?? rfc3019.txt
字號:
語法:MldCacheEntry
最大權限:不可訪問
狀態:現行
描述
“mldCacheTable中的一個條目(概念上是一行) ”
索引{ mldCacheAddress,mldCacheIfIndex }
::= { mldCacheTable 1 }
MldCacheEntry ::=序列 {
mldCacheAddressInetAddressIPv6,
mldCacheIfIndexInterfaceIndex,
mldCacheSelfTruthValue,
mldCacheLastReporterInetAddressIPv6,
mldCacheUpTime TimeTicks,
mldCacheExpiryTimeTimeTicks,
mldCacheStatus RowStatus
}
mldCacheAddress 對象類型
語法:InetAddressIPv6 (SIZE (16))
最大權限:不可訪問
狀態:現行
描述
“條目中包含信息的IPv6多播組地址”
::= { mldCacheEntry 1 }
mldCacheIfIndex 對象類型
語法:InterfaceIndex
最大權限:不可訪問
狀態:現行
描述
“包含IPv6多播組地址信息的條目的互聯網絡層接口”
::= { mldCacheEntry 2 }
mldCacheSelf 對象類型
語法:TruthValue
最大權限:只讀
狀態:現行
描述
“指示本地系統是否是接口組地址中成員”
DEFVAL { true }
::= { mldCacheEntry 3 }
mldCacheLastReporter 對象類型
語法:InetAddressIPv6 (SIZE (16))
最大權限:只讀
狀態:現行
描述
“Ipv6多播組地址接口上接收的最后成員關系報告源的Ipv6地址。如果沒有接收到
報告,那么此對象的值為0::0”
::= { mldCacheEntry 4 }
mldCacheUpTime 對象類型
語法:TimeTicks
最大權限:只讀
狀態:現行
描述
“條目已創建的時間”
::= { mldCacheEntry 5 }
mldCacheExpiryTime 對象類型
語法:Time Ticks
最大權限:只讀
狀態:現行
描述
“條目超時前剩余的最短時間總量。0值表示此條目只是由于mldCacheSelf為真值
才出現,如果路由器離開了此組,那么這個條目就回立即超時。注意一些實現用和來自其它
主機一樣的方式處理在本地系統成員關系報告,因此0值不是必須的。”
::= { mldCacheEntry 6 }
mldCacheStatus 對象類型
語法:RowStatus
最大權限:只讀
狀態:現行
描述
“行的狀況,如創建新的條目,或從表中刪除已存在的條目”
::= { mldCacheEntry 7 }
-- 一致性信息
mldMIBConformance
對象標識符 ::= { mldMIB 2 }
mldMIBCompliances
對象標識符 ::= { mldMIBConformance 1 }
mldMIBGroups
對象標識符 ::= { mldMIBConformance 2 }
-- 一致性狀態
mldHostMIBCompliance MODULE-COMPLIANCE
狀態:現行
描述
“運行MLD和實現MLD MIB的主機遵從的狀態”
MODULE -- this module
MANDATORY-GROUPS { mldBaseMIBGroup,mldHostMIBGroup}
對象mldInterfaceStatus
最小權限:只讀
描述
“寫訪問不是必須的”
::= { mldMIBCompliances 1 }
mldRouterMIBCompliance MODULE-COMPLIANCE
狀態:現行
描述
“運行MLD和實現MLD MIB的路由器遵從的狀態”
MODULE -- this module
MANDATORY-GROUPS { mldBaseMIBGroup,mldRouterMIBGroup}
對象mldInterfaceStatus
最小權限:只讀
描述
“寫訪問不是必須的”
::= { mldMIBCompliances 2 }
--適應性單位
mldBaseMIBGroup對象類
對象{ mldCacheSelf,mldCacheStatus,mldInterfaceStatus}
狀態:現行
描述
“提供MLD管理的對象基本集合。MldBaseMIBGroup允許管理者創建和刪除MLD
緩沖條目”
::= { mldMIBGroups 1 }
mldRouterMIBGroup對象類
對象{ mldCacheUpTime,mldCacheExpiryTime,
mldInterfaceQueryInterval,
mldInterfaceJoins,mldInterfaceGroups,
mldCacheLastReporter,
mldInterfaceQuerierUpTime,
