draft-ietf-ipv6-rfc2096-update-02.txt   draft-ietf-ipv6-rfc2096-update-03.txt 
Internet-Draft M. Wasserman, Editor Internet-Draft M. Wasserman
Document: draft-ietf-ipv6-rfc2096-update-02.txt Wind River Document: draft-ietf-ipv6-rfc2096-update-03.txt Wind River
Expires: May 2002 November 2002 Expires: December 2003 B. Haberman
Caspian Networks
June 2003
IP Forwarding Table MIB IP Forwarding Table MIB
1 Status of this Memo Status of this Memo
This document is an Internet-Draft and is in full conformance with This document is an Internet-Draft and is in full conformance with
all provisions of Section 10 of RFC2026. all provisions of Section 10 of RFC2026.
Internet-Drafts are working documents of the Internet Engineering Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF), its areas, and its working groups. Note that Task Force (IETF), its areas, and its working groups. Note that
other groups may also distribute working documents as Internet- other groups may also distribute working documents as Internet-
Drafts. Drafts.
Internet-Drafts are draft documents valid for a maximum of six Internet-Drafts are draft documents valid for a maximum of six
skipping to change at line 31 skipping to change at line 33
as reference material or to cite them other than as "work in as reference material or to cite them other than as "work in
progress." progress."
The list of current Internet-Drafts can be accessed at The list of current Internet-Drafts can be accessed at
http://www.ietf.org/ietf/1id-abstracts.txt http://www.ietf.org/ietf/1id-abstracts.txt
The list of Internet-Draft Shadow Directories can be accessed at The list of Internet-Draft Shadow Directories can be accessed at
http://www.ietf.org/shadow.html. http://www.ietf.org/shadow.html.
This document is a product of the IPv6 MIB Revision Design Team and This document is a product of the IPv6 MIB Revision Design Team and
it is a working item of the IPv6 Working Group. Comments should be it is a working item of the IPv6 Working Group. Comments should be
addressed to the editor, or to the IPv6 Working Group mailing list addressed to the editors, or to the IPv6 Working Group mailing list
at ipng@sunroof.eng.sun.com. at ipng@sunroof.eng.sun.com.
2 Abstract Abstract
This document defines a portion of the Management Information Base This document defines a portion of the Management Information Base
(MIB) for use with network management protocols in the Internet (MIB) for use with network management protocols in the Internet
community. In particular, it describes managed objects related to community. In particular, it describes managed objects related to
the forwarding of Internet Protocol (IP) packets, in an IP version the forwarding of Internet Protocol (IP) packets, in an IP version
independent manner. independent manner. This document obsoletes RFC 2096.
3 Copyright Notice Copyright Notice
Copyright (C) The Internet Society (2001). All Rights Reserved. Copyright (C) The Internet Society (2003). All Rights Reserved.
4 Conventions Used In This Document Wasserman, Haberman Expires December 2003 1
Table of Contents
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", 1 Revision History...............................................2
"SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in 2 Conventions Used In This Document..............................4
this document are to be interpreted as described in RFC 2119 3 The Internet-Standard Management Framework.....................4
[RFC2119]. 4 Overview.......................................................4
5 Definitions....................................................5
6 Security Considerations.......................................27
7 Normative References..........................................28
8 Informative References........................................28
9 Authors and Acknowledgements..................................29
10 Editor's Contact Information..................................29
11 Full Copyright Statement......................................29
Wasserman Expires December 2002 1 1 Revision History
IP Forwarding Table MIB November 2002
5 Table of Contents Changes from draft-ietf-ipv6-rfc2096-update-02.txt:
1 Status of this Memo.......................................1 16 Jan 2003 Changed lower-case 'h' to upper-case 'H' in hex
2 Abstract..................................................1 number.
3 Copyright Notice..........................................1
4 Conventions Used In This Document.........................1
5 Table of Contents.........................................2
6 Revision History..........................................2
7 The SNMP Management Framework.............................4
8 Overview..................................................5
9 Definitions...............................................6
10 Security Considerations..................................27
11 References...............................................28
12 Authors and Acknowledgements.............................30
13 Editor's Contact Information.............................30
14 Full Copyright Statement.................................30
6 Revision History Updated REVISION and LAST UPDATED dates.
13 Jun 2003 Changed inetCidrRouteDscp to inetCidrRoutePolicy.
Changes from draft-ietf-ipv6-rfc-2096-update-01.txt: Updated MIB Boilerplate.
17 Jun 2003 Added read-only compliance statement.
Added text to DESCRIPTION clause for
inetCidrRouteStatus to indicate a row cannot be
modified when it is active.
Removed numbered references from DESCRIPTION clauses.
Removed Unsigned32 from IMPORTS list.
Changed section numbers to conform with ID-nits.
Split references into normative/informative.
Updated security section.
Changes from draft-ietf-ipv6-rfc2096-update-01.txt:
02 Nov 2002 Fixed bugs that caused the MIB not to compile. 02 Nov 2002 Fixed bugs that caused the MIB not to compile.
Changed the type of inetCidrRouteDscp to Dscp. Changed the type of inetCidrRouteDscp to Dscp.
Improved the revision information. Improved the revision information.
Removed inetCidrRouteNumber and inetCidrRouteWeight. Removed inetCidrRouteNumber and inetCidrRouteWeight.
Other editorial changes. Other editorial changes.
Wasserman, Haberman Expires December 2003 2
Changes from draft-ietf-ipv6-rfc-2096-update-00.txt: Changes from draft-ietf-ipv6-rfc-2096-update-00.txt:
22 Aug 2002 Minor editorial changes and clean-up 22 Aug 2002 Minor editorial changes and clean-up
Changes from draft-ietf-ipngwg-rfc-2096-update-00.txt: Changes from draft-ietf-ipngwg-rfc2096-update-00.txt:
27 Jun 2002 Added inetCidrRouteDscp index and inetCidrRouteWeight 27 Jun 2002 Added inetCidrRouteDscp index and inetCidrRouteWeight
object to the inetCidrRouteTable. object to the inetCidrRouteTable.
Restored inetCidrRouteNextHopType variable (may be Restored inetCidrRouteNextHopType variable (may be
different from inetCidrRouteDestType, due to global different from inetCidrRouteDestType, due to global
vs. non-global distinction in new InetAddress TCs). vs. non-global distinction in new InetAddress TCs).
Removed inetCidrRouteInstance object. Use to identify Removed inetCidrRouteInstance object. Use to identify
a conceptual routing table is obviated by new a conceptual routing table is obviated by new
InetAddress types and inclusion of DSCP index. InetAddress types and inclusion of DSCP index.
Changed editor, moved author information to end, Changed editor, moved author information to end,
several editorial changes. several editorial changes.
Wasserman, Editor Expires December 2002 2
IP Forwarding Table MIB November 2002
Changed name to draft-ietf-ipv6-rfc-2096-update-*.txt Changed name to draft-ietf-ipv6-rfc-2096-update-*.txt
13 Jul 2002 Removed inetCidrRouteNextHopType. 13 Jul 2002 Removed inetCidrRouteNextHopType.
Changes from draft-ops-rfc2096-update-00.txt: Changes from draft-ops-rfc2096-update-00.txt:
12 Jul 2001 Renamed to IPNG working group draft 12 Jul 2001 Renamed to IPNG working group draft
Added scopes to the uses of instance Added scopes to the uses of instance
Added inetCidrRouteDiscards to replace Added inetCidrRouteDiscards to replace
ipRoutingDiscards ipRoutingDiscards
Fixed some remaining ipCidr*/inetCidr* confusion in Fixed some remaining ipCidr*/inetCidr* confusion in
skipping to change at line 136 skipping to change at line 149
Deleted inetCidrRouteTos, add inetCidrRouteInstance Deleted inetCidrRouteTos, add inetCidrRouteInstance
in INDEX of inetCidrRouteTable. in INDEX of inetCidrRouteTable.
Used InterfaceIndex, InetAddressPrefixLength and Used InterfaceIndex, InetAddressPrefixLength and
InetAutonomousSystemNumber TC's, and limited the SIZE InetAutonomousSystemNumber TC's, and limited the SIZE
of inetCidrRouteDest and inetCidrRouteNextHop of inetCidrRouteDest and inetCidrRouteNextHop
Updated conformance info. Added copyright and table Updated conformance info. Added copyright and table
of contents. of contents.
Wasserman, Editor Expires December 2002 3 Wasserman, Haberman Expires December 2003 3
IP Forwarding Table MIB November 2002 2 Conventions Used In This Document
7 The SNMP Management Framework
The SNMP Management Framework presently consists of five major
components:
- An overall architecture, described in RFC 2571 [2].
- Mechanisms for describing and naming objects and events for
the purpose of management. The first version of this
Structure of Management Information (SMI) is called SMIv1
and described in STD 16, RFC 1155 [3], STD 16, RFC 1212 [4]
and RFC 1215 [5]. The second version, called SMIv2, is
described in STD 58, RFC 2578 [6], STD 58, RFC 2579 [7] and
STD 58, RFC 2580 [8].
- Message protocols for transferring management information.
The first version of the SNMP message protocol is called
SNMPv1 and described in STD 15, RFC 1157 [9]. A second
version of the SNMP message protocol,which is not an
Internet standards track protocol, is called SNMPv2c and
described in RFC 1901 [10] and RFC 1906 [11]. The third
version of the message protocol is called SNMPv3 and
described in RFC 1906 [11],RFC 2572 [12] and RFC 2574 [13].
