-TYPE 889143611Sphilip SYNTAX Integer32 890143611Sphilip MAX-ACCESS read-only 891143611Sphilip STATUS current 892143611Sphilip DESCRIPTION 893143611Sphilip "The number of rules referencing this table." 894143611Sphilip ::= { pfTablesTblEntry 6 } 895143611Sphilip 896143611SphilippfTablesTblEvalMatch OBJECT-TYPE 897143611Sphilip SYNTAX Counter64 898143611Sphilip MAX-ACCESS read-only 899143611Sphilip STATUS current 900143611Sphilip DESCRIPTION 901143611Sphilip "The number of evaluations returning a match." 902143611Sphilip ::= { pfTablesTblEntry 7 } 903143611Sphilip 904143611SphilippfTablesTblEvalNoMatch OBJECT-TYPE 905143611Sphilip SYNTAX Counter64 906143611Sphilip MAX-ACCESS read-only 907143611Sphilip STATUS current 908143611Sphilip DESCRIPTION 909143611Sphilip "The number of evaluations not returning a match." 910143611Sphilip ::= { pfTablesTblEntry 8 } 911143611Sphilip 912143611SphilippfTablesTblBytesInPass OBJECT-TYPE 913143611Sphilip SYNTAX Counter64 914143611Sphilip MAX-ACCESS read-only 915143611Sphilip STATUS current 916143611Sphilip DESCRIPTION 917143611Sphilip "The number of bytes passed in matching the table." 918143611Sphilip ::= { pfTablesTblEntry 9 } 919143611Sphilip 920143611SphilippfTablesTblBytesInBlock OBJECT-TYPE 921143611Sphilip SYNTAX Counter64 922143611Sphilip MAX-ACCESS read-only 923143611Sphilip STATUS current 924143611Sphilip DESCRIPTION 925143611Sphilip "The number of bytes blocked coming in matching the table." 926143611Sphilip ::= { pfTablesTblEntry 10 } 927143611Sphilip 928143611SphilippfTablesTblBytesInXPass OBJECT-TYPE 929143611Sphilip SYNTAX Counter64 930143611Sphilip MAX-ACCESS read-only 931143611Sphilip STATUS current 932143611Sphilip DESCRIPTION 933143611Sphilip "The number of bytes statefully passed in where the state 934143611Sphilip entry refers to the table, but the table no longer contains 935143611Sphilip the address in question." 936143611Sphilip ::= { pfTablesTblEntry 11 } 937143611Sphilip 938143611SphilippfTablesTblBytesOutPass OBJECT-TYPE 939143611Sphilip SYNTAX Counter64 940143611Sphilip MAX-ACCESS read-only 941143611Sphilip STATUS current 942143611Sphilip DESCRIPTION 943143611Sphilip "The number of bytes passed out matching the table." 944143611Sphilip ::= { pfTablesTblEntry 12 } 945143611Sphilip 946143611SphilippfTablesTblBytesOutBlock OBJECT-TYPE 947143611Sphilip SYNTAX Counter64 948143611Sphilip MAX-ACCESS read-only 949143611Sphilip STATUS current 950143611Sphilip DESCRIPTION 951143611Sphilip "The number of bytes blocked going out matching the table." 952143611Sphilip ::= { pfTablesTblEntry 13 } 953143611Sphilip 954143611SphilippfTablesTblBytesOutXPass OBJECT-TYPE 955143611Sphilip SYNTAX Counter64 956143611Sphilip MAX-ACCESS read-only 957143611Sphilip STATUS current 958143611Sphilip DESCRIPTION 959143611Sphilip "The number of bytes statefully passed out where the state 960143611Sphilip entry refers to the table, but the table no longer contains 961143611Sphilip the address in question." 962143611Sphilip ::= { pfTablesTblEntry 14 } 963143611Sphilip 964143611SphilippfTablesTblPktsInPass OBJECT-TYPE 965143611Sphilip SYNTAX Counter64 966143611Sphilip MAX-ACCESS read-only 967143611Sphilip STATUS current 968143611Sphilip DESCRIPTION 969143611Sphilip "The number of packets passed in matching the table." 