CISCO-DOT11-WIDS-MIB Download

cDot11WidsFloodDetectEnable

This object is used to enable or disable the WIDS flood detection feature. Set this MIB object to 'true' to enable the flood detection and 'false' to disable it. Note that the values configured through cDot11WidsFloodThreshold and cDot11WidsEapolFloodInte ...

cDot11WidsEapolFloodThreshold

This object specifies the maximum number of authentication attempts allowed for all the clients taken together in the interval specified by cDot11WidsEapolFloodInterval. The attempts include both the successful as well as failed attempts.

cDot11WidsEapolFloodInterval

This object specifies the time duration for which the client authentication attempts have to be monitored for detecting the flood attack.

cDot11WidsBlackListThreshold

This object configures the maximum threshold on the number of unsuccessful authentication attempts, that can be made by a particular client. Once the threshold is reached, the client is retained in the list for a period of time equal to the value configu ...

cDot11WidsBlackListDuration

This object indicates the time duration for which a particular client has to be kept in the black list after the number of unsuccessful attempts reach the threshold given by cDot11WidsBlackListThreshold.

cDot11WidsFloodMaxEntriesPerIntf

This object indicates the maximum number of entries that can be held for a particular 802.11 radio interface identified by ifIndex.

cDot11WidsEapolFloodTable

This table gives the statistics on the EAPOL flood attacks observed at this radio interface. An entry in this table is created by the agent when this 802.11 station detects an EAPOL flood attack. All the columns in the entries except the cDot11WidsEapolFl ...

cDot11WidsEapolFloodEntry

An entry holds the statistics about one instance of EAPOL flood attack observed at this particular radio interface.

cDot11WidsEapolFloodIndex

This object identifies the set of information about one instance of an EAPOL flood event observed at this radio interface between the start and stop times indicated by cDot11WidsEapolFloodStartTime and cDot11WidsEapolFloodStopTime.

cDot11WidsEapolFloodClientMac

This object identifies the MAC address of the wireless client that has made the maximum number of authentication attempts in the duration specified by the cDot11WidsEapolFloodInterval object. At the end of each interval time indicated by cDot11WidsFloodIn ...

cDot11WidsEapolFloodClientCount

This object provides the count associated with the client with largest number of attempts in the last interval. When the flood event is observed to be stopped, as indicated by a non-zero value for the cDot11WidsEapolFloodStopTime object, this object gives ...

cDot11WidsEapolFloodStartTime

This object indicates the time at which the EAPOL flood event identified by one entry of this table was observed first at this radio interface.

cDot11WidsEapolFloodStopTime

This object indicates the time at which the the EAPOL flood event observed first at the time indicated by cDot11WidsEapolFloodStartTime has stopped. If this 802.11 station finds that the flood conditions observed in the one or more prior intervals has cea ...

cDot11WidsEapolFloodTotalCount

This object gives the accumulated count of the number of authentication attempts made by all the clients at the time of query.

cDot11WidsBlackListTable

This table gives the information about the 802.11 wireless clients that have been blacklisted while attempting to get authenticated with this 802.11 station at this radio interface. An entry is added to this table when the number of consecutive failed aut ...

cDot11WidsBlackListEntry

Each entry holds the information about one 802.11 wireless client that has been blacklisted when attempting to get authenticated with this 802.11 station at this radio interface.

cDot11WidsBlackListClientMac

This object indicates the Mac Address of the blacklisted client.

cDot11WidsBlackListAttemptCount

This object counts the total number of attempts made by the client identified by cDot11WidsBlackListClientMac to get authenticated with the 802.11 station through this radio interface.

cDot11WidsBlackListTime

This object indicates the time at which the client was blacklisted after failing in its attempt to get authenticated with this 802.11 station at this radio interface.

cDot11WidsProtectFailClientTable

This table gives the statistics on the various protection failures occurred during the data communication of this 802.11 station with a particular client currently associated at this dot11 interface. Note that the agent populates this table with an entry ...

cDot11WidsProtectFailClientEntry

Each entry holds the information about the protection failures observed at this radio interface when this 802.11 station communicates with its associated client identified by cDot11WidsClientMacAddress at the interface identified by ifIndex. The clients a ...

cDot11WidsSsid

This object specifies one of the SSIDs of this radio interface using which the client has associated with the 802.11 station.

cDot11WidsClientMacAddress

This object identifies the MAC address of the associated client to which this set of statistics are applicable.

cDot11WidsSelPairWiseCipher

This object identifies the pairwise cipher used by the client identified by cDot11WidsClientMacAddress during its association with this 802.11 station at the interface identified by ifIndex.

cDot11WidsTkipIcvErrors

This object counts the total number of TKIP ICV Errors observed in the data communication between this 802.11 station and the client indicated by cDot11WidsClientMacAddress since the client's association with this 802.11 station at the radio interface ide ...

cDot11WidsTkipLocalMicFailures

This object counts the total number of TKIP local MIC failures observed in the data communication between this 802.11 station and the client indicated by cDot11WidsClientMacAddress since the client's association with this 802.11 station at the radio inter ...

cDot11WidsTkipRemoteMicFailures

This object counts the total number of TKIP remote MIC failures observed in the data communication between this 802.11 station and the client indicated by cDot11WidsClientMacAddress since the client's association with this 802.11 station at the radio inte ...

cDot11WidsCcmpReplays

This object counts the total number of CCMP replay failures observed in the data communication between this 802.11 station and the client indicated by cDot11WidsClientMacAddress since the client's association with this 802.11 station at the radio interfac ...

cDot11WidsCcmpDecryptErrors

This object counts the total number of CCMP decryption failures observed in the data communication between this 802.11 station and the client indicated by cDot11WidsClientMacAddress since the client's association with this 802.11 station at the radio inte ...

cDot11WidsTkipReplays

This object counts the total number of TKIP replay failures observed in the data communication between this 802.11 station and the client indicated by cDot11WidsClientMacAddress since the client's association with this 802.11 station at the radio interfac ...

cDot11WidsWepReplays

This object counts the total number of WEP Replay errors observed in the data communication between this 802.11 station and the client indicated by cDot11WidsClientMacAddress since the client's association with this 802.11 station at the radio interface i ...

cDot11WidsWepIcvErrors

This object counts the total number of WEP ICV errors observed in the data communication between this 802.11 station and the client indicated by cDot11WidsClientMacAddress since the client's association with this 802.11 station at the radio interface iden ...

cDot11WidsCkipReplays

This object counts the total number of CKIP replay errors observed in the data communication between this 802.11 station and the client indicated by cDot11WidsClientMacAddress since the client's association with this 802.11 station at the radio interface ...

cDot11WidsCkipCmicErrors

This object counts the total number of CKIP-CMIC errors observed in the data communication between this 802.11 station and the client indicated by cDot11WidsClientMacAddress since the client's association with this 802.11 station at the radio interface id ...

ciscoDot11WidsAuthFailGroup

This collection of objects provide information about configuration needed on the 802.11 station to detect the EAPOL flood attacks and black-list clients, the general statistics about the detected flood flood attacks and the information about the blacklist ...

ciscoDot11WidsProtectFailGroup

This collection of objects provide information about the various protection failures observed during the associated clients' data communications with this 802.11 station.