mldInterfaceQuerierExpiryTime,
mldInterfaceQuerier,
mldInterfaceVersion,
mldInterfaceQueryMaxResponseDelay,
mldInterfaceRobustness,
mldInterfaceLastListenQueryIntvl
}
狀態:現行
描述
“路由器中MLD管理的其它對象的集合”
::= { mldMIBGroups 2 }
mldHostMIBGroup對象類
對象{ mldInterfaceQuerier}
狀態:現行
描述
“主機中MLD管理的其它對象的集合”
::= { mldMIBGroups 3 }
mldProxyMIBGroup對象類
對象{ mldInterfaceProxyIfIndex }
狀態:現行
描述
“用于MLD代理設備管理的其它對象的集合”
::= { mldMIBGroups 4 }
END
需要考慮的安全問題
本MIB包含可讀的對象,它們的值提供了和多播會話相關的信息。一些對象可能包含敏
感信息。尤其是mldCacheSelf and mldCacheLastReporter可被用來標識監聽特定組地址的
機器。也有很多對象具有讀寫和/或讀、創建的MAX-ACCESS子句,管理員用這些子句來在
路由器上配置MLD。雖然未經授權的對可讀對象的訪問相對來說沒有多大關系,但是未經授
權對可寫對象的訪問就可能導致致命的服務。因此, 在沒有適當保護的不安全環境下對SET
操作的支持可能對網絡操作有消極的影響。
SNMPv1本身是這樣一個不安全的環境。即使網絡本身安全(例如使用IP Sec),然而
對諸如安全網絡中誰允許訪問和SET(改變/創建/刪除)MIB中的對象也是沒有控制的。
建議實施者考慮SNMPv3框架提供的安全屬性。特別推薦使用RFC2574基于用戶的安
全模型和RFC2575基于視圖的訪問控制模型。使用這些安全特性,可以只對那些有合法權
利GET或SET的用戶提供對象的訪問。
致謝
本MIB模塊基于由Keith McCloghrie、Dino Farinacci和Dave Thaler創作的IGMP MIB。
它是基于IPNGWG工作組、Bert Wijnen、Peder Norgaard和Juergen Schoenwaelder等提
出的建議的更新。
參考文獻
[RFC2710] Deering,S.,Fenner,W. and B. Haberman,"Multicast Listener Discovery
(MLD) for IPv6",RFC 2710,October 1999.
[RFC2119] Bradner,S.,"Key words for use in RFCs to Indicate Requirement Levels",
BCP 14,RFC 2119,March 1997.
[RFC2571] Harrington,D.,Presuhn,R. and B. Wijnen,"An Architecture for Describing
SNMP Management Frameworks",RFC 2571,April 1999.
[RFC1155] Rose,M. and K. McCloghrie,"Structure and Identification of Management
Information for TCP/IP-based Internets",STD 16,RFC 1155,May 1990.
[RFC1212] Rose,M. and K. McCloghrie,"Concise MIB Definitions",STD 16,RFC
1212,March 1991.
[RFC1215] Rose,M.,"A Convention for Defining Traps for use with the SNMP",RFC
1215,March 1991.
[RFC2578] McCloghrie,K.,Perkins,D.,Schoenwaelder,J.,Case,J.,Rose,
M. and S. Waldbusser,"Structure of Management Information Version 2 (SMIv2)",STD 58,
RFC 2578,April 1999.
[RFC2579] McCloghrie,K.,Perkins,D.,Schoenwaelder,J.,Case,J.,Rose,
M. and S. Waldbusser,"Textual Conventions for SMIv2",STD 58,RFC 2579,April 1999.
[RFC2580] McCloghrie,K.,Perkins,D.,Schoenwaelder,J.,Case,J.,Rose,
M. and S. Waldbusser,"Conformance Statements for SMIv2",STD 58,RFC 2580,April
1999.
