--- 1/draft-ietf-bfd-mib-07.txt 2010-03-04 18:11:05.000000000 +0100 +++ 2/draft-ietf-bfd-mib-08.txt 2010-03-04 18:11:05.000000000 +0100 @@ -1,55 +1,57 @@ BFD Working Group T. Nadeau Internet-Draft BT Intended status: Standards Track Z. Ali -Expires: October 28, 2009 Cisco Systems, Inc. +Expires: September 4, 2010 Cisco Systems, Inc. N. Akiya Cisco Systems G.K. - April 26, 2009 + March 3, 2010 BFD Management Information Base - draft-ietf-bfd-mib-07 + draft-ietf-bfd-mib-08 Status of this Memo This Internet-Draft is submitted to IETF in full conformance with the provisions of BCP 78 and BCP 79. Internet-Drafts are working documents of the Internet Engineering Task Force (IETF), its areas, and its working groups. Note that other groups may also distribute working documents as Internet- Drafts. Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress." The list of current Internet-Drafts can be accessed at - http://www.ietf.org/ietf/1id-abstracts.txt. + http://www.ietf.org/1id-abstracts.html The list of Internet-Draft Shadow Directories can be accessed at - http://www.ietf.org/shadow.html. - - This Internet-Draft will expire on October 28, 2009. + http://www.ietf.org/shadow.html Copyright Notice Copyright (c) 2009 IETF Trust and the persons identified as the document authors. All rights reserved. This document is subject to BCP 78 and the IETF Trust's Legal - Provisions Relating to IETF Documents in effect on the date of - publication of this document (http://trustee.ietf.org/license-info). - Please review these documents carefully, as they describe your rights - and restrictions with respect to this document. + Provisions Relating to IETF Documents + (http://trustee.ietf.org/license-info) in effect on the date of + publication of this document. Please review these documents + carefully, as they describe your rights and restrictions with respect + to this document. Code Components extracted from this document must + include Simplified BSD License text as described in Section 4.e of + the Trust Legal Provisions and are provided without warranty as + described in the BSD License. Abstract This draft defines a portion of the Management Information Base (MIB) for use with network management protocols in the Internet community. In particular, it describes managed objects for modeling Bidirectional Forwarding Detection (BFD) protocol. Table of Contents @@ -58,27 +60,27 @@ 3. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 3 4. Terminology . . . . . . . . . . . . . . . . . . . . . . . . . 3 5. Brief Description of MIB Objects . . . . . . . . . . . . . . . 3 5.1. General Variables . . . . . . . . . . . . . . . . . . . . 4 5.2. Session Table (bfdSessionTable) . . . . . . . . . . . . . 4 5.3. Session Performance Table (bfdSessionPerfTable) . . . . . 4 5.4. BFD Session Discriminator Mapping Table (bfdSessDiscMapTable) . . . . . . . . . . . . . . . . . . 4 5.5. BFD Session IP Mapping Table (bfdSessIpMapTable) . . . . . 4 6. BFD MIB Module Definitions . . . . . . . . . . . . . . . . . . 4 - 7. Security Considerations . . . . . . . . . . . . . . . . . . . 27 - 8. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 29 - 9. References . . . . . . . . . . . . . . . . . . . . . . . . . . 29 - 9.1. Normative References . . . . . . . . . . . . . . . . . . . 29 - 9.2. Informative References . . . . . . . . . . . . . . . . . . 30 - Appendix A. Acknowledgments . . . . . . . . . . . . . . . . . . . 30 - Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 30 + 7. Security Considerations . . . . . . . . . . . . . . . . . . . 30 + 8. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 32 + 9. References . . . . . . . . . . . . . . . . . . . . . . . . . . 32 + 9.1. Normative References . . . . . . . . . . . . . . . . . . . 32 + 9.2. Informative References . . . . . . . . . . . . . . . . . . 33 + Appendix A. Acknowledgments . . . . . . . . . . . . . . . . . . . 