Internet DRAFT - draft-desanti-fc-name-server
draft-desanti-fc-name-server
Internet Draft C. DeSanti
V. Gaonkar
H.K. Vivek
K. McCloghrie
S. Gai
Cisco Systems
17 July 2004
Fibre-Channel Name Server MIB
draft-desanti-fc-name-server-02.txt
Status of this Memo
By submitting this Internet-Draft, I certify that any applicable
patent or other IPR claims of which I am aware have been disclosed,
and any of which I become aware will be disclosed, in accordance with
RFC 3668.
Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF), its areas, and its working groups. Note that
other groups may also distribute working documents as Internet-
Drafts.
Internet-Drafts are draft documents valid for a maximum of six months
and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet- Drafts as reference
material or to cite them other than as "work in progress".
The list of current Internet-Drafts can be accessed at
http://www.ietf.org/ietf/1id-abstracts.txt
The list of Internet-Draft Shadow Directories can be accessed at
http://www.ietf.org/shadow.html.
Copyright Notice
Copyright (C) The Internet Society (2004). All Rights Reserved.
Abstract
This memo defines a portion of the Management Information Base (MIB)
for use with network management protocols in the Internet community.
In particular, it describes managed objects for information related
to the Fibre Channel network's Name Server function. At present,
this memo is a work item of T11.5 (http://www.t11.org). The plan is
that it will later become a work item of IETF's IMSS working group.
Expires January 2005 [Page 1]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
Table of Contents
1 Introduction ................................................. 3
2 The Internet-Standard Management Framework ................... 3
3 Short Overview of Fibre Channel .............................. 3
4 Relationship to Other MIBs ................................... 4
5 MIB Overview ................................................. 5
5.1 Fibre Channel management instance .......................... 5
5.2 Name Server Index .......................................... 5
5.3 Fabric Index ............................................... 6
5.4 The MIB Groups ............................................. 6
5.4.1 The t11NsDBGroup group ................................... 6
5.4.2 The t11NsStatsGroup group ................................ 6
5.4.3 The t11NsNotifyControlGroup group ........................ 6
5.4.4 The t11NsNotifyGroup group ............................... 6
5.5 The Actual Values of Objects ............................... 6
6 The T11-FC-NAME-SERVER-MIB Module ............................ 7
7 Intellectual Property ........................................ 29
8 Acknowledgements ............................................. 30
9 Normative References ......................................... 30
10 Informative References ...................................... 31
11 Security Considerations ..................................... 31
12 Authors' Addresses .......................................... 33
13 Full Copyright Statement .................................... 34
Expires January 2005 [Page 2]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
1. Introduction
This memo defines a portion of the Management Information Base (MIB)
for use with network management protocols in the Internet community.
In particular, it describes managed objects for information related
to the Fibre Channel network's Name Server function.
2. The Internet-Standard Management Framework
For a detailed overview of the documents that describe the current
Internet-Standard Management Framework, please refer to section 7 of
RFC 3410 [RFC3410].
Managed objects are accessed via a virtual information store, termed
the Management Information Base or MIB. MIB objects are generally
accessed through the Simple Network Management Protocol (SNMP).
Objects in the MIB are defined using the mechanisms defined in the
Structure of Management Information (SMI). This memo specifies a MIB
module that is compliant to the SMIv2, which is described in STD 58,
RFC 2578 [RFC2578], STD 58, RFC 2579 [RFC2579] and STD 58, RFC 2580
[RFC2580].
3. Short Overview of Fibre Channel
The Fibre Channel (FC) is logically a bidirectional point-to-point
serial data channel, structured for high performance. Fibre Channel
provides a general transport vehicle for higher level protocols such
as Small Computer System Interface (SCSI) command sets, the High-
Performance Parallel Interface (HIPPI) data framing, IP (Internet
Protocol), IEEE 802.2, and others.
Physically, Fibre Channel is an interconnection of multiple
communication points, called N_Ports, interconnected either by a
switching network, called a Fabric, or by a point-to-point link. A
Fibre Channel "node" consists of one or more N_Ports. A Fabric may
consist of multiple Interconnect Elements, some of which are
switches. An N_Port connects to the Fabric via a port on a switch
called an F_Port. When multiple FC nodes are connected to a single
port on a switch via an "Arbitrated Loop" topology, the switch port
is called an FL_Port, and the nodes' ports are called NL_Ports. The
term Nx_Port is used to refer to either an N_Port or an NL_Port. The
term Fx_Port is used to refer to either an F_Port or an FL_Port. A
switch port, which is interconnected to another switch port via an
Expires January 2005 [Page 3]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
Inter-Switch Link (ISL), is called an E_Port. A B_Port connects a
bridge device with an E_Port on a switch; a B_Port provides a subset
of E_Port functionality.
Many Fibre Channel components, including the fabric, each node, and
most ports, have globally-unique names. These globally-unique names
are typically formatted as World Wide Names (WWNs). More information
on WWNs can be found in [FC-FS]. WWNs are expected to be persistent
across agent and unit resets.
Fibre Channel frames contain 24-bit address identifiers which
identify the frame's source and destination ports. Each FC port has
both an address identifier and a WWN. When a fabric is in use, the
FC address identifiers are dynamic and are assigned by a switch.
Each octet of a 24-bit address represents a level in an address
hierarchy, with a Domain_ID being the highest level of the hierarchy.
The Fibre Channel Name Server provides a way for N_Ports and NL_Ports
to register and discover Fibre Channel attributes. Such attributes
include names, addresses, types, features, etc. at various protocol
layers, including upper layer protocols specific to Fibre Channel
(which are sometimes called "FC-4s"). Communication with the Name
Server is via Fibre Channel's CT (Common Transport for Generic
Services) using "Information Units" (called CT_IU's) as either
requests, responses or unsolicited.
Registrations may be performed by a third party. However, the Name
Server may refuse such third party registration for unspecified
reasons . Once registered, the attributes are made available to
requestors.
The Fibre Channel Name Server is defined in the FC-GS specification,
The latest specification is [FC-GS-4]; the previous version was [FC-
GS-3].