970143611Sphilip ::= { pfTablesTblEntry 15 } 971143611Sphilip 972143611SphilippfTablesTblPktsInBlock OBJECT-TYPE 973143611Sphilip SYNTAX Counter64 974143611Sphilip MAX-ACCESS read-only 975143611Sphilip STATUS current 976143611Sphilip DESCRIPTION 977143611Sphilip "The number of packets blocked coming in matching the table." 978143611Sphilip ::= { pfTablesTblEntry 16 } 979143611Sphilip 980143611SphilippfTablesTblPktsInXPass OBJECT-TYPE 981143611Sphilip SYNTAX Counter64 982143611Sphilip MAX-ACCESS read-only 983143611Sphilip STATUS current 984143611Sphilip DESCRIPTION 985143611Sphilip "The number of packets statefully passed in where the state 986143611Sphilip entry refers to the table, but the table no longer contains 987143611Sphilip the address in question." 988143611Sphilip ::= { pfTablesTblEntry 17 } 989143611Sphilip 990143611SphilippfTablesTblPktsOutPass OBJECT-TYPE 991143611Sphilip SYNTAX Counter64 992143611Sphilip MAX-ACCESS read-only 993143611Sphilip STATUS current 994143611Sphilip DESCRIPTION 995143611Sphilip "The number of packets passed out matching the table." 996143611Sphilip ::= { pfTablesTblEntry 18 } 997143611Sphilip 998143611SphilippfTablesTblPktsOutBlock OBJECT-TYPE 999143611Sphilip SYNTAX Counter64 1000143611Sphilip MAX-ACCESS read-only 1001143611Sphilip STATUS current 1002143611Sphilip DESCRIPTION 1003143611Sphilip "The number of packets blocked going out matching the table." 1004143611Sphilip ::= { pfTablesTblEntry 19 } 1005143611Sphilip 1006143611SphilippfTablesTblPktsOutXPass OBJECT-TYPE 1007143611Sphilip SYNTAX Counter64 1008143611Sphilip MAX-ACCESS read-only 1009143611Sphilip STATUS current 1010143611Sphilip DESCRIPTION 1011143611Sphilip "The number of packets statefully passed out where the state 1012143611Sphilip entry refers to the table, but the table no longer contains 1013143611Sphilip the address in question." 1014143611Sphilip ::= { pfTablesTblEntry 20 } 1015143611Sphilip 1016143611SphilippfTablesAddrTable OBJECT-TYPE 1017143611Sphilip SYNTAX SEQUENCE OF PfTablesAddrEntry 1018143611Sphilip MAX-ACCESS not-accessible 1019143611Sphilip STATUS current 1020143611Sphilip DESCRIPTION 1021143611Sphilip "Table of addresses from every table on the system." 1022143611Sphilip ::= { pfTables 3 } 1023143611Sphilip 1024143611SphilippfTablesAddrEntry OBJECT-TYPE 1025143611Sphilip SYNTAX PfTablesAddrEntry 1026143611Sphilip MAX-ACCESS not-accessible 1027143611Sphilip STATUS current 1028143611Sphilip DESCRIPTION 1029143611Sphilip "An entry in the pfTablesAddrTable containing information 1030143611Sphilip about a particular entry in a table." 