Definitions of Managed Objects for Bridges with Multiple Spanning Tree Protocol Status of this Memo Copyright Notice Abstract This memo defines a portion of the Management Information Base (MIB) for use with network management protocols in TCP/IP based internets. In particular, it defines a MIB module for managing the Multiple Spanning Tree capability defined by the IEEE 802.1s [802.1s] amendment to IEEE Std 802.1Q-1998 for bridging between virtual Local Area Network (VLAN) segments. This memo supplements RFC 1493 [BRIDGEMIB], RFC 2674 [Q-BRIDGE- MIB], and RFC xxxx (RSTP-MIB). This memo includes a MIB module in a manner that is compliant to SMIv2 [RFC2578]. Table of Contents 1. The Internet-Standard Management Framework 2. Overview 3. Structure of MIB 4. MIB Definition 5. Security Considerations 6. Acknowledgments 7. Intellectual Property 8. References 1. The Internet-Standard Management Framework For a detailed overview of the documents that describe the current Internet-Standard Management Framework, please refer to section 7 of RFC 3410 [RFC3410]. Managed objects are accessed via a virtual information store, termed the Management Information Base or MIB. MIB objects are generally accessed through the Simple Network Management Protocol (SNMP). Objects in the MIB are defined using the mechanisms defined in the Structure of Management Information (SMI). This memo specifies a MIB module that is compliant to the SMIv2, which is described in STD 58, RFC 2578 [RFC2578], STD 58, RFC 2579 [RFC2579] and STD 58, RFC 2580 [RFC2580]. 1.1. Requirement Level Keywords used in this Document The MIB contained in this document uses SMIv2 and utilizes the "RowStatus" textual convention. Implementors should carefully read the definition of this textual convention. The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in [RFC2119]. 2. Overview This MIB includes a comprehensive set of managed objects which attempts to match the set defined in IEEE 802.1s [802.1s]. Objects in this MIB are defined as an addition to the dot1dStp group in the original bridge MIB [BRIDGE-MIB] and the RSTP MIB [RSTP-MIB]. It is assumed that a bridge implementing this MIB will implement the original bridge MIB [BRIDGE-MIB] as well as the RSTP MIB [RSTP-MIB]. In general, the objects defined in this MIB are complementary to those defined in the dot1dStp group of the earlier two MIBs, and this MIB should be considered as an extension to the dot1dStp group. In particular, the bridge and port parameters defined in the earlier MIBs apply to the Common and Internal Spanning Tree (CIST), while the bridge and port parameters defined in this MIB apply to the configured Multiple Spanning Tree instances (MSTIs). 3. Structure of MIB The objects defined in this MIB are divided into three groups: the Configuration group, the Bridge group, and the Port group. The Configuration group contains objects which permit instances of Spanning Tree to be configured and allow Filtering Databases to be mapped to these instances, as well as objects that characterize the MST region to which this device belongs. The Bridge group contains objects that apply to all ports on this device; it includes a table of objects containing bridge-level information for each configured instance of Spanning Tree. The Port group consists of two tables: the first contains port-level information for each configured instance of Spanning Tree, and the second contains port-level information that applies only to the CIST. 4. MIB Definition MSTP-MIB DEFINITIONS ::= BEGIN -- ------------------------------------------------------------- -- MIB for IEEE 802.1s Multiple Spanning Tree Protocol -- ------------------------------------------------------------- IMPORTS MODULE-IDENTITY, OBJECT-TYPE, Unsigned32, Counter32, TimeTicks