4. Relationship to Other MIBs
The first standardized MIB for Fibre Channel [RFC2837] was focussed
on Fibre Channel switches. It is being replaced by the more generic
Fibre Channel Management MIB [FC-MGMT] which defines basic
information for Fibre Channel hosts and switches, including
extensions to the standard IF-MIB for Fibre Channel interfaces.
This MIB extends beyond [FC-MGMT] to cover the functionality, in
Expires January 2005 [Page 4]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
Fibre Channel switches, of providing Fibre Channel's Name Server
function.
This MIB also imports some common Textual Conventions from T11-TC-
MIB, defined in [FC-FAM-MIB].
5. MIB Overview
This MIB module provides the means for monitoring the operation of,
and configuring some parameters of, one or more instances of Fibre
Channel Name Server functionality. (Note that there are no
definitions in this MIB module of "managed actions" which can be
invoked via SNMP.)
5.1. Fibre Channel management instance
A Fibre Channel management instance is defined in [FC-MGMT] as a
separable managed instance of Fibre Channel functionality. Fibre
Channel functionality may be grouped into Fibre Channel management
instances in whatever way is most convenient for the
implementation(s). For example, one such grouping accommodates a
single SNMP agent having multiple AgentX [RFC2741] sub-agents, with
each sub-agent implementing a different Fibre Channel management
instance.
The object, fcmInstanceIndex, is IMPORTed from the FC-MGMT-MIB
[FC-MGMT] as the index value to uniquely identify each Fibre Channel
management instance within the same SNMP context ([RFC3411] section
3.3.1).
5.2. Name Server Index
As well as allowing for multiple Fibre Channel management instances,
this MIB also allows for multiple instances of the Name Server
functionality within each Fibre Channel management instance.
Further, some of the Name Server instances managed by the same Fibre
Channel management instance, can operate local to a particular Fibre
Channel switch and some can operate independent of any particular
switch.
Therefore, all objects in this MIB are in tables which are INDEX-ed
by at least fcmInstanceIndex and t11NsIndex, where the latter is an
index value which uniquely identifies a Name Server instance within a
Fibre Channel management instance.
Expires January 2005 [Page 5]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
5.3. Fabric Index
The current standard for an interconnecting Fabric consisting of
multiple Fabric Switch elements is [FC-SW-3], which describes the
operation of a single Fabric in a physical infrastructure. It is
possible that future standards will define how multiple Fabrics could
operate within one (or more) physical infrastructures. In such a
scenario, each Fabric would, of course, have its own management
instrumentation. Therefore, to *allow* for this future possibility,
this MIB defines all Fabric-related information in tables which are
INDEX-ed by an arbitrary integer, named a "Fabric Index". In a
Fabric which is conformant to [FC-SW-3], the value of this Fabric
Index will always be 1.
5.4. The MIB Groups
This section describes the four MIB groups contained in the MIB.
5.4.1. The t11NsDBGroup group
This group contains information about the operation of the Name
Server function, including an indication of whether each Name Server
instance operates local to a particular Fibre Channel switch, or
independently of any Fibre Channel switch. It also contains the
information currently registered with the Name Server.
5.4.2. The t11NsStatsGroup group
This group contains Name Server statistics.
5.4.3. The t11NsNotifyControlGroup group
This group contains those notification control and notification
information objects which are required for monitoring Name Server
registrations/de-registrations.
5.4.4. The t11NsNotifyGroup group
This group contains notifications which provide for the monitoring of
Name Server registrations/de-registrations.
5.5. The Actual Values of Objects
The objects defined in the t11NsRegTable represent the values
registered with the Name Server. The SNMP agent MUST report the
Expires January 2005 [Page 6]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
actual values, even if they are incorrectly formatted. This is the
reason why, for example, the two objects which represent IP-
addresses, t11NsNodeIpAddress and t11NsPortIpAddress, have the SYNTAX
of OCTET STRING, so that they are able to represent invalid values
(which could not be represented using InetAddressType and
InetAddress).
Similarly, each pair of t11NsRejectReasonCode and
t11NsRejReasonCodeExp objects holds the values of the actual reject
code and explanation which was present in the generated Reject
message (the "Reject CT_IU"), irrespective of whether such a reject
code and explanation were appropriate or not.
6. The T11-FC-NAME-SERVER-MIB Module
T11-FC-NAME-SERVER-MIB DEFINITIONS ::= BEGIN
-- The MIB for management of the Fibre Channel functionality which
-- implements the Name Server function.
IMPORTS
MODULE-IDENTITY,OBJECT-TYPE, NOTIFICATION-TYPE, Unsigned32,
Counter32,Integer32 FROM SNMPv2-SMI -- [RFC2578]
MODULE-COMPLIANCE, OBJECT-GROUP,
NOTIFICATION-GROUP FROM SNMPv2-CONF -- [RFC2580]
SnmpAdminString FROM SNMP-FRAMEWORK-MIB -- [RFC3411]
TruthValue, TEXTUAL-CONVENTION,
TimeStamp FROM SNMPv2-TC -- [RFC2579]
fcmInstanceIndex, FcPortType, FcAddressIdOrZero, FcClasses,
FcNameIdOrZero FROM FC-MGMT-MIB -- [FC-MGMT]
FabricIndex FROM T11-TC-MIB; -- [FC-FAM-MIB]
t11NameServerMIB MODULE-IDENTITY
LAST-UPDATED "200407170000Z"
ORGANIZATION "T11"
CONTACT-INFO
" Claudio DeSanti
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134 USA
Phone: +1 408 853-9172
EMail: cds@cisco.com
Expires January 2005 [Page 7]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
Keith McCloghrie
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA USA 95134
Phone: +1 408-526-5260
EMail: kzm@cisco.com"
DESCRIPTION
"The MIB module for the management of the functionality,
which realizes the FC-GS-4 requirements for Name
Server(NS)."
REVISION "200407170000Z"
DESCRIPTION
"Initial version of this MIB module."
