draft-ietf-imss-fc-fcsp-mib-01.txt   draft-ietf-imss-fc-fcsp-mib-02.txt 
INTERNET-DRAFT C. DeSanti INTERNET-DRAFT C. DeSanti
F. Maino F. Maino
K. McCloghrie K. McCloghrie
Cisco Systems Cisco Systems
25 February 2008
MIB for Fibre-Channel Security Protocols (FC-SP) MIB for Fibre-Channel Security Protocols (FC-SP)
draft-ietf-imss-fc-fcsp-mib-01.txt draft-ietf-imss-fc-fcsp-mib-02.txt
Status of this Memo Status of this Memo
By submitting this Internet-Draft, each author represents that any By submitting this Internet-Draft, each author represents that any
applicable patent or other IPR claims of which he or she is aware applicable patent or other IPR claims of which he or she is aware
have been or will be disclosed, and any of which he or she becomes have been or will be disclosed, and any of which he or she becomes
aware will be disclosed, in accordance with Section 6 of BCP 79. aware will be disclosed, in accordance with Section 6 of BCP 79.
Internet-Drafts are working documents of the Internet Engineering Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF), its areas, and its working groups. Note that Task Force (IETF), its areas, and its working groups. Note that
skipping to change at page 2, line 7 skipping to change at page 2, line 7
Abstract Abstract
This memo defines a portion of the Management Information Base (MIB) This memo defines a portion of the Management Information Base (MIB)
for use with network management protocols in the Internet community. for use with network management protocols in the Internet community.
In particular, it describes managed objects for information related In particular, it describes managed objects for information related
to FC-SP, the Security Protocols defined for Fibre Channel. to FC-SP, the Security Protocols defined for Fibre Channel.
Table of Contents Table of Contents
replace with TOC 1 1 Introduction ................................................. 3
replace with TOC 2 1.1 Change Log ................................................. 3
replace with TOC 3 2 The Internet-Standard Management Framework ................... 10
replace with TOC 4 3 Overview of Fibre Channel .................................... 10
replace with TOC 5 3.1 Introduction ............................................... 10
replace with TOC 6 3.2 Zoning ..................................................... 11
replace with TOC 7 3.3 Virtual Fabrics ............................................ 11
replace with TOC 8 3.4 Security ................................................... 12
replace with TOC 9 3.4.1 Authentication ........................................... 12
replace with TOC 10 3.4.2 Security Associations .................................... 13
replace with TOC 11 3.4.3 Fabric Security Policies ................................. 14
replace with TOC 12 3.4.4 Policy Model ............................................. 15
replace with TOC 13 3.4.5 Policy Objects ........................................... 15
replace with TOC 14 3.4.6 Three Kinds of Switches .................................. 17
replace with TOC 15 3.4.7 Security Policy Management ............................... 17
replace with TOC 16 3.4.8 FC-SP Zoning ............................................. 18
replace with TOC 17 4 Document Overview ............................................ 19
replace with TOC 18 4.1 Fibre Channel management instance .......................... 19
replace with TOC 19 4.2 Entity Name ................................................ 19
replace with TOC 20 4.3 Fabric Index ............................................... 20
replace with TOC 21 4.4 Interface Index ............................................ 20
replace with TOC 22 4.5 Syntax for Policy Object Names ............................. 20
4.6 Certificates, CAs and CRLs ................................. 21
4.7 Traffic Selectors .......................................... 22
4.8 The MIB Modules ............................................ 22
4.9 Rate Control for Notifications ............................. 25
5 Relationship to Other MIB Modules ............................ 26
6 MIB Module Definitions ....................................... 27
6.1 The T11-FC-SP-TC-MIB Module ................................ 27
6.2 The T11-FC-SP-AUTHENTICATION-MIB Module .................... 43
6.3 The T11-FC-SP-ZONING-MIB Module ............................ 64
6.4 The T11-FC-SP-POLICY-MIB Module ............................ 77
6.5 The T11-FC-SP-SA-MIB Module ................................ 176
7 Acknowledgements ............................................. 232
8 Normative References ......................................... 233
9 Informative References ....................................... 235
10 IANA Considerations ......................................... 236
11 Security Considerations ..................................... 237
12 Authors' Addresses .......................................... 245
1. Introduction 1. Introduction
This memo defines a portion of the Management Information Base (MIB) This memo defines a portion of the Management Information Base (MIB)
for use with network management protocols in the Internet community. for use with network management protocols in the Internet community.
