Internet Info 1993

home *** CD-ROM | disk | FTP | other *** search

/ Internet Info 1993 / Internet Info CD-ROM (Walnut Creek) (1993).iso / inet / internet-drafts / draft-ietf-pppext-ipcpmib-02.txt < prev next >

Wrap

Text File | 1993-04-20 | 22.7 KB | 980 lines

Internet Draft The Definitions of Managed Objects for the IP Network Control Protocol of the Point-to-Point Protocol 19 April 1993 Frank Kastenholz FTP Software, Inc 2 High Street North Andover, Mass 01845 USA kasten@ftp.com Status of this Memo This document is an Internet Draft. Internet Drafts are working documents of the Internet Engineering Task Force (IETF), its Areas, and its Working Groups. Note that other groups may also distribute working documents as Internet Drafts. Internet Drafts are draft documents valid for a maximum of six months. Internet Drafts may be updated, replaced, or obsoleted by other documents at any time. It is not appropriate to use Internet Drafts as reference material or to cite them other than as a ``working draft'' or ``work in progress.'' Please check the 1id-abstracts.txt listing contained in the internet-drafts Shadow Directories on nic.ddn.mil, nnsc.nsf.net, nic.nordu.net, ftp.nisc.sri.com, or munnari.oz.au to learn the current status of any Internet Draft. Internet Draft PPP/IP MIB April 1993 This document will be submitted to the Internet Activities Board as a Proposed Standard. This document defines an experimental extension to the SNMP MIB. Upon publication as a Proposed Standard, a new MIB number will be assigned. This is a working document only, it should neither be cited nor quoted in any formal document. This document will expire before 24 Oct. 1993. Distribution of this document is unlimited. Please send comments to the author. 1. Abstract This memo defines an experimental portion of the Management Information Base (MIB) for use with network management protocols in TCP/IP-based internets. In particular, it describes managed objects used for managing the IP Network Control Protocol on subnetwork interfaces using the family of Point-to-Point Protocols[8, 9, 10, 11, & 12]. This memo does not specify a standard for the Internet community. Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 2] Internet Draft PPP/IP MIB April 1993 2. The Network Management Framework The Internet-standard Network Management Framework consists of three components. They are: RFC 1155 which defines the SMI, the mechanisms used for describing and naming objects for the purpose of management. RFC 1212 defines a more concise description mechanism, which is wholly consistent with the SMI. RFC 1213 defines MIB-II, the core set of managed objects for the Internet suite of protocols. RFC 1157 which defines the SNMP, the protocol used for network access to managed objects. The Framework permits new objects to be defined for the purpose of experimentation and evaluation. Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 3] Internet Draft PPP/IP MIB April 1993 3. Objects Managed objects are accessed via a virtual information store, termed the Management Information Base or MIB. Objects in the MIB are defined using the subset of Abstract Syntax Notation One (ASN.1) [3] defined in the SMI. In particular, each object type is named by an OBJECT IDENTIFIER, an administratively assigned name. The object type together with an object instance serves to uniquely identify a specific instantiation of the object. For human convenience, we often use a textual string, termed the descriptor, to refer to the object type. 3.1. Format of Definitions Section 5 contains the specification of all object types contained in this MIB module. The object types are defined using the conventions defined in the SMI, as amended by the extensions specified in [5,6]. Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 4] Internet Draft PPP/IP MIB April 1993 4. Overview 4.1. Object Selection Criteria To be consistent with IAB directives and good engineering practice, an explicit attempt was made to keep this MIB as simple as possible. This was accomplished by applying the following criteria to objects proposed for inclusion: (1) Require objects be essential for either fault or configuration management. In particular, objects for which the sole purpose was to debug implementations were explicitly excluded from the MIB. (2) Consider evidence of current use and/or utility. (3) Limit the total number of objects. (4) Exclude objects which are simply derivable from others in this or other MIBs. 4.2. Structure of the PPP This section describes the basic model of PPP used in developing the PPP MIB. This information should be useful to the implementor in understanding some of the basic design decisions of the MIB. The PPP is not one single protocol but a large family of protocols. Each of these is, in itself, a fairly complex protocol. The PPP protocols may be divided into three rough categories: Control Protocols The Control Protocols are used to control the operation of the PPP. The Control Protocols include the Link Control Protocol (LCP), the Password Authentication Protocol (PAP), the Link Quality Report (LQR), and the Challenge Handshake Authentication Protocol (CHAP). Network Protocols The Network Protocols are used to move the network traffic over the PPP interface. A Network Protocol Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 5] Internet Draft PPP/IP MIB April 1993 encapsulates the datagrams of a specific higher-layer protocol that is using the PPP as a data link. Note that within the context of PPP, the term "Network Protocol" does not imply an OSI Layer-3 protocol; for instance, there is a Bridging network protocol. Network Control Protocols (NCPs) The NCPs are used to control the operation of the Network Protocols. Generally, each Network Protocol has its own Network Control Protocol; thus, the IP Network Protocol has its IP Control Protocol, the Bridging Network Protocol has its Bridging Network Control Protocol and so on. This document specifies the objects used in managing one of these protocols, namely the IP Network Control Protocol. 