Enterprise Fabric Suite 2007 User Guide Sun Storage Fibre Channel Switch 5802 Firmware Version 7.4 Sun Microsystems, Inc. www.sun.com Part No. 820-4966-10 September 2008, Revision A Submit comments about this document at: http://www.sun.
Copyright 2008 Sun Microsystems, Inc., 4150 Network Circle, Santa Clara, California 95054, U.S.A. All rights reserved. Sun Microsystems, Inc. has intellectual property rights relating to technology that is described in this document. In particular, and without limitation, these intellectual property rights may include one or more of the U.S. patents listed at http://www.sun.com/patents and one or more additional patents or pending patent applications in the U.S. and in other countries.
Contents Preface 1.
Menu Shortcut Keys Popup Menus Tool Bar 20 21 22 Using the Topology Display 23 Working with Switches and Links Selecting Switches and Links 24 24 Arranging Switches in the Topology Display Topology Data Windows 25 Using the Faceplate Display Alerts Panel 26 27 Port Views and Status Working with Ports Selecting Ports 28 29 29 Faceplate Data Windows 2.
Displaying Fabric Information 38 Link and Stack Link Data Windows Devices Data Window 39 40 Displaying Fabric Status 41 Displaying the Event Browser 42 Filtering the Event Browser Sorting the Event Browser 44 45 Saving the Event Browser to a File Verifying Fibre Channel Connections FC Ping Dialog 46 46 46 FC TraceRoute Dialog 47 Working with Device Information and Nicknames Displaying Detailed Device Information Exporting Device Information to a File Managing Nicknames for Fabric Devices Cr
Zoning Database 57 Active Zoneset Data Window 58 Configured Zonesets Data Window Zoning a Fabric 59 60 Using the Zoning Wizard 61 Managing the Zoning Database 61 Editing the Zoning Database Resolving Zoning 61 65 Configuring the Zoning Database 65 Saving the Zoning Database to a File 67 Restoring the Zoning Database from a File Restoring the Default Zoning Database Removing All Zoning Definitions Managing Zone Sets 67 68 68 Creating a Zone Set 68 Activating and Deactivating a Zone Se
Adding a Member to an Alias 75 Removing an Alias from All Zones Merging Fabrics and Zoning Zone Merge Failure 76 76 Zone Merge Failure Recovery 4.
Removing a RADIUS Server 99 Editing RADIUS Server Information 100 Modifying Authentication Order RADIUS Server Information 5.
Managing System Services Archiving a Switch 130 Restoring a Switch 131 Testing a Switch 128 133 Restoring the Factory Default Configuration Configuring the Network Network Properties 135 137 137 Network IP Configuration 138 Network DNS Configuration Network IP Security 143 Security Policies 143 Security Associations 141 143 Create IP Security Association Dialog Create IP Security Policy Dialog Configuring SNMP 147 149 SNMP Properties 149 SNMP Configuration 150 SNMP Trap Configurati
Testing Call Home Profiles Change Over 6.
Changing the Default Performance View File Encryption Key Setting Performance View Preferences Setting the Polling Frequency Displaying Graphs 194 195 195 196 Arranging Graphs in the Display Customizing Graphs 197 197 Setting Global Graph Type 199 Rescaling a Selected Graph 199 Saving Graph Statistics to a File 200 Contents xi
xii Enterprise Fabric Suite 2007 User Guide • September 2008
Figures FIGURE 1-1 Enter CD Serial Number and License Key Dialog 4 FIGURE 1-2 Password Change Required Dialog 5 FIGURE 1-3 Initial Start Dialog 5 FIGURE 1-4 Enterprise Fabric Suite 2007 Window 6 FIGURE 1-5 Save Default Fabric View File Dialog 7 FIGURE 1-6 Load Default Fabric File Dialog 7 FIGURE 1-7 Preferences Dialog – Enterprise Fabric Suite 2007 11 FIGURE 1-8 Topology Display Elements 13 FIGURE 1-9 Faceplate Display 14 FIGURE 1-10 Backplate Display 14 FIGURE 1-11 Fabric Tree 15 F