::= { tbd }
t11NsMIBObjects OBJECT IDENTIFIER ::= { t11NameServerMIB 1 }
t11NsMIBConformance OBJECT IDENTIFIER ::= { t11NameServerMIB 2 }
t11NsStatus OBJECT IDENTIFIER ::= { t11NsMIBObjects 1 }
t11NsStatistics OBJECT IDENTIFIER ::= { t11NsMIBObjects 2 }
t11NsNotifications OBJECT IDENTIFIER ::= { t11NsMIBObjects 0 }
-- Textual Conventions
T11NsGs4RejectReasonCode ::= TEXTUAL-CONVENTION
STATUS current
DESCRIPTION
"The FC-GS-4 reject reason code for a request.
none(1) - no error.
invalidCmdCode(2) - request contained an invalid
command code.
invalidVerLevel(3) - request containeds an invalid
version number.
logicalError(4) - there was a logical error.
invalidIUSize(5) - the CT_IU (Information Unit) size
was invalid.
logicalBusy(6) - the module is busy.
protocolError(7) - there was a protocol error.
unableToPerformCmdReq(8) - the command specified
in the req could not be
executed. The details
of exactly what failed
will be in the
corresponding reason
Expires January 2005 [Page 8]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
code explanation.
cmdNotSupported(9) - the command is not
supported.
serverNotAvailable(10) - the identified server was
not available.
couldNotEstabSession(11) - a server session (i.e.,
using SSE) could not be
established.
vendorError(12) - vendor-specific error."
REFERENCE
"ANSI INCITS 387-2004, Fibre Channel - Generic
Services-4 (FC-GS-4), section 4.4.3."
SYNTAX INTEGER {
none(1),
invalidCmdCode(2),
invalidVerLevel(3),
logicalError(4),
invalidIUSize(5),
logicalBusy(6),
protocolError(7),
unableToPerformCmdReq(8),
cmdNotSupported(9),
serverNotAvailable(10),
couldNotEstabSession(11),
vendorError(12)
}
T11NsRejReasonCodeExpl ::= TEXTUAL-CONVENTION
STATUS current
DESCRIPTION
"The reject reason code explanation:
noAdditionalExplanation(1) - no additional
explanation.
portIdentifierNotRegistered(2) - Port Identifier not
registered.
portNameNotRegistered(3) - Port Name not registered.
nodeNameNotRegistered(4) - Node Name not registered.
classOfServiceNotRegistered(5) - Class of Service
not registered.
nodeIpAddressNotRegistered(6) - 'IP Address (Node)'
value not registered.
ipaNotRegistered(7) - Initial Process Associator (IPA)
not registered.
fc4TypeNotRegistered(8) - FC-4 TYPEs not registered.
Expires January 2005 [Page 9]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
symbolicPortNameNotRegistered(9) - Symbolic Port Name
not registered.
symbolicNodeNameNotRegistered(10) - Symbolic Node Name
not registered.
portTypeNotRegistered(11) - 'Port Type' not registered.
portIpAddressNotRegistered(12) - 'IP Address (Port)'
value not registered.
fabricPortNameNotRegistered(13) - Fabric Port Name not
registered.
hardAddressNotRegistered(14) - 'Hard Address' not
registered
fc4DescriptorNotRegistered(15) - FC-4 Descriptor not
registered.
fc4FeaturesNotRegistered(16) - FC-4 Features not
registered.
accessDenied(17) - Access denied.
unacceptablePortIdentifier(18) - Unacceptable
Port Identifier
databaseEmpty(19) - Database is empty.
noObjectRegInSpecifiedScope(20) - no object has been
registered in the
specified scope.
domainIdNotPresent(21) - Domain ID not present
portIdNotPresent(22) - Port number not present
noDeviceAttached(23) - No device attached.
authorizationException(24) - Authorization Exception
authenticationException(25) - Authentication Exception
databaseFull(26) - Data base full."
REFERENCE
"ANSI INCITS 387-2004, Fibre Channel - Generic
Services-4 (FC-GS-4), sections 4.4.4 and 5.2.4"
SYNTAX INTEGER {
noAdditionalExplanation(1),
portIdentifierNotRegistered(2),
portNameNotRegistered(3),
nodeNameNotRegistered(4),
classOfServiceNotRegistered(5),
nodeIpAddressNotRegistered(6),
ipaNotRegistered(7),
fc4TypeNotRegistered(8),
symbolicPortNameNotRegistered(9),
symbolicNodeNameNotRegistered(10),
portTypeNotRegistered(11),
portIpAddressNotRegistered(12),
fabricPortNameNotRegistered(13),
Expires January 2005 [Page 10]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
hardAddressNotRegistered(14),
fc4DescriptorNotRegistered(15),
fc4FeaturesNotRegistered(16),
accessDenied(17),
unacceptablePortIdentifier(18),
databaseEmpty(19),
noObjectRegInSpecifiedScope(20),
domainIdNotPresent(21),
portIdNotPresent(22),
noDeviceAttached(23),
authorizationException(24),
authenticationException(25),
databaseFull(26)
}
--
-- Information about a Name Server instance
--
t11NsTable OBJECT-TYPE
SYNTAX SEQUENCE OF T11NsEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"This table contains one entry for each instance of
Name Server functionality within each Fibre Channel
managed instance."
::= { t11NsStatus 1 }
t11NsEntry OBJECT-TYPE
SYNTAX T11NsEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"An entry in the t11NsTable. This contains information
about one Name Server instance within the Fibre Channel
management instance identified by fcmInstanceIndex."
INDEX { fcmInstanceIndex, t11NsIndex }
::= { t11NsTable 1 }
T11NsEntry ::= SEQUENCE {
t11NsIndex Unsigned32,
t11NsSwitchIndex Unsigned32,
t11NsTableLastChange TimeStamp,
t11NsNumRows Integer32,
Expires January 2005 [Page 11]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
t11NsTotalRejects Counter32,
t11NsRejReqNotifyEnable TruthValue
}
t11NsIndex OBJECT-TYPE
SYNTAX Unsigned32 (1..4294967295)
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"An arbitrary integer value which uniquely identifies
this Name Server instance amongst all others within the
same Fibre Channel management instance.
It is mandatory to keep this value constant between
restarts of the agent, and to make every possible
effort to keep it constant across restarts."