- Protocol operations for accessing management information. The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
The first set of protocol operations and associated PDU "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in
formats is described in STD 15, RFC 1157 [9]. A second set this document are to be interpreted as described in RFC 2119
of protocol operations and associated PDU formats is [RFC2119].
described in RFC 1905 [14].
- A set of fundamental applications described in RFC 2573 [15] 3 The Internet-Standard Management Framework
and the view-based access control mechanism described in RFC
2575 [16].
A more detailed introduction to the current SNMP Management For a detailed overview of the documents that describe the current
framework can be found in RFC 2570 [17]. Internet-Standard Management Framework, please refer to section 7
of RFC 3410 [RFC3410].
Managed objects are accessed via a virtual information store, Managed objects are accessed via a virtual information store,
termed the Management Information Base or MIB. Objects in the MIB termed the Management Information Base or MIB. MIB objects are
are defined using the mechanisms defined in the SMI. generally accessed through the Simple Network Management Protocol
(SNMP). Objects in the MIB are defined using the mechanisms
This memo specifies a MIB module that is compliant to the SMIv2. A defined in the Structure of Management Information (SMI). This
MIB conforming to the SMIv1 can be produced through the appropriate memo specifies a MIB module that is compliant to the SMIv2, which
translations. The resulting translated MIB must be semantically is described in STD 58, RFC 2578 [RFC2578], STD 58, RFC 2579
equivalent, except where objects or events are omitted because no [RFC2579] and STD 58, RFC 2580 [RFC2580].
translation is possible (use of Counter64). Some machine readable
information in SMIv2 will be converted into textual descriptions in
SMIv1 during the translation process. However, this loss of
machine readable information is not considered to change the
semantics of the MIB.
Wasserman, Editor Expires December 2002 4
IP Forwarding Table MIB November 2002
8 Overview 4 Overview
The MIB consists of one current table and two current global The MIB consists of one current table and two current global
objects. objects.
1. The object inetCidrRouteNumber indicates the number of 1. The object inetCidrRouteNumber indicates the number of
current routes. This is primarily to avoid having to read current routes. This is primarily to avoid having to read
the table in order to determine this number. the table in order to determine this number.
2. The object inetCidrRouteDiscards counts the number of valid 2. The object inetCidrRouteDiscards counts the number of valid
routes that were discarded for any reason. routes that were discarded for any reason.
skipping to change at line 226 skipping to change at line 205
ipRouteTable to display multipath IP Routes. This is in ipRouteTable to display multipath IP Routes. This is in
turn obsoleted by the ipCidrRouteTable. turn obsoleted by the ipCidrRouteTable.
3. The deprecated object ipCidrRouteNumber represents the 3. The deprecated object ipCidrRouteNumber represents the
number of entries in the deprecated ipCidrRouteTable. number of entries in the deprecated ipCidrRouteTable.
4. The deprecated ipCidrRouteTable updates the RFC 1213 4. The deprecated ipCidrRouteTable updates the RFC 1213
ipRouteTable to display multipath IP Routes having the same ipRouteTable to display multipath IP Routes having the same
network number but differing network masks. network number but differing network masks.
Wasserman, Editor Expires December 2002 5 Wasserman, Haberman Expires December 2003 4
IP Forwarding Table MIB November 2002 5 Definitions
9 Definitions
IP-FORWARD-MIB DEFINITIONS ::= BEGIN IP-FORWARD-MIB DEFINITIONS ::= BEGIN
IMPORTS IMPORTS
MODULE-IDENTITY, OBJECT-TYPE, MODULE-IDENTITY, OBJECT-TYPE,
IpAddress, Integer32, Gauge32, IpAddress, Integer32, Gauge32,
Unsigned32, Counter32 FROM SNMPv2-SMI Counter32 FROM SNMPv2-SMI
RowStatus FROM SNMPv2-TC RowStatus FROM SNMPv2-TC
MODULE-COMPLIANCE, OBJECT-GROUP FROM SNMPv2-CONF MODULE-COMPLIANCE, OBJECT-GROUP FROM SNMPv2-CONF
InterfaceIndex FROM IF-MIB InterfaceIndex FROM IF-MIB
ip FROM IP-MIB ip FROM IP-MIB
IANAipRouteProtocol FROM IANA-RTPROTO-MIB IANAipRouteProtocol FROM IANA-RTPROTO-MIB
InetAddress, InetAddressType, InetAddress, InetAddressType,
InetAddressPrefixLength, InetAddressPrefixLength,
InetAutonomousSystemNumber FROM INET-ADDRESS-MIB InetAutonomousSystemNumber FROM INET-ADDRESS-MIB;
Dscp FROM DIFFSERV-DSCP-TC;
ipForward MODULE-IDENTITY ipForward MODULE-IDENTITY
LAST-UPDATED "200107130000Z" LAST-UPDATED "200306130000Z"
ORGANIZATION "IETF IPv6 MIB Revision Team" ORGANIZATION "IETF IPv6 MIB Revision Team"
CONTACT-INFO CONTACT-INFO
"Editor: "Editor:
Margaret Wasserman Margaret Wasserman
Wind River Wind River
10 Tara Blvd, Suite 330 10 Tara Blvd, Suite 330
Nashua, NH 03062 Nashua, NH 03062
Phone: +1 603 897-2067 Phone: +1 603 897-2067
Email: <mrw@windriver.com>" Email: mrw@windriver.com
Brian Haberman
Caspian Networks
1 Park Drive, Suite 300
Research Triangle Park, NC 27709
Phone: +1 919 949-4828
Email: brian@innovationslab.net"
DESCRIPTION DESCRIPTION
"The MIB module for the management of CIDR multipath IP "The MIB module for the management of CIDR multipath IP
Routes." Routes."
REVISION "200206270000Z" REVISION "200306130000Z"
DESCRIPTION DESCRIPTION
"IPv4/v6 version-independent revision. Minimal changes "IPv4/v6 version-independent revision. Minimal changes
were made to the original RFC 2096 MIB, to allow easy were made to the original RFC 2096 MIB, to allow easy
upgrade of existing IPv4 implementations to the upgrade of existing IPv4 implementations to the
version-independent MIB. published as RFC XXXX." version-independent MIB. published as RFC XXXX."
REVISION "9609190000Z" REVISION "200301130000Z"
DESCRIPTION DESCRIPTION
"Revised to support CIDR routes." "Revised to support CIDR routes."
::= { ip 24 } ::= { ip 24 }
inetCidrRouteDiscards OBJECT-TYPE inetCidrRouteDiscards OBJECT-TYPE
SYNTAX Counter32 SYNTAX Counter32
Wasserman, Haberman Expires December 2003 5
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The number of routing entries which were chosen to be "The number of routing entries which were chosen to be
discarded even though they are valid. One possible discarded even though they are valid. One possible
reason for discarding such an entry could be to free-up reason for discarding such an entry could be to free-up
Wasserman, Editor Expires December 2002 6
IP Forwarding Table MIB November 2002
buffer space for other routing entries." buffer space for other routing entries."
::= { ipForward 8 } ::= { ipForward 8 }
-- Inet CIDR Route Table -- Inet CIDR Route Table
-- The Inet CIDR Route Table deprecates and replaces the -- The Inet CIDR Route Table deprecates and replaces the
-- ipCidrRoute Table currently in the IP Forwarding Table MIB. -- ipCidrRoute Table currently in the IP Forwarding Table MIB.
-- It adds IP protocol independence. -- It adds IP protocol independence.
inetCidrRouteTable OBJECT-TYPE inetCidrRouteTable OBJECT-TYPE
skipping to change at line 310 skipping to change at line 292
REFERENCE REFERENCE
"RFC 1213 Section 6.6, The IP Group" "RFC 1213 Section 6.6, The IP Group"
::= { ipForward 7 } ::= { ipForward 7 }
inetCidrRouteEntry OBJECT-TYPE inetCidrRouteEntry OBJECT-TYPE
SYNTAX InetCidrRouteEntry SYNTAX InetCidrRouteEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"A particular route to a particular destination, under a "A particular route to a particular destination, under a
particular policy." particular policy.
Dynamically created rows will survive an agent reboot."
INDEX { INDEX {
inetCidrRouteDestType, inetCidrRouteDestType,
inetCidrRouteDest, inetCidrRouteDest,
inetCidrRoutePfxLen, inetCidrRoutePfxLen,
inetCidrRouteDscp, inetCidrRoutePolicy,
inetCidrRouteNextHopType, inetCidrRouteNextHopType,
inetCidrRouteNextHop inetCidrRouteNextHop
} }
::= { inetCidrRouteTable 1 } ::= { inetCidrRouteTable 1 }
InetCidrRouteEntry ::= SEQUENCE { InetCidrRouteEntry ::= SEQUENCE {
inetCidrRouteDestType InetAddressType, inetCidrRouteDestType InetAddressType,
inetCidrRouteDest InetAddress, inetCidrRouteDest InetAddress,
inetCidrRoutePfxLen InetAddressPrefixLength, inetCidrRoutePfxLen InetAddressPrefixLength,
inetCidrRouteDscp Dscp, inetCidrRoutePolicy OBJECT IDENTIFIER,
inetCidrRouteNextHopType InetAddressType, inetCidrRouteNextHopType InetAddressType,
inetCidrRouteNextHop InetAddress, inetCidrRouteNextHop InetAddress,
inetCidrRouteIfIndex InterfaceIndex, inetCidrRouteIfIndex InterfaceIndex,
inetCidrRouteType INTEGER, inetCidrRouteType INTEGER,
inetCidrRouteProto IANAipRouteProtocol, inetCidrRouteProto IANAipRouteProtocol,
Wasserman, Haberman Expires December 2003 6
inetCidrRouteAge Integer32, inetCidrRouteAge Integer32,
inetCidrRouteNextHopAS InetAutonomousSystemNumber, inetCidrRouteNextHopAS InetAutonomousSystemNumber,
inetCidrRouteMetric1 Integer32, inetCidrRouteMetric1 Integer32,
inetCidrRouteMetric2 Integer32, inetCidrRouteMetric2 Integer32,
inetCidrRouteMetric3 Integer32, inetCidrRouteMetric3 Integer32,
inetCidrRouteMetric4 Integer32, inetCidrRouteMetric4 Integer32,
inetCidrRouteMetric5 Integer32, inetCidrRouteMetric5 Integer32,
inetCidrRouteStatus RowStatus inetCidrRouteStatus RowStatus
Wasserman, Editor Expires December 2002 7
IP Forwarding Table MIB November 2002
} }
inetCidrRouteDestType OBJECT-TYPE inetCidrRouteDestType OBJECT-TYPE
SYNTAX InetAddressType SYNTAX InetAddressType
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The type of the inetCidrRouteDest address, as defined "The type of the inetCidrRouteDest address, as defined
in the InetAddress MIB [19]" in the InetAddress MIB [RFC3291]."