FIGURE 2-7 FC Ping Dialog 47 FIGURE 2-8 FC TraceRoute Dialog 48 FIGURE 2-9 Detailed Devices Display Dialog 49 FIGURE 3-1 Active Zoneset Data Window 59 FIGURE 3-2 Configured Zonesets Data Window 60 FIGURE 3-3 Edit Zoning Dialog 62 FIGURE 3-4 Zoning Config Dialog 66 FIGURE 4-1 Port Binding Dialog 81 FIGURE 4-2 Configured Security Data Window 82 FIGURE 4-3 Active Security Data Window 83 FIGURE 4-4 Edit Security Dialog 87 FIGURE 4-5 Create Security Set Dialog FIGURE 4-6 Create Security
FIGURE 5-12 System Services Dialog 129 FIGURE 5-13 Restore Dialogs – Full and Selective 132 FIGURE 5-14 Switch Diagnostics Dialog 134 FIGURE 5-15 Network Properties Dialogs 138 FIGURE 5-16 IPsec Configuration Dialog 144 FIGURE 5-17 Create IP Security Association Dialog 145 FIGURE 5-18 Create IP Security Policy Dialog 147 FIGURE 5-19 SNMP Properties Dialog 149 FIGURE 5-20 SNMP v3 Manager Dialog 152 FIGURE 5-21 SNMP v3 User Editor Dialog 153 FIGURE 5-22 Features License Key Dialog 155 FI
FIGURE 6-11 Fabric View Graphs FIGURE 6-12 Save Default Performance View File Dialog 193 FIGURE 6-13 Load Default Performance File Dialog 194 FIGURE 6-14 Preferences – Performance View 195 FIGURE 6-15 Set Graph Polling Frequency Dialog 196 FIGURE 6-16 Default Graph Options Dialog 198 xvi 192 Enterprise Fabric Suite 2007 User Guide • September 2008
Tables TABLE 1-1 Workstation Requirements 2 TABLE 1-2 Topology Menu Options 17 TABLE 1-3 Faceplate Menu Options 18 TABLE 1-4 Tool Bar Buttons 22 TABLE 2-1 Devices Data Window Entries 41 TABLE 2-2 Topology Display Switch and Status Icons TABLE 2-3 Severity Levels 44 TABLE 3-1 Edit Zoning Dialog Tool Bar Buttons and Icons TABLE 5-1 Factory User Accounts 104 TABLE 5-2 Switch Data Window Entries TABLE 5-3 Switch Resets TABLE 5-4 Switch Administrative States 126 TABLE 5-5 Factory Defa
TABLE 5-13 SNMP v3 User Editor Dialog 153 TABLE 5-14 Call Home Setup Entries TABLE 5-15 Call Home Editor - Tech Support Center Profile Entries TABLE 6-1 Port Statistics Data Window Entries 170 TABLE 6-2 Port Information Data Window Entries 174 TABLE 6-3 Port Types TABLE 6-4 Port Operational States TABLE 6-5 Port Speeds TABLE 6-6 Transceiver Media View 181 TABLE 6-7 Port Administrative States TABLE 6-8 Port Speeds TABLE 6-9 Port Types xviii 158 179 180 180 183 184 185 Enterprise
Preface This guide describes the Enterprise Fabric Suite™ 2007 application for Sun FC switches and directors. This guide introduces the switch management products and explains their installation and use. It is intended for users responsible for installing and using switch management tools.
Typographic Conventions Typeface Meaning Examples AaBbCc123 The names of commands, files, and directories; on-screen computer output Edit your.login file. Use ls -a to list all files. % You have mail. AaBbCc123 What you type, when contrasted with on-screen computer output % su Password: AaBbCc123 Book titles, new words or terms, words to be emphasized. Replace command-line variables with real names or values. Read Chapter 6 in the User’s Guide. These are called class options.
Application Title Part Number Format Location Switch installation Sun Storage Fibre Channel Switch 5802 Installation Guide 820-4969-xx PDF Online Manage the switch Sun Storage Fibre Channel Switch 5802 QuickTools User Guide 820-4972-xx PDF Online Manage the switch Sun Storage Fibre Channel Switch 820-4960-xx 5802 Command Line Interface Guide PDF Online Command line interface reference Command Line Interface Quick Reference Guide 820-4962-xx PDF Online Event Message Guide Look up mess
http://www.sun.com/hwdocs/feedback Please include the title and part number of your document with your feedback: Enterprise Fabric Suite 2007 User Guide, part number 820-4966-10.
CHAPTER 1 Using Enterprise Fabric Suite 2007 This section describes how to use the Enterprise Fabric Suite 2007 application and its menus.
