rfc1451.txt
来自「RFC 的详细文档!」· 文本 代码 · 共 2,125 行 · 第 1/5 页
TXT
2,125 行
Network Working Group J. Case
Request for Comments: 1451 SNMP Research, Inc.
K. McCloghrie
Hughes LAN Systems
M. Rose
Dover Beach Consulting, Inc.
S. Waldbusser
Carnegie Mellon University
April 1993
Manager-to-Manager
Management Information Base
Status of this Memo
This RFC specifes an IAB standards track protocol for the
Internet community, and requests discussion and suggestions
for improvements. Please refer to the current edition of the
"IAB Official Protocol Standards" for the standardization
state and status of this protocol. Distribution of this memo
is unlimited.
Table of Contents
1 Introduction .......................................... 2
1.1 A Note on Terminology ............................... 2
2 Overview .............................................. 3
2.1 A SNMPv2 Entity Acting in a Dual Role ............... 3
2.2 Alarms, Events, and Notifications ................... 3
2.3 Access Control ...................................... 4
3 Definitions ........................................... 6
3.1 The Alarm Group ..................................... 7
3.1.1 Alarm-Related Notifications ....................... 20
3.2 The Event Group ..................................... 21
3.3 Conformance Information ............................. 29
3.3.1 Compliance Statements ............................. 29
3.3.2 Units of Conformance .............................. 29
4 Acknowledgements ...................................... 31
5 References ............................................ 35
6 Security Considerations ............................... 36
7 Authors' Addresses .................................... 36
Case, McCloghrie, Rose & Waldbusser [Page 1]
RFC 1451 Manager-to-Manager MIB April 1993
1. Introduction
A network management system contains: several (potentially
many) nodes, each with a processing entity, termed an agent,
which has access to management instrumentation; at least one
management station; and, a management protocol, used to convey
management information between the agents and management
stations. Operations of the protocol are carried out under an
administrative framework which defines both authentication and
authorization policies.
Network management stations execute management applications
which monitor and control network elements. Network elements
are devices such as hosts, routers, terminal servers, etc.,
which are monitored and controlled through access to their
management information.
Management information is viewed as a collection of managed
objects, residing in a virtual information store, termed the
Management Information Base (MIB). Collections of related
objects are defined in MIB modules. These modules are written
using a subset of OSI's Abstract Syntax Notation One (ASN.1)
[1], termed the Structure of Management Information (SMI) [2].
The management protocol, version 2 of the Simple Network
Management Protocol [3], provides for the exchange of messages
which convey management information between the agents and the
management stations, including between management stations.
It is the purpose of this document to define managed objects
which describe the behavior of a SNMPv2 entity acting in both
a manager role and an agent role.
1.1. A Note on Terminology
For the purpose of exposition, the original Internet-standard
Network Management Framework, as described in RFCs 1155, 1157,
and 1212, is termed the SNMP version 1 framework (SNMPv1).
The current framework is termed the SNMP version 2 framework
(SNMPv2).
Case, McCloghrie, Rose & Waldbusser [Page 2]
RFC 1451 Manager-to-Manager MIB April 1993
2. Overview
The purpose of this MIB is to provide the means for
coordination between multiple management stations. That is,
the means by which the controlling and monitoring functions of
network management can be distributed amongst multiple
management stations. Such distribution facilitates the
scaling of network management solutions based on the SNMPv2 to
meet the needs of very large networks, or of networks composed
of multiple interconnected administrations. Specifically, this
MIB provides the means for one management station to request
management services from another management station.
2.1. A SNMPv2 Entity Acting in a Dual Role
A management station providing services to other management
station(s), is a SNMPv2 entity which acts in the dual role of
both manager and agent; the requests for service are received
through acting in an agent role (with respect to the managed
objects defined in this MIB), and the requested services are
performed through acting in a manager role.
2.2. Alarms, Events, and Notifications
In this initial version, this MIB defines the concepts of
"alarms", "events", and "notifications". Each alarm is a
specific condition detected through the periodic (at a
configured sampling interval) monitoring of the value of a
specific management information variable. An example of an
alarm condition is when the monitored variable falls outside a
configured range. Each alarm condition triggers an event, and
each event can cause (one or more) notifications to be
reported to other management stations using the Inform-Request
PDU.
Specifically, this MIB defines three MIB tables and a number
of scalar objects. The three tables are: the Alarm Table, the
Event Table, and the Notification Table.
Case, McCloghrie, Rose & Waldbusser [Page 3]
RFC 1451 Manager-to-Manager MIB April 1993
2.3. Access Control
The Administrative Model for SNMPv2 document [4] includes an
access control model, which must not be subverted by allowing
access to management information variables via the Alarm
table. That is, access to a monitored variable via the Alarm
table must be controlled according to the identity of the
management station accessing the particular entry in the Alarm
table.
