Cisco Nexus 5000 Series Command Reference Release 4.0(1a)N2(1) (OL-16599-01, March 2009)
Send comments to nx5000-docfeedback@cisco.com
8-108
Cisco Nexus 5000 Series Command Reference
OL-16599-01
Chapter 8 Fibre Channel Commands
port-security
port-security
To configure port security features and reject intrusion attempts, use the port-security command. Use
the no form of the command to negate the command or revert to factory defaults.
port-security {activate vsan vsan-id [force | no-auto-learn] | auto-learn vsan vsan-id | database
vsan vsan-id}
no port-security {activate vsan vsan-id [force | no-auto-learn] | auto-learn vsan vsan-id |
database vsan vsan-id}
Syntax Description
Command Default Disabled.
Command Modes Configuration mode
Command History
Usage Guidelines When you activate the port security feature, the auto-learn option is also automatically enabled. You
can choose to activate the port-security feature and disable auto-learning using the port-security
activate vsan number no-auto-learn command. In this case, you need to manually populate the port
security database by individually securing each port.
If the auto-learn option is enabled on a VSAN, you cannot activate the database for that VSAN without
the force option.
Examples The following example activates the port security database for the specified VSAN, and automatically
enables auto-learning:
switch(config)# port-security activate vsan 1
activate Activates a port security database for the specified VSAN and automatically
enables auto-learning.
auto-learn Enables auto-learning for the specified VSAN.
database Enters the port security database configuration mode for the specified
VSAN.
vsan vsan-id Specifies the VSAN ID. The range is 1 to 4093.
force (Optional) Forces the database activation.
no-auto-learn (Optional) Disables the auto-learning feature for the port security database.
Release Modification
4.0(0)N1(1a) This command was introduced.