[RFC1157] Case,J.,Fedor,M.,Schoffstall,M. and J. Davin,"Simple Network
Management Protocol",STD 15,RFC 1157,May 1990.
[RFC1901] Case,J.,McCloghrie,K.,Rose,M. and S. Waldbusser,"Introduction to
Community-based SNMPv2",RFC 1901,January 1996.
[RFC1906] Case,J.,McCloghrie,K.,Rose,M. and S. Waldbusser,"Transport
Mappings for Version 2 of the Simple Network Management Protocol (SNMPv2)",RFC
1906,January 1996.
[RFC2572] Case,J.,Harrington D.,Presuhn R. and B. Wijnen,"Message Processing
and Dispatching for the Simple Network Management Protocol (SNMP)",RFC 2572,April
1999.
[RFC2574] Blumenthal,U. and B. Wijnen,"User-based Security Model (USM) for
version 3 of the Simple Network Management Protocol (SNMPv3)",RFC 2574,April 1999.
[RFC1905] Case,J.,McCloghrie,K.,Rose,M. and S. Waldbusser,"Protocol
Operations for Version 2 of the Simple Network Management Protocol (SNMPv2)",RFC
1905,January 1996.
[RFC2573] Levi,D.,Meyer,P. and B. Stewart,"SNMPv3 Applications",RFC 2573,
April 1999.
[RFC2575] Wijnen,B.,Presuhn,R. and K. McCloghrie,"View-based Access Control
Model (VACM) for the Simple Network Management Protocol (SNMP)",RFC 2575,April
1999.
[RFC2570] Case,J.,Mundy,R.,Partain,D. and B. Stewart,"Introduction to Version
3 of the Internet-standard Network Management Framework",RFC 2570,April 1999.
作者地址
Brian Haberman
Nortel Networks
4309 Emperor Blvd.
Suite 200
Durham,NC 27703
USA
Phone: +1-919-992-4439
EMail: haberman@nortelnetworks.com
Randy Worzella
IBM Corporation
800 Park Office Drive
Research Triangle Park,NC 27709
USA
Phone: +1-919-254-2202
EMail: worzella@us.ibm.com
完整的版權聲明
Copyright (C) The Internet Society (2001)。版權所有。
This document and translations of it may be copied and furnished to others,and
derivative works that comment on or otherwise explain it or assist in its implementation
may be prepared,copied,published and distributed,in whole or in part,without restriction
of any kind,provided that the above copyright notice and this paragraph are included on all
such copies and derivative works. However,this document itself may not be modified in
any way,such as by removing the copyright notice or references to the Internet Society or
other Internet organizations,except as needed for the purpose of developing Internet
standards in which case the procedures for copyrights defined in the Internet Standards
process must be followed,or as required to translate it into languages other than English.
The limited permissions granted above are perpetual and will not be revoked by the
Internet Society or its successors or assigns.
This document and the information contained herein is provided on an "AS IS" basis
and THE INTERNET SOCIETY AND THE INTERNET ENGINEERING TASK FORCE
DISCLAIMS ALL WARRANTIES,EXPRESS OR IMPLIED,INCLUDING BUT NOT
LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION HEREIN WILL
NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF MERCHANTABILITY
OR FITNESS FOR A PARTICULAR PURPOSE.
致謝
目前,RFC編者的活動基金由Internet社團提供。
RFC3019——IP Version 6 Management Information Base for The Multicast Listener Discovery Protocol
多播監聽發現協議的Ipv6 MIB
1
RFC文檔中文翻譯計劃
?? 快捷鍵說明
復制代碼
Ctrl + C
搜索代碼
Ctrl + F
全屏模式
F11
切換主題
Ctrl + Shift + D
顯示快捷鍵
?
增大字號
Ctrl + =
減小字號
Ctrl + -