::= { t11NsEntry 1 }
t11NsSwitchIndex OBJECT-TYPE
SYNTAX Unsigned32 (0..4294967295)
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The value of this object is zero when this Name
Server instance does not operate local to a Fibre
Channel switch; otherwise, it is non-zero and
identifies the local switch.
The switch identified by a non-zero value of this
object is the same switch as is identified by the
same value of fcmSwitchIndex."
REFERENCE
"fcmSwitchIndex is defined in the FC-MGMT-MIB module"
::= { t11NsEntry 2 }
t11NsTableLastChange OBJECT-TYPE
SYNTAX TimeStamp
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The value of sysUpTime at the time of the last update
to any entry in the t11NsRegTable with the same values
of fcmInstanceIndex and t11NsIndex. This includes
creation of an entry, deletion of an entry, or
modification of an existing entry. If no such update
Expires January 2005 [Page 12]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
has taken place since the last re-initialization of the
local network management subsystem, then this object
contains a zero value."
::= { t11NsEntry 3 }
t11NsNumRows OBJECT-TYPE
SYNTAX Integer32 (0..2147483647)
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The number of Nx_Ports currently registered with
this Name Server instance, i.e., the number of rows
in the t11NsRegTable with the same values of
fcmInstanceIndex and t11NsIndex."
::= { t11NsEntry 4 }
t11NsTotalRejects OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of (CT_IU) Requests for Name Server
functions which were rejected by this Name Server
instance, across all Fabrics it serves."
::= { t11NsEntry 5 }
t11NsRejReqNotifyEnable OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object indicates whether this Name Server
instance generates 't11NsRejectRegNotify'
notifications.
If value of this object is 'true', then the
notification is generated when a request is rejected.
If it is 'false', the notification is not generated."
DEFVAL { false }
::= { t11NsEntry 6 }
--
-- Registered Port Information
--
Expires January 2005 [Page 13]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
t11NsRegTable OBJECT-TYPE
SYNTAX SEQUENCE OF T11NsRegEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"This table contains entries for all Nx_Ports registered
with all Name Server instances on all Fabrics on which
they operate."
::= { t11NsStatus 2 }
t11NsRegEntry OBJECT-TYPE
SYNTAX T11NsRegEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"An entry in the t11NsRegTable, containing information
about an Nx_Port represented by t11NsRegPortIdentifier
which is registered with a Name Server instance
(identified by t11NsIndex) within the Fibre Channel
management instance (identified by fcmInstanceIndex)
on the Fabric (identified by t11NsRegFabricIndex)."
INDEX { fcmInstanceIndex, t11NsIndex,
t11NsRegFabricIndex, t11NsRegPortIdentifier }
::= { t11NsRegTable 1 }
T11NsRegEntry ::= SEQUENCE {
t11NsRegFabricIndex FabricIndex,
t11NsRegPortIdentifier FcAddressIdOrZero,
t11NsRegPortName FcNameIdOrZero,
t11NsRegNodeName FcNameIdOrZero,
t11NsRegClassOfSvc FcClasses,
t11NsRegNodeIpAddress OCTET STRING,
t11NsRegProcAssoc OCTET STRING,
t11NsRegFc4Type OCTET STRING,
t11NsRegPortType FcPortType,
t11NsRegPortIpAddress OCTET STRING,
t11NsRegFabricPortName FcNameIdOrZero,
t11NsRegHardAddress FcAddressIdOrZero,
t11NsRegSymbolicPortName SnmpAdminString,
t11NsRegSymbolicNodeName SnmpAdminString,
t11NsRegFc4Features OCTET STRING
}
t11NsRegFabricIndex OBJECT-TYPE
SYNTAX FabricIndex
Expires January 2005 [Page 14]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"A unique index value which uniquely identifies a
particular Fabric.
In a Fabric conformant to SW-3, only a single Fabric can
operate within a single physical infrastructure, and thus,
the value of this Fabric Index will always be 1.
However, it is possible that future standards will define
how multiple Fabrics, each with its own management
instrumentation, could operate within one (or more) physical
infrastructures. To allow for this future possibility, this
index value is used to uniquely identify a particular
Fabric within a physical infrastructure."
::= { t11NsRegEntry 1 }
t11NsRegPortIdentifier OBJECT-TYPE
SYNTAX FcAddressIdOrZero
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"The Fibre Channel Address Identifier of this Nx_Port.
If no Port Identifier has been registered, then the
value of this object is the zero-length string."
::= { t11NsRegEntry 2 }
t11NsRegPortName OBJECT-TYPE
SYNTAX FcNameIdOrZero
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The Port_Name (WWN) of this Nx_Port.
If this object has not been registered, then its value
is the zero-length string."
DEFVAL {''H}
::= { t11NsRegEntry 3 }
t11NsRegNodeName OBJECT-TYPE
SYNTAX FcNameIdOrZero
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The Node_Name (WWN) of this Nx_Port.
Expires January 2005 [Page 15]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
If this object has not been registered, then its value
is the zero-length string."
DEFVAL {''H}
::= { t11NsRegEntry 4 }
t11NsRegClassOfSvc OBJECT-TYPE
SYNTAX FcClasses
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The class of service indicator. This object is a
array of bits that contain a bit map of the classes of
service supported by the associated port. If a bit in
this object is 1, it indicates that the class of
service is supported by the associated port. When a
bit is set to 0, it indicates that no class of service
is supported by this Nx_Port.
If this object has not been not registered for a port,
then that the instance for that port is not instantiated."
::= { t11NsRegEntry 5 }
t11NsRegNodeIpAddress OBJECT-TYPE
SYNTAX OCTET STRING (SIZE (0 | 16))
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The IP address of the node of this Nx_Port, either as a
32-bit IPv4 address or a 128-bit IPv6 address. For the
former, the leftmost 96 bits (12 bytes) should contain
x'00 00 00 00 00 00 00 00 00 00 FF FF', and the IPv4
address should be present in the rightmost 32 bits.
Note that the value of this object is the IP address value
that is received in the FC-GS-4 message Register IP address
(Node) RIP_NN. It is not validated against any IP address
format.
If no 'IP address (Node)' has been registered, then the
value of this object is the zero-length string."