::= { inetCidrRouteEntry 1 } ::= { inetCidrRouteEntry 1 }
inetCidrRouteDest OBJECT-TYPE inetCidrRouteDest OBJECT-TYPE
SYNTAX InetAddress (SIZE(0..36)) SYNTAX InetAddress (SIZE(0..36))
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The destination IP address of this route. "The destination IP address of this route.
Any assignment (implicit or otherwise) of an instance Any assignment (implicit or otherwise) of an instance
skipping to change at line 386 skipping to change at line 368
inetCidrRouteDest field. inetCidrRouteDest field.
Any assignment (implicit or otherwise) of an instance Any assignment (implicit or otherwise) of an instance
of this object to a value x MUST be rejected if the of this object to a value x MUST be rejected if the
bitwise logical-AND of the mask formed from x with the bitwise logical-AND of the mask formed from x with the
value of the corresponding instance of the value of the corresponding instance of the
inetCidrRouteDest object is not equal to inetCidrRouteDest object is not equal to
inetCidrRouteDest." inetCidrRouteDest."
::= { inetCidrRouteEntry 3 } ::= { inetCidrRouteEntry 3 }
inetCidrRouteDscp OBJECT-TYPE inetCidrRoutePolicy OBJECT-TYPE
SYNTAX Dscp SYNTAX OBJECT IDENTIFIER
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
Wasserman, Haberman Expires December 2003 7
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"Indicates the Differentiated Services Code Point (DSCP) "Represents the general set of conditions that would
[18] to which the routing information in this entry cause the selection of one multipath route (set of next
applies." hops for a given destination) over another (referred to
as policy). The value { 0 0 } shall be used for the
default policy or if no particular policy applies."
::= { inetCidrRouteEntry 4 } ::= { inetCidrRouteEntry 4 }
inetCidrRouteNextHopType OBJECT-TYPE inetCidrRouteNextHopType OBJECT-TYPE
Wasserman, Editor Expires December 2002 8
IP Forwarding Table MIB November 2002
SYNTAX InetAddressType SYNTAX InetAddressType
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The type of the inetCidrRouteNextHop address, as "The type of the inetCidrRouteNextHop address, as
defined in the InetAddress MIB [19]. defined in the InetAddress MIB [RFC3291].
Value should be set to unknown(0) for non-remote Value should be set to unknown(0) for non-remote
routes." routes."
::= { inetCidrRouteEntry 5 } ::= { inetCidrRouteEntry 5 }
inetCidrRouteNextHop OBJECT-TYPE inetCidrRouteNextHop OBJECT-TYPE
SYNTAX InetAddress (SIZE(0..36)) SYNTAX InetAddress (SIZE(0..36))
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION DESCRIPTION
skipping to change at line 445 skipping to change at line 427
-- returns ICMP notification -- returns ICMP notification
local (3), -- local interface local (3), -- local interface
remote (4), -- remote destination remote (4), -- remote destination
blackhole(5) -- route which discards traffic blackhole(5) -- route which discards traffic
-- silently -- silently
} }
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The type of route. Note that local(3) refers to a "The type of route. Note that local(3) refers to a
Wasserman, Haberman Expires December 2003 8
route for which the next hop is the final destination; route for which the next hop is the final destination;
remote(4)refers to a route for which the next hop is remote(4)refers to a route for which the next hop is
not the final destination. not the final destination.
Routes which do not result in traffic forwarding or Routes which do not result in traffic forwarding or
rejection should not be displayed even if the rejection should not be displayed even if the
implementation keeps them stored internally. implementation keeps them stored internally.
reject(2) refers to a route which, if matched, discards reject(2) refers to a route which, if matched, discards
the message as unreachable and returns a notification the message as unreachable and returns a notification
Wasserman, Editor Expires December 2002 9
IP Forwarding Table MIB November 2002
(e.g. ICMP error) to the message sender. This is used (e.g. ICMP error) to the message sender. This is used
in some protocols as a means of correctly aggregating in some protocols as a means of correctly aggregating
routes. routes.
blackhole(5) refers to a route which, if matched, blackhole(5) refers to a route which, if matched,
discards the message silently." discards the message silently."
::= { inetCidrRouteEntry 8 } ::= { inetCidrRouteEntry 8 }
inetCidrRouteProto OBJECT-TYPE inetCidrRouteProto OBJECT-TYPE
SYNTAX IANAipRouteProtocol SYNTAX IANAipRouteProtocol
skipping to change at line 503 skipping to change at line 483
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The Autonomous System Number of the Next Hop. The "The Autonomous System Number of the Next Hop. The
semantics of this object are determined by the routing- semantics of this object are determined by the routing-
protocol specified in the route's inetCidrRouteProto protocol specified in the route's inetCidrRouteProto
value. When this object is unknown or not relevant its value. When this object is unknown or not relevant its
value should be set to zero." value should be set to zero."
DEFVAL { 0 } DEFVAL { 0 }
::= { inetCidrRouteEntry 11 } ::= { inetCidrRouteEntry 11 }
Wasserman, Haberman Expires December 2003 9
inetCidrRouteMetric1 OBJECT-TYPE inetCidrRouteMetric1 OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The primary routing metric for this route. The "The primary routing metric for this route. The
semantics of this metric are determined by the routing- semantics of this metric are determined by the routing-
protocol specified in the route's inetCidrRouteProto protocol specified in the route's inetCidrRouteProto
value. If this metric is not used, its value should be value. If this metric is not used, its value should be
set to -1." set to -1."
Wasserman, Editor Expires December 2002 10
IP Forwarding Table MIB November 2002
DEFVAL { -1 } DEFVAL { -1 }
::= { inetCidrRouteEntry 12 } ::= { inetCidrRouteEntry 12 }
inetCidrRouteMetric2 OBJECT-TYPE inetCidrRouteMetric2 OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"An alternate routing metric for this route. The "An alternate routing metric for this route. The
semantics of this metric are determined by the routing- semantics of this metric are determined by the routing-
skipping to change at line 561 skipping to change at line 538
"An alternate routing metric for this route. The "An alternate routing metric for this route. The
semantics of this metric are determined by the routing- semantics of this metric are determined by the routing-
protocol specified in the route's inetCidrRouteProto protocol specified in the route's inetCidrRouteProto
value. If this metric is not used, its value should be value. If this metric is not used, its value should be
set to -1." set to -1."
DEFVAL { -1 } DEFVAL { -1 }
::= { inetCidrRouteEntry 15 } ::= { inetCidrRouteEntry 15 }
inetCidrRouteMetric5 OBJECT-TYPE inetCidrRouteMetric5 OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
Wasserman, Haberman Expires December 2003 10
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"An alternate routing metric for this route. The "An alternate routing metric for this route. The
semantics of this metric are determined by the routing- semantics of this metric are determined by the routing-
protocol specified in the route's inetCidrRouteProto protocol specified in the route's inetCidrRouteProto
value. If this metric is not used, its value should be value. If this metric is not used, its value should be
set to -1." set to -1."
DEFVAL { -1 } DEFVAL { -1 }
::= { inetCidrRouteEntry 16 } ::= { inetCidrRouteEntry 16 }
Wasserman, Editor Expires December 2002 11
IP Forwarding Table MIB November 2002
inetCidrRouteStatus OBJECT-TYPE inetCidrRouteStatus OBJECT-TYPE
SYNTAX RowStatus SYNTAX RowStatus
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The row status variable, used according to row "The row status variable, used according to row
installation and removal conventions." installation and removal conventions.
A row entry cannot be modified when the status is
marked as active(1)."
::= { inetCidrRouteEntry 17 } ::= { inetCidrRouteEntry 17 }
-- Conformance information -- Conformance information
ipForwardConformance ipForwardConformance
OBJECT IDENTIFIER ::= { ipForward 5 } OBJECT IDENTIFIER ::= { ipForward 5 }
ipForwardGroups ipForwardGroups
OBJECT IDENTIFIER ::= { ipForwardConformance 1 } OBJECT IDENTIFIER ::= { ipForwardConformance 1 }
ipForwardCompliances ipForwardCompliances
OBJECT IDENTIFIER ::= { ipForwardConformance 2 } OBJECT IDENTIFIER ::= { ipForwardConformance 2 }
-- Compliance statements -- Compliance statements
ipForwardCompliance2 MODULE-COMPLIANCE ipForwardFullCompliance MODULE-COMPLIANCE
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"When this MIB is implemented for read-create, the
implementation can claim full compliance."
