Cisco Nexus 5000 Series Switch Fabric Manager Software Configuration Guide, NX-OS 4.0 (OL-16598-01, June 2008)

Send comments to nx5000-docfeedback@cisco.com

24-5

Nexus 5000 Series Switch Fabric Manager Software Configuration Guide

OL-16598-01

Chapter 24 Configuring Port Security

Enabling Port Security

Configuring Port Security with Manual Database Configuration

To configure port security and manually configure the port security database, perform this task:

Step 1 Enable port security.

See the “Enabling Port Security” section on page 24-5.

Step 2 Manually configure all port security entries into the configure database on each VSAN.

See the “Configuring Port Security with Manual Database Configuration” section on page 24-5.

Step 3 Activate port security on each VSAN. This turns on auto-learning by default.

See the “Disabling Auto-Learning” section on page 24-11.

Step 4 Disable auto-learn on each VSAN.

See the “Disabling Auto-Learning” section on page 24-11.

Step 5 Copy the running configuration to the startup configuration, which saves the port security configuration

database to the startup configuration.

Step 6 Repeat Step 1 through Step 5 for all switches in the fabric.

Enabling Port Security

By default, the port security feature is disabled in Nexus 5000 Series switches.

To enable port security using Fabric Manager, perform this task:

Step 1 Expand a VSAN, and then choose Port Security in the Logical Domains pane.

You see the port security configuration for that VSAN in the Information pane as shown in Figure 24-1.

Figure 24-1 Port Security Configuration

Step 2

Click the CFS tab.

You see the information shown in Figure 24-2.