33 + Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 34 1. Requirements notation The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in [RFC2119]. 2. The Internet-Standard Management Framework For a detailed overview of the documents that describe the current @@ -165,38 +167,38 @@ MODULE-COMPLIANCE, OBJECT-GROUP, NOTIFICATION-GROUP FROM SNMPv2-CONF InterfaceIndexOrZero FROM IF-MIB InetAddress, InetAddressType, InetPortNumber FROM INET-ADDRESS-MIB; bfdMib MODULE-IDENTITY - LAST-UPDATED "200904261200Z" -- 26 April 2009 12:00:00 EST + LAST-UPDATED "201003031200Z" -- 3 March 2010 12:00:00 EST ORGANIZATION "IETF Bidirectional Forwarding Detection Working Group" CONTACT-INFO "Thomas D. Nadeau BT Email: tom.nadeau@bt.com Zafar Ali Cisco Systems, Inc. Email: zali@cisco.com Nobo Akiya Cisco Systems, G.K. Email: nobo@cisco.com" DESCRIPTION "Bidirectional Forwarding Management Information Base." - REVISION "200904261200Z" -- 26 April 2009 12:00:00 EST + REVISION "201003031200Z" -- 3 March 2010 12:00:00 EST DESCRIPTION "Initial version. Published as RFC xxxx." -- RFC Ed.: RFC-editor pls fill in xxxx ::= { mib-2 XXX } -- RFC Ed.: assigned by IANA, see section 7.1 for details -- Top level components of this MIB module. bfdNotifications OBJECT IDENTIFIER ::= { bfdMIB 0 } @@ -287,21 +289,21 @@ -- information. bfdSessTable OBJECT-TYPE SYNTAX SEQUENCE OF BfdSessEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "The BFD Session Table describes the BFD sessions." REFERENCE "BFD Version 0 (draft-katz-ward-bfd-02.txt) and - BFD Version 1 (draft-ietf-bfd-base-08.txt)" + BFD Version 1 (draft-ietf-bfd-base-09.txt)" ::= { bfdObjects 2 } bfdSessEntry OBJECT-TYPE SYNTAX BfdSessEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "The BFD Session Entry describes BFD session." INDEX { bfdSessIndex } ::= { bfdSessTable 1 } @@ -316,20 +318,21 @@ bfdSessDestinationUdpPort InetPortNumber, bfdSessSourceUdpPort InetPortNumber, bfdSessEchoSourceUdpPort InetPortNumber, bfdSessAdminStatus INTEGER, bfdSessState INTEGER, bfdSessRemoteHeardFlag TruthValue, bfdSessDiag BfdDiag, bfdSessOperMode INTEGER, bfdSessDemandModeDesiredFlag TruthValue, bfdSessControlPlaneIndepFlag TruthValue, + bfdSessMultipointFlag TruthValue, bfdSessInterface InterfaceIndexOrZero, bfdSessAddrType InetAddressType, bfdSessAddr InetAddress, bfdSessGTSM TruthValue, bfdSessGTSMTTL Unsigned32, bfdSessDesiredMinTxInterval BfdInterval, bfdSessReqMinRxInterval BfdInterval, bfdSessReqMinEchoRxInterval BfdInterval, bfdSessDetectMult BfdMultiplier, bfdSessNegotiatedInterval BfdInterval, @@ -356,55 +359,55 @@ SYNTAX Unsigned32 (0..7) MAX-ACCESS read-create STATUS current DESCRIPTION "The version number of the BFD protocol that this session is running in. Write access is available for this object to provide ability to set desired version for this BFD session." REFERENCE "BFD Version 0 (draft-katz-ward-bfd-02.txt) and - BFD Version 1 (draft-ietf-bfd-base-08.txt)" + BFD Version 1 (draft-ietf-bfd-base-09.txt)" DEFVAL { 1 } ::= { bfdSessEntry 2 } bfdSessType OBJECT-TYPE SYNTAX INTEGER { singleHop(1), multiHopTotallyArbitraryPaths(2), multiHopOutOfBandSignaling(3), multiHopUnidirectionalLinks(4) } MAX-ACCESS read-only STATUS current DESCRIPTION "This object specifies the type of this BFD session." REFERENCE - "draft-ietf-bfd-v4v6-1hop-08 and - draft-ietf-bfd-multihop-06" + "draft-ietf-bfd-v4v6-1hop-10 and + draft-ietf-bfd-multihop-08" ::= { bfdSessEntry 3 } bfdSessMultiHopUniLinkMode OBJECT-TYPE SYNTAX INTEGER { none(1), active(2), passive(3) } MAX-ACCESS read-only STATUS current DESCRIPTION "For bfdSessType of multiHopUnidirectionalLinks(4), this object specifies whether this BFD session is running in active(2) mode or passive(3) mode. For all other BFD bfdSessType BFD sessions, none(1) MUST be specified." REFERENCE - "draft-ietf-bfd-multihop-06, Section 3.3" + "draft-ietf-bfd-multihop-08, Section 3.3" ::= { bfdSessEntry 4 } bfdSessDiscriminator OBJECT-TYPE SYNTAX Unsigned32 (1..4294967295) MAX-ACCESS read-only STATUS current DESCRIPTION "This object specifies the local discriminator for this BFD session, used to uniquely identify it." ::= { bfdSessEntry 5 } @@ -412,64 +415,64 @@ bfdSessRemoteDiscr OBJECT-TYPE SYNTAX Unsigned32 (0 | 1..4294967295) MAX-ACCESS read-only STATUS current DESCRIPTION "This object specifies the session discriminator chosen by the remote system for this BFD session. The value may be zero(0) if the remote discriminator is not yet known or if the session is in the down or adminDown(1) state." REFERENCE - "draft-ietf-bfd-base-08, Section 6.8.6." + "draft-ietf-bfd-base-09, Section 6.8.6." ::= { bfdSessEntry 6 } bfdSessDestinationUdpPort OBJECT-TYPE SYNTAX InetPortNumber MAX-ACCESS read-only STATUS current DESCRIPTION "This object specifies the destination UDP port used for this BFD session. The value maybe zero(0) if the session is in adminDown(1) state." REFERENCE - "Port 3784 (draft-ietf-bfd-v4v6-1hop-08), - Port 3785 (draft-ietf-bfd-v4v6-1hop-08), and - Port 4784 (draft-ietf-bfd-multihop-06)" + "Port 3784 (draft-ietf-bfd-v4v6-1hop-10), + Port 3785 (draft-ietf-bfd-v4v6-1hop-10), and + Port 4784 (draft-ietf-bfd-multihop-08)" DEFVAL { 0 } ::= { bfdSessEntry 7 } bfdSessSourceUdpPort OBJECT-TYPE SYNTAX InetPortNumber MAX-ACCESS read-create STATUS current DESCRIPTION "This object specifies the source UDP port of BFD control packets for this BFD session. The value maybe zero(0) if the session is in adminDown(1) state." REFERENCE - "draft-ietf-bfd-v4v6-1hop-08 and - draft-ietf-bfd-multihop-06" + "draft-ietf-bfd-v4v6-1hop-10 and + draft-ietf-bfd-multihop-08" DEFVAL { 0 } ::= { bfdSessEntry 8 } bfdSessEchoSourceUdpPort OBJECT-TYPE SYNTAX InetPortNumber MAX-ACCESS read-create STATUS current DESCRIPTION "This object specifies the source UDP port of BFD echo packets for this BFD session. The value maybe zero(0) if the session is not running in the echo mode, or the session is in adminDown(1) state." REFERENCE - "draft-ietf-bfd-v4v6-1hop-08 and - draft-ietf-bfd-multihop-06" + "draft-ietf-bfd-v4v6-1hop-10 and + draft-ietf-bfd-multihop-08" DEFVAL { 0 } ::= { bfdSessEntry 9 } bfdSessAdminStatus OBJECT-TYPE SYNTAX INTEGER { stop(1), start(2) } MAX-ACCESS read-create STATUS current @@ -511,38 +515,38 @@ DESCRIPTION "This object specifies status of BFD packet reception from the remote system. Specifically, it is set to true(1) if the local system is actively receiving BFD packets from the remote system, and is set to false(2) if the local system has not received BFD packets recently (within the detection time) or if the local system is attempting to tear down the BFD session." REFERENCE "BFD Version 0 (draft-katz-ward-bfd-02.txt) and - BFD Version 1 (draft-ietf-bfd-base-08.txt)" + BFD Version 1 (draft-ietf-bfd-base-09.txt)" DEFVAL { false } ::= { bfdSessEntry 12 } bfdSessDiag OBJECT-TYPE SYNTAX BfdDiag MAX-ACCESS accessible-for-notify STATUS current DESCRIPTION "A diagnostic code specifying the local system's reason for the last transition of the session from up(4) to some other state." ::= { bfdSessEntry 13 } bfdSessOperMode OBJECT-TYPE SYNTAX INTEGER { - asyncModeWEchoFun(1), - asynchModeWOEchoFun(2), + asyncModeWEchoFunction(1), + asynchModeWOEchoFunction(2), demandModeWEchoFunction(3), demandModeWOEchoFunction(4) } MAX-ACCESS read-only STATUS current DESCRIPTION "This object specifies current operating mode that BFD session is operating in." ::= { bfdSessEntry 14 } @@ -565,229 +569,245 @@ DESCRIPTION "This object indicates that the local system's ability to continue to function through a disruption of the control plane. Specifically, it is set to true(1) if the local system BFD implementation is independent of the control