MODULE -- this module
MANDATORY-GROUPS { inetForwardCidrRouteGroup }
::= { ipForwardCompliances 4 }
ipForwardReadOnlyCompliance MODULE-COMPLIANCE
STATUS current
DESCRIPTION
"When this MIB is implemented without support for read-
create (i.e. in read-only mode), the implementation can
claim read-only compliance."
MODULE -- this module
MANDATORY-GROUPS { inetForwardCidrRouteGroup }
Wasserman, Haberman Expires December 2003 11
OBJECT inetCidrRouteIfIndex
MIN-ACCESS read-only
DESCRIPTION
"Write access is not required."
OBJECT inetCidrRouteType
MIN-ACCESS read-only
DESCRIPTION
"Write access is not required."
OBJECT inetCidrRouteNextHopAS
MIN-ACCESS read-only
DESCRIPTION
"Write access is not required."
OBJECT inetCidrRouteMetric1
MIN-ACCESS read-only
DESCRIPTION
"Write access is not required."
OBJECT inetCidrRouteMetric2
MIN-ACCESS read-only
DESCRIPTION
"Write access is not required."
OBJECT inetCidrRouteMetric3
MIN-ACCESS read-only
DESCRIPTION
"Write access is not required."
OBJECT inetCidrRouteMetric4
MIN-ACCESS read-only
DESCRIPTION
"Write access is not required."
OBJECT inetCidrRouteMetric5
MIN-ACCESS read-only
DESCRIPTION
"Write access is not required."
OBJECT inetCidrRouteStatus
MIN-ACCESS read-only
DESCRIPTION
"Write access is not required."
::= { ipForwardCompliances 5 }
ipForwardCompliance2 MODULE-COMPLIANCE
STATUS deprecated
DESCRIPTION
"The compliance statement for systems which have routing "The compliance statement for systems which have routing
tables." tables."
MODULE -- this module MODULE -- this module
MANDATORY-GROUPS { inetForwardCidrRouteGroup } MANDATORY-GROUPS { inetForwardCidrRouteGroup }
Wasserman, Haberman Expires December 2003 12
::= { ipForwardCompliances 3 } ::= { ipForwardCompliances 3 }
-- units of conformance -- units of conformance
inetForwardCidrRouteGroup OBJECT-GROUP inetForwardCidrRouteGroup OBJECT-GROUP
OBJECTS { inetCidrRouteDiscards, OBJECTS { inetCidrRouteDiscards,
inetCidrRouteIfIndex, inetCidrRouteType, inetCidrRouteIfIndex, inetCidrRouteType,
inetCidrRouteProto, inetCidrRouteAge, inetCidrRouteProto, inetCidrRouteAge,
inetCidrRouteNextHopAS, inetCidrRouteMetric1, inetCidrRouteNextHopAS, inetCidrRouteMetric1,
inetCidrRouteMetric2, inetCidrRouteMetric3, inetCidrRouteMetric2, inetCidrRouteMetric3,
skipping to change at line 628 skipping to change at line 675
DESCRIPTION DESCRIPTION
"The IP version independent CIDR Route Table." "The IP version independent CIDR Route Table."
::= { ipForwardGroups 4 } ::= { ipForwardGroups 4 }
-- Deprecated Objects -- Deprecated Objects
ipCidrRouteNumber OBJECT-TYPE ipCidrRouteNumber OBJECT-TYPE
SYNTAX Gauge32 SYNTAX Gauge32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
Wasserman, Editor Expires December 2002 12
IP Forwarding Table MIB November 2002
DESCRIPTION DESCRIPTION
"The number of current ipCidrRouteTable entries that are "The number of current ipCidrRouteTable entries that are
not invalid. This object is deprecated in favor of not invalid. This object is deprecated in favor of
inetCidrRouteNumber and the inetCidrRouteTable." inetCidrRouteNumber and the inetCidrRouteTable."
::= { ipForward 3 } ::= { ipForward 3 }
-- IP CIDR Route Table -- IP CIDR Route Table
-- The IP CIDR Route Table obsoletes and replaces the ipRoute -- The IP CIDR Route Table obsoletes and replaces the ipRoute
-- Table current in MIB-I and MIB-II and the IP Forwarding Table. -- Table current in MIB-I and MIB-II and the IP Forwarding Table.
skipping to change at line 662 skipping to change at line 705
deprecated in favor of the IP version neutral deprecated in favor of the IP version neutral
inetCidrRouteTable." inetCidrRouteTable."
REFERENCE REFERENCE
"RFC 1213 Section 6.6, The IP Group" "RFC 1213 Section 6.6, The IP Group"
::= { ipForward 4 } ::= { ipForward 4 }
ipCidrRouteEntry OBJECT-TYPE ipCidrRouteEntry OBJECT-TYPE
SYNTAX IpCidrRouteEntry SYNTAX IpCidrRouteEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS deprecated STATUS deprecated
Wasserman, Haberman Expires December 2003 13
DESCRIPTION DESCRIPTION
"A particular route to a particular destination, under a "A particular route to a particular destination, under a
particular policy." particular policy."
INDEX { INDEX {
ipCidrRouteDest, ipCidrRouteDest,
ipCidrRouteMask, ipCidrRouteMask,
ipCidrRouteTos, ipCidrRouteTos,
ipCidrRouteNextHop ipCidrRouteNextHop
} }
::= { ipCidrRouteTable 1 } ::= { ipCidrRouteTable 1 }
skipping to change at line 686 skipping to change at line 731
ipCidrRouteTos Integer32, ipCidrRouteTos Integer32,
ipCidrRouteNextHop IpAddress, ipCidrRouteNextHop IpAddress,
ipCidrRouteIfIndex Integer32, ipCidrRouteIfIndex Integer32,
ipCidrRouteType INTEGER, ipCidrRouteType INTEGER,
ipCidrRouteProto INTEGER, ipCidrRouteProto INTEGER,
ipCidrRouteAge Integer32, ipCidrRouteAge Integer32,
ipCidrRouteInfo OBJECT IDENTIFIER, ipCidrRouteInfo OBJECT IDENTIFIER,
ipCidrRouteNextHopAS Integer32, ipCidrRouteNextHopAS Integer32,
ipCidrRouteMetric1 Integer32, ipCidrRouteMetric1 Integer32,
ipCidrRouteMetric2 Integer32, ipCidrRouteMetric2 Integer32,
Wasserman, Editor Expires December 2002 13
IP Forwarding Table MIB November 2002
ipCidrRouteMetric3 Integer32, ipCidrRouteMetric3 Integer32,
ipCidrRouteMetric4 Integer32, ipCidrRouteMetric4 Integer32,
ipCidrRouteMetric5 Integer32, ipCidrRouteMetric5 Integer32,
ipCidrRouteStatus RowStatus ipCidrRouteStatus RowStatus
} }
ipCidrRouteDest OBJECT-TYPE ipCidrRouteDest OBJECT-TYPE
SYNTAX IpAddress SYNTAX IpAddress
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
skipping to change at line 720 skipping to change at line 761
not equal to x." not equal to x."
::= { ipCidrRouteEntry 1 } ::= { ipCidrRouteEntry 1 }
ipCidrRouteMask OBJECT-TYPE ipCidrRouteMask OBJECT-TYPE
SYNTAX IpAddress SYNTAX IpAddress
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"Indicate the mask to be logical-ANDed with the "Indicate the mask to be logical-ANDed with the
destination address before being compared to the value destination address before being compared to the value
Wasserman, Haberman Expires December 2003 14
in the ipCidrRouteDest field. For those systems that in the ipCidrRouteDest field. For those systems that
do not support arbitrary subnet masks, an agent do not support arbitrary subnet masks, an agent
constructs the value of the ipCidrRouteMask by constructs the value of the ipCidrRouteMask by
reference to the IP Address Class. reference to the IP Address Class.
Any assignment (implicit or otherwise) of an instance Any assignment (implicit or otherwise) of an instance
of this object to a value x must be rejected if the of this object to a value x must be rejected if the
bitwise logical-AND of x with the value of the bitwise logical-AND of x with the value of the
corresponding instance of the ipCidrRouteDest object is corresponding instance of the ipCidrRouteDest object is
not equal to ipCidrRouteDest." not equal to ipCidrRouteDest."
skipping to change at line 744 skipping to change at line 787
-- and the Router Requirements documents disagree on the width -- and the Router Requirements documents disagree on the width
-- of the TOS field. This mapping describes the Router -- of the TOS field. This mapping describes the Router
-- Requirements mapping, and leaves room to widen the TOS field -- Requirements mapping, and leaves room to widen the TOS field
-- without impact to fielded systems. -- without impact to fielded systems.
ipCidrRouteTos OBJECT-TYPE ipCidrRouteTos OBJECT-TYPE
SYNTAX Integer32 (0..2147483647) SYNTAX Integer32 (0..2147483647)
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
Wasserman, Editor Expires December 2002 14
IP Forwarding Table MIB November 2002
"The policy specifier is the IP TOS Field. The encoding "The policy specifier is the IP TOS Field. The encoding
of IP TOS is as specified by the following convention. of IP TOS is as specified by the following convention.
Zero indicates the default path if no more specific Zero indicates the default path if no more specific
policy applies. policy applies.
