Brocade Fabric OS Command Reference Manual (53-1000240-01, November 2006)

Fabric OS Command Reference Manual 2-573
Publication Number: 53-1000240-01
secPolicyAdd
2
Note: Enter commands in lowercase only; mixed case is for readability.
capitalized like regular policy names, but they are case sensitive.
When the switch is in non-secure mode this command may be used to manage
only SCC and DCC policies.
"member" Specify a list of member switches for the security policy. The members must be
enclosed in quotation marks and separated by semicolons. Depending on the
policy type, members can be specified using IP address, WWN, domain, switch
name, or other.
IP Address Member Policy Types
The following policy types require members be specified by IP address:
TELNET_POLICY
HTTP_POLICY
•API_POLICY
•RSNMP_POLICY
•WSNMP_POLICY
These policy types require member IPs to be specified in dot notation (for
example, 124.23.56.122). If 0 is specified in one of the octets, any number can be
matched.
WWN Member Policy Types
The following policy types require members be specified by WWN address:
•FCS_POLICY
•SES_POLICY
MS_POLICY
SERIAL_POLICY
FRONTPANEL_POLICY
•SCC_POLICY
These policy types require members be specified as WWN strings, domain IDs, or
switch names. If domain ID, or switch names are used, the switches associated
must be present in the fabric or the command fails.
DCC_POLICY Members
The DCC_POLICY_nnn is a list of devices associated with a specific switch and
port combination. An empty DCC_POLICY does not stop access to the switch.
The device is specified with a WWN string. The switch and port combination must
be in the following format:
<switch><port>
<switch>
can be specified using WWN, domain, or switch name.
<port> can be specified by port numbers separated by commas and enclosed in
either brackets or parenthesis; for example, (2, 4, 6). Ports enclosed in brackets
will include the devices currently attached to those ports.
The following examples illustrate several ways to specify the port values: