Manualshelf

Cisco Nexus 5000 Series Switch Fabric Manager Software Configuration Guide, NX-OS 4.0 (OL-16598-01, June 2008)

ManualsBrandsHP ManualsStorageHP SN6000C 8Gb 32-port Fibre Channel Switch
311312313314315316317318319320
Send comments to nx5000-docfeedback@cisco.com
24-4
Nexus 5000 Series Switch Fabric Manager Software Configuration Guide
OL-16598-01
Chapter 24 Configuring Port Security
Configuring Port Security
See the “Committing the Changes” section on page 24-17. All switches have port security activated with
auto-learning enabled.
Step 5 Wait until all switches and all hosts are automatically learned.
Step 6 Disable auto-learn on each VSAN.
See the“Disabling Auto-Learning” section on page 24-11.
Step 7 Issue a CFS commit to copy this configuration to all switches in the fabric.
See the “Committing the Changes” section on page 24-17. The auto-learned entries from every switch
are combined into a static active database that is distributed to all switches.
Step 8 Copy the active database to the configure database on each VSAN.
See the “Copying the Port Security Database” section on page 24-20.
Step 9 Issue a CFS commit to copy this configuration to all switches in the fabric.
See the “Committing the Changes” section on page 24-17. This ensures that the configure database is
the same on all switches in the fabric.
Step 10 Copy the running configuration to the startup configuration, using the fabric option.
This step saves the port security configure database to the startup configuration on all switches in the
fabric.
Configuring Port Security with Auto-Learning without CFS
To configure port security using auto-learning without CFS, perform this task:
Step 1 Enable port security.
See the “Enabling Port Security” section on page 24-5.
Step 2 Activate port security on each VSAN, which turns on auto-learning by default.
See the Activating Port Security” section on page 24-7.
Step 3 Wait until all switches and all hosts are automatically learned.
Step 4 Disable auto-learn on each VSAN.
See the “Disabling Auto-Learning” section on page 24-11.
Step 5 Copy the active database to the configure database on each VSAN.
See the “Copying the Port Security Database” section on page 24-20.
Step 6 Copy the running configuration to the startup configuration, which saves the port security configuration
database to the startup configuration.
Step 7 Repeat Step 1 through Step 6 for all switches in the fabric.