+-----+-----+-----+-----+-----+-----+-----+-----+ +-----+-----+-----+-----+-----+-----+-----+-----+
| | | | | | | |
| PRECEDENCE | TYPE OF SERVICE | 0 | | PRECEDENCE | TYPE OF SERVICE | 0 |
| | | | | | | |
+-----+-----+-----+-----+-----+-----+-----+-----+ +-----+-----+-----+-----+-----+-----+-----+-----+
skipping to change at line 778 skipping to change at line 817
1 1 0 0 ==> 24 1 1 0 1 ==> 26 1 1 0 0 ==> 24 1 1 0 1 ==> 26
1 1 1 0 ==> 28 1 1 1 1 ==> 30" 1 1 1 0 ==> 28 1 1 1 1 ==> 30"
::= { ipCidrRouteEntry 3 } ::= { ipCidrRouteEntry 3 }
ipCidrRouteNextHop OBJECT-TYPE ipCidrRouteNextHop OBJECT-TYPE
SYNTAX IpAddress SYNTAX IpAddress
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"On remote routes, the address of the next system en "On remote routes, the address of the next system en
Wasserman, Haberman Expires December 2003 15
route; Otherwise, 0.0.0.0." route; Otherwise, 0.0.0.0."
::= { ipCidrRouteEntry 4 } ::= { ipCidrRouteEntry 4 }
ipCidrRouteIfIndex OBJECT-TYPE ipCidrRouteIfIndex OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The ifIndex value which identifies the local interface "The ifIndex value which identifies the local interface
through which the next hop of this route should be through which the next hop of this route should be
skipping to change at line 802 skipping to change at line 843
ipCidrRouteType OBJECT-TYPE ipCidrRouteType OBJECT-TYPE
SYNTAX INTEGER { SYNTAX INTEGER {
other (1), -- not specified by this MIB other (1), -- not specified by this MIB
reject (2), -- route which discards traffic reject (2), -- route which discards traffic
local (3), -- local interface local (3), -- local interface
remote (4) -- remote destination remote (4) -- remote destination
} }
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
Wasserman, Editor Expires December 2002 15
IP Forwarding Table MIB November 2002
"The type of route. Note that local(3) refers to a "The type of route. Note that local(3) refers to a
route for which the next hop is the final destination; route for which the next hop is the final destination;
remote(4) refers to a route for which the next hop is remote(4) refers to a route for which the next hop is
not the final destination. not the final destination.
Routes which do not result in traffic forwarding or Routes which do not result in traffic forwarding or
rejection should not be displayed even if the rejection should not be displayed even if the
implementation keeps them stored internally. implementation keeps them stored internally.
reject (2) refers to a route which, if matched, reject (2) refers to a route which, if matched,
skipping to change at line 836 skipping to change at line 873
icmp (4), -- result of ICMP Redirect icmp (4), -- result of ICMP Redirect
-- the following are all dynamic -- the following are all dynamic
-- routing protocols -- routing protocols
egp (5), -- Exterior Gateway Protocol egp (5), -- Exterior Gateway Protocol
ggp (6), -- Gateway-Gateway Protocol ggp (6), -- Gateway-Gateway Protocol
hello (7), -- FuzzBall HelloSpeak hello (7), -- FuzzBall HelloSpeak
rip (8), -- Berkeley RIP or RIP-II rip (8), -- Berkeley RIP or RIP-II
isIs (9), -- Dual IS-IS isIs (9), -- Dual IS-IS
esIs (10), -- ISO 9542 esIs (10), -- ISO 9542
Wasserman, Haberman Expires December 2003 16
ciscoIgrp (11), -- Cisco IGRP ciscoIgrp (11), -- Cisco IGRP
bbnSpfIgp (12), -- BBN SPF IGP bbnSpfIgp (12), -- BBN SPF IGP
ospf (13), -- Open Shortest Path First ospf (13), -- Open Shortest Path First
bgp (14), -- Border Gateway Protocol bgp (14), -- Border Gateway Protocol
idpr (15), -- InterDomain Policy Routing idpr (15), -- InterDomain Policy Routing
ciscoEigrp (16) -- Cisco EIGRP ciscoEigrp (16) -- Cisco EIGRP
} }
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
skipping to change at line 860 skipping to change at line 899
::= { ipCidrRouteEntry 7 } ::= { ipCidrRouteEntry 7 }
ipCidrRouteAge OBJECT-TYPE ipCidrRouteAge OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The number of seconds since this route was last updated "The number of seconds since this route was last updated
or otherwise determined to be correct. Note that no or otherwise determined to be correct. Note that no
semantics of `too old' can be implied except through semantics of `too old' can be implied except through
Wasserman, Editor Expires December 2002 16
IP Forwarding Table MIB November 2002
knowledge of the routing protocol by which the route knowledge of the routing protocol by which the route
was learned." was learned."
DEFVAL { 0 } DEFVAL { 0 }
::= { ipCidrRouteEntry 8 } ::= { ipCidrRouteEntry 8 }
ipCidrRouteInfo OBJECT-TYPE ipCidrRouteInfo OBJECT-TYPE
SYNTAX OBJECT IDENTIFIER SYNTAX OBJECT IDENTIFIER
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
skipping to change at line 894 skipping to change at line 929
ipCidrRouteNextHopAS OBJECT-TYPE ipCidrRouteNextHopAS OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The Autonomous System Number of the Next Hop. The "The Autonomous System Number of the Next Hop. The
semantics of this object are determined by the routing- semantics of this object are determined by the routing-
protocol specified in the route's ipCidrRouteProto protocol specified in the route's ipCidrRouteProto
value. When this object is unknown or not relevant its value. When this object is unknown or not relevant its
Wasserman, Haberman Expires December 2003 17
value should be set to zero." value should be set to zero."
DEFVAL { 0 } DEFVAL { 0 }
::= { ipCidrRouteEntry 10 } ::= { ipCidrRouteEntry 10 }
ipCidrRouteMetric1 OBJECT-TYPE ipCidrRouteMetric1 OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The primary routing metric for this route. The "The primary routing metric for this route. The
skipping to change at line 918 skipping to change at line 955
DEFVAL { -1 } DEFVAL { -1 }
::= { ipCidrRouteEntry 11 } ::= { ipCidrRouteEntry 11 }
ipCidrRouteMetric2 OBJECT-TYPE ipCidrRouteMetric2 OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"An alternate routing metric for this route. The "An alternate routing metric for this route. The
semantics of this metric are determined by the routing- semantics of this metric are determined by the routing-
Wasserman, Editor Expires December 2002 17
IP Forwarding Table MIB November 2002
protocol specified in the route's ipCidrRouteProto protocol specified in the route's ipCidrRouteProto
value. If this metric is not used, its value should be value. If this metric is not used, its value should be
set to -1." set to -1."
DEFVAL { -1 } DEFVAL { -1 }
::= { ipCidrRouteEntry 12 } ::= { ipCidrRouteEntry 12 }
ipCidrRouteMetric3 OBJECT-TYPE ipCidrRouteMetric3 OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
skipping to change at line 952 skipping to change at line 985
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"An alternate routing metric for this route. The "An alternate routing metric for this route. The
semantics of this metric are determined by the routing- semantics of this metric are determined by the routing-
protocol specified in the route's ipCidrRouteProto protocol specified in the route's ipCidrRouteProto
value. If this metric is not used, its value should be value. If this metric is not used, its value should be
set to -1." set to -1."
DEFVAL { -1 } DEFVAL { -1 }
Wasserman, Haberman Expires December 2003 18
::= { ipCidrRouteEntry 14 } ::= { ipCidrRouteEntry 14 }
ipCidrRouteMetric5 OBJECT-TYPE ipCidrRouteMetric5 OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"An alternate routing metric for this route. The "An alternate routing metric for this route. The
semantics of this metric are determined by the routing- semantics of this metric are determined by the routing-
protocol specified in the route's ipCidrRouteProto protocol specified in the route's ipCidrRouteProto
skipping to change at line 976 skipping to change at line 1011
ipCidrRouteStatus OBJECT-TYPE ipCidrRouteStatus OBJECT-TYPE
SYNTAX RowStatus SYNTAX RowStatus
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The row status variable, used according to row "The row status variable, used according to row
installation and removal conventions." installation and removal conventions."
::= { ipCidrRouteEntry 16 } ::= { ipCidrRouteEntry 16 }
Wasserman, Editor Expires December 2002 18
IP Forwarding Table MIB November 2002
-- compliance statements -- compliance statements
ipForwardCompliance MODULE-COMPLIANCE ipForwardCompliance MODULE-COMPLIANCE
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The compliance statement for SNMPv2 entities which "The compliance statement for SNMPv2 entities which
implement the ipForward MIB." implement the ipForward MIB."
MODULE -- this module MODULE -- this module
MANDATORY-GROUPS { ipForwardCidrRouteGroup } MANDATORY-GROUPS { ipForwardCidrRouteGroup }
skipping to change at line 1007 skipping to change at line 1039
ipCidrRouteNextHop, ipCidrRouteIfIndex, ipCidrRouteNextHop, ipCidrRouteIfIndex,
ipCidrRouteType, ipCidrRouteProto, ipCidrRouteAge, ipCidrRouteType, ipCidrRouteProto, ipCidrRouteAge,
ipCidrRouteInfo,ipCidrRouteNextHopAS, ipCidrRouteInfo,ipCidrRouteNextHopAS,
ipCidrRouteMetric1, ipCidrRouteMetric2, ipCidrRouteMetric1, ipCidrRouteMetric2,
ipCidrRouteMetric3, ipCidrRouteMetric4, ipCidrRouteMetric3, ipCidrRouteMetric4,
ipCidrRouteMetric5, ipCidrRouteStatus ipCidrRouteMetric5, ipCidrRouteStatus
} }
STATUS deprecated STATUS deprecated
DESCRIPTION DESCRIPTION
"The CIDR Route Table." "The CIDR Route Table."
