Cisco Nexus 5000 Series Switch CLI Software Configuration Guide, NX-OS 4.0(1a)N1 (OL-16597-01, January 2009)

Send feedback to nx5000-docfeedback@cisco.com
45-10
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
OL-16597-01
Chapter 45 Configuring Port Security
Port Security Manual Configuration
Port Security Manual Configuration
To configure port security on a Cisco Nexus 5000 Series switch, perform this task:
Step 1 Identify the WWN of the ports that need to be secured.
See the Adding Authorized Port Pairs” section on page 45-11.
Step 2 Secure the fWWN to an authorized nWWN or pWWN.
Step 3 Activate the port security database.
Step 4 Verify your configuration.
This section includes the following topics:
WWN Identification Guidelines, page 45-10
Adding Authorized Port Pairs, page 45-11
WWN Identification Guidelines
If you decide to manually configure port security, note the following guidelines:
Identify switch ports by the interface or by the fWWN.
Identify devices by the pWWN or by the nWWN.
If an N port is allowed to log in to SAN switch port F, then that N port can only log in through the
specified F port.
S2, F11 Denied 7 P10 is bound to F11.
P4, N4, F5 (auto-learning on) Permitted 3 No conflict.
P4, N4, F5 (auto-learning off) Denied 4 No match.
S3, F5 (auto-learning on) Permitted 3 No conflict.
S3, F5 (auto-learning off) Denied 4 No match.
P1, N1, F6 (auto-learning on) Denied 2 P1 is bound to F1.
P5, N5, F1 (auto-learning on) Denied 7 Only P1 and P2 bound to F1.
S3, F4 (auto-learning on) Denied 7 P3 paired with F4.
S1, F3 (auto-learning on) Permitted 5 No conflict.
P5, N3, F3 Permitted 6 Wildcard ( * ) match for F3
and N3.
P7, N3, F9 Permitted 6 Wildcard ( * ) match for N3.
Table 45-2 Authorization Results for Scenario (continued)
Device Connection Request Authorization Condition Reason