REFERENCE
"ANSI INCITS 387-2004, Fibre Channel - Generic
Services-3 (FC-GS-4)"
DEFVAL { ''H }
::= { t11NsRegEntry 6 }
Expires January 2005 [Page 16]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
t11NsRegProcAssoc OBJECT-TYPE
SYNTAX OCTET STRING (SIZE (0 | 8))
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The Fibre Channel Initial Process Associator (IPA).
If no 'Initial Process Associator' has been registered,
then the value of this object is the zero-length string."
REFERENCE
"ANSI INCITS 387-2004, Fibre Channel - Generic
Services-3 (FC-GS-4)"
DEFVAL { ''H }
::= { t11NsRegEntry 7 }
t11NsRegFc4Type OBJECT-TYPE
SYNTAX OCTET STRING (SIZE (0 | 32))
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The FC-4 protocol types supported by this Nx_Port.
This is an array of 256-bits. Each bit in the array
corresponds to a Type value as defined by the fibre
channel standards and contained in the Type field of
the frame header.
If no 'FC-4 TYPEs' has been registered, then the value
of this object is the zero-length string."
REFERENCE
"ANSI INCITS 387-2004, Fibre Channel - Generic
Services-3 (FC-GS-4)"
DEFVAL { ''H }
::= { t11NsRegEntry 8 }
t11NsRegPortType OBJECT-TYPE
SYNTAX FcPortType
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The port type of this port.
If no 'Port Type' has been registered, then the value
of this object is unidentified, and represented by
the value: 'unknown'."
DEFVAL { 1 } -- 'unknown', see [FC-MGMT]
Expires January 2005 [Page 17]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
::= { t11NsRegEntry 9 }
t11NsRegPortIpAddress OBJECT-TYPE
SYNTAX OCTET STRING (SIZE (0 | 16))
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The value which Fibre Channel calls an 'IP Address (Port)'
which represents the IP address of the associated port.
The value is either in 32-bit IPv4 format or 128-bit IPv6
format. When this object contains a IPv4 address, the
leftmost 96 bits (12 bytes) should contain x'00 00 00 00 00
00 00 00 00 00 FF FF'. The IPv4 address should be present in
the rightmost 32 bits.
Note that the value of this object is the IP address value
that is received in the FC-GS-4 message Register IP address
(Port) RIPP_ID. It is not validated against any IP address
format.
If no 'IP address (Port)' has been registered, then the
value of this object is the zero-length string."
REFERENCE
"ANSI INCITS 387-2004, Fibre Channel - Generic
Services-3, (FC-GS-4)"
DEFVAL {''H}
::= { t11NsRegEntry 10 }
t11NsRegFabricPortName OBJECT-TYPE
SYNTAX FcNameIdOrZero
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The Fabric Port Name (WWN) of the Fx_Port to which
this Nx_Port is attached.
If no 'Fabric Port Name' has been registered, then the
value of this object is the zero-length string."
DEFVAL {''H}
::= { t11NsRegEntry 11 }
t11NsRegHardAddress OBJECT-TYPE
SYNTAX FcAddressIdOrZero
MAX-ACCESS read-only
STATUS current
Expires January 2005 [Page 18]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
DESCRIPTION
"The format of this object is identical to the format
of Hard Address defined in the Discover Address (ADISC)
Extended Link Service (FC-FS).
Hard Address is the 24-bit NL_Port identifier which
consists of
- the 8-bit Domain_ID in the most significant byte
- the 8-bit Area Id in the next most significant
byte
- the 8-bit AL-PA(Arbitrated Loop Physical Address)
which an NL_Port attempts acquire during FC-AL
initialization in the least significant byte.
If the port is not an NL_Port, or if it is an NL_Port
but does not have a hard address, then all bits are
reported as zeros.
If no 'Hard Address' has been registered, then the
value of this object is the zero-length string."
DEFVAL {''H}
::= { t11NsRegEntry 12 }
t11NsRegSymbolicPortName OBJECT-TYPE
SYNTAX SnmpAdminString (SIZE (0..255))
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The user-defined name of this port.
If no 'Symbolic Port Name' has been registered, then
the value of this object is the zero length string."
DEFVAL {''H}
::= { t11NsRegEntry 13 }
t11NsRegSymbolicNodeName OBJECT-TYPE
SYNTAX SnmpAdminString (SIZE (0..255))
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The user-defined name of the node of this port.
If no 'Symbolic Node Name' has been registered, then
the value of this object is the zero length string."
DEFVAL {''H}
::= { t11NsRegEntry 14 }
Expires January 2005 [Page 19]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
t11NsRegFc4Features OBJECT-TYPE
SYNTAX OCTET STRING (SIZE (0 | 32))
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The FC-4 Features associated with this port and the
FC-4 Type. Refer to FC-GS-4 specification for the
format of this object.
This object is an array of 4-bit values, one for each
TYPE code value.
The 5 most significant bits of the TYPE field will be
used to identify the word for the FC-4 Features object.
- Word 0 contains information related to TYPE
code '00' through '07';
- Word 1 contains information related to TYPE
code '08' through 0F';
- and so forth to Word 31 that contains
information related to TYPE code 'F8'
through 'FF'.
The 3 least significant bits of the TYPE field will be
used to identify the position within the word for the
4-bit FC-4 Features value.
If no 'FC-4 Features' has been registered, then
the value of this object is the zero length string."
REFERENCE
"ANSI INCITS 387-2004, Fibre Channel - Generic
Services-3 (FC-GS-4)"
DEFVAL {''H}
::= { t11NsRegEntry 15 }
--
-- Registered FC-4 Descriptors
--
t11NsRegFc4DescriptorTable OBJECT-TYPE
SYNTAX SEQUENCE OF T11NsRegFc4DescriptorEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"This table contains entries for all FC-4 Descriptors
registered with Name Server instances on
all Fabrics on which they operate."
::= { t11NsStatus 3 }
Expires January 2005 [Page 20]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
t11NsRegFc4DescriptorEntry OBJECT-TYPE
SYNTAX T11NsRegFc4DescriptorEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"An entry in the t11NsRegFc4DescriptorTable,
containing information about a FC-4 Descriptor
which is associated with a particular FC-4 Type
value. The particular FC-4 Descriptor was
registered by an Nx_Port (identified by
t11NsRegPortIdentifier) with a Name Server instance
(identified by t11NsIndex) within the Fibre Channel
management instance (identified by fcmInstanceIndex)
on the Fabric (identified by t11NsRegFabricIndex).