4.3. MIB Groups Objects in this MIB are arranged into several MIB groups. Each group is organized as a set of related objects. These groups are the basic unit of conformance: if the semantics of a group are applicable to an implementation then all objects in the group must be implemented. The PPP MIB is organized into several MIB Groups, including, but not limited to, the following groups: o The PPP Link Group o The PPP LQR Group o The PPP LQR Extensions Group o The PPP IP Group o The PPP Bridge Group o The PPP Security Group This document specifies the following group: The PPP IP Group The PPP IP Group contains configuration, status, and control variables that apply to the operation of IP over PPP. Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 6] Internet Draft PPP/IP MIB April 1993 Implementation of this group is mandatory for all implementations of PPP that support IP over PPP. Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 7] Internet Draft PPP/IP MIB April 1993 5. Definitions PPP-IP-NCP-MIB DEFINITIONS ::= BEGIN IMPORTS experimental, Counter FROM RFC1155-SMI ifIndex FROM RFC1213-MIB OBJECT-TYPE FROM RFC-1212 ppp FROM PPP-LCP-MIB; -- The PPP IP Group. -- Implementation of this group is mandatory for all -- PPP implementations that support operating IP over PPP. pppIp OBJECT IDENTIFIER ::= { ppp 3 } pppIpTable OBJECT-TYPE SYNTAX SEQUENCE OF PppIpEntry ACCESS not-accessible STATUS mandatory DESCRIPTION "Table containing the IP parameters and statistics for the local PPP entity." ::= { pppIp 1 } pppIpEntry OBJECT-TYPE SYNTAX PppIpEntry ACCESS not-accessible STATUS mandatory DESCRIPTION "IPCP status information for a particular PPP link." INDEX { ifIndex } ::= { pppIpTable 1 } Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 8] Internet Draft PPP/IP MIB April 1993 PppIpEntry ::= SEQUENCE { pppIpOperStatus INTEGER, pppIpLocalToRemoteCompressionProtocol INTEGER, pppIpRemoteToLocalCompressionProtocol INTEGER, pppIpRemoteMaxSlotId INTEGER, pppIpLocalMaxSlotId INTEGER } pppIpOperStatus OBJECT-TYPE SYNTAX INTEGER {opened(1), not-opened(2)} ACCESS read-only STATUS mandatory DESCRIPTION "The operational status of the IP network protocol. If the value of this object is up then the finite state machine for the IP network protocol has reached the Opened state." ::= { pppIpEntry 1 } pppIpLocalToRemoteCompressionProtocol OBJECT-TYPE SYNTAX INTEGER { none(1), vj-tcp(2) } ACCESS read-only STATUS mandatory DESCRIPTION "The IP compression protocol that the local PPP-IP entity uses when sending packets to the remote PPP-IP entity." ::= { pppIpEntry 2 } pppIpRemoteToLocalCompressionProtocol OBJECT-TYPE SYNTAX INTEGER { none(1), vj-tcp(2) Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 9] Internet Draft PPP/IP MIB April 1993 } ACCESS read-only STATUS mandatory DESCRIPTION "The IP compression protocol that the remote PPP-IP entity uses when sending packets to the local PPP-IP entity." ::= { pppIpEntry 3 } pppIpRemoteMaxSlotId OBJECT-TYPE SYNTAX INTEGER(0..255) ACCESS read-only STATUS mandatory DESCRIPTION "The Max-Slot-Id parameter that the remote node has advertised and that is in use on the link. If vj-tcp header compression is not in use on the link then the value of this object shall be 0." ::= { pppIpEntry 4 } pppIpLocalMaxSlotId OBJECT-TYPE SYNTAX INTEGER(0..255) ACCESS read-only STATUS mandatory DESCRIPTION "The Max-Slot-Id parameter that the local node has advertised and that is in use on the link. If vj-tcp header compression is not in use on the link then the value of this object shall be 0." ::= { pppIpEntry 5 } Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 10] Internet Draft PPP/IP MIB April 1993 -- -- The PPP IP Configuration table. -- This is a separate table in order to facilitate -- placing these variables in a separate MIB view. -- pppIpConfigTable OBJECT-TYPE SYNTAX SEQUENCE OF PppIpConfigEntry ACCESS not-accessible STATUS mandatory DESCRIPTION "Table containing configuration variables for the IPCP for the local PPP entity." ::= { pppIp 2 } pppIpConfigEntry OBJECT-TYPE SYNTAX PppIpConfigEntry ACCESS not-accessible STATUS mandatory DESCRIPTION "IPCP information for a particular PPP link." INDEX { ifIndex } ::= { pppIpConfigTable 1 } PppIpConfigEntry ::= SEQUENCE { pppIpConfigAdminStatus INTEGER, pppIpConfigCompression INTEGER } pppIpConfigAdminStatus OBJECT-TYPE SYNTAX INTEGER {open(1), close(2)} ACCESS read-write STATUS mandatory DESCRIPTION "The immediate desired status of the IP network protocol. Setting this object to open will inject an administrative open event into the IP network protocol's finite state machine. Setting this object to close will inject an Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 11] Internet Draft PPP/IP MIB April 1993 administrative close event into the IP network protocol's finite state machine." ::= { pppIpConfigEntry 1 } pppIpConfigCompression OBJECT-TYPE SYNTAX INTEGER { none(1), vj-tcp(2) } ACCESS read-write STATUS mandatory DESCRIPTION "If none(1) then the local node will not attempt to negotiate any IP Compression option. Otherwise, the local node will attempt to negotiate compression mode indicated by the enumerated value. Changing this object will have effect when the link is next restarted." REFERENCE "Section 4.0, Van Jacobson TCP/IP Header Compression of RFC1332." DEFVAL { none } ::= { pppIpConfigEntry 2 } END Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 12] Internet Draft PPP/IP MIB April 1993 6. Acknowledgements This document was produced by the PPP working group. In addition to the working group, the author wishes to thank the following individuals for their comments and contributions: Bill Simpson -- Daydreamer Glenn McGregor -- Merit Jesse Walker -- DEC Chris Gunner -- DEC Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 13] Internet Draft PPP/IP MIB April 1993 7. Security Considerations The PPP MIB affords the network operator the ability to configure and control the PPP links of a particular system, including the PPP authentication protocols. This represents a security risk. These risks are addressed in the following manners: (1) All variables which represent a significant security risk are placed in separate, optional, MIB Groups. As the MIB Group is the quantum of implementation within a MIB, the implementor of the MIB may elect not to implement these groups. (2) The implementor may choose to implement the variables which present a security risk so that they may not be written, i.e., the variables are READ-ONLY. This method still presents a security risk, and is not recommended, in that the variables, specifically the PPP Authentication Protocols' variables, may be easily read. (3) Using SNMPv2, the operator can place the variables into MIB views which are protected in that the parties which have access to those MIB views use authentication and privacy protocols, or the operator may elect to make these views not accessible to any party. In order to facilitate this placement, all security-related variables are placed in separate MIB Tables. This eases the identification of the necessary MIB View Subtree. Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 14] Internet Draft PPP/IP MIB April 1993 8. References [1] M.T. Rose and K. McCloghrie, Structure and Identification of Management Information for TCP/IP-based internets, Internet Working Group Request for Comments 1155. Network Information Center, SRI International, Menlo Park, California, (May, 1990). [2] K. McCloghrie and M.T. Rose, Management Information Base for Network Management of TCP/IP-based internets - MIB-2, Internet Working Group Request for Comments 1213. Network Information Center, SRI International, Menlo Park, California, (March, 1991). [3] Information processing systems - Open Systems Interconnection - Specification of Abstract Syntax Notation One (ASN.1), International Organization for Standardization. International Standard 8824, (December, 1987). [4] Information processing systems - Open Systems Interconnection - Specification of Basic Encoding Rules for Abstract Notation One (ASN.1), International Organization for Standardization. International Standard 8825, (December, 1987). [5] Rose, M., and K. McCloghrie, Editors, Concise MIB Definitions, RFC 1212, Performance Systems International, Hughes LAN Systems, March 1991. [6] Rose, M., Editor, A Convention for Defining Traps for use with the SNMP, RFC 1215, Performance Systems International, March 1991. [7] K. McCloghrie, Extensions to the Generic-Interface MIB, RFC1229, Hughes LAN Systems, May 1991. [8] W. Simpson, The Point-to-Point Protocol for the Transmission of Multi-protocol Datagrams over Point-to- Point Links, RFC 1331, May 1992. [9] G. McGregor, The PPP Internet Protocol Control Protocol, RFC 1332, Merit, May 1992. Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 15] Internet Draft PPP/IP MIB April 1993 [10] F. Baker, Point-to-Point Protocol Extensions for Bridging, RFC1220, ACC, April 1991. [11] B. Lloyd, and Simpson, W., PPP Authentication Protocols RFC1334, October 1992. [12] W. Simpson, PPP Link Quality Monitoring, RFC 1333, May 1992. Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 16] Internet Draft PPP/IP MIB April 1993 Table of Contents Status of this Memo .................................... 1 1 Abstract .............................................. 2 2 The Network Management Framework ...................... 3 3 Objects ............................................... 4 3.1 Format of Definitions ............................... 4 4 Overview .............................................. 5 4.1 Object Selection Criteria ........................... 5 4.2 Structure of the PPP ................................ 5 4.3 MIB Groups .......................................... 6 5 Definitions ........................................... 8 6 Acknowledgements ...................................... 13 7 Security Considerations ............................... 14 8 References ............................................ 15 Frank J. Kastenholz Exp. 24 Oct. 1993 [Page 17]