FROM SNMPv2-SMI TEXTUAL-CONVENTION, RowStatus, TruthValue FROM SNMPv2-TC MODULE-COMPLIANCE, OBJECT-GROUP FROM SNMPv2-CONF SnmpAdminString FROM SNMP-FRAMEWORK-MIB InterfaceIndex FROM IF-MIB dot1dBridge, dot1dStp, BridgeId FROM BRIDGE-MIB; mstpMIB MODULE-IDENTITY LAST-UPDATED "200405030000Z" ORGANIZATION "IEEE 802.1 Working Group" CONTACT-INFO "http://grouper.ieee.org/groups/802/1/index.html" DESCRIPTION "The Bridge MIB Extension module for managing devices that support the Multiple Spanning Tree Protocol defined by IEEE 802.1s." ::= { dot1dBridge 12 } -- ---------------------------------------------------------- -- -- Textual Conventions -- ---------------------------------------------------------- -- HexString ::= TEXTUAL-CONVENTION DISPLAY-HINT "1x:" STATUS current DESCRIPTION "An OCTET-STRING with a suitable display hint." SYNTAX OCTET STRING (SIZE (0..1024)) -- ------------------------------------------------------------- -- Addition to the dot1dStp group -- ------------------------------------------------------------- -- ---------------------------------------------------------- -- -- groups in the MSTP MIB -- ---------------------------------------------------------- -- dot1dStpMstConfig OBJECT IDENTIFIER ::= { dot1dStp 20 } dot1dStpMstBridge OBJECT IDENTIFIER ::= { dot1dStp 21 } dot1dStpMstPort OBJECT IDENTIFIER ::= { dot1dStp 22 } -- ---------------------------------------------------------- -- -- the MST Configuration group -- ---------------------------------------------------------- -- dot1dStpMaxMstId OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The maximum Multiple Spanning Tree (MST) instance ID that this device supports." REFERENCE "IEEE 802.1s clause 12.8.1.2.2" DEFVAL { 4094 } ::= { dot1dStpMstConfig 1 } dot1dStpMaxSupportedMsts OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The maximum number of Multiple Spanning Tree instances that this device supports." REFERENCE "IEEE 802.1s clause 5.1 item j" DEFVAL { 64 } ::= { dot1dStpMstConfig 2 } dot1dStpNumMsts OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The current number of Multiple Spanning Tree instances that are configured in this device." REFERENCE "IEEE 802.1s clause 12.12.1" ::= { dot1dStpMstConfig 3 } -- ---------------------------------------------------------- -- -- MSTI Table -- ---------------------------------------------------------- -- dot1dStpMstTable OBJECT-TYPE SYNTAX SEQUENCE OF Dot1dStpMstEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "The list of configured Multiple Spanning Tree instances." REFERENCE "IEEE 802.1s clause 12.12.1" ::= { dot1dStpMstConfig 4 } dot1dStpMstEntry OBJECT-TYPE SYNTAX Dot1dStpMstEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A table entry representing a Multiple Spanning Tree instance." INDEX { dot1dStpMstId } ::= { dot1dStpMstTable 1 } Dot1dStpMstEntry ::= SEQUENCE { dot1dStpMstId Unsigned32, dot1dStpMstStatus RowStatus } dot1dStpMstId OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS not-accessible STATUS current DESCRIPTION "The unique ID of this Multiple Spanning Tree instance. This value SHALL be between 1 and dot1dStpMaxMstId inclusively." ::= { dot1dStpMstEntry 1 } dot1dStpMstStatus OBJECT-TYPE SYNTAX RowStatus MAX-ACCESS read-create STATUS current DESCRIPTION "This object allows for the dynamic creation and deletion of the corresponding Multiple Spanning Tree instance. Creation and activation of a conceptual row in this table MUST be performed as a single operation -- by setting this object to createAndGo(4) -- and suspension of an active conceptual row is not supported. Consequently, setting this object to createAndWait(5) or notInService(2) SHALL fail. Setting this object to destroy(6) SHALL fail if the corresponding Spanning Tree instance has one or