If no FC-4 Descriptors have been registered
for a particular port, then there will be no
entries in this table for that port."
INDEX { fcmInstanceIndex, t11NsIndex,
t11NsRegFabricIndex, t11NsRegPortIdentifier,
t11NsRegFc4TypeValue }
::= { t11NsRegFc4DescriptorTable 1 }
T11NsRegFc4DescriptorEntry ::= SEQUENCE {
t11NsRegFc4TypeValue Unsigned32,
t11NsRegFc4Descriptor OCTET STRING
}
t11NsRegFc4TypeValue OBJECT-TYPE
SYNTAX Unsigned32
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"An integer value which identifies an FC-4 Type value
for which an FC-4 Descriptor has been registered.
An instance of this object contains the 'Type value'
to which one of the 256 bits in a t11NsRegFc4Type value
corresponds."
::= { t11NsRegFc4DescriptorEntry 1 }
t11NsRegFc4Descriptor OBJECT-TYPE
SYNTAX OCTET STRING (SIZE (0..255))
MAX-ACCESS read-only
STATUS current
Expires January 2005 [Page 21]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
DESCRIPTION
"The FC-4 Descriptor value which has been registered
for the particular port on the particular fabric, and
for the FC-4 Type represented by the corresponding
value of t11NsRegFc4TypeIndex.
The format of an FC-4 Descriptor is dependent on the
corresponding FC-4 Type value."
REFERENCE
"ANSI INCITS 387-2004, Fibre Channel - Generic
Services-3 (FC-GS-4), section 5.2.5.42"
::= { t11NsRegFc4DescriptorEntry 2 }
--
-- Name Server per-Fabric Statistics
--
t11NsStatsTable OBJECT-TYPE
SYNTAX SEQUENCE OF T11NsStatsEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"This table contains per-Fabric state and statistics
maintained by Name Server instances."
::= { t11NsStatistics 1 }
t11NsStatsEntry OBJECT-TYPE
SYNTAX T11NsStatsEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"An entry in this table, containing state and stats
for a Name Server instance (identified by t11NsIndex)
within the Fibre Channel management instance
(identified by fcmInstanceIndex) on the Fabric
(identified by t11NsRegFabricIndex)."
INDEX { fcmInstanceIndex, t11NsIndex, t11NsRegFabricIndex }
::= { t11NsStatsTable 1 }
T11NsStatsEntry ::= SEQUENCE {
t11NsInGetReqs Counter32,
t11NsOutGetReqs Counter32,
t11NsInRegReqs Counter32,
t11NsInDeRegReqs Counter32,
Expires January 2005 [Page 22]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
t11NsInRscns Counter32,
t11NsOutRscns Counter32,
t11NsRejects Counter32,
t11NsDatabaseFull TruthValue
}
t11NsInGetReqs OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of (CT_IU) Get Requests
received by the Name Server instance on this
Fabric."
::= { t11NsStatsEntry 1 }
t11NsOutGetReqs OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of (CT_IU) Get Requests sent by
the Name Server instance on this Fabric."
::= { t11NsStatsEntry 2 }
t11NsInRegReqs OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of (CT_IU) Registration Requests
received by the Name Server instance on this Fabric."
::= { t11NsStatsEntry 3 }
t11NsInDeRegReqs OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of (CT_IU) De-registration Requests
received by the Name Server instance on this Fabric."
::= { t11NsStatsEntry 4 }
t11NsInRscns OBJECT-TYPE
SYNTAX Counter32
Expires January 2005 [Page 23]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of RSCNs, indicating Name
Server-related changes, received by the Name Server
instance on this Fabric."
::= { t11NsStatsEntry 5 }
t11NsOutRscns OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of RSCNs, indicating Name
Server-related changes, sent by the Name Server
instance on this Fabric."
::= { t11NsStatsEntry 6 }
t11NsRejects OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of CT_IU Requests for Name
Server functions which were rejected by the Name
Server instance on this Fabric."
::= { t11NsStatsEntry 7 }
t11NsDatabaseFull OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"An indication of whether the Name Server instance's
database is full. This object is set to 'true' only
if the Name Server is unable to allocate space for a
new entry for the corresponding Fabric, and set to
'false' whenever an existing entry is deleted for the
corresponding Fabric."
::= { t11NsStatsEntry 8 }
--
-- Reject information objects
--
Expires January 2005 [Page 24]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
t11NsRejectTable OBJECT-TYPE
SYNTAX SEQUENCE OF T11NsRejectEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"This table contains information about the most recent
Name Server Registration request failures for various
ports on various fabrics.
If no information is available about the most recent
rejection of a registration request on a particular port
on a particular fabric, then there will no entry in this
table for that port and fabric.
When a t11NsRejectRegNotify notification is sent for
such a registration request failure, the values of the
objects in the relevant entry of this table are updated
immediately prior to generating the notification."
::= { t11NsStatus 4 }
t11NsRejectEntry OBJECT-TYPE
SYNTAX T11NsRejectEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"An entry in the t11NsRejectTable containing information
about the most recent Registration request rejected by
a Name Server instance (identified by t11NsIndex)
within the Fibre Channel management instance (identified
by fcmInstanceIndex) for a particular port (identified by
t11NsRegPortIdentifier) on a particular fabric (identified by
t11NsRegFabricIndex)."
INDEX { fcmInstanceIndex, t11NsIndex,
t11NsRegFabricIndex, t11NsRegPortIdentifier }
::= { t11NsRejectTable 1 }
T11NsRejectEntry ::= SEQUENCE {
t11NsRejectCtCommandString OCTET STRING,
t11NsRejectReasonCode T11NsGs4RejectReasonCode,
t11NsRejReasonCodeExp T11NsRejReasonCodeExpl
}
t11NsRejectCtCommandString OBJECT-TYPE
SYNTAX OCTET STRING (SIZE (0..255))
MAX-ACCESS read-only
Expires January 2005 [Page 25]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
STATUS current
DESCRIPTION
"The binary content of the Registration Request,
formatted as an octet string (in network byte
order) containing the CT_IU, as described in
Table 2 of [FC-GS-4] (including the preamble),
which was most recently rejected by the
Name Server instance for the particular port
on the particular fabric.