In particular, it describes managed objects for information In particular, it describes managed objects for information
concerning the Fibre Channel Security Protocols (FC-SP), as specified concerning the Fibre Channel Security Protocols (FC-SP), as specified
in [FC-SP]. The FC-SP standard includes the definition of protocols in [FC-SP]. The FC-SP standard includes the definition of protocols
to authenticate Fibre Channel entities, protocols to set up session to authenticate Fibre Channel entities, protocols to set up session
keys, protocols to negotiate the parameters required to ensure frame- keys, protocols to negotiate the parameters required to ensure frame-
skipping to change at page 3, line 37 skipping to change at page 3, line 37
This memo uses one of the following terms: This memo uses one of the following terms:
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL
NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL"
in this document are to be interpreted as described in BCP 14, RFC in this document are to be interpreted as described in BCP 14, RFC
2119 [RFC2119]. 2119 [RFC2119].
1.1. Change Log 1.1. Change Log
This section to be deleted before publication as an RFC. -- RFC Editor: please delete this section.
1.1.1. Initial version 1.1.1. Initial version
The initial version was submitted to T11.5 as T11/06-554v0 on 4 The initial version was submitted to T11.5 as T11/06-554v0 on 4
August 2006. August 2006.
1.1.2. September 2006 version 1.1.2. September 2006 version
The following changes were made for the version was submitted to The following changes were made for the version was submitted to
T11.5 on 29 September 2006 as T11/06-554v1.txt. T11.5 on 29 September 2006 as T11/06-554v1.txt.
skipping to change at page 8, line 35 skipping to change at page 8, line 35
- Fixed date in T11-FC-SP-TC-MIB's REVISION clause to be the same as - Fixed date in T11-FC-SP-TC-MIB's REVISION clause to be the same as
its LAST-UPDATED. its LAST-UPDATED.
- Fixed inconsistency in syntax of T11FcSaDirection. - Fixed inconsistency in syntax of T11FcSaDirection.
- Inserted ranges on Unsigned32 auxiliary objects. - Inserted ranges on Unsigned32 auxiliary objects.
- Minor rewording in the "Rate Control for Notifications" section. - Minor rewording in the "Rate Control for Notifications" section.
1.1.11. 21 February 2008 version 1.1.11. 25 February 2008 version
The following changes were made for the version was created based on The following changes were made for the version was created based on
Working Group Last Call comments on 21 February 2008 as ??? draft- Working Group Last Call comments on 25 February 2008 as draft-ietf-
ietf-imss-fc-fcsp-mib-01.txt : imss-fc-fcsp-mib-01.txt:
- Wording change to the ORGANIZATION section of all MIB modules. - Wording change to the ORGANIZATION section of all MIB modules.
- Changed T11FcSpAlphaNumNameOrNull to T11FcSpAlphaNumNameOrAbsent. - Changed T11FcSpAlphaNumNameOrNull to T11FcSpAlphaNumNameOrAbsent.
- Added REFERENCE clauses to OBJECT-IDENTITYs. - Added REFERENCE clauses to OBJECT-IDENTITYs.
- Deleted the definition of t11FcSpSaTSelPropIndex, with - Deleted the definition of t11FcSpSaTSelPropIndex, with
t11FcSpSaTSelPropPrecedence replacing it in the INDEX clause of the t11FcSpSaTSelPropPrecedence replacing it in the INDEX clause of the
t11FcSpSaTSelPropTable. t11FcSpSaTSelPropTable.
skipping to change at page 9, line 37 skipping to change at page 9, line 37
- Added t11FcSpSaControlMaxNotifs as a new object. - Added t11FcSpSaControlMaxNotifs as a new object.