more FIDs allocated to it in the FID to MSTID Allocation Table (dot1dStpAllocTable). Refer to the RowStatus convention for further details on the behavior of this object." REFERENCE "RFC2579 (Textual Conventions for SMIv2)" ::= { dot1dStpMstEntry 2 } -- ---------------------------------------------------------- -- -- FID to MSTID Allocation Table -- ---------------------------------------------------------- -- dot1dStpAllocTable OBJECT-TYPE SYNTAX SEQUENCE OF Dot1dStpAllocEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A table that contains the mapping of Filtering Databases to Spanning Tree instances." REFERENCE "IEEE 802.1s clause 12.12.2" ::= { dot1dStpMstConfig 5 } dot1dStpAllocEntry OBJECT-TYPE SYNTAX Dot1dStpAllocEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "The mapping of a particular Filtering Database to a Spanning Tree instance." INDEX { dot1dStpFdbId } ::= { dot1dStpAllocTable 1 } Dot1dStpAllocEntry ::= SEQUENCE { dot1dStpFdbId Unsigned32, dot1dStpMstIdOfFdb Unsigned32 } dot1dStpFdbId OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS not-accessible STATUS current DESCRIPTION "The unique ID of the Filtering Database to which the information in this table entry applies. This value SHALL be between 1 and dot1qMaxVlanId inclusively." ::= { dot1dStpAllocEntry 1 } dot1dStpMstIdOfFdb OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-write STATUS current DESCRIPTION "The ID of the Spanning Tree instance to which the corresponding FID is mapped. This ID must either be 0 (i.e., the CIST) or be a value which is present in the MSTI Table (dot1dStpMstTable)." DEFVAL { 0 } ::= { dot1dStpAllocEntry 2 } -- ---------------------------------------------------------- -- -- MST Configuration Table -- ---------------------------------------------------------- -- dot1dStpConfigTable OBJECT-TYPE SYNTAX SEQUENCE OF Dot1dStpConfigEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A table that contains the mapping of VLANs to Spanning Tree instances. This table is a read-only table, its elements derived from the VID to FID allocation table and the FID to MSTID allocation table." REFERENCE "IEEE 802.1s clause 12.12.3" ::= { dot1dStpMstConfig 6 } dot1dStpConfigEntry OBJECT-TYPE SYNTAX Dot1dStpConfigEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "The mapping of a particular VLAN to a Spanning Tree instance." INDEX { dot1dStpVlanId } ::= { dot1dStpConfigTable 1 } Dot1dStpConfigEntry ::= SEQUENCE { dot1dStpVlanId Unsigned32, dot1dStpMstIdOfVlan Unsigned32 } dot1dStpVlanId OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS not-accessible STATUS current DESCRIPTION "The unique ID of the VLAN to which the information in this table entry applies. This value SHALL be between 1 and dot1qMaxVlanId inclusively." ::= { dot1dStpConfigEntry 1 } dot1dStpMstIdOfVlan OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The ID of the Spanning Tree instance to which the corresponding VLAN is mapped." ::= { dot1dStpConfigEntry 2 } -- ---------------------------------------------------------- -- -- MST Configuration Identifier -- ---------------------------------------------------------- -- dot1dStpFormatSelector OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The format selector value of the Configuration Identifier. This has a value of 0 to indicate the format specified in the IEEE 802.1s standard." REFERENCE "IEEE 802.1s clause 13.7" ::= { dot1dStpMstConfig 7 } dot1dStpConfigName OBJECT-TYPE SYNTAX SnmpAdminString (SIZE(0..32)) MAX-ACCESS read-write STATUS current DESCRIPTION "The configuration name of the MST region to which this bridge belongs. The default value is the Bridge Address of this bridge, as a text string using the Hexadecimal Representation defined in IEEE Std. 802." REFERENCE "IEEE 802.1s