This object contains the zero-length string
if and when the CT-IU's content is unavailable.
When the length of this object is 255 octets, it
contains the first 255 octets of the CT-IU."
::= { t11NsRejectEntry 1 }
t11NsRejectReasonCode OBJECT-TYPE
SYNTAX T11NsGs4RejectReasonCode
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"A registration reject reason code. This object
contains the reason code of the most recent Name
Server Registration request failure for the
particular port on the particular fabric."
::= { t11NsRejectEntry 2 }
t11NsRejReasonCodeExp OBJECT-TYPE
SYNTAX T11NsRejReasonCodeExpl
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"A registration reject reason code explanation. This
object contains the reason code explanation of the most
recent Name Server Registration request failure for the
particular port on the particular fabric."
::= { t11NsRejectEntry 3 }
--
-- Notifications
--
t11NsRejectRegNotify NOTIFICATION-TYPE
Expires January 2005 [Page 26]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
OBJECTS { t11NsRegPortName, t11NsRejectCtCommandString,
t11NsRejectReasonCode, t11NsRejReasonCodeExp }
STATUS current
DESCRIPTION
"This notification is generated by a Name Server
instance (if its t11NsRejReqNotifyEnable is 'true')
whenever it rejects a registration request on a
particular fabric for a particular Nx_Port.
The value of t11NsRejectCtCommandString indicates
the rejected request, and the values of
t11NsRejectReasonCode and t11NsRejReasonCodeExp
indicate the reason for the rejection.
The value of t11NsRegPortName represents the Port Name
if it is able to be extracted out of the registration
request, or otherwise the value as currently registered
on the port."
::= { t11NsNotifications 1 }
--
-- Conformance
--
t11NsMIBCompliances OBJECT IDENTIFIER ::= {t11NsMIBConformance 1}
t11NsMIBGroups OBJECT IDENTIFIER ::= {t11NsMIBConformance 2}
t11NsMIBCompliance MODULE-COMPLIANCE
STATUS current
DESCRIPTION
"The compliance statement for entities which
implement the Fibre Channel Name Server."
MODULE MANDATORY-GROUPS {t11NsDBGroup,
t11NsStatsGroup,
t11NsNotifyControlGroup,
t11NsNotifyGroup}
OBJECT t11NsRejReqNotifyEnable
MIN-ACCESS read-only
DESCRIPTION
"Write access is not required."
::= { t11NsMIBCompliances 1 }
-- Units of conformance
Expires January 2005 [Page 27]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
t11NsDBGroup OBJECT-GROUP
OBJECTS { t11NsSwitchIndex,
t11NsTableLastChange,
t11NsNumRows,
t11NsRegPortName,
t11NsRegNodeName,
t11NsRegClassOfSvc,
t11NsRegNodeIpAddress,
t11NsRegProcAssoc,
t11NsRegFc4Type,
t11NsRegPortType,
t11NsRegPortIpAddress,
t11NsRegFabricPortName,
t11NsRegHardAddress,
t11NsRegSymbolicPortName,
t11NsRegSymbolicNodeName,
t11NsRegFc4Features,
t11NsRegFc4Descriptor }
STATUS current
DESCRIPTION
"A collection of objects for monitoring the information
registered with the Name Server."
::= { t11NsMIBGroups 1 }
t11NsStatsGroup OBJECT-GROUP
OBJECTS { t11NsTotalRejects,
t11NsInGetReqs,
t11NsOutGetReqs,
t11NsInRegReqs,
t11NsInDeRegReqs,
t11NsInRscns,
t11NsOutRscns,
t11NsRejects,
t11NsDatabaseFull}
STATUS current
DESCRIPTION
"A collection of objects for displaying Name
Server statistics and state."
::= { t11NsMIBGroups 2 }
t11NsNotifyControlGroup OBJECT-GROUP
OBJECTS { t11NsRejectCtCommandString,
t11NsRejectReasonCode,
t11NsRejReasonCodeExp,
t11NsRejReqNotifyEnable }
Expires January 2005 [Page 28]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
STATUS current
DESCRIPTION
"A collection of notification control and
notification information objects for monitoring
Name Server registrations/de-registrations."
::= { t11NsMIBGroups 3 }
t11NsNotifyGroup NOTIFICATION-GROUP
NOTIFICATIONS {t11NsRejectRegNotify }
STATUS current
DESCRIPTION
"A collection of notifications for monitoring
Name Server registrations/de-registrations."
::= { t11NsMIBGroups 4 }
END
7. Intellectual Property
The IETF takes no position regarding the validity or scope of any
intellectual property or other rights that might be claimed to
pertain to the implementation or use of the technology described in
this document or the extent to which any license under such rights
might or might not be available; neither does it represent that it
has made any effort to identify any such rights. Information on the
IETF's procedures with respect to rights in standards-track and
standards-related documentation can be found in BCP-11. Copies of
claims of rights made available for publication and any assurances of
licenses to be made available, or the result of an attempt made to
obtain a general license or permission for the use of such
proprietary rights by implementors or users of this specification can
be obtained from the IETF Secretariat.
The IETF invites any interested party to bring to its attention any
copyrights, patents or patent applications, or other proprietary
rights which may cover technology that may be required to practice
this standard. Please address the information to the IETF Executive
Director.
Expires January 2005 [Page 29]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
8. Acknowledgements
This document is currently a work item of the INCITS Task Group
T11.5. We wish to acknowledge the many contributions and comments
from the INCITS Technical Committee T11, including the following:
T11 Chair: Robert Snively, Brocade
T11 Vice Chair: Claudio Desanti, Cisco Systems
T11.5 Chair: Roger Cummings, VERITAS
T11.5 members, especially:
Ken Hirata, Emulex
Scott Kipp, McData
Michael O'Donnell, McData
Elizabeth G. Rodriguez, Dot Hill
Steven L. Wilson, Brocade
9. Normative References
[RFC2578]
McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J., Rose, M.
and S. Waldbusser, "Structure of Management Information Version 2
(SMIv2)", STD 58, RFC 2578, April 1999.
