>> MIB - Management Information Base

>> Table: sapDenyTable - (.1.3.6.1.4.1.272.4.9.6.1)

sapDenyTable
OIDNameTypeAccess
.1IfIndexModeENUMD
.2IfIndexINTEGERRW
.3DirectionENUMRW
.4TypeModeENUMRW
.5TypeOCTET STRINGRW
.6NetModeENUMRW
.7NetOCTET STRINGRW
.8NodeModeENUMRW
.9NodeOCTET STRINGRW
.10SockModeENUMRW
.11SockOCTET STRINGRW
.12NameDisplayStringRW

IfIndexMode
dont_verify:  the interface index is not verified
verify:       the interface index is not verified
delete:       delete this rule
Enumerations:
  • dont-verify (1)
  • verify (2)
  • delete (3)
IfIndex
This rule is applied to services originating and/or
(see sapDenyDirection) destined for the interface
with this index. 
Direction
dont_verify:  the direction is not verified
outgoing:     this rule is applied to services being sent
incoming:     this rule is applied to incoming services
both:         this rule is applied to incoming and outgoing services
Enumerations:
  • dont-verify (1)
  • outgoing (2)
  • incoming (3)
  • both (4)
TypeMode
dont_verify: don't check service type
verify:      check service type
Enumerations:
  • dont-verify (1)
  • verify (2)
Type
The service type to be checked. Examples: 
4: file server
7: print server
NetMode
dont_verify: don't check network number
verify:      check network number
Enumerations:
  • dont-verify (1)
  • verify (2)
Net
the service's network number to be checked
NodeMode
dont_verify: don't check node number
verify:      check node number
Enumerations:
  • dont-verify (1)
  • verify (2)
Node
the service's node number to be checked
SockMode
dont_verify: don't check socket number
verify:      check socket number
Enumerations:
  • dont-verify (1)
  • verify (2)
Sock
the service's socket number to be checked
Name
Instead of entering Type/Net/Node/Socket directly,
you could fill in the server name here. The
Type/Net/Node/Socket fields will then be looked
up in the ipxDestServTable. If a service of this
name exists, the values of this rule will be set.
Caution: the Brick IPX does not use this name field
for filtering. It is just meant for easier usage.
Only Type/Net/Node/Socket fields above
will be checked (according to the dont_verify/verify fields)


Copyright ©2003 by BinTec Access Networks GmbH