clause 13.7" ::= { dot1dStpMstConfig 8 } dot1dStpRevisionLevel OBJECT-TYPE SYNTAX Unsigned32 (0..65535) MAX-ACCESS read-write STATUS current DESCRIPTION "The revision level of the MST region to which this bridge belongs." REFERENCE "IEEE 802.1s clause 13.7" DEFVAL { 0 } ::= { dot1dStpMstConfig 9 } dot1dStpConfigDigest OBJECT-TYPE SYNTAX HexString (SIZE(16)) MAX-ACCESS read-only STATUS current DESCRIPTION "The Configuration Digest derived from the MST Configuration Table." REFERENCE "IEEE 802.1s clause 13.7" ::= { dot1dStpMstConfig 10 } -- ---------------------------------------------------------- -- -- the MST Bridge group -- ---------------------------------------------------------- -- dot1dStpCistRegionalRootIdentifier OBJECT-TYPE SYNTAX BridgeId MAX-ACCESS read-only STATUS current DESCRIPTION "The Bridge Identifier of the current CIST Regional Root." ::= { dot1dStpMstBridge 1 } dot1dStpCistPathCost OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The CIST path cost from this bridge to the CIST Regional Root." ::= { dot1dStpMstBridge 2 } dot1dStpMaxHopCount OBJECT-TYPE SYNTAX Unsigned32 (0..255) MAX-ACCESS read-write STATUS current DESCRIPTION "The maximum number of hops that the information for a particular Spanning Tree instance may traverse (via relay of BPDUs within the applicable MST region) before being discarded. This value is used only if this bridge is the CIST Regional Root and/or the MSTI Regional Root for one or more Multiple Spanning Tree instances." DEFVAL { 20 } ::= { dot1dStpMstBridge 3 } dot1dStpMstBridgeTable OBJECT-TYPE SYNTAX SEQUENCE OF Dot1dStpMstBridgeEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A table that contains bridge protocol parameter values associated with each configured Multiple Spanning Tree instance." ::= { dot1dStpMstBridge 4 } dot1dStpMstBridgeEntry OBJECT-TYPE SYNTAX Dot1dStpMstBridgeEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A list of information maintained by each Multiple Spanning Tree instance configured on this bridge." INDEX { dot1dStpMstId } ::= { dot1dStpMstBridgeTable 1 } Dot1dStpMstBridgeEntry ::= SEQUENCE { dot1dStpMstBridgePriority Unsigned32, dot1dStpMstTimeSinceTopologyChange TimeTicks, dot1dStpMstTopChanges Counter32, dot1dStpMstTopologyChangeInProgress TruthValue, dot1dStpMstDesignatedRoot BridgeId, dot1dStpMstRootCost Unsigned32, dot1dStpMstRootPort Unsigned32 } dot1dStpMstBridgePriority OBJECT-TYPE SYNTAX Unsigned32 (0..61440) MAX-ACCESS read-write STATUS current DESCRIPTION "The value of the priority component of the Bridge ID for the corresponding Spanning Tree instance. Specifically, the four most significant bits of the most significant octet of the (8 octet long) Bridge ID followed by 12 zero bits. Note that this object may only be set to a 16-bit value in which the least significant 12 bits are zero, i.e., permissible values are 0-61440, in steps of 4096." REFERENCE "IEEE 802.1s clause 12.8.1" DEFVAL { 32768 } ::= { dot1dStpMstBridgeEntry 1 } dot1dStpMstTimeSinceTopologyChange OBJECT-TYPE SYNTAX TimeTicks MAX-ACCESS read-only STATUS current DESCRIPTION "The elapsed time, in units of hundredths of a second, since the last time a topology change was detected by the corresponding Spanning Tree instance (specifically, the elapsed time since the tcWhile timer for any port was non-zero)." REFERENCE "IEEE 802.1s clause 12.8.1" ::= { dot1dStpMstBridgeEntry 2 } dot1dStpMstTopChanges OBJECT-TYPE SYNTAX Counter32 MAX-ACCESS read-only STATUS current DESCRIPTION "The total number of topology changes detected by the corresponding Spanning Tree instance since the management entity was last reset or initialized (specifically, the count of times that the tcWhile timer for any port has been non-zero)." REFERENCE "IEEE 802.1s clause 