An entry in the Alarm table provides the means to configure
the sampling of the value of a MIB variable in the MIB view
associated with the specified context (which can refer to
object resources that are either local or remote). The
sampling is done by (conceptually or actually) issuing a
SNMPv2 request to retrieve the variable's value. This request
is authenticated and/or protected from disclosure according to
a source party and a destination party pair which has access
to the indicated context.
Thus, to provide the required access control, the initial MIB
view assigned, by convention, to parties on SNMPv2 entities
that implement the snmpAlarmTable, must include the component:
viewSubtree = { snmpAlarm }
viewStatus = { excluded }
viewMask = { ''H }
Then, the MIB view associated with the context,
requestContext, accessible by a requesting management station,
can be configured to include specific Alarm table entries --
the ones associated with those contexts to which the
requesting management station has access.
In particular, to provide a requestContext with access to the
sampling context sampleContext, the following family of view
subtrees would be included for the requestContext on the
SNMPv2 entity acting in a dual role:
{ snmpAlarmEntry WILDCARD sampleContext }
Which would be configured in the party MIB [5] as:
contextIdentity = { requestContext }
contextViewIndex = { ViewIndex }
Case, McCloghrie, Rose & Waldbusser [Page 4]
RFC 1451 Manager-to-Manager MIB April 1993
viewIndex = { ViewIndex }
viewSubtree = { snmpAlarmEntry 0 sampleContext }
viewStatus = { included }
viewMask = { 'FFEF'H } -- specifies wildcard for column
Case, McCloghrie, Rose & Waldbusser [Page 5]
RFC 1451 Manager-to-Manager MIB April 1993
3. Definitions
SNMPv2-M2M-MIB DEFINITIONS ::= BEGIN
IMPORTS
MODULE-IDENTITY, OBJECT-TYPE, NOTIFICATION-TYPE,
Integer32, Counter32, snmpModules
FROM SNMPv2-SMI
DisplayString, InstancePointer, RowStatus, TimeStamp
FROM SNMPv2-TC
MODULE-COMPLIANCE, OBJECT-GROUP
FROM SNMPv2-CONF
contextIdentity
FROM SNMPv2-PARTY-MIB;
snmpM2M MODULE-IDENTITY
LAST-UPDATED "9304010000Z"
ORGANIZATION "IETF SNMPv2 Working Group"
CONTACT-INFO
" Steven Waldbusser
Postal: Carnegie Mellon University
4910 Forbes Ave
Pittsburgh, PA 15213
Tel: +1 412 268 6628
Fax: +1 412 268 4987
E-mail: waldbusser@cmu.edu"
DESCRIPTION
"The Manager-to-Manager MIB module."
::= { snmpModules 2 }
snmpM2MObjects OBJECT IDENTIFIER ::= { snmpM2M 1 }
Case, McCloghrie, Rose & Waldbusser [Page 6]
RFC 1451 Manager-to-Manager MIB April 1993
-- the alarm group
--
-- a collection of objects allowing the description and
-- configuration of threshold alarms from a SNMPv2 entity
-- acting in a dual role.
snmpAlarm OBJECT IDENTIFIER ::= { snmpM2MObjects 1 }
-- This Alarm mechanism periodically takes statistical samples
-- from variables available via SNMPv2 and compares them to
-- thresholds that have been configured. The alarm table
-- stores configuration entries that each define a variable,
-- polling period, and threshold parameters. If a sample is
-- found to cross the threshold values, an event is generated.
-- Only variables that resolve to an ASN.1 primitive type of
-- INTEGER (Integer32, Counter32, Gauge32, TimeTicks,
-- Counter64, or UInteger32) may be monitored in this way.
--
-- This function has a hysteresis mechanism to limit the
-- generation of events. This mechanism generates one event
-- as a threshold is crossed in the appropriate direction. No
-- more events are generated for that threshold until the
-- opposite threshold is crossed.
--
-- In the case of sampling a deltaValue, an entity may
-- implement this mechanism with more precision if it takes a
-- delta sample twice per period, each time comparing the sum
-- of the latest two samples to the threshold. This allows
-- the detection of threshold crossings that span the sampling
-- boundary. Note that this does not require any special
-- configuration of the threshold value. It is suggested that
-- entities implement this more precise algorithm.
--
Case, McCloghrie, Rose & Waldbusser [Page 7]
RFC 1451 Manager-to-Manager MIB April 1993
snmpAlarmNextIndex OBJECT-TYPE
SYNTAX INTEGER (0..65535)
MAX-ACCESS read-only
STATUS current
DESCRIPTION
⌨️ 快捷键说明
复制代码Ctrl + C
搜索代码Ctrl + F
全屏模式F11
增大字号Ctrl + =
减小字号Ctrl + -
显示快捷键?