Cisco Systems MDS 9000 Video Gaming Accessories User Manual


  Open as PDF
of 520
 
Send documentation comments to mdsfeedback-doc@cisco.com.
31-5
Cisco MDS 9000 Family Fabric Manager Configuration Guide
OL-6965-03, Cisco MDS SAN-OS Release 2.x
Chapter 31 Port Security
Configuring Port Security
Turning Auto-Learning On or Off
To turn auto-learning on or off, follow these steps:
Step 1 Choose VSANxxx > Port Security from the Logical Domains pane. You see the port security
configuration for that VSAN in the Information pane.
Step 2 Click the Action tab. You see the switches for that VSAN.
Step 3 Check the AutoLearn check box next to the switch if you want to enable auto-learning.
Step 4 Uncheck the AutoLearn check box next to the switch if you want to disable auto-learning.
Step 5 Click the CFS button at the top of the Information pane and select commit .
Step 6 Click the Apply Changes icon to save these changes or click Undo Changes to discard any unsaved
changes.
Example of Port Security Authorization
Assume that the port security feature is activated and the following conditions are specified in the active
database:
A pWWN (P1) is allowed access through interface fc1/1 (F1).
A pWWN (P2) is allowed access through interface fc1/1 (F1).
A nWWN (N1) is allowed access through interface fc1/2 (F2).
Any WWN is allowed access through interface fc1/3 (F3).
A nWWN (N3) is allowed access through any interface.
A pWWN (P3) is allowed access through interface fc1/4 (F4).
A sWWN (S1) is allowed access through interface fc1/10-13 (F10 to F13).
A pWWN (P10) is allowed access through interface fc1/11 (F11).
Table 31-2 summarizes the port security authorization results for this active database.
Table 31-2 Authorization Results for Scenario
Scenario Device Connection Request Authorization Condition Reason
1 P1, N2, F1 Permitted 1 No conflict.
2 P2, N2, F1 Permitted 1 No conflict.
3 P3, N2, F1 Denied 2 F1 is bound to P1/P2.
4 P1, N3, F1 Permitted 6 Wildcard match for N3.
5 P1, N1, F3 Permitted 5 Wildcard match for F3.
6 P1, N4, F5 Denied 2 P1 is bound to F1.
7 P5, N1, F5 Denied 2 N1 is only allowed on F2.
8 P3, N3, F4 Permitted 1 No conflict.
9 S1, F10 Permitted 1 No conflict.
 previous next