12.8.1" ::= { dot1dStpMstBridgeEntry 3 } dot1dStpMstTopologyChangeInProgress OBJECT-TYPE SYNTAX TruthValue MAX-ACCESS read-only STATUS current DESCRIPTION "True(1) if the tcWhile timer is non-zero for any port for the corresponding Spanning Tree instance, false(2) otherwise." REFERENCE "IEEE 802.1s clause 12.8.1" ::= { dot1dStpMstBridgeEntry 4 } dot1dStpMstDesignatedRoot OBJECT-TYPE SYNTAX BridgeId MAX-ACCESS read-only STATUS current DESCRIPTION "The bridge identifier of the root for the corresponding Spanning Tree instance." REFERENCE "IEEE 802.1s clause 12.8.1" ::= { dot1dStpMstBridgeEntry 5 } dot1dStpMstRootCost OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The cost of the path to the root of the corresponding Spanning Tree instance as seen from this bridge." REFERENCE "IEEE 802.1s clause 12.8.1" ::= { dot1dStpMstBridgeEntry 6 } dot1dStpMstRootPort OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The port number of the port which offers the lowest cost path from this bridge to the root bridge for the corresponding Spanning Tree instance." REFERENCE "IEEE 802.1s clause 12.8.1" ::= { dot1dStpMstBridgeEntry 7 } -- ---------------------------------------------------------- -- -- the MST Port group -- ---------------------------------------------------------- -- dot1dStpMstPortTable OBJECT-TYPE SYNTAX SEQUENCE OF Dot1dStpMstPortEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A table that contains port parameter values for each configured Multiple Spanning Tree instance." ::= { dot1dStpMstPort 1 } dot1dStpMstPortEntry OBJECT-TYPE SYNTAX Dot1dStpMstPortEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A list of information maintained for every port by each Multiple Spanning Tree instance configured on this bridge." INDEX { dot1dStpMstId, dot1dStpMstPortNumber } ::= { dot1dStpMstPortTable 1 } Dot1dStpMstPortEntry ::= SEQUENCE { dot1dStpMstPortNumber InterfaceIndex, dot1dStpMstPortPriority Unsigned32, dot1dStpMstPortState INTEGER, dot1dStpMstPortAdminPathCost Unsigned32, dot1dStpMstPortOperPathCost Unsigned32, dot1dStpMstPortDesignatedRoot BridgeId, dot1dStpMstPortDesignatedCost Unsigned32, dot1dStpMstPortDesignatedBridge BridgeId, dot1dStpMstPortDesignatedPort OCTET STRING, dot1dStpMstPortRoleValue INTEGER } dot1dStpMstPortNumber OBJECT-TYPE SYNTAX InterfaceIndex MAX-ACCESS not-accessible STATUS current DESCRIPTION "The port number of the port for which this entry contains Multiple Spanning Tree Protocol management information." ::= { dot1dStpMstPortEntry 1 } dot1dStpMstPortPriority OBJECT-TYPE SYNTAX Unsigned32 (0..240) MAX-ACCESS read-write STATUS current DESCRIPTION "The value of the priority field which is contained in the first (in network byte order) octet of the (2 octet long) Port ID for the corresponding Spanning Tree instance. Permissible values are 0-240, in steps of 16." REFERENCE "IEEE 802.1s clause 12.8.2" DEFVAL { 128 } ::= { dot1dStpMstPortEntry 2 } dot1dStpMstPortState OBJECT-TYPE SYNTAX INTEGER { disabled(1), blocking(2), listening(3), learning(4), forwarding(5), broken(6) } MAX-ACCESS read-only STATUS current DESCRIPTION "The port's current state in the corresponding Spanning Tree instance as defined by application of the Multiple Spanning Tree Protocol. This state controls what action a port takes on reception of a frame. If the bridge has detected a port that is malfunctioning it will place that port into the broken(6) state. For ports which are administratively disabled (see dot1dStpPortEnable), this object will have a value of disabled(1)." ::= { dot1dStpMstPortEntry 3 } dot1dStpMstPortAdminPathCost OBJECT-TYPE SYNTAX Unsigned32 (0..200000000) MAX-ACCESS read-write STATUS current DESCRIPTION "The administratively assigned value for the contribution of this port to the path cost of paths towards