1031143611Sphilip INDEX { pfTablesAddrIndex } 1032143611Sphilip ::= { pfTablesAddrTable 1 } 1033143611Sphilip 1034143611SphilipPfTablesAddrEntry ::= SEQUENCE { 1035143611Sphilip pfTablesAddrIndex Integer32, 1036205607Ssyrinx pfTablesAddrNetType InetAddressType, 1037205607Ssyrinx pfTablesAddrNet InetAddress, 1038205607Ssyrinx pfTablesAddrPrefix InetAddressPrefixLength, 1039143611Sphilip pfTablesAddrTZero TimeTicks, 1040143611Sphilip pfTablesAddrBytesInPass Counter64, 1041143611Sphilip pfTablesAddrBytesInBlock Counter64, 1042143611Sphilip pfTablesAddrBytesOutPass Counter64, 1043143611Sphilip pfTablesAddrBytesOutBlock Counter64, 1044143611Sphilip pfTablesAddrPktsInPass Counter64, 1045143611Sphilip pfTablesAddrPktsInBlock Counter64, 1046143611Sphilip pfTablesAddrPktsOutPass Counter64, 1047143611Sphilip pfTablesAddrPktsOutBlock Counter64 1048143611Sphilip} 1049143611Sphilip 1050143611SphilippfTablesAddrIndex OBJECT-TYPE 1051143611Sphilip SYNTAX Integer32 (1..2147483647) 1052143611Sphilip MAX-ACCESS not-accessible 1053143611Sphilip STATUS current 1054143611Sphilip DESCRIPTION 1055143611Sphilip "A unique value, greater than zero, for each address." 1056143611Sphilip ::= { pfTablesAddrEntry 1 } 1057143611Sphilip 1058205607SsyrinxpfTablesAddrNetType OBJECT-TYPE 1059205607Ssyrinx SYNTAX InetAddressType 1060205607Ssyrinx MAX-ACCESS read-only 1061205607Ssyrinx STATUS current 1062205607Ssyrinx DESCRIPTION 1063205607Ssyrinx "The type of address in the corresponding pfTablesAddrNet object." 1064205607Ssyrinx ::= { pfTablesAddrEntry 2 } 1065205607Ssyrinx 1066143611SphilippfTablesAddrNet OBJECT-TYPE 1067205607Ssyrinx SYNTAX InetAddress 1068143611Sphilip MAX-ACCESS read-only 1069143611Sphilip STATUS current 1070143611Sphilip DESCRIPTION 1071143611Sphilip "The IP address of this particular table entry." 1072205607Ssyrinx ::= { pfTablesAddrEntry 3 } 1073143611Sphilip 1074205607SsyrinxpfTablesAddrPrefix OBJECT-TYPE 1075205607Ssyrinx SYNTAX InetAddressPrefixLength 1076143611Sphilip MAX-ACCESS read-only 1077143611Sphilip STATUS current 1078143611Sphilip DESCRIPTION 1079143611Sphilip "The CIDR netmask of this particular table entry." 1080205607Ssyrinx ::= { pfTablesAddrEntry 4 } 1081143611Sphilip 1082143611SphilippfTablesAddrTZero OBJECT-TYPE 1083143611Sphilip SYNTAX TimeTicks 1084143611Sphilip UNITS "1/100th of a Second" 1085143611Sphilip MAX-ACCESS read-only 1086143611Sphilip STATUS current 1087143611Sphilip DESCRIPTION 1088143611Sphilip "The time passed since this entry's statistics were last 1089143611Sphilip cleared, or the time passed since this entry was loaded 1090143611Sphilip into the table, whichever is sooner." 1091205607Ssyrinx ::= { pfTablesAddrEntry 5 } 1092143611Sphilip 1093143611SphilippfTablesAddrBytesInPass OBJECT-TYPE 1094143611Sphilip SYNTAX Counter64 1095143611Sphilip MAX-ACCESS read-only 1096143611Sphilip STATUS current 1097143611Sphilip DESCRIPTION 1098143611Sphilip "The number of inbound bytes passed as a result of this entry." 1099205607Ssyrinx ::= { pfTablesAddrEntry 6 } 1100143611Sphilip 1101143611SphilippfTablesAddrBytesInBlock OBJECT-TYPE 1102143611Sphilip SYNTAX Counter64 1103143611Sphilip MAX-ACCESS read-only 1104143611Sphilip STATUS current 1105143611Sphilip DESCRIPTION 1106143611Sphilip "The number of inbound bytes blocked as a result of this entry." 1107205607Ssyrinx ::= { pfTablesAddrEntry 7 } 1108143611Sphilip 1109143611SphilippfTablesAddrBytesOutPass OBJECT-TYPE 1110143611Sphilip SYNTAX Counter64 1111143611Sphilip MAX-ACCESS read-only 1112143611Sphilip STATUS current 1113143611Sphilip DESCRIPTION 1114143611Sphilip "The number of outbound bytes passed as a result of this entry." 