AD | Application | AWS | Azure | Cloud | Database | Enterprise | Environmental | Event Log | File System | Infra | IoT | IT Service | Linux | Network/System | Performance | Protocol | SaaS | Security | Service Level | SNMP | Storage | VMware | VoIP | Web | Wireless

Crumbtrail

MonitorTools.com » Technical documentation » SNMP » MIB » Enterasys-Networks » ENTERASYS-THREAT-NOTIFICATION-MIB » Objects

ENTERASYS-THREAT-NOTIFICATION-MIB.mib object view, vendor Enterasys-Networks

Introduction

Most network devices and programs ship with so-called MIB files to describe the parameters and meanings (i.e.: friendly names) which are available for monitoring via SNMP.
ActiveXperts Network Monitor 2024 can import vendor-specific MIB files, so it can be used to monitor specific OID's (Object Identifiers). This way, you can monitor your devices, computers, etc. by selecting your relevant OID's by name.

ActiveXperts Network Monitor 2024 can import MIB file ENTERASYS-THREAT-NOTIFICATION-MIB and use it to monitor vendor specific OID's.

ENTERASYS-THREAT-NOTIFICATION-MIB file content

Object view of ENTERASYS-THREAT-NOTIFICATION-MIB:

Scalar Object
etsysThreatNotificationSenderID .1.3.6.1.4.1.5624.1.2.45.1.1.1
A name that identifies a sender or group of senders. ie. 'Dragon IDS', ACME IDS', 'VIRUS SCAN', 'DRAGON1', 'DRAGON2'
etsysThreatNotificationSenderName .1.3.6.1.4.1.5624.1.2.45.1.1.2
The name of the sensor that discovered the threat.
etsysThreatNotificationThreatCategory .1.3.6.1.4.1.5624.1.2.45.1.1.3
A name that identifies a group of threat types.
etsysThreatNotificationThreatName .1.3.6.1.4.1.5624.1.2.45.1.1.4
The name of the signature that detected the threat.
etsysThreatNotificationDeviceAddressType .1.3.6.1.4.1.5624.1.2.45.1.1.5
The address type of the device where the initiator of the threat was detected.
etsysThreatNotificationDeviceAddress .1.3.6.1.4.1.5624.1.2.45.1.1.6
The address of the device where the initiator of the threat was detected.
etsysThreatNotificationDeviceIfIndex .1.3.6.1.4.1.5624.1.2.45.1.1.7
The interface where the initiator was detected.
etsysThreatNotificationInitiatorAddressType .1.3.6.1.4.1.5624.1.2.45.1.1.8
The address type of the endstation that initiated the threat.
etsysThreatNotificationInitiatorAddress .1.3.6.1.4.1.5624.1.2.45.1.1.9
The address of the endstation that initiated the threat.
etsysThreatNotificationTargetAddressType .1.3.6.1.4.1.5624.1.2.45.1.1.10
The address type of the endstation that is threatened.
etsysThreatNotificationTargetAddress .1.3.6.1.4.1.5624.1.2.45.1.1.11
The address of the endstation that is threatened.
etsysThreatNotificationConsolidatedData .1.3.6.1.4.1.5624.1.2.45.1.1.12
The purpose of this object is to support devices that can only send single varbind notification messages and should only be used in conjunction with etsysThreatNotificationInformationMessage3. The data should be encoded in the following format: object1='data' object2='data' object3='data' ... Here is an example: etsysThreatNotificationSenderID='dragon' etsysThreatNotificationSenderName='dragon' etsysThreatNotificationThreatCategory='ATTACKS' etsysThreatNotificationThreatName='HOST:APACHE:ETC-PASSWD' etsysThreatNotificationInitiatorAddress='1.1.1.1' etsysThreatNotificationTargetAddress='2.2.2.2'
Trap
etsysThreatNotificationInformationMessage1 .1.3.6.1.4.1.5624.1.2.45.1.0.1
An etsysThreatNotificationInformationMessage1 indicates that a potential threat has been identified. This trap should be generated when the IP address of the source of the threat is known, but not the device and interface. (etsysThreatNotificationSenderName and etsysThreatNotificationTargetAddress are optional objects)
etsysThreatNotificationInformationMessage2 .1.3.6.1.4.1.5624.1.2.45.1.0.2
An etsysThreatNotificationInformationMessage2 indicates that a potential threat has been identified. This trap should be generated when the device and interface of the threat is known, but the IP address of the source may or may not be known. (etsysThreatNotificationSenderName, etsysThreatNotificationInitiatorAddress and etsysThreatNotificationTargetAddress are optional objects)
etsysThreatNotificationInformationMessage3 .1.3.6.1.4.1.5624.1.2.45.1.0.3
The purpose of etsysThreatNotificationInformationMessage3 is to support devices that can only send single varbind notifications. See etsysThreatNotificationConsolidatedData for more details.
Object Identifier
etsysThreatNotificationMIB .1.3.6.1.4.1.5624.1.2.45
This MIB module defines the portion of the SNMP enterprise MIBs under Enterasys Networks' enterprise OID pertaining to the Threat Notification feature.
etsysThreatNotificationObjects .1.3.6.1.4.1.5624.1.2.45.1
etsysThreatNotificationNotificationBranch .1.3.6.1.4.1.5624.1.2.45.1.0
etsysThreatNotificationSystemBranch .1.3.6.1.4.1.5624.1.2.45.1.1
etsysThreatNotificationConformance .1.3.6.1.4.1.5624.1.2.45.2
etsysThreatNotificationGroups .1.3.6.1.4.1.5624.1.2.45.2.1
etsysThreatNotificationCompliances .1.3.6.1.4.1.5624.1.2.45.2.2
Group
etsysThreatNotificationMessage1SystemGroup .1.3.6.1.4.1.5624.1.2.45.2.1.1
A collection of objects required for etsysThreatNotificationMessage1 providing information about possible threats on a network.
etsysThreatNotificationMessage2SystemGroup .1.3.6.1.4.1.5624.1.2.45.2.1.2
A collection of objects required for etsysThreatNotificationMessage2 providing information about possible threats on a network.
etsysThreatNotificationMessage3SystemGroup .1.3.6.1.4.1.5624.1.2.45.2.1.3
A collection of objects required for etsysThreatNotificationMessage3 providing information about possible threats on a network.
etsysThreatNotificationMessage1Group .1.3.6.1.4.1.5624.1.2.45.2.1.4
A collection of notifications used to alert a management application of possible threats on a network.
etsysThreatNotificationMessage2Group .1.3.6.1.4.1.5624.1.2.45.2.1.5
A collection of notifications used to alert a management application of possible threats on a network.
etsysThreatNotificationMessage3Group .1.3.6.1.4.1.5624.1.2.45.2.1.6
A collection of notifications used to alert a management application of possible threats on a network.