the root of the corresponding Spanning Tree instance. Writing a value of '0' assigns the automatically calculated default Path Cost value to the port for this instance. If the default Path Cost is being used, this object returns '0' when read. This complements the object dot1dStpMstPortOperPathCost, which returns the operational value of the path cost." REFERENCE "IEEE 802.1s clause 12.8.2, IEEE 802.1t-2001 Table 8-5" DEFVAL { 0 } ::= { dot1dStpMstPortEntry 4 } dot1dStpMstPortOperPathCost OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The operational value for the contribution of this port to the path cost of paths towards the root of the corresponding Spanning Tree instance." REFERENCE "IEEE 802.1s clause 12.8.2, IEEE 802.1t-2001 Table 8-5" ::= { dot1dStpMstPortEntry 5 } dot1dStpMstPortDesignatedRoot OBJECT-TYPE SYNTAX BridgeId MAX-ACCESS read-only STATUS current DESCRIPTION "The unique Bridge Identifier of the Bridge recorded as the Root of the corresponding Spanning Tree in the Configuration BPDUs transmitted by the Designated Bridge for the segment to which the port is attached." REFERENCE "IEEE 802.1s clause 12.8.2" ::= { dot1dStpMstPortEntry 6 } dot1dStpMstPortDesignatedCost OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The path cost of the Designated Port of the segment connected to this port, for the corresponding Spanning Tree instance. This value is compared to the Root Path Cost field in received bridge PDUs." REFERENCE "IEEE 802.1s clause 12.8.2" ::= { dot1dStpMstPortEntry 7 } dot1dStpMstPortDesignatedBridge OBJECT-TYPE SYNTAX BridgeId MAX-ACCESS read-only STATUS current DESCRIPTION "The Bridge Identifier of the bridge which this port considers to be the Designated Bridge for this port's segment on the corresponding Spanning Tree instance." REFERENCE "IEEE 802.1s clause 12.8.2" ::= { dot1dStpMstPortEntry 8 } dot1dStpMstPortDesignatedPort OBJECT-TYPE SYNTAX OCTET STRING MAX-ACCESS read-only STATUS current DESCRIPTION "The Port Identifier of the port on the Designated Bridge for this port's segment on the corresponding Spanning Tree instance." REFERENCE "IEEE 802.1s clause 12.8.2" ::= { dot1dStpMstPortEntry 9 } dot1dStpMstPortRoleValue OBJECT-TYPE SYNTAX INTEGER { disabled(1), root(2), designated(3), alternate(4), backUp(5), master(6) } MAX-ACCESS read-only STATUS current DESCRIPTION "Indicates this port's role on the corresponding Spanning Tree instance. disabled -- this port has no role on this MST instance. root -- this port has the role of root port on this MST instance. designated -- this port has the role of designated port on this MST instance. alternate -- this port has the role of alternate port on this MST instance. backUp -- this port has the role of backup port on this MST instance. master -- this port has the role of master port on this MST instance." ::= { dot1dStpMstPortEntry 10 } dot1dStpGlobalPortTable OBJECT-TYPE SYNTAX SEQUENCE OF Dot1dStpGlobalPortEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A table that contains port parameter values which apply to all Spanning Tree instances." ::= { dot1dStpMstPort 2 } dot1dStpGlobalPortEntry OBJECT-TYPE SYNTAX Dot1dStpGlobalPortEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A list of information maintained for every port which applies to all Spanning Tree instances." INDEX { dot1dStpMstPortNumber } ::= { dot1dStpGlobalPortTable 1 } Dot1dStpGlobalPortEntry ::= SEQUENCE { dot1dStpHelloTime Unsigned32, dot1dStpPortHelloTime Unsigned32, dot1dStpBoundaryPort TruthValue } dot1dStpHelloTime OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The amount of time, in hundredths of a second, between the transmission of Configuration bridge PDUs on this port when it has the role of designated port for any Spanning Tree instance. This