1115205607Ssyrinx ::= { pfTablesAddrEntry 8 } 1116143611Sphilip 1117143611SphilippfTablesAddrBytesOutBlock OBJECT-TYPE 1118143611Sphilip SYNTAX Counter64 1119143611Sphilip MAX-ACCESS read-only 1120143611Sphilip STATUS current 1121143611Sphilip DESCRIPTION 1122143611Sphilip "The number of outbound bytes blocked as a result of this entry." 1123205607Ssyrinx ::= { pfTablesAddrEntry 9 } 1124143611Sphilip 1125143611SphilippfTablesAddrPktsInPass OBJECT-TYPE 1126143611Sphilip SYNTAX Counter64 1127143611Sphilip MAX-ACCESS read-only 1128143611Sphilip STATUS current 1129143611Sphilip DESCRIPTION 1130143611Sphilip "The number of inbound packets passed as a result of this entry." 1131205607Ssyrinx ::= { pfTablesAddrEntry 10 } 1132143611Sphilip 1133143611SphilippfTablesAddrPktsInBlock OBJECT-TYPE 1134143611Sphilip SYNTAX Counter64 1135143611Sphilip MAX-ACCESS read-only 1136143611Sphilip STATUS current 1137143611Sphilip DESCRIPTION 1138143611Sphilip "The number of inbound packets blocked as a result of this entry." 1139205607Ssyrinx ::= { pfTablesAddrEntry 11 } 1140143611Sphilip 1141143611SphilippfTablesAddrPktsOutPass OBJECT-TYPE 1142143611Sphilip SYNTAX Counter64 1143143611Sphilip MAX-ACCESS read-only 1144143611Sphilip STATUS current 1145143611Sphilip DESCRIPTION 1146143611Sphilip "The number of outbound packets passed as a result of this entry." 1147205607Ssyrinx ::= { pfTablesAddrEntry 12 } 1148143611Sphilip 1149143611SphilippfTablesAddrPktsOutBlock OBJECT-TYPE 1150143611Sphilip SYNTAX Counter64 1151143611Sphilip MAX-ACCESS read-only 1152143611Sphilip STATUS current 1153143611Sphilip DESCRIPTION 1154143611Sphilip "The number of outbound packets blocked as a result of this 1155143611Sphilip entry." 1156205607Ssyrinx ::= { pfTablesAddrEntry 13 } 1157143611Sphilip 1158143611Sphilip-- -------------------------------------------------------------------------- 1159143611Sphilip 1160143611Sphilip-- 1161143611Sphilip-- Altq information 1162143611Sphilip-- 1163143611Sphilip 1164143611SphilippfAltqQueueNumber OBJECT-TYPE 1165143611Sphilip SYNTAX Unsigned32 1166143611Sphilip MAX-ACCESS read-only 1167143611Sphilip STATUS current 1168143611Sphilip DESCRIPTION 1169143611Sphilip "The number of queues in the active set." 1170143611Sphilip ::= { pfAltq 1 } 1171143611Sphilip 1172143611SphilippfAltqQueueTable OBJECT-TYPE 1173143611Sphilip SYNTAX SEQUENCE OF PfAltqQueueEntry 1174143611Sphilip MAX-ACCESS not-accessible 1175143611Sphilip STATUS current 1176143611Sphilip DESCRIPTION 1177143611Sphilip "Table containing the rules that are active on this system." 1178143611Sphilip ::= { pfAltq 2 } 1179143611Sphilip 1180143611SphilippfAltqQueueEntry OBJECT-TYPE 1181143611Sphilip SYNTAX PfAltqQueueEntry 1182143611Sphilip MAX-ACCESS not-accessible 1183143611Sphilip STATUS current 1184143611Sphilip DESCRIPTION 1185143611Sphilip "An entry in the pfAltqQueueTable table." 