Send documentation comments to mdsfeedback-doc@cisco.com
46-14
Cisco MDS 9000 Family Fabric Manager Configuration Guide
OL-17256-03, Cisco MDS NX-OS Release 4.x
Chapter 46 Configuring Port Security
Auto-learning
Step 1 Expand a VSAN and select Port Security in the Logical Domains pane.
You see the port security configuration for that VSAN in the Information pane (see Figure 46-8).
Step 2 Click the Actions tab.
You see the switches for that VSAN.
Step 3 Uncheck the AutoLearn check box next to the switch if you want to disable auto-learning.
Step 4 Click the Apply Changes icon to save these changes.
Auto-Learning Device Authorization
Table 46-1 summarizes the authorized connection conditions for device requests.
Authorization Scenarios
Assume that the port security feature is activated and the following conditions are specified in the active
database:
• A pWWN (P1) is allowed access through interface fc1/1 (F1).
• A pWWN (P2) is allowed access through interface fc1/1 (F1).
• A nWWN (N1) is allowed access through interface fc1/2 (F2).
• Any WWN is allowed access through interface fc1/3 (F3).
• A nWWN (N3) is allowed access through any interface.
• A pWWN (P3) is allowed access through interface fc1/4 (F4).
• A sWWN (S1) is allowed access through interface fc1/10-13 (F10 to F13).
• A pWWN (P10) is allowed access through interface fc1/11 (F11).
Table 46-1 Authorized Auto-Learning Device Requests
Condition Device (pWWN, nWWN, sWWN) Requests Connection to Authorization
1 Configured with one or more switch
ports
A configured switch port Permitted
2 Any other switch port Denied
3 Not configured A switch port that is not
configured
Permitted if
auto-learning
enabled
4 Denied if
auto-learning
disabled
5 Configured or not configured A switch port that allows
any device
Permitted
6 Configured to log in to any switch port Any port on the switch Permitted
7 Not configured A port configured with
some other device
Denied
To Next Page
Loading...
Need help?
General
