Table of Contents
Advertisement
Chapter 13
SNMP
Table 13-5
15600 SNMPv2 Trap Variable Bindings (continued)
Group
Associated Trap Name(s)
F
All other traps (from
CERENT-600-MIB) not
listed above
13.8 Proxy Over Firewalls
SNMP and NMS applications have traditionally been unable to cross firewalls used for isolating security
risks inside or from outside networks. Release 7.0 CTC enables network operations centers (NOCs) to
access performance monitoring data such as RMON statistics or autonomous messages across firewalls
by using an SNMP proxy element installed on a firewall.
The application-level proxy transports SNMP protocol data units (PDU) between the NMS and NEs,
allowing requests and responses between the NMS and NEs and forwarding NE autonomous messages
to the NMS. The proxy agent requires little provisioning at the NOC and no additional provisioning at
the NEs.
The firewall proxy is intended for use in a gateway network element-end network element (GNE-ENE)
topology with many NEs through a single NE gateway. Up to 64 SNMP requests (such as get, getnext,
or getbulk) are supported at any time behind single or multiple firewalls. The proxy interoperates with
common NMS such as HP OpenView.
(Variable
Binding
Number)
SNMPv2 Variable Bindings Description
(1)
cerentGenericNodeTime
(2)
cerentGenericAlarmState
(3)
cerentGenericAlarmObject
Type
(4)
cerentGenericAlarmObject
Index
(5)
cerentGenericAalrmSlot
Number
(6)
cerentGenericAlarmPort
Number
(7)
cerentGenericAlarmLine
Number
(8)
cerentGenericAlarmObject
Name
(9)
snmpTrapAddress
13.8 Proxy Over Firewalls
The time that an event occurred.
The alarm severity and service-affecting status.
Severities are Minor (MN), Major (MJ), and
Critical (CR). Service-affecting statuses are
Service-Affecting (SA) and Non-Service
Affecting (NSA).
The entity that raised the alarm. The NMS
should use this value to decide which table to
poll for further information about the alarm.
Every alarm is raised by an object entry in a
specific table. This variable is the index of
objects in each table; if the alarm is
interface-related, this is the index of the
interface in the interface table.
The slot of the object that raised the alarm. If a
slot is not relevant to the alarm, the slot number
is zero.
The port of the object that raised the alarm. If a
port is not relevant to the alarm, the port number
is zero.
The object line that raised the alarm. If a line is
not relevant to the alarm, the line number is
zero.
The TL1-style user-visible name that uniquely
identifies an object in the system.
The address of the SNMP trap.
Cisco ONS 15600 Reference Manual, R7.0
13-11
Advertisement
Table of Contents