is the actual value that this bridge is currently using." REFERENCE "IEEE 802.1s clause 12.8.2" ::= { dot1dStpGlobalPortEntry 1 } dot1dStpPortHelloTime OBJECT-TYPE SYNTAX Unsigned32 (100..1000) MAX-ACCESS read-write STATUS current DESCRIPTION "The value, in hundredths of a second, that all bridges attached to this port's LAN segment use for HelloTime when this bridge is acting as the CIST root." REFERENCE "IEEE 802.1s clause 12.8.2" DEFVAL { 200 } ::= { dot1dStpGlobalPortEntry 2 } dot1dStpBoundaryPort OBJECT-TYPE SYNTAX TruthValue MAX-ACCESS read-only STATUS current DESCRIPTION "True(1) if this port is attached to a LAN which is in a different MST Region than this bridge, false(2) otherwise." ::= { dot1dStpGlobalPortEntry 3 } -- ------------------------------------------------------------- -- Conformance Information -- ------------------------------------------------------------- mstpConformance OBJECT IDENTIFIER ::= { mstpMIB 1 } mstpGroups OBJECT IDENTIFIER ::= { mstpConformance 1 } mstpCompliances OBJECT IDENTIFIER ::= { mstpConformance 2 } -- ------------------------------------------------------------- -- Units of conformance -- ------------------------------------------------------------- mstpConfigGroup OBJECT-GROUP OBJECTS { dot1dStpMaxMstId, dot1dStpMaxSupportedMsts, dot1dStpNumMsts, dot1dStpMstStatus, dot1dStpMstIdOfFdb, dot1dStpMstIdOfVlan, dot1dStpFormatSelector, dot1dStpConfigName, dot1dStpRevisionLevel, dot1dStpConfigDigest } STATUS current DESCRIPTION "A collection of objects providing configuration support for the Multiple Spanning Tree Protocol." ::= { mstpGroups 1 } mstpBridgeGroup OBJECT-GROUP OBJECTS { dot1dStpCistRegionalRootIdentifier, dot1dStpCistPathCost, dot1dStpMaxHopCount, dot1dStpMstBridgePriority, dot1dStpMstTimeSinceTopologyChange, dot1dStpMstTopChanges, dot1dStpMstTopologyChangeInProgress, dot1dStpMstDesignatedRoot, dot1dStpMstRootCost, dot1dStpMstRootPort } STATUS current DESCRIPTION "A collection of objects providing bridge-level support for the Multiple Spanning Tree Protocol." ::= { mstpGroups 2 } mstpPortGroup OBJECT-GROUP OBJECTS { dot1dStpMstPortPriority, dot1dStpMstPortState, dot1dStpMstPortAdminPathCost, dot1dStpMstPortOperPathCost, dot1dStpMstPortDesignatedRoot, dot1dStpMstPortDesignatedCost, dot1dStpMstPortDesignatedBridge, dot1dStpMstPortDesignatedPort, dot1dStpMstPortRoleValue, dot1dStpHelloTime, dot1dStpPortHelloTime, dot1dStpBoundaryPort } STATUS current DESCRIPTION "A collection of objects providing port-level support for the Multiple Spanning Tree Protocol." ::= { mstpGroups 3 } -- ------------------------------------------------------------- -- Compliance statements -- ------------------------------------------------------------- mstpCompliance MODULE-COMPLIANCE STATUS current DESCRIPTION "The compliance statement for devices that support the Multiple Spanning Tree Protocol." MODULE MANDATORY-GROUPS { mstpConfigGroup, mstpBridgeGroup, mstpPortGroup } ::= { mstpCompliances 1 } END 5. Security Considerations There are a number of management objects defined in this MIB module with a MAX-ACCESS clause of read-write and/or read-create. Such objects may be considered sensitive or vulnerable in some network environments. The support for SET operations in a non-secure environment without proper protection can have a negative effect on network operations. These are the tables and objects and their sensitivity/vulnerability: dot1dStpMstTable dot1dStpAllocTable dot1dStpConfigName dot1dStpRevisionLevel dot1dStpMaxHopCount dot1dStpMstBridgePriority dot1dStpMstPortPriority dot1dStpMstPortAdminPathCost dot1dStpPortHelloTime Uninformed or malicious SET operations on any of the above tables/ objects could result in sub-optimal network operation or even network instability. SNMP versions