plane. Otherwise, the value is set to false(2)" DEFVAL { false } ::= { bfdSessEntry 16 } + bfdSessMultipointFlag OBJECT-TYPE + SYNTAX TruthValue + MAX-ACCESS read-only + STATUS current + DESCRIPTION + "This object indicates the Multipoint (M) bit for this + session. It is set to true(1) if Multipoint (M) bit is + set to 1. Otherwise, the value is set to false(2)" + DEFVAL { false } + ::= { bfdSessEntry 17 } + bfdSessInterface OBJECT-TYPE SYNTAX InterfaceIndexOrZero MAX-ACCESS read-create STATUS current DESCRIPTION "This object contains an interface index used to indicate the interface which this BFD session is running on. This value can be zero if there is no interface associated with this BFD session." - ::= { bfdSessEntry 17 } + ::= { bfdSessEntry 18 } bfdSessAddrType OBJECT-TYPE SYNTAX InetAddressType MAX-ACCESS read-create STATUS current DESCRIPTION "This object specifies IP address type of the neighboring IP address which is being monitored with this BFD session. Only values unknown(0), ipv4(1), ipv6(2), or ipv6z(4) have to be supported. A value of unknown(0) is allowed only when the outgoing interface is of type point-to-point, or when the BFD session is not associated with a specific interface. If any other unsupported values are attempted in a set operation, the agent MUST return an inconsistentValue error." - ::= { bfdSessEntry 18 } + ::= { bfdSessEntry 19 } bfdSessAddr OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS read-create STATUS current DESCRIPTION "This object specifies the neighboring IP address which is being monitored with this BFD session. It can also be used to enabled BFD on a specific interface. The value is set to zero when BFD session is not associated with a specific interface." - ::= { bfdSessEntry 19 } + ::= { bfdSessEntry 20 } bfdSessGTSM OBJECT-TYPE SYNTAX TruthValue MAX-ACCESS read-create STATUS current DESCRIPTION "Setting the value of this object to true(1) will enable GTSM protection of the BFD session. GTSM MUST be enabled on a singleHop(1) session if no authentication is in use." REFERENCE "RFC 5082 - The Generalized TTL Security Mechanism (GTSM). - draft-ietf-bfd-v4v6-1hop-08, Sec. 5" + draft-ietf-bfd-v4v6-1hop-10, Sec. 5" DEFVAL { false } - ::= { bfdSessEntry 20 } + ::= { bfdSessEntry 21 } bfdSessGTSMTTL OBJECT-TYPE SYNTAX Unsigned32 (0..255) MAX-ACCESS read-create STATUS current DESCRIPTION "This object is valid only when bfdSessGTSM protection is enabled on the system. This object specifies the minimum allowed TTL for received BFD control packets. For singleHop(1) session, if GTSM protection is enabled, this object SHOULD be set to maximum TTL allowed for single hop." REFERENCE "RFC 5082 - The Generalized TTL Security Mechanism (GTSM). - draft-ietf-bfd-v4v6-1hop-08, Sec. 5" - + draft-ietf-bfd-v4v6-1hop-10, Sec. 5" DEFVAL { 0 } - ::= { bfdSessEntry 21 } + ::= { bfdSessEntry 22 } bfdSessDesiredMinTxInterval OBJECT-TYPE SYNTAX BfdInterval MAX-ACCESS read-create STATUS current DESCRIPTION "This object specifies the minimum interval, in microseconds, that the local system would like to use when transmitting BFD Control packets." - ::= { bfdSessEntry 22 } + ::= { bfdSessEntry 23 } bfdSessReqMinRxInterval OBJECT-TYPE SYNTAX BfdInterval MAX-ACCESS read-create STATUS current DESCRIPTION "This object specifies the minimum interval, in microseconds, between received BFD Control packets the local system is capable of supporting." - ::= { bfdSessEntry 23 } + ::= { bfdSessEntry 24 } bfdSessReqMinEchoRxInterval OBJECT-TYPE SYNTAX BfdInterval MAX-ACCESS read-create STATUS current DESCRIPTION "This object specifies the minimum interval, in microseconds, between received BFD Echo packets that this system is capable of supporting." - ::= { bfdSessEntry 24 } + ::= { bfdSessEntry 25 } bfdSessDetectMult OBJECT-TYPE SYNTAX BfdMultiplier MAX-ACCESS read-create STATUS current