>> MIB - Management Information Base

>> Table: ikeSaTable - (.1.3.6.1.4.1.272.4.26.4.1)

Description: This object contains an IKE security association.

ikeSaTable
OIDNameTypeAccess
.1IndexINTEGERR
.3StateENUMD
.4XchTypeENUMR
.5AuthMethodENUMR
.6AlgsDisplayStringR
.7RoleENUMR
.8LocalIdDisplayStringR
.9RemoteIdDisplayStringR
.10LocalIpIpAddressR
.11RemoteIpIpAddressR
.12CookieIOCTET STRINGR
.13CookieROCTET STRINGR
.14TimesDisplayStringR
.15NumCertsINTEGERR
.16NumNegotiationsINTEGERR
.17BytesINTEGERR
.18MajVersionINTEGERR
.19MinVersionINTEGERR
.20PeerIndexINTEGERR
.21TrafficIndexINTEGERR
.22HeartbeatsSentINTEGERR
.23HeartbeatsReceivedINTEGERR

Index
A unique index for this entry.
State
This object specifies the state of the SA.
Possible values:
negotiating(1),        -- the SA is still being negotiated
established(2),        -- the SA negotiation is finished
waiting-for-remove(3), -- the SA is waiting for removal
delete(7)	          -- mark the SA for deletion.
Enumerations:
  • negotiating (1)
  • established (2)
  • waiting-for-remove (3)
  • delete (7)
XchType
The exchange mode used to create the SA.
Possible values:
base(1),	           -- IKE base mode mode
id-protect(2),	   -- IKE identity protection 
-- (oakley main mode)
authentication-only(3), -- Authentication only mode
aggressive(4),	   -- IKE (oakley) aggressive mode
info(5),		   -- IKE informational exchange  mode
quick(32),		   -- IKE quick mode
new-group(33),	   -- IKE new group mode
any(256)		   -- Other mode.
Enumerations:
  • base (1)
  • id-protect (2)
  • authentication-only (3)
  • aggressive (4)
  • info (5)
  • quick (32)
  • new-group (33)
  • any (256)
AuthMethod
The authenticatin method used when negotiating this SA.
Possible values:
pre-sh-key(1), 	-- Authentication using pre shared keys
dss-sig(2), 	  -- Authentication using DSS signatures
rsa-sig(3), 	  -- Authentication using RSA signatures
rsa-enc(4), 	  -- Authentication using RSA encryption
rsa-enc-rev(5) -- Authentication using revised RSA encryption.
Enumerations:
  • pre-sh-key (1)
  • dss-sig (2)
  • rsa-sig (3)
  • rsa-enc (4)
  • rsa-enc-rev (5)
Algs
The names of the encryption and hash algorithm and of the prf.
Role
This object specifies by which side the SA
negotiation was initiated.
Possible values:
initiator(1), -- this end	initiated the SA negotiation 
responder(2)  -- the remote end initiated the SA negotiation.
Enumerations:
  • initiator (1)
  • responder (2)
LocalId
The local ID used for authentication.
RemoteId
The remote ID used for authentication.
LocalIp
The local IP address used in the IKE communication.
RemoteIp
The remote IP address used in the IKE communication.
CookieI
The cookie of the initiator.
CookieR
The cookie of the responder.
Times
The creation time and last used time of the SA in human 
readable format.
NumCerts
The number of certificates received from the remote
side when negotiating this SA.
NumNegotiations
This object specifies the number of currently active 
negotiations for this SA.
Bytes
Number of bytes transmitted using this SA.
MajVersion
The IKE major version number.
MinVersion
The IKE minor version number.
PeerIndex
The index of the peer for which this SA was created.
TrafficIndex
The index of the traffic entry for which this SA was created.
HeartbeatsSent
Number of Heartbeats sent over this SA.
HeartbeatsReceived
Number of Heartbeats received over this SA.


Copyright ©2003 by BinTec Access Networks GmbH
This page was last modified on: 11.03.2003 by Projectmanager Maintenance