prior to SNMPv3 did not include adequate security. Even if the network itself is secure (for example by using IPSec), even then, there is no control as to who on the secure network is allowed to access and GET/SET (read/change/create/delete) the objects in this MIB module. It is RECOMMENDED that implementers consider the security features as provided by the SNMPv3 framework (see [RFC3410], section 8), including full support for the SNMPv3 cryptographic mechanisms (for authentication and privacy). Further, deployment of SNMP versions prior to SNMPv3 is NOT RECOMMENDED. Instead, it is RECOMMENDED to deploy SNMPv3 and to enable cryptographic security. It is then a customer/operator responsibility to ensure that the SNMP entity giving access to an instance of this MIB module, is properly configured to give access to the objects only to those principals (users) that have legitimate rights to indeed GET or SET (change/create/delete) them. 6. Acknowledgments 7. Intellectual Property The IETF takes no position regarding the validity or scope of any intellectual property or other rights that might be claimed to pertain to the implementation or use of the technology described in this document or the extent to which any license under such rights might or might not be available; neither does it represent that it has made any effort to identify any such rights. Information on the IETF's procedures with respect to rights in standards-track and standards-related documentation can be found in BCP-11. Copies of claims of rights made available for publication and any assurances of licenses to be made available, or the result of an attempt made to obtain a general license or permission for the use of such proprietary rights by implementors or users of this specification can be obtained from the IETF Secretariat. The IETF invites any interested party to bring to its attention any copyrights, patents or patent applications, or other proprietary rights which may cover technology that may be required to practice this standard. Please address the information to the IETF Executive Director. 8. References 8.1 Normative References [802.1s] IEEE 802.1s-2002, "Multiple Spanning Trees", December 2002. [BRIDGE-MIB] Decker, E., Langille, P., Rijsinghani, A., and K. McCloghrie, "Definitions of Managed Objects for Bridges", RFC 1493, July 1993. [Q-BRIDGE-MIB] Bell, E., Smith, A., Langille, P., Rijhsinghani, A. and McCloghrie, "Definitions of Managed Objects for Bridges with Traffic Classes, Multicast Filtering and Virtual LAN Extensions", RFC 2674, August 1999. [RSTP-MIB] Ngai, V. and E. Bell, "Definitions of Managed Objects for Bridges with Rapid Spanning Tree Protocol", RFC xxxx, ??. [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate Requirement Levels", RFC 2119, March 1997. [RFC2578] McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J., Rose, M., and S. Waldbusser, "Structure of Management Information Version 2 (SMIv2)", STD 58, RFC 2578, April 1999. [RFC2579] McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J., Rose, M., and S. Waldbusser, "Textual Conventions for SMIv2", STD 58, RFC 2579, April 1999. [RFC2580] McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J., Rose, M., and S. Waldbusser, "Conformance Statements for SMIv2", STD 58, RFC 2580, April 1999. [RFC2863] McCloghrie, K., Kastenholz, F., "The Interfaces Group MIB", RFC 2863, June 2000. [RFC3411] Harrington, D., Presuhn, R., and Wijnen, B., "An Architecture for Describing Simple Network Management Protocol (SNMP) Management Frameworks", STD 62, RFC 3411, December 2002. 8.2 Informative References [RFC3410] Case, J., Mundy, R., Partain, D. and B. Stewart, "Introduction and Applicability Statements for Internet- Standard Management Framework", RFC 3410, December 2002.