DESCRIPTION "This object specifies the Detect time multiplier." - ::= { bfdSessEntry 25 } + ::= { bfdSessEntry 26 } bfdSessNegotiatedInterval OBJECT-TYPE SYNTAX BfdInterval MAX-ACCESS read-only STATUS current DESCRIPTION "This object specifies the negotiated interval, in microseconds, that the local system is transmitting BFD Control packets." - ::= { bfdSessEntry 26 } + ::= { bfdSessEntry 27 } bfdSessNegotiatedEchoInterval OBJECT-TYPE SYNTAX BfdInterval MAX-ACCESS read-only STATUS current DESCRIPTION "This object specifies the negotiated interval, in microseconds, that the local system is transmitting BFD echo packets. Value is expected to be zero if the sessions is not running in echo mode." - ::= { bfdSessEntry 27 } + ::= { bfdSessEntry 28 } bfdSessNegotiatedDetectMult OBJECT-TYPE SYNTAX BfdMultiplier MAX-ACCESS read-only STATUS current DESCRIPTION "This object specifies the Detect time multiplier." - ::= { bfdSessEntry 28 } + ::= { bfdSessEntry 29 } bfdSessAuthPresFlag OBJECT-TYPE SYNTAX TruthValue MAX-ACCESS read-only STATUS current DESCRIPTION "This object indicates that the local system's desire to use Authentication. Specifically, it is set to true(1) if the local system wishes the session to be authenticated or false(2) if not." REFERENCE - "draft-ietf-bfd-base-08, Sections 4.2 - 4.4" + "draft-ietf-bfd-base-09, Sections 4.2 - 4.4" DEFVAL { false } - ::= { bfdSessEntry 29 } + ::= { bfdSessEntry 30 } bfdSessAuthenticationType OBJECT-TYPE SYNTAX INTEGER { reserved(0), simplePassword(1), keyedMD5(2), meticulousKeyedMD5(3), keyedSHA1(4), meticulousKeyedSHA1(5) } - MAX-ACCESS read-only + MAX-ACCESS read-create STATUS current DESCRIPTION "The Authentication Type used for this BFD session. This field is valid only when the Authentication - Present bit is set." + Present bit is set. Max-access to this object as well as + other authentication related objects are set to + read-create in order to support management of a single + key ID at a time, key rotation is not handled. Key update + in practice must be done by atomic update using a set + containing all affected objects in the same varBindList + or otherwise risk the session dropping." REFERENCE - "draft-ietf-bfd-base-08, Sections 4.2 - 4.4" - ::= { bfdSessEntry 30 } + "draft-ietf-bfd-base-09, Sections 4.2 - 4.4" + ::= { bfdSessEntry 31 } bfdSessAuthenticationKeyID OBJECT-TYPE SYNTAX Integer32 (-1 | 0..255) - MAX-ACCESS read-only + MAX-ACCESS read-create STATUS current DESCRIPTION "The authentication key ID in use for this session. This object permits multiple keys to be active simultaneously. When bfdSessAuthPresFlag is false(2), then the value of this object MUST be -1. The value -1 indicates that no Authentication Key ID will be present in the optional BFD Authentication Section." REFERENCE - "draft-ietf-bfd-base-08, Sections 4.2 - 4.4" + "draft-ietf-bfd-base-09, Sections 4.2 - 4.4" DEFVAL { -1 } - ::= { bfdSessEntry 31 } + ::= { bfdSessEntry 32 } bfdSessAuthenticationKey OBJECT-TYPE SYNTAX OCTET STRING (SIZE (0..252)) - MAX-ACCESS read-only + MAX-ACCESS read-create STATUS current DESCRIPTION "The authentication key. When the bfdSessAuthenticationType is simplePassword(1), the value of this object is the password present in the BFD packets. When the bfdSessAuthentication type is one of the keyed authentication types, this value is used in the computation of the key present in the BFD authentication packet." REFERENCE - "draft-ietf-bfd-base-08, Sections 4.2 - 4.4" - ::= { bfdSessEntry 32 } + "draft-ietf-bfd-base-09, Sections 4.2 - 4.4" + ::= { bfdSessEntry 33 } bfdSessStorType OBJECT-TYPE SYNTAX StorageType MAX-ACCESS read-create STATUS current DESCRIPTION "This variable indicates the storage type for this object. Conceptual rows having the value 'permanent' need not allow write-access to any columnar objects in the row." @@ -821,133 +841,253 @@ STATUS