Wasserman, Haberman Expires December 2003 19
::= { ipForwardGroups 3 } ::= { ipForwardGroups 3 }
-- Obsoleted Definitions - Objects -- Obsoleted Definitions - Objects
ipForwardNumber OBJECT-TYPE ipForwardNumber OBJECT-TYPE
SYNTAX Gauge32 SYNTAX Gauge32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"The number of current ipForwardTable entries that are "The number of current ipForwardTable entries that are
skipping to change at line 1031 skipping to change at line 1065
-- The IP Forwarding Table obsoletes and replaces the ipRoute -- The IP Forwarding Table obsoletes and replaces the ipRoute
-- Table current in MIB-I and MIB-II. It adds knowledge of -- Table current in MIB-I and MIB-II. It adds knowledge of
-- the autonomous system of the next hop, multiple next hop -- the autonomous system of the next hop, multiple next hop
-- support, and policy routing support. -- support, and policy routing support.
ipForwardTable OBJECT-TYPE ipForwardTable OBJECT-TYPE
SYNTAX SEQUENCE OF IpForwardEntry SYNTAX SEQUENCE OF IpForwardEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS obsolete STATUS obsolete
Wasserman, Editor Expires December 2002 19
IP Forwarding Table MIB November 2002
DESCRIPTION DESCRIPTION
"This entity's IP Routing table." "This entity's IP Routing table."
REFERENCE REFERENCE
"RFC 1213 Section 6.6, The IP Group" "RFC 1213 Section 6.6, The IP Group"
::= { ipForward 2 } ::= { ipForward 2 }
ipForwardEntry OBJECT-TYPE ipForwardEntry OBJECT-TYPE
SYNTAX IpForwardEntry SYNTAX IpForwardEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS obsolete STATUS obsolete
skipping to change at line 1065 skipping to change at line 1095
IpForwardEntry ::= SEQUENCE { IpForwardEntry ::= SEQUENCE {
ipForwardDest IpAddress, ipForwardDest IpAddress,
ipForwardMask IpAddress, ipForwardMask IpAddress,
ipForwardPolicy Integer32, ipForwardPolicy Integer32,
ipForwardNextHop IpAddress, ipForwardNextHop IpAddress,
ipForwardIfIndex Integer32, ipForwardIfIndex Integer32,
ipForwardType INTEGER, ipForwardType INTEGER,
ipForwardProto INTEGER, ipForwardProto INTEGER,
ipForwardAge Integer32, ipForwardAge Integer32,
Wasserman, Haberman Expires December 2003 20
ipForwardInfo OBJECT IDENTIFIER, ipForwardInfo OBJECT IDENTIFIER,
ipForwardNextHopAS Integer32, ipForwardNextHopAS Integer32,
ipForwardMetric1 Integer32, ipForwardMetric1 Integer32,
ipForwardMetric2 Integer32, ipForwardMetric2 Integer32,
ipForwardMetric3 Integer32, ipForwardMetric3 Integer32,
ipForwardMetric4 Integer32, ipForwardMetric4 Integer32,
ipForwardMetric5 Integer32 ipForwardMetric5 Integer32
} }
ipForwardDest OBJECT-TYPE ipForwardDest OBJECT-TYPE
skipping to change at line 1089 skipping to change at line 1121
"The destination IP address of this route. An entry "The destination IP address of this route. An entry
with a value of 0.0.0.0 is considered a default route. with a value of 0.0.0.0 is considered a default route.
This object may not take a Multicast (Class D) address This object may not take a Multicast (Class D) address
value. value.
Any assignment (implicit or otherwise) of an instance Any assignment (implicit or otherwise) of an instance
of this object to a value x must be rejected if the of this object to a value x must be rejected if the
bitwise logical-AND of x with the value of the bitwise logical-AND of x with the value of the
corresponding instance of the ipForwardMask object is corresponding instance of the ipForwardMask object is
Wasserman, Editor Expires December 2002 20
IP Forwarding Table MIB November 2002
not equal to x." not equal to x."
::= { ipForwardEntry 1 } ::= { ipForwardEntry 1 }
ipForwardMask OBJECT-TYPE ipForwardMask OBJECT-TYPE
SYNTAX IpAddress SYNTAX IpAddress
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"Indicate the mask to be logical-ANDed with the "Indicate the mask to be logical-ANDed with the
destination address before being compared to the value destination address before being compared to the value
in the ipForwardDest field. For those systems that do in the ipForwardDest field. For those systems that do
not support arbitrary subnet masks, an agent constructs not support arbitrary subnet masks, an agent constructs
the value of the ipForwardMask by reference to the IP the value of the ipForwardMask by reference to the IP
Address Class. Address Class.
Any assignment (implicit or otherwise) of an instance Any assignment (implicit or otherwise) of an instance
of this object to a value x must be rejected if the of this object to a value x must be rejected if the
bitwise logical-AND of x with the value of the bitwise logical-AND of x with the value of the
corresponding instance of the ipForwardDest object is corresponding instance of the ipForwardDest object is
not equal to ipForwardDest." not equal to ipForwardDest."
DEFVAL { '00000000'h } -- 0.0.0.0 DEFVAL { '00000000'H } -- 0.0.0.0
::= { ipForwardEntry 2 } ::= { ipForwardEntry 2 }
-- The following convention is included for specification -- The following convention is included for specification
-- of TOS Field contents. At this time, the Host Requirements -- of TOS Field contents. At this time, the Host Requirements
-- and the Router Requirements documents disagree on the width -- and the Router Requirements documents disagree on the width
-- of the TOS field. This mapping describes the Router -- of the TOS field. This mapping describes the Router
-- Requirements mapping, and leaves room to widen the TOS field -- Requirements mapping, and leaves room to widen the TOS field
-- without impact to fielded systems. -- without impact to fielded systems.
Wasserman, Haberman Expires December 2003 21
ipForwardPolicy OBJECT-TYPE ipForwardPolicy OBJECT-TYPE
SYNTAX Integer32 (0..2147483647) SYNTAX Integer32 (0..2147483647)
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"The general set of conditions that would cause "The general set of conditions that would cause
the selection of one multipath route (set of the selection of one multipath route (set of
next hops for a given destination) is referred next hops for a given destination) is referred
to as 'policy'. to as 'policy'.
skipping to change at line 1146 skipping to change at line 1175
specified by the following convention. Zero specified by the following convention. Zero
indicates the default path if no more specific indicates the default path if no more specific
policy applies. policy applies.
+-----+-----+-----+-----+-----+-----+-----+-----+ +-----+-----+-----+-----+-----+-----+-----+-----+
| | | | | | | |
| PRECEDENCE | TYPE OF SERVICE | 0 | | PRECEDENCE | TYPE OF SERVICE | 0 |
| | | | | | | |
+-----+-----+-----+-----+-----+-----+-----+-----+ +-----+-----+-----+-----+-----+-----+-----+-----+
Wasserman, Editor Expires December 2002 21
IP Forwarding Table MIB November 2002
IP TOS IP TOS IP TOS IP TOS
Field Policy Field Policy Field Policy Field Policy
Contents Code Contents Code Contents Code Contents Code
0 0 0 0 ==> 0 0 0 0 1 ==> 2 0 0 0 0 ==> 0 0 0 0 1 ==> 2
0 0 1 0 ==> 4 0 0 1 1 ==> 6 0 0 1 0 ==> 4 0 0 1 1 ==> 6
0 1 0 0 ==> 8 0 1 0 1 ==> 10 0 1 0 0 ==> 8 0 1 0 1 ==> 10
0 1 1 0 ==> 12 0 1 1 1 ==> 14 0 1 1 0 ==> 12 0 1 1 1 ==> 14
1 0 0 0 ==> 16 1 0 0 1 ==> 18 1 0 0 0 ==> 16 1 0 0 1 ==> 18
1 0 1 0 ==> 20 1 0 1 1 ==> 22 1 0 1 0 ==> 20 1 0 1 1 ==> 22
1 1 0 0 ==> 24 1 1 0 1 ==> 26 1 1 0 0 ==> 24 1 1 0 1 ==> 26
skipping to change at line 1178 skipping to change at line 1204
ipForwardNextHop OBJECT-TYPE ipForwardNextHop OBJECT-TYPE
SYNTAX IpAddress SYNTAX IpAddress
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"On remote routes, the address of the next system en "On remote routes, the address of the next system en
route; Otherwise, 0.0.0.0." route; Otherwise, 0.0.0.0."
::= { ipForwardEntry 4 } ::= { ipForwardEntry 4 }
ipForwardIfIndex OBJECT-TYPE ipForwardIfIndex OBJECT-TYPE
Wasserman, Haberman Expires December 2003 22
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"The ifIndex value which identifies the local interface "The ifIndex value which identifies the local interface
through which the next hop of this route should be through which the next hop of this route should be
reached." reached."
DEFVAL { 0 } DEFVAL { 0 }
::= { ipForwardEntry 5 } ::= { ipForwardEntry 5 }
skipping to change at line 1203 skipping to change at line 1231
remote (4) -- remote destination remote (4) -- remote destination
} }
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"The type of route. Note that local(3) refers to a "The type of route. Note that local(3) refers to a
route for which the next hop is the final destination; route for which the next hop is the final destination;
remote(4) refers to a route for which the next hop is remote(4) refers to a route for which the next hop is
not the final destination. not the final destination.