1186143611Sphilip INDEX { pfAltqQueueIndex } 1187143611Sphilip ::= { pfAltqQueueTable 1 } 1188143611Sphilip 1189143611SphilipPfAltqQueueEntry ::= SEQUENCE { 1190143611Sphilip pfAltqQueueIndex Integer32, 1191143611Sphilip pfAltqQueueDescr OCTET STRING, 1192143611Sphilip pfAltqQueueParent OCTET STRING, 1193143611Sphilip pfAltqQueueScheduler INTEGER, 1194143611Sphilip pfAltqQueueBandwidth Unsigned32, 1195143611Sphilip pfAltqQueuePriority Integer32, 1196143611Sphilip pfAltqQueueLimit Integer32 1197143611Sphilip} 1198143611Sphilip 1199143611SphilippfAltqQueueIndex OBJECT-TYPE 1200143611Sphilip SYNTAX Integer32 (1..2147483647) 1201143611Sphilip MAX-ACCESS not-accessible 1202143611Sphilip STATUS current 1203143611Sphilip DESCRIPTION 1204143611Sphilip "A unique value, greater than zero, for each queue." 1205143611Sphilip ::= { pfAltqQueueEntry 1 } 1206143611Sphilip 1207143611SphilippfAltqQueueDescr OBJECT-TYPE 1208143611Sphilip SYNTAX OCTET STRING 1209143611Sphilip MAX-ACCESS read-only 1210143611Sphilip STATUS current 1211143611Sphilip DESCRIPTION 1212143611Sphilip "The name of the queue." 1213143611Sphilip ::= { pfAltqQueueEntry 2 } 1214143611Sphilip 1215143611SphilippfAltqQueueParent OBJECT-TYPE 1216143611Sphilip SYNTAX OCTET STRING 1217143611Sphilip MAX-ACCESS read-only 1218143611Sphilip STATUS current 1219143611Sphilip DESCRIPTION 1220143611Sphilip "Name of the queue's parent if it has one." 1221143611Sphilip ::= { pfAltqQueueEntry 3 } 1222143611Sphilip 1223143611SphilippfAltqQueueScheduler OBJECT-TYPE 1224143611Sphilip SYNTAX INTEGER { cbq(1), hfsc(8), priq(11) } 1225143611Sphilip MAX-ACCESS read-only 1226143611Sphilip STATUS current 1227143611Sphilip DESCRIPTION 1228143611Sphilip "Scheduler algorithm implemented by this queue." 1229143611Sphilip ::= { pfAltqQueueEntry 4 } 1230143611Sphilip 1231143611SphilippfAltqQueueBandwidth OBJECT-TYPE 1232143611Sphilip SYNTAX Unsigned32 1233143611Sphilip MAX-ACCESS read-only 1234143611Sphilip STATUS current 1235143611Sphilip DESCRIPTION 1236143611Sphilip "Bandwitch assigned to this queue." 1237143611Sphilip ::= { pfAltqQueueEntry 5 } 1238143611Sphilip 1239143611SphilippfAltqQueuePriority OBJECT-TYPE 1240143611Sphilip SYNTAX Integer32 1241143611Sphilip MAX-ACCESS read-only 1242143611Sphilip STATUS current 1243143611Sphilip DESCRIPTION 1244143611Sphilip "Priority level of the queue." 1245143611Sphilip ::= { pfAltqQueueEntry 6 } 1246143611Sphilip 1247143611SphilippfAltqQueueLimit OBJECT-TYPE 1248143611Sphilip SYNTAX Integer32 1249143611Sphilip MAX-ACCESS read-only 1250143611Sphilip STATUS current 1251143611Sphilip DESCRIPTION 1252143611Sphilip "Maximum number of packets in the queue." 1253143611Sphilip ::= { pfAltqQueueEntry 7 } 1254143611Sphilip 1255205280SsyrinxpfLabelsLblNumber OBJECT-TYPE 1256205280Ssyrinx SYNTAX Integer32 1257205280Ssyrinx MAX-ACCESS read-only 1258205280Ssyrinx STATUS current 1259205280Ssyrinx DESCRIPTION 1260205280Ssyrinx "The number of labeled filter rules on this system." 1261205280Ssyrinx ::= { pfLabels 1 } 1262205280Ssyrinx 1263205280SsyrinxpfLabelsLblTable OBJECT-TYPE 1264205280Ssyrinx SYNTAX SEQUENCE OF PfLabelsLblEntry 1265205280Ssyrinx MAX-ACCESS not-accessible 1266205280Ssyrinx STATUS current 1267205280Ssyrinx DESCRIPTION 1268205280Ssyrinx "Table of filter rules, index on pfLabelsLblIndex." 