[RFC2579]
McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J., Rose, M.
and S. Waldbusser, "Textual Conventions for SMIv2", STD 58, RFC
2579, April 1999.
[RFC2580]
McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J., Rose, M.
and S. Waldbusser, "Conformance Statements for SMIv2", STD 58, RFC
2580, April 1999.
[RFC3411]
Harrington, D., Presuhn, R., and B. Wijnen, "An Architecture for
Describing Simple Network Management Protocol (SNMP) Management
Frameworks", STD 58, RFC 3411, December 2002.
[FC-FS]
"Fibre Channel - Framing and Signaling (FC-FS)" ANSI INCITS
373-2003, April 2003.
[FC-GS-3]
"Fibre Channel - Generic Services - 3 (FC-GS-3)", ANSI INCITS
348-2000, November 2000.
Expires January 2005 [Page 30]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
[FC-GS-4]
"Fibre Channel - Generic Services - 4 (FC-GS-4)", ANSI INCITS
387-2004, T11/Project 1505-D/Rev 7.91 Febrauary 2004.
[FC-SW-3]
"Fibre Channel - Switch Fabric - 3 (FC-SW-3)", ANSI NCITS xxx-xxxx,
T11/Project 1508-D/Rev 6.6, December 2003.
[FC-MGMT]
K. McCloghrie, "Fibre Channel Management MIB", Internet-Draft
(draft-ietf-ips-fcmgmt-mib-nn.txt), work-in-progress.
[FC-FAM-MIB]
DeSanti, C., Gaonkar, V., McCloghrie, K., and S. Gai, "Fibre-
Channel Fabric Address Manager MIB", Internet-Draft (draft-desanti-
fc-fabric-addr-mgr-nn.txt), work-in-progress.
10. Informative References
[RFC2837]
Teow, K., "Definitions of Managed Objects for the Fabric Element in
Fibre Channel Standard", RFC 2837, May 2000.
[RFC3410]
Case, J., Mundy, R., Partain, D. and B. Stewart, "Introduction and
Applicability Statements for Internet- Standard Management
Framework", RFC 3410, December 2002.
11. Security Considerations
There is one management object defined in this MIB module with a MAX-
ACCESS clause of read-write and/or read-create. Such objects may be
considered sensitive or vulnerable in some network environments. The
support for SET operations in a non-secure environment without proper
protection can have a negative effect on network operations. This
object and its sensitivity/vulnerability is:
t11NsRejReqNotifyEnable -- the ability to enable/disable
notifications.
Such objects may be considered sensitive or vulnerable in some network
environments. For example, the ability to change network topology or
network speed may afford an attacker the ability to obtain better
Expires January 2005 [Page 31]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
performance at the expense of other network users. The support for SET
operations in a non-secure environment without proper protection can
have a negative effect on network operations.
Some of the readable objects in this MIB module (i.e., objects with a
MAX-ACCESS other than not-accessible) may be considered sensitive or
vulnerable in some network environments. It is thus important to
control even GET and/or NOTIFY access to these objects and possibly to
even encrypt the values of these objects when sending them over the
network via SNMP. These are the tables and objects and their
sensitivity/vulnerability:
t11NsRegTable -- contains information about registered Nx_Ports.
t11NsStatsTable -- contains statistics and state information about
the Name Server.
SNMP versions prior to SNMPv3 did not include adequate security. Even
if the network itself is secure (for example by using IPSec), even then,
there is no control as to who on the secure network is allowed to access
and GET/SET (read/change/create/delete) the objects in this MIB module.
It is RECOMMENDED that implementors consider the security features as
provided by the SNMPv3 framework (see [RFC3410], section 8), including
full support for the SNMPv3 cryptographic mechanisms (for authentication
and privacy).
Further, deployment of SNMP versions prior to SNMPv3 is NOT RECOMMENDED.
Instead, it is RECOMMENDED to deploy SNMPv3 and to enable cryptographic
security. It is then a customer/operator responsibility to ensure that
the SNMP entity giving access to an instance of this MIB module is
properly configured to give access to the objects only to those
principals (users) that have legitimate rights to indeed GET or SET
(change/create/delete) them.
Expires January 2005 [Page 32]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
12. Authors' Addresses
Claudio DeSanti
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134 USA
Phone: +1 408 853-9172
EMail: cds@cisco.com
Vinay Gaonkar
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134 USA
Phone: +1 408 527-8576
EMail: vgaonkar@cisco.com
H.K. Vivek
Cisco Systems, Inc.
71 Millers Rd
Bangalore, India
Phone: +91 80 2289933x5117
EMail: hvivek@cisco.com
Keith McCloghrie
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA USA 95134
Phone: +1 408-526-5260
Email: kzm@cisco.com
Silvano Gai
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA USA 95134
Phone: +1 408-526-7269
Email: sgai@cisco.com
Expires January 2005 [Page 33]
�
Internet Draft Fibre-Channel Name Server MIB July 2004
13. Full Copyright Statement
Copyright (C) The Internet Society (2004). All Rights Reserved.
This document and translations of it may be copied and furnished to
others, and derivative works that comment on or otherwise explain it or
assist in its implementation may be prepared, copied, published and
distributed, in whole or in part, without restriction of any kind,
provided that the above copyright notice and this paragraph are included
on all such copies and derivative works. However, this document itself
may not be modified in any way, such as by removing the copyright notice
or references to the Internet Society or other Internet organizations,
except as needed for the purpose of developing Internet standards in
which case the procedures for copyrights defined in the Internet
Standards process must be followed, or as required to translate it into
languages other than English.
The limited permissions granted above are perpetual and will not be
revoked by the Internet Society or its successors or assigns.
This document and the information contained herein is provided on an "AS
IS" basis and THE INTERNET SOCIETY AND THE INTERNET ENGINEERING TASK
FORCE DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT
LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION HEREIN WILL NOT
INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF MERCHANTABILITY OR
FITNESS FOR A PARTICULAR PURPOSE.
Expires January 2005 [Page 34]
