Disabling Auto-Learning
You can disable auto-learning.
Procedure
PurposeCommand or Action
Enters global configuration mode.configure terminal
Example:
switch# configure terminal
switch(config)#
Step 1
Disables auto-learning and stops the switch from
learning about new devices that access the switch.
no port-security auto-learn vsan vsan-id
Example:
switch(config)# no port-security
auto-learn vsan 23
Step 2
This command enforces the database contents based
on the devices learned up to this point.
Auto-Learning Device Authorization
The following table summarizes the authorized connection conditions for device requests.
Table 34: Authorized Auto-Learning Device Requests
AuthorizationRequests Connection toDevice (pWWN, nWWN,
sWWN)
Condition
PermittedA configured switch portConfigured with one or
more switch ports
1
DeniedAny other switch port2
Permitted if auto-learning
enabled
A switch port that is not
configured
Not configured3
Denied if auto-learning
disabled
4
PermittedA switch port that allows
any device
Configured or not
configured
5
PermittedAny port on the switchConfigured to log in to
any switch port
6
DeniedA port configured with
some other device
Not configured7
Cisco Nexus 5500 Series NX-OS SAN Switching Configuration Guide, Release 7.x
OL-30895-01 253
Configuring Port Security
Auto-Learning
To Next Page
Loading...