1269205280Ssyrinx ::= { pfLabels 2 } 1270205280Ssyrinx 1271205280SsyrinxpfLabelsLblEntry OBJECT-TYPE 1272205280Ssyrinx SYNTAX PfLabelsLblEntry 1273205280Ssyrinx MAX-ACCESS not-accessible 1274205280Ssyrinx STATUS current 1275205280Ssyrinx DESCRIPTION 1276205280Ssyrinx "Any entry in the pfLabelsLblTable containing information 1277205280Ssyrinx about a particular filter rule on the system." 1278205280Ssyrinx INDEX { pfLabelsLblIndex } 1279205280Ssyrinx ::= { pfLabelsLblTable 1 } 1280205280Ssyrinx 1281205280SsyrinxPfLabelsLblEntry ::= SEQUENCE { 1282205280Ssyrinx pfLabelsLblIndex Integer32, 1283205280Ssyrinx pfLabelsLblName OCTET STRING, 1284205280Ssyrinx pfLabelsLblEvals Counter64, 1285205280Ssyrinx pfLabelsLblBytesIn Counter64, 1286205280Ssyrinx pfLabelsLblBytesOut Counter64, 1287205280Ssyrinx pfLabelsLblPktsIn Counter64, 1288205280Ssyrinx pfLabelsLblPktsOut Counter64 1289205280Ssyrinx} 1290205280Ssyrinx 1291205280SsyrinxpfLabelsLblIndex OBJECT-TYPE 1292205280Ssyrinx SYNTAX Integer32 (1..2147483647) 1293205280Ssyrinx MAX-ACCESS not-accessible 1294205280Ssyrinx STATUS current 1295205280Ssyrinx DESCRIPTION 1296205280Ssyrinx "A unique value, greater than zero, for each label." 1297310903Sngie ::= { pfLabelsLblEntry 1 } 1298205280Ssyrinx 1299205280SsyrinxpfLabelsLblName OBJECT-TYPE 1300205280Ssyrinx SYNTAX OCTET STRING 1301205280Ssyrinx MAX-ACCESS read-only 1302205280Ssyrinx STATUS current 1303205280Ssyrinx DESCRIPTION 1304205280Ssyrinx "The name of the rule label." 1305205280Ssyrinx ::= { pfLabelsLblEntry 2 } 1306205280Ssyrinx 1307205280SsyrinxpfLabelsLblEvals OBJECT-TYPE 1308205280Ssyrinx SYNTAX Counter64 1309205280Ssyrinx MAX-ACCESS read-only 1310205280Ssyrinx STATUS current 1311205280Ssyrinx DESCRIPTION 1312205280Ssyrinx "The number of rule evaluations." 1313205280Ssyrinx ::= { pfLabelsLblEntry 3 } 1314205280Ssyrinx 1315205280SsyrinxpfLabelsLblBytesIn OBJECT-TYPE 1316205280Ssyrinx SYNTAX Counter64 1317205280Ssyrinx MAX-ACCESS read-only 1318205280Ssyrinx STATUS current 1319205280Ssyrinx DESCRIPTION 1320205280Ssyrinx "The number of incoming bytes matched by the rule." 1321205280Ssyrinx ::= { pfLabelsLblEntry 4 } 1322205280Ssyrinx 1323205280SsyrinxpfLabelsLblBytesOut OBJECT-TYPE 1324205280Ssyrinx SYNTAX Counter64 1325205280Ssyrinx MAX-ACCESS read-only 1326205280Ssyrinx STATUS current 1327205280Ssyrinx DESCRIPTION 1328205280Ssyrinx "The number of outgoing bytes matched by the rule." 1329205280Ssyrinx ::= { pfLabelsLblEntry 5 } 1330205280Ssyrinx 1331205280SsyrinxpfLabelsLblPktsIn OBJECT-TYPE 1332205280Ssyrinx SYNTAX Counter64 1333205280Ssyrinx MAX-ACCESS read-only 1334205280Ssyrinx STATUS current 1335205280Ssyrinx DESCRIPTION 1336205280Ssyrinx "The number of incoming packets matched by the rule." 1337205280Ssyrinx ::= { pfLabelsLblEntry 6 } 1338205280Ssyrinx 1339205280SsyrinxpfLabelsLblPktsOut OBJECT-TYPE 1340205280Ssyrinx SYNTAX Counter64 1341205280Ssyrinx MAX-ACCESS read-only 1342205280Ssyrinx STATUS current 1343205280Ssyrinx DESCRIPTION 1344205280Ssyrinx "The number of outgoing packets matched by the rule." 1345205280Ssyrinx ::= { pfLabelsLblEntry 7 } 1346205280Ssyrinx 1347143611SphilipEND 1348