Wasserman, Editor Expires December 2002 22
IP Forwarding Table MIB November 2002
Setting this object to the value invalid(2) has the Setting this object to the value invalid(2) has the
effect of invalidating the corresponding entry in the effect of invalidating the corresponding entry in the
ipForwardTable object. That is, it effectively ipForwardTable object. That is, it effectively
disassociates the destination identified with said disassociates the destination identified with said
entry from the route identified with said entry. It is entry from the route identified with said entry. It is
an implementation-specific matter as to whether the an implementation-specific matter as to whether the
agent removes an invalidated entry from the table. agent removes an invalidated entry from the table.
Accordingly, management stations must be prepared to Accordingly, management stations must be prepared to
receive tabular information from agents that receive tabular information from agents that
corresponds to entries not currently in use. Proper corresponds to entries not currently in use. Proper
skipping to change at line 1235 skipping to change at line 1260
netmgmt (3), -- static route netmgmt (3), -- static route
icmp (4), -- result of ICMP Redirect icmp (4), -- result of ICMP Redirect
-- the following are all dynamic -- the following are all dynamic
-- routing protocols -- routing protocols
egp (5), -- Exterior Gateway Protocol egp (5), -- Exterior Gateway Protocol
ggp (6), -- Gateway-Gateway Protocol ggp (6), -- Gateway-Gateway Protocol
hello (7), -- FuzzBall HelloSpeak hello (7), -- FuzzBall HelloSpeak
rip (8), -- Berkeley RIP or RIP-II rip (8), -- Berkeley RIP or RIP-II
is-is (9), -- Dual IS-IS is-is (9), -- Dual IS-IS
Wasserman, Haberman Expires December 2003 23
es-is (10), -- ISO 9542 es-is (10), -- ISO 9542
ciscoIgrp (11), -- Cisco IGRP ciscoIgrp (11), -- Cisco IGRP
bbnSpfIgp (12), -- BBN SPF IGP bbnSpfIgp (12), -- BBN SPF IGP
ospf (13), -- Open Shortest Path First ospf (13), -- Open Shortest Path First
bgp (14), -- Border Gateway Protocol bgp (14), -- Border Gateway Protocol
idpr (15) -- InterDomain Policy Routing idpr (15) -- InterDomain Policy Routing
} }
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
skipping to change at line 1259 skipping to change at line 1286
::= { ipForwardEntry 7 } ::= { ipForwardEntry 7 }
ipForwardAge OBJECT-TYPE ipForwardAge OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"The number of seconds since this route was last updated "The number of seconds since this route was last updated
or otherwise determined to be correct. Note that no or otherwise determined to be correct. Note that no
semantics of `too old' can be implied except through semantics of `too old' can be implied except through
Wasserman, Editor Expires December 2002 23
IP Forwarding Table MIB November 2002
knowledge of the routing protocol by which the route knowledge of the routing protocol by which the route
was learned." was learned."
DEFVAL { 0 } DEFVAL { 0 }
::= { ipForwardEntry 8 } ::= { ipForwardEntry 8 }
ipForwardInfo OBJECT-TYPE ipForwardInfo OBJECT-TYPE
SYNTAX OBJECT IDENTIFIER SYNTAX OBJECT IDENTIFIER
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
skipping to change at line 1293 skipping to change at line 1316
ipForwardNextHopAS OBJECT-TYPE ipForwardNextHopAS OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"The Autonomous System Number of the Next Hop. When "The Autonomous System Number of the Next Hop. When
this is unknown or not relevant to the protocol this is unknown or not relevant to the protocol
indicated by ipForwardProto, zero." indicated by ipForwardProto, zero."
DEFVAL { 0 } DEFVAL { 0 }
Wasserman, Haberman Expires December 2003 24
::= { ipForwardEntry 10 } ::= { ipForwardEntry 10 }
ipForwardMetric1 OBJECT-TYPE ipForwardMetric1 OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"The primary routing metric for this route. The "The primary routing metric for this route. The
semantics of this metric are determined by the routing- semantics of this metric are determined by the routing-
protocol specified in the route's ipForwardProto value. protocol specified in the route's ipForwardProto value.
skipping to change at line 1317 skipping to change at line 1342
ipForwardMetric2 OBJECT-TYPE ipForwardMetric2 OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"An alternate routing metric for this route. The "An alternate routing metric for this route. The
semantics of this metric are determined by the routing- semantics of this metric are determined by the routing-
protocol specified in the route's ipForwardProto value. protocol specified in the route's ipForwardProto value.
If this metric is not used, its value should be set to If this metric is not used, its value should be set to
Wasserman, Editor Expires December 2002 24
IP Forwarding Table MIB November 2002
-1." -1."
DEFVAL { -1 } DEFVAL { -1 }
::= { ipForwardEntry 12 } ::= { ipForwardEntry 12 }
ipForwardMetric3 OBJECT-TYPE ipForwardMetric3 OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"An alternate routing metric for this route. The "An alternate routing metric for this route. The
skipping to change at line 1351 skipping to change at line 1372
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"An alternate routing metric for this route. The "An alternate routing metric for this route. The
semantics of this metric are determined by the routing- semantics of this metric are determined by the routing-
protocol specified in the route's ipForwardProto value. protocol specified in the route's ipForwardProto value.
If this metric is not used, its value should be set to If this metric is not used, its value should be set to
-1." -1."
DEFVAL { -1 } DEFVAL { -1 }
::= { ipForwardEntry 14 } ::= { ipForwardEntry 14 }
Wasserman, Haberman Expires December 2003 25
ipForwardMetric5 OBJECT-TYPE ipForwardMetric5 OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
MAX-ACCESS read-create MAX-ACCESS read-create
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"An alternate routing metric for this route. The "An alternate routing metric for this route. The
semantics of this metric are determined by the routing- semantics of this metric are determined by the routing-
protocol specified in the route's ipForwardProto value. protocol specified in the route's ipForwardProto value.
If this metric is not used, its value should be set to If this metric is not used, its value should be set to
-1." -1."
skipping to change at line 1376 skipping to change at line 1398
ipForwardOldCompliance MODULE-COMPLIANCE ipForwardOldCompliance MODULE-COMPLIANCE
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"The compliance statement for SNMP entities which "The compliance statement for SNMP entities which
implement the ipForward MIB." implement the ipForward MIB."
MODULE -- this module MODULE -- this module
MANDATORY-GROUPS { ipForwardMultiPathGroup } MANDATORY-GROUPS { ipForwardMultiPathGroup }
Wasserman, Editor Expires December 2002 25
IP Forwarding Table MIB November 2002
::= { ipForwardCompliances 2 } ::= { ipForwardCompliances 2 }
ipForwardMultiPathGroup OBJECT-GROUP ipForwardMultiPathGroup OBJECT-GROUP
OBJECTS { ipForwardNumber, OBJECTS { ipForwardNumber,
ipForwardDest, ipForwardMask, ipForwardPolicy, ipForwardDest, ipForwardMask, ipForwardPolicy,
ipForwardNextHop, ipForwardIfIndex, ipForwardType, ipForwardNextHop, ipForwardIfIndex, ipForwardType,
ipForwardProto, ipForwardAge, ipForwardInfo, ipForwardProto, ipForwardAge, ipForwardInfo,
ipForwardNextHopAS, ipForwardNextHopAS,
ipForwardMetric1, ipForwardMetric2, ipForwardMetric3, ipForwardMetric1, ipForwardMetric2, ipForwardMetric3,
ipForwardMetric4, ipForwardMetric5 ipForwardMetric4, ipForwardMetric5
} }
STATUS obsolete STATUS obsolete
DESCRIPTION DESCRIPTION
"IP Multipath Route Table." "IP Multipath Route Table."
::= { ipForwardGroups 2 } ::= { ipForwardGroups 2 }
END END
Wasserman, Editor Expires December 2002 26 Wasserman, Haberman Expires December 2003 26
IP Forwarding Table MIB November 2002 6 Security Considerations
10 Security Considerations
There are a number of management objects defined in this MIB that There are a number of management objects defined in this MIB module
have a MAX-ACCESS clause of read-write and/or read-create. Such with a MAX-ACCESS clause of read-write and/or read-create. Such
objects may be considered sensitive or vulnerable in some network objects may be considered sensitive or vulnerable in some network
environments. The support for SET operations in a non-secure environments. The support for SET operations in a non-secure
environment without proper protection can have a negative effect on environment without proper protection can have a negative effect on
network operations. network operations. These are the tables and objects and their
sensitivity/vulnerability:
There are a number of managed objects in this MIB that may contain
sensitive information. These are:
The routing table can be used to discover information about the
network topology within a domain.
It is thus important to control even GET access to these objects 1. The inetCidrRouteTable contains routing and forwarding
and possibly to even encrypt the values of these object when information that is critical to the operation of the network
sending them over the network via SNMP. Not all versions of SNMP node (especially routers). Allowing unauthenticated write
provide features for such a secure environment. access to this table can compromise the validity of the
forwarding information.
SNMPv1 by itself is not a secure environment. Even if the network Some of the readable objects in this MIB module (i.e., objects with
itself is secure (for example by using IPSec), even then, there is a MAX-ACCESS other than not-accessible) may be considered sensitive
no control as to whom on the secure network is allowed to access or vulnerable in some network environments. It is thus important
and GET/SET (read/change/create/delete) the objects in this MIB. to control even GET and/or NOTIFY access to these objects and
possibly to even encrypt the values of these objects when sending
them over the network via SNMP. These are the tables and objects
and their sensitivity/vulnerability:
It is recommended that the implementers consider the security 1. The inetCidrRouteTable contains routing and forwarding
features as provided by the SNMPv3 framework. Specifically, the information that can be used to compromise a network.
use of the User-based Security Model RFC 2574 [13] and the View- Specifically, this table can be used to construct a map of the
based Access Control Model RFC 2575 [16] is recommended. network in preparation for a denial-of-service attack on the
network infrastructure.