- Added t11FcSpSaTSelPropStorageType and t11FcSpSaTransStorageType as - Added t11FcSpSaTSelPropStorageType and t11FcSpSaTransStorageType as
additional StorageType objects for the two tables in the T11-FC-SP- additional StorageType objects for the two tables in the T11-FC-SP-
SA-MIB which are not INDEX-ed by t11FcSpSaIfFabricIndex, i.e., they SA-MIB which are not INDEX-ed by t11FcSpSaIfFabricIndex, i.e., they
have different granularity, and so can not share usage of have different granularity, and so can not share usage of
t11FcSpSaIfStorageType. t11FcSpSaIfStorageType.
- Many editorial changes and clarifications. - Many editorial changes and clarifications.
1.1.12. 11 March 2008 version
The following changes were made for the version, named draft-ietf-
imss-fc-fcsp-mib-02.txt, created for submission to the Area Directors
with a request for it to be published as an RFC:
- Text added in section 3.4.5 to observe that the Fabric name is in
the Switch Membership List Object, not in the Policy Summary
Object.
- Fixed screw-up in the Table of Contents.
2. The Internet-Standard Management Framework 2. The Internet-Standard Management Framework
For a detailed overview of the documents that describe the current For a detailed overview of the documents that describe the current
Internet-Standard Management Framework, please refer to section 7 of Internet-Standard Management Framework, please refer to section 7 of
RFC 3410 [RFC3410]. RFC 3410 [RFC3410].
Managed objects are accessed via a virtual information store, termed Managed objects are accessed via a virtual information store, termed
the Management Information Base or MIB. MIB objects are generally the Management Information Base or MIB. MIB objects are generally
accessed through the Simple Network Management Protocol (SNMP). accessed through the Simple Network Management Protocol (SNMP).
Objects in the MIB are defined using the mechanisms defined in the Objects in the MIB are defined using the mechanisms defined in the
skipping to change at page 16, line 18 skipping to change at page 16, line 18
- A Switch Connectivity Object is a per-Switch Policy Object that - A Switch Connectivity Object is a per-Switch Policy Object that
describes the topology restrictions for a specific Switch; it describes the topology restrictions for a specific Switch; it
specifies the other Switches or Nodes to which the particular specifies the other Switches or Nodes to which the particular
Switch may be connected at the Node level and/or at the Port level. Switch may be connected at the Node level and/or at the Port level.
- Attribute Objects are Fabric-wide Policy Objects that define - Attribute Objects are Fabric-wide Policy Objects that define
optional attributes to be associated with Switches or Nodes. They optional attributes to be associated with Switches or Nodes. They
allow the extension of this policy model by defining new attributes allow the extension of this policy model by defining new attributes
as required. as required.
Note that the administratively-specified name for a Fabric is
contained in the Switch Membership List Object (not in the Policy
Summary Object).
When FC-SP is in use, each Fabric has a set of active Policy Objects: When FC-SP is in use, each Fabric has a set of active Policy Objects:
- one Policy Summary Object, - one Policy Summary Object,
- one Switch Membership List Object, - one Switch Membership List Object,
- one Node Membership List Object, - one Node Membership List Object,
- one IP Management List Object, - one IP Management List Object,
- zero or more Switch Connectivity Objects, and - zero or more Switch Connectivity Objects, and
- zero or more Attribute Objects. - zero or more Attribute Objects.
The active Policy Objects specify the Policies currently being The active Policy Objects specify the Policies currently being
skipping to change at page 247, line 4 skipping to change at line 10571
The IETF invites any interested party to bring to its attention any The IETF invites any interested party to bring to its attention any
copyrights, patents or patent applications, or other proprietary copyrights, patents or patent applications, or other proprietary
rights that may cover technology that may be required to implement rights that may cover technology that may be required to implement
this standard. Please address the information to the IETF at this standard. Please address the information to the IETF at
ietf-ipr@ietf.org. ietf-ipr@ietf.org.
Acknowledgment Acknowledgment
Funding for the RFC Editor function is currently provided by the Funding for the RFC Editor function is currently provided by the
Internet Society. Internet Society.
Table of Contents
1 Introduction ................................................. 3
1.1 Change Log ................................................. 3
1.1.1 Initial version .......................................... 3
1.1.2 September 2006 version ................................... 3
1.1.3 December 2006 version .................................... 4
1.1.4 2 February 2007 version .................................. 5
1.1.5 26 February 2007 version ................................. 5
1.1.6 11 April 2007 version .................................... 7
1.1.7 3 May 2007 version ....................................... 7
1.1.8 12 June 2007 version ..................................... 7
1.1.9 13 August 2007 version ................................... 7
1.1.10 28 November 2007 version ................................ 8
1.1.11 21 February 2008 version ................................ 8
2 The Internet-Standard Management Framework ................... 9
3 Overview of Fibre Channel .................................... 10
3.1 Introduction ............................................... 10
3.2 Zoning ..................................................... 11
3.3 Virtual Fabrics ............................................ 11
3.4 Security ................................................... 12
3.4.1 Authentication ........................................... 12
3.4.2 Security Associations .................................... 13
3.4.3 Fabric Security Policies ................................. 14
3.4.4 Policy Model ............................................. 15
3.4.5 Policy Objects ........................................... 15
3.4.5.1 Policy Object Names .................................... 16
3.4.6 Three Kinds of Switches .................................. 17
3.4.7 Security Policy Management ............................... 17
3.4.8 FC-SP Zoning ............................................. 18
4 Document Overview ............................................ 19
4.1 Fibre Channel management instance .......................... 19
4.2 Entity Name ................................................ 19
4.3 Fabric Index ............................................... 20
4.4 Interface Index ............................................ 20
4.5 Syntax for Policy Object Names ............................. 20
4.6 Certificates, CAs and CRLs ................................. 21
4.7 Traffic Selectors .......................................... 22
4.8 The MIB Modules ............................................ 22
4.8.1 The T11-FC-SP-TC-MIB Module .............................. 22
4.8.2 The T11-FC-SP-AUTHENTICATION-MIB Module .................. 23
4.8.3 The T11-FC-SP-ZONING-MIB Module .......................... 23
4.8.4 The T11-FC-SP-POLICY-MIB Module .......................... 23
4.8.5 The T11-FC-SP-SA-MIB Module .............................. 24
4.9 Rate Control for Notifications ............................. 25
5 Relationship to Other MIB Modules ............................ 26
6 MIB Module Definitions ....................................... 27
6.1 The T11-FC-SP-TC-MIB Module ................................ 27
6.2 The T11-FC-SP-AUTHENTICATION-MIB Module .................... 43
6.3 The T11-FC-SP-ZONING-MIB Module ............................ 64
6.4 The T11-FC-SP-POLICY-MIB Module ............................ 77
6.5 The T11-FC-SP-SA-MIB Module ................................ 176
7 Acknowledgements ............................................. 232
8 Normative References ......................................... 233
9 Informative References ....................................... 235
10 IANA Considerations ......................................... 236
11 Security Considerations ..................................... 237
11.1 Information not defined in this document .................. 237
11.2 The T11-FC-SP-TC-MIB Module ............................... 237
11.3 The T11-FC-SP-AUTHENTICATION-MIB Module ................... 237
11.4 The T11-FC-SP-ZONING-MIB Module ........................... 239
11.5 The T11-FC-SP-POLICY-MIB Module ........................... 240
11.6 The T11-FC-SP-SA-MIB Module ............................... 242
11.7 Recommendations common to all MIB Modules ................. 244
12 Authors' Addresses .......................................... 245
 End of changes. 9 change blocks. 
29 lines changed or deleted 60 lines changed or added

This html diff was produced by rfcdiff 1.34. The latest version is available from http://tools.ietf.org/tools/rfcdiff/