TABLE 1-1 Workstation Requirements Operating System • • • • Windows 2003, XP SP1/SP2 Solaris™ 9, 10, and 10 x86 Operating System (Solaris OS) Red Hat Enterprise Linux 4, 5 SUSE Linux Enterprise Server 9, 10 Memory 512 MB or more (1GB recommended) Disk Space 150 MB per installation Processor 1 GHz or faster Hardware CD-ROM drive, RJ-45 Ethernet port, RS-232 serial port (optional) Internet Browser (to view online help) • Microsoft Internet Explorer 6.0 and later • Netscape Navigator 6.
data/files/Management_Software/Linux/Linux_7.04.xx.xx.bin If there is no CD-ROM icon, do the following: 1. Open an xterm or other terminal window. 2. Mount the CD-ROM. From a shell prompt, enter the following: mount /mnt/cdrom 3. Change directory to the location of the install program: cd /mnt/cdrom/data/files/Management_Software/Linux 4. Execute the install program and follow the installation instructions. Linux_7.04.xx.xx.bin For a Solaris OS platform: 1. Open a terminal window.
./Enterprise_Fabric_Suite_2007 2. The serial number/license key dialog allows you to enter the serial number on the Enterprise Fabric Suite 2007 CD ROM to activate the application, and to enter license keys you have purchased, if any. Refer to “Installing Feature License Keys” on page 154 for more information on license keys.
FIGURE 1-2 Password Change Required Dialog 4. If this is the first time you are managing this switch, in the Initial Start dialog, click the Open Configuration Wizard button. When you power-up the switch, the Configuration Wizard will recognize the switch and lead you through the configuration process. When starting Enterprise Fabric Suite 2007 the first time, the application opens with the Initial Start dialog (FIGURE 1-3).
■ Select the Open Existing Fabric View File option to open the Open View dialog which prompts you to specify a fabric view file that you saved earlier. Refer to “Opening a Fabric View File” on page 35. ■ Select the Start Application Without Specifying a Fabric option to open the Enterprise Fabric Suite 2007 window (FIGURE 1-4).
FIGURE 1-5 Save Default Fabric View File Dialog The encryption key is used to encrypt the sensitive data in the default fabric view file. Refer to “Changing the Encryption Key for the Default Fabric View File” on page 8 for information about changing this encryption key.
Uninstalling Enterprise Fabric Suite 2007 A program to uninstall Enterprise Fabric Suite 2007 was included as part of the installation process. The UninstallerData folder in the Install directory contains the uninstall program Uninstall_Enterprise Fabric Suite 2007. Also, a shortcut/link to the uninstall program was installed in the installation directory during the Enterprise Fabric Suite 2007 installation process.
3. Click the OK button to save the current set of fabrics to the default fabric view file in the working directory. Saving and Opening Fabric View Files A fabric view file is one or more fabrics saved to a file. In addition to the Enterprise Fabric Suite 2007 default fabric view file, you can save and open your own fabric view files. To save a set of fabrics to a file, do the following: 1. Open the File menu and select Save View As to open the Save View dialog. 2.
10 ■ Enable (default) or disable the view file auto save and load feature. Refer to “Exiting Enterprise Fabric Suite 2007” on page 6 for more information on the default fabric view file. ■ Enable (default) or disable the use of the Initial Start Dialog at the beginning of an Enterprise Fabric Suite 2007 session. Refer to “Starting Enterprise Fabric Suite 2007” on page 3 for information about the Initial Start Dialog. After a default fabric view file is created, this setting has no effect.
FIGURE 1-7 Preferences Dialog – Enterprise Fabric Suite 2007 To set preferences for your Enterprise Fabric Suite 2007 sessions, do the following: 1. Open the File menu, and select Preferences to open the Preferences dialog. 2. Enter or browse for the paths to the working directory and browser. 3. In the Application-wide Options area, choose the preferences you want. 4. Click the OK button to save the changes.
Viewing Software Version and Copyright Information To view Enterprise Fabric Suite 2007 software version and copyright information, open the Help menu and select About. Enterprise Fabric Suite 2007 User Interface The Enterprise Fabric Suite 2007 application uses the topology display (FIGURE 1-8) to manage the fabric. The topology display shows all switches in the fabric that are able to communicate and all connections between switches.
FIGURE 1-8 Topology Display Elements 1 2 3 4 7 5 6 Figure Legend 1 Menu Bar 5 Data Window 2 Tool Bar 6 Data Window Tabs 3 Switch/Fabric Name and Status 7 Fabric Tree 4 Graphic Window The faceplate display (FIGURE 1-9) and backplate display (FIGURE 1-10) are used to manage individual switches. The faceplate display shows the front of a single switch and its ports. The backplate display shows the back of a single switch.