2. The inetCidrRouteProto object identifies the routing protocols
in use within a network. This information can be used to
determine how a denial-of-service attack should be launched.
It is then a customer/user responsibility to ensure that the SNMP SNMP versions prior to SNMPv3 did not include adequate security.
entity giving access to an instance of this MIB, is properly Even if the network itself is secure (for example by using IPSec),
configured to give access to the objects only to those principals even then, there is no control as to who on the secure network is
(users) that have legitimate rights to indeed GET or SET allowed to access and GET/SET (read/change/create/delete) the
(change/create/delete) them. objects in this MIB module.
Wasserman, Editor Expires December 2002 27 It is RECOMMENDED that implementers consider the security features
IP Forwarding Table MIB November 2002 as provided by the SNMPv3 framework (see [RFC3410], section 8),
including full support for the SNMPv3 cryptographic mechanisms (for
authentication and privacy).
11 References Further, deployment of SNMP versions prior to SNMPv3 is NOT
RECOMMENDED. Instead, it is RECOMMENDED to deploy SNMPv3 and to
enable cryptographic security. It is then a customer/operator
responsibility to ensure that the SNMP entity giving access to an
instance of this MIB module is properly configured to give access
to the objects only to those principals (users) that have
legitimate rights to indeed GET or SET (change/create/delete) them.
[RFC2026] Wasserman, Haberman Expires December 2003 27
S. Bradner, "The Internet Standards Process -- Revision 3", 7 Normative References
RFC 2026, BCP9, October 1996
[RFC2119] [RFC2026] S. Bradner, "The Internet Standards Process -- Revision
S. Bradner, "Key words for use in RFCs to Indicate Requirement 3", RFC 2026, BCP9, October 1996
Levels", RFC 2119, BCP14, March 1999.
[1] [RFC2119] S. Bradner, "Key words for use in RFCs to Indicate
F. Baker, "IP Forwarding Table MIB", RFC 2096, January 1997. Requirement Levels", RFC 2119, BCP14, March 1999.
[2] [RFC2578] McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J.,
Harrington, D., Presuhn, R., and B. Wijnen, "An Architecture Rose, M. and S. Waldbusser, "Structure of Management
for Describing SNMP Management Frameworks", RFC 2571, April Information Version 2 (SMIv2)", STD 58, RFC 2578, April
1999. 1999.
[3] [RFC2579] McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J.,
Rose, M., and K. McCloghrie, "Structure and Identification of Rose, M. and S. Waldbusser, "Textual Conventions for
Management Information for TCP/IP-based Internets", STD 16, SMIv2", STD 58, RFC 2579, April 1999.
RFC 1155, May 1990.
[4]
Rose, M., and K. McCloghrie, "Concise MIB Definitions", STD
16, RFC 1212, March 1991.
[5]
Rose, M., "A Convention for Defining Traps for use with the
SNMP", RFC 1215, March 1991.
[6]
McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J.,
Rose, M., and S. Waldbusser, "Structure of Management
Information Version 2 (SMIv2)", STD 58, RFC 2578, April 1999.
[7]
McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J.,
Rose, M., and S. Waldbusser, "Textual Conventions for SMIv2",
STD 58, RFC 2579, April 1999.
[8] [RFC2580] McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J.,
McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J., Rose, M. and S. Waldbusser, "Conformance Statements for
Rose, M., and S. Waldbusser, "Conformance Statements for
SMIv2", STD 58, RFC 2580, April 1999. SMIv2", STD 58, RFC 2580, April 1999.
[9] [RFC2096] Baker, F., "IP Forwarding Table MIB", RFC 2096, January
Case, J., Fedor, M., Schoffstall, M., and J. Davin, "Simple 1997.
Network Management Protocol", STD 15, RFC 1157, May 1990.
[10]
Case, J., McCloghrie, K., Rose, M., and S. Waldbusser,
Wasserman, Editor Expires December 2002 28
IP Forwarding Table MIB November 2002
"Introduction to Community-based SNMPv2", RFC 1901, January
1996.
[11]
Case, J., McCloghrie, K., Rose, M., and S. Waldbusser,
"Transport Mappings for Version 2 of the Simple Network
Management Protocol (SNMPv2)", RFC 1906, January 1996.
[12]
Case, J., Harrington D., Presuhn R., and B. Wijnen, "Message
Processing and Dispatching for the Simple Network Management
Protocol (SNMP)", RFC 2572, April 1999.
[13]
Blumenthal, U., and B. Wijnen, "User-based Security Model
(USM) for version 3 of the Simple Network Management
Protocol (SNMPv3)", RFC 2574, April 1999.
[14]
Case, J., McCloghrie, K., Rose, M., and S. Waldbusser,
"Protocol Operations for Version 2 of the Simple Network
Management Protocol (SNMPv2)", RFC 1905, January 1996.
[15]
Levi, D., Meyer, P., and B. Stewart, "SNMPv3 Applications",
RFC 2573, April 1999.
[16]
Wijnen, B., Presuhn, R., and K. McCloghrie, "View-based Access
Control Model (VACM) for the Simple Network Management
Protocol (SNMP)", RFC 2575, April 1999.
[17]
Case, J., Mundy, R., Partain, D., and B. Stewart,
"Introduction to Version 3 of the Internet-standard Network
Management Framework",RFC 2570, April 1999.
[18] [RFC3291] Daniele, M., Haberman, B., Routhier, S., Schoenwaelder,
Nichols, K., Blake, S., Baker, F., Black, D., "Definition of J., "Textual Conventions for Internet Network Addresses",
the Differentiated Services Field (DS Field) in the IPv4 and RFC 3291, May 2002.
IPv6 Headers", RFC 2474, December 1998.
[19] 8 Informative References
Daniele, M., Haberman, B., Routhier, S., Schoenwaelder, J.,
"Textual Conventions for Internet Network Addresses", RFC
3291, May2002
Wasserman, Editor Expires December 2002 29 [RFC3410] Case, J., Mundy, R., Partain, D. and B. Stewart,
IP Forwarding Table MIB November 2002 "Introduction and Applicability Statements for Internet-
Standard Management Framework", RFC 3410, December 2002.
12 Authors and Acknowledgements Wasserman, Haberman Expires December 2003 28
9 Authors and Acknowledgements
This document was based on RFC 2096 [1]. This document was based on RFC 2096 [RFC2096].
The following people provided text for this version of the The following people provided text for this version of the
document, or were authors of previous versions: document, or were authors of previous versions:
Fred Baker, Cisco Fred Baker, Cisco
Bill Fenner, AT&T Research Bill Fenner, AT&T Research
Brian Haberman Brian Haberman
Juergen Schoenwalder, TU Braunschweig Juergen Schoenwalder, TU Braunschweig
Dave Thaler, Microsoft Dave Thaler, Microsoft
Margaret Wasserman, Wind River
Dario Accornero, Mark Adam, Qing Li and Shawn Routhier reviewed the Dario Accornero, Mark Adam, Qing Li and Shawn Routhier reviewed the
document and provided helpful feedback. document and provided helpful feedback.
13 Editor's Contact Information 10 Editor's Contact Information
Comments or questions regarding this document should be sent to: Comments or questions regarding this document should be sent to:
Margaret Wasserman Brian Haberman
Wind River Caspian Networks
10 Tara Blvd., Suite 330 Phone: (603) 897-2067 1 Park Drive, Suite 300 Phone: +1 919 949-4828
Nashua, NH 03062 USA Email: mrw@windriver.com Research Triangle Park, NC 27709 Email: brian@innovationslab.net
14 Full Copyright Statement 11 Full Copyright Statement
Copyright (C) The Internet Society (2002). All Rights Reserved. Copyright (C) The Internet Society (2003). All Rights Reserved.
This document and translations of it may be copied and furnished to This document and translations of it may be copied and furnished to
others, and derivative works that comment on or otherwise explain others, and derivative works that comment on or otherwise explain
it or assist in its implementation may be prepared, copied, it or assist in its implementation may be prepared, copied,
published and distributed, in whole or in part, without restriction published and distributed, in whole or in part, without restriction
of any kind, provided that the above copyright notice and this of any kind, provided that the above copyright notice and this
paragraph are included on all such copies and derivative works. paragraph are included on all such copies and derivative works.
However, this document itself may not be modified in any way, such However, this document itself may not be modified in any way, such
as by removing the copyright notice or references to the Internet as by removing the copyright notice or references to the Internet
Society or other Internet organizations, except as needed for the Society or other Internet organizations, except as needed for the
skipping to change at line 1598 skipping to change at line 1559
The limited permissions granted above are perpetual and will not be The limited permissions granted above are perpetual and will not be
revoked by the Internet Society or its successors or assigns. revoked by the Internet Society or its successors or assigns.
This document and the information contained herein is provided on This document and the information contained herein is provided on
an "AS IS" basis and THE INTERNET SOCIETY AND THE INTERNET an "AS IS" basis and THE INTERNET SOCIETY AND THE INTERNET
ENGINEERING TASK FORCE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED, ENGINEERING TASK FORCE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED,
INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE
INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED
WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.
Wasserman, Editor Expires December 2002 30 Wasserman, Haberman Expires December 2003 29
Wasserman, Haberman Expires December 2003 30
 End of changes. 

This html diff was produced by rfcdiff 1.23, available from http://www.levkowetz.com/ietf/tools/rfcdiff/