current DESCRIPTION "An entry in this table is created by a BFD-enabled node for every BFD Session. bfdCounterDiscontinuityTime is used to indicate potential discontinuity for all counter objects in this table." AUGMENTS { bfdSessEntry } ::= { bfdSessPerfTable 1 } BfdSessPerfEntry ::= SEQUENCE { - bfdSessPerfPktIn Counter32, - bfdSessPerfPktOut Counter32, + bfdSessPerfCtrlPktIn Counter32, + bfdSessPerfCtrlPktOut Counter32, + bfdSessPerfCtrlPktDrop Counter32, + bfdSessPerfCtrlPktDropLastTime Timestamp, + bfdSessPerfEchoPktIn Counter32, + bfdSessPerfEchoPktOut Counter32, + bfdSessPerfEchoPktDrop Counter32, + bfdSessPerfEchoPktDropLastTime Timestamp, bfdSessUpTime TimeStamp, bfdSessPerfLastSessDownTime TimeStamp, bfdSessPerfLastCommLostDiag BfdDiag, bfdSessPerfSessUpCount Counter32, bfdSessPerfDiscTime TimeStamp, -- High Capacity Counters - bfdSessPerfPktInHC Counter64, - bfdSessPerfPktOutHC Counter64 + bfdSessPerfCtrlPktInHC Counter64, + bfdSessPerfCtrlPktOutHC Counter64, + bfdSessPerfCtrlPktDropHC Counter64, + bfdSessPerfEchoPktInHC Counter64, + bfdSessPerfEchoPktOutHC Counter64, + bfdSessPerfEchoPktDropHC Counter64 } -- Ed Note: should we add per-diag code counts here, - bfdSessPerfPktIn OBJECT-TYPE + bfdSessPerfCtrlPktIn OBJECT-TYPE SYNTAX Counter32 MAX-ACCESS read-only STATUS current DESCRIPTION - "The total number of BFD messages received for this BFD - session." + "The total number of BFD control messages received for this + BFD session." ::= { bfdSessPerfEntry 1 } - bfdSessPerfPktOut OBJECT-TYPE + bfdSessPerfCtrlPktOut OBJECT-TYPE SYNTAX Counter32 MAX-ACCESS read-only STATUS current DESCRIPTION - "The total number of BFD messages sent for this BFD + "The total number of BFD control messages sent for this BFD session." ::= { bfdSessPerfEntry 2 } + bfdSessPerfCtrlPktDrop OBJECT-TYPE + SYNTAX Counter32 + MAX-ACCESS read-only + STATUS current + DESCRIPTION + "The total number of BFD control messages received for this + session yet dropped for being invalid." + ::= { bfdSessPerfEntry 3 } + + bfdSessPerfCtrlPktDropLastTime OBJECT-TYPE + SYNTAX TimeStamp + MAX-ACCESS read-only + STATUS current + DESCRIPTION + "The value of sysUpTime on the most recent occasion at + which received BFD control message for this session was + dropped. If no such up event exists, this object contains + a zero value." + ::= { bfdSessPerfEntry 4 } + + bfdSessPerfEchoPktIn OBJECT-TYPE + SYNTAX Counter32 + MAX-ACCESS read-only + STATUS current + DESCRIPTION + "The total number of BFD echo messages received for this + BFD session." + ::= { bfdSessPerfEntry 5 } + + bfdSessPerfEchoPktOut OBJECT-TYPE + SYNTAX Counter32 + MAX-ACCESS read-only + STATUS current + DESCRIPTION + "The total number of BFD echo messages sent for this BFD + session." + ::= { bfdSessPerfEntry 6 } + + bfdSessPerfEchoPktDrop OBJECT-TYPE + SYNTAX Counter32 + MAX-ACCESS read-only + STATUS current + DESCRIPTION + "The total number of BFD echo messages received for this + session yet dropped for being invalid." + ::= { bfdSessPerfEntry 7 } + + bfdSessPerfEchoPktDropLastTime OBJECT-TYPE + SYNTAX TimeStamp + MAX-ACCESS read-only + STATUS current + DESCRIPTION + "The value of sysUpTime on the most recent occasion at + which received BFD echo message for this session was + dropped. If no such up event exists, this object contains + a zero value." + ::= { bfdSessPerfEntry 8 } + bfdSessUpTime OBJECT-TYPE SYNTAX TimeStamp MAX-ACCESS read-only STATUS current DESCRIPTION "The value of sysUpTime on the most recent occasion at which the session came up. If no such up event exists this object contains a zero value." - ::= { bfdSessPerfEntry 3 } + ::= { bfdSessPerfEntry 9 } bfdSessPerfLastSessDownTime OBJECT-TYPE SYNTAX TimeStamp MAX-ACCESS read-only STATUS current DESCRIPTION "The value of sysUpTime on the most recent occasion at which the last time communication was lost with the neighbor. If no such down event exist this object contains a zero value." - ::= { bfdSessPerfEntry 4 } + ::= { bfdSessPerfEntry 10 } bfdSessPerfLastCommLostDiag OBJECT-TYPE SYNTAX BfdDiag MAX-ACCESS read-only STATUS current DESCRIPTION "The BFD diag code for the last time communication was lost with the neighbor. If no such down event exists this object contains a zero value." - ::= { bfdSessPerfEntry 5 } + ::= { bfdSessPerfEntry 11 } bfdSessPerfSessUpCount OBJECT-TYPE SYNTAX Counter32 MAX-ACCESS read-only STATUS current DESCRIPTION "The number of times this session has gone into the Up state since the system last rebooted." - ::= { bfdSessPerfEntry 6 } + ::= { bfdSessPerfEntry 12 } bfdSessPerfDiscTime OBJECT-TYPE SYNTAX TimeStamp MAX-ACCESS read-only STATUS current DESCRIPTION "The value of sysUpTime on the most recent occasion at which any one or more of the session counters suffered a discontinuity. The relevant counters are the specific instances associated with this BFD session of any Counter32 object contained in the BfdSessPerfTable. If no such discontinuities have occurred since the last re-initialization of the local management subsystem, then this object contains a zero value." - ::= { bfdSessPerfEntry 7 } + ::= { bfdSessPerfEntry 13 } - bfdSessPerfPktInHC OBJECT-TYPE + bfdSessPerfCtrlPktInHC OBJECT-TYPE SYNTAX Counter64 MAX-ACCESS read-only STATUS current DESCRIPTION - "This value represents the total number of BFD messages + "This value represents the total number of BFD control + messages received for this BFD session. It MUST be equal + to the least significant 32 bits of bfdSessPerfCtrlPktIn + if bfdSessPerfCtrlPktInHC is supported according to + the rules spelled out in RFC2863." + ::= { bfdSessPerfEntry 14 } + + bfdSessPerfCtrlPktOutHC OBJECT-TYPE + SYNTAX Counter64 + MAX-ACCESS read-only + STATUS current + DESCRIPTION + "This value represents the total number of + total number of BFD control messages transmitted for this + BFD session. It MUST be equal to the + least significant 32 bits of bfdSessPerfCtrlPktOut + if bfdSessPerfCtrlPktOutHC is supported according to + the rules spelled out in RFC2863." + ::= { bfdSessPerfEntry 15 } + + bfdSessPerfCtrlPktDropHC OBJECT-TYPE + SYNTAX Counter64 + MAX-ACCESS read-only + STATUS current + DESCRIPTION + "This value represents the total number of BFD control + messages received for this BFD session yet dropped for + being invalid. It MUST be equal to the least significant + 32 bits of bfdSessPerfCtrlPktDrop if + bfdSessPerfCtrlPktDropHC is supported according to the + rules spelled out in RFC2863." + ::= { bfdSessPerfEntry 16 } + + bfdSessPerfEchoPktInHC OBJECT-TYPE + SYNTAX Counter64 + MAX-ACCESS read-only + STATUS current + DESCRIPTION + "This value represents the total number of BFD echo messages received for this BFD session. It MUST be equal to the - least significant 32 bits of bfdSessPerfPktIn - if bfdSessPerfPktInHC is supported according to + least significant 32 bits of bfdSessPerfEchoPktIn + if bfdSessPerfEchoPktInHC is supported according to the rules spelled out in RFC2863." - ::= { bfdSessPerfEntry 8 } + ::= { bfdSessPerfEntry 17 } - bfdSessPerfPktOutHC OBJECT-TYPE + bfdSessPerfEchoPktOutHC OBJECT-TYPE SYNTAX Counter64 MAX-ACCESS read-only STATUS current DESCRIPTION "This value represents the total number of - total number of BFD messages transmitted for this + total number of BFD echo messages transmitted for this BFD session. It MUST be equal to the - least significant 32 bits of bfdSessPerfPktIn - if bfdSessPerfPktOutHC is supported according to + least significant 32 bits of bfdSessPerfEchoPktOut + if bfdSessPerfEchoPktOutHC is supported according to + the rules spelled out in RFC2863." + ::= { bfdSessPerfEntry 18 } + + bfdSessPerfEchoPktInDropHC OBJECT-TYPE + SYNTAX Counter64 + MAX-ACCESS read-only + STATUS current + DESCRIPTION + "This value represents the total number of BFD echo + messages received for this BFD session yet dropped + for being invalid. It MUST be equal to the least + significant 32 bits of bfdSessPerfEchoPktDrop if + bfdSessPerfEchoPktDropHC is supported according to the rules spelled out in RFC2863." - ::= { bfdSessPerfEntry 9 } + + ::= { bfdSessPerfEntry 19 } -- BFD Session Discriminator Mapping Table bfdSessDiscMapTable OBJECT-TYPE SYNTAX SEQUENCE OF BfdSessDiscMapEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "The BFD Session Discriminator Mapping Table maps a local discriminator value to associated BFD sessions' @@ -1153,74 +1293,85 @@ bfdSessDemandModeDesiredFlag, bfdSessInterface, bfdSessAddrType, bfdSessAddr, bfdSessGTSM, bfdSessGTSMTTL, bfdSessDesiredMinTxInterval, bfdSessReqMinRxInterval, bfdSessReqMinEchoRxInterval, bfdSessDetectMult, + bfdSessAuthPresFlag, + bfdSessAuthenticationType, + bfdSessAuthenticationKeyID, + bfdSessAuthenticationKey, bfdSessStorType, bfdSessRowStatus } STATUS current DESCRIPTION "Collection of objects needed for BFD sessions." ::= { bfdGroups 1 } bfdSessionReadOnlyGroup OBJECT-GROUP OBJECTS { bfdSessType, bfdSessMultiHopUniLinkMode, bfdSessDiscriminator, bfdSessRemoteDiscr, bfdSessDestinationUdpPort, bfdSessState, bfdSessRemoteHeardFlag, bfdSessOperMode, bfdSessControlPlaneIndepFlag, + bfdSessMultipointFlag, bfdSessNegotiatedInterval, bfdSessNegotiatedEchoInterval, bfdSessNegotiatedDetectMult, - bfdSessAuthPresFlag, - bfdSessAuthenticationType, - bfdSessAuthenticationKeyID, - bfdSessAuthenticationKey, bfdSessDiscMapIndex, bfdSessIpMapIndex } STATUS current DESCRIPTION "Collection of read-only objects needed for BFD sessions." ::= { bfdGroups 2 } bfdSessionPerfGroup OBJECT-GROUP OBJECTS { - bfdSessPerfPktIn, - bfdSessPerfPktOut, + bfdSessPerfCtrlPktIn, + bfdSessPerfCtrlPktOut, + bfdSessPerfCtrlPktDrop, + bfdSessPerfCtrlPktDropLastTime, + bfdSessPerfEchoPktIn, + bfdSessPerfEchoPktOut, + bfdSessPerfEchoPktDrop, + bfdSessPerfEchoPktDropLastTime, bfdSessUpTime, bfdSessPerfLastSessDownTime, bfdSessPerfLastCommLostDiag, bfdSessPerfSessUpCount, bfdSessPerfDiscTime } STATUS current DESCRIPTION "Collection of objects needed to monitor the performance of BFD sessions." ::= { bfdGroups 3 } bfdSessionPerfHCGroup OBJECT-GROUP OBJECTS { - bfdSessPerfPktInHC, - bfdSessPerfPktOutHC + bfdSessPerfCtrlPktInHC, + bfdSessPerfCtrlPktOutHC, + bfdSessPerfCtrlPktDropHC, + bfdSessPerfEchoPktInHC, + bfdSessPerfEchoPktOutHC, + bfdSessPerfEchoPktDropHC } STATUS current DESCRIPTION "Collection of objects needed to monitor the performance of BFD sessions for which the values of bfdSessPerfPktIn, bfdSessPerfPktOut wrap around too quickly." ::= { bfdGroups 4 } bfdNotificationGroup NOTIFICATION-GROUP @@ -1291,21 +1442,21 @@ o The bfdSessPerfTable both allows access to the performance characteristics of BFD sessions. Network administrators not wishing to show this information should consider this table sensitive. The bfdSessAuthenticationType, bfdSessAuthenticationKeyID, and bfdSessAuthenticationKey objects hold security methods and associated security keys of BFD sessions. These objects SHOULD be considered highly sensitive objects. In order for these sensitive information from being improperly accessed, implementors MAY wish to disallow - read access to these objects. + read and create access to these objects. SNMP versions prior to SNMPv3 did not include adequate security. Even if the network itself is secure "for example by using IPSec", even then, there is no control as to who on the secure network is allowed to access and GET/SET "read/change/create/delete" the objects in these MIB modules. It is RECOMMENDED that implementers consider the security features as provided by the SNMPv3 framework "see [RFC3410], section 8", including full support for the SNMPv3 cryptographic mechanisms "for