14 FIGURE 1-9 Faceplate Display FIGURE 1-10 Backplate Display Enterprise Fabric Suite 2007 User Guide • September 2008
Fabric Tree The fabric tree lists the managed fabrics and their switchesFIGURE 1-11. The window width can be adjusted by clicking and dragging the moveable window border. An fabric name entry handle located to the left of an entry in the tree indicates that the entry can be expanded or collapsed. Click this handle or double-click the entry to expand or collapse a fabric tree entry. A fabric entry expands to show its member switches.
■ A yellow icon indicates the switch is operational, but may require attention to maintain maximum performance. ■ A red icon indicates a potential failure or non-operational state as when the switch is offline. ■ A blue icon indicates that a switch is unknown, unreachable, or unmanageable. If the status of the fabric is not normal, the fabric icon in the fabric tree will indicate the reason for the abnormal status.
Menus The Enterprise Fabric Suite 2007 menus and the tasks offered in them vary depending on the display. For example, the Port menu and many of the Switch menu selections are only available in the faceplate display. Refer to “Topology Display Menu” on page 17 and “Faceplate Display Menu” on page 18 for information on the menus. Topology Display Menu TABLE 1-2 lists the topology display menu options.
TABLE 1-2 Topology Menu Options (Continued) Menu Options View Refresh Layout Topology Toggle Auto Layout Remember Layout Wizards Configuration Wizard Help Help Topics License Info About Faceplate Display Menu TABLE 1-3 lists the faceplate display menu options.
TABLE 1-3 Faceplate Menu Options (Continued) Menu Options Switch Archive Restore User Accounts Set Date/Time Switch Properties Advanced Switch Properties (available only on entry switch) Services Call Home (Setup, Profile Manager, Message Queue, Test Profile, Change Over) Security Consistency Checklist Network (Network Properties, IPv6 Ipsec Properties (available only on secure entry switch)) SNMP (SNMP Properties, SNMP v3 Manager (available only on secure entry switch)) Switch Diagnostics (Online Swit
TABLE 1-3 Faceplate Menu Options (Continued) Menu Options Port Port Properties Advanced Port Properties Reset Port Port Binding Port Diagnostics (requires SANdoctor license key) Move Port Zoning Edit Zoning Resolve Zoning (Capture Active Zoning, Restore Configured Zoning, Capture Merged Zoning, View Merged/Configured Differences) Edit Zoning Config Activate Zone Set Deactivate Zone Set Restore Default Zoning Security Edit Security Edit Security Config Activate Security Set Deactivate Security Set
Press the F1 function key to open the online help system. With no dialog displayed, the online help system opens to the first topic. With a dialog displayed, the help system opens to the topic describing that dialog. Popup Menus Popup (or shortcut) menus provide quick access to the menu options within the current context of the application.
If no ports are selected, the port-related tasks will be unavailable in the popup menu. Right-click a port to open the corresponding popup menu. Press the Shift or Control key to select more than one port. If multiple ports are selected, right-click one of the selected ports. Tool Bar The tool bar consists of a row of graphical buttons that you can use to access Enterprise Fabric Suite 2007 functions. The tool bar buttons are an alternative method to using the menu bar.
TABLE 1-4 Button Tool Bar Buttons (Continued) Description Edit Security — opens the Edit Security dialog (faceplate/backplate displays on entry switch that has a secure fabric connection (SSL enabled). Help Topics — opens the online help file. The Sun Microsystems logo opens a browser to the Sun Microsystems Web site. Using the Topology Display The topology display (FIGURE 1-12) receives information from the selected fabric and displays its topology.
FIGURE 1-12 Topology Display Working with Switches and Links Switch and link icons are selectable and moveable, and serve as access points for other displays and menus. You select switches and links to display information about them, modify their configuration, or delete them from the display. Contextsensitive popup menus are displayed when you right-click on a switch or link icon, or in the background of the topology display and graphic window.
■ To select one switch or link, click the switch or link. ■ To select a group of switches or links, press the Shift or Control key while clicking each switch or link. ■ To select all switches or links, right-click anywhere in the graphic window background, and select Select All Links or Select All Switches from the popup menu. ■ To cancel all selections, click in the background of the graphic window.
■ Switch — displays current network and switch configuration data for the selected switches. Refer to “Switch Data Window” on page 109 for more information. ■ Link — displays information about the inter-switch links. Refer to “Link and Stack Link Data Windows” on page 39 for more information. Using the Faceplate Display The faceplate display (FIGURE 1-13) shows the front of a single switch, the switch name, the switch operational state, the ports, and the port status.
FIGURE 1-13 Faceplate Display Alerts Panel The Alerts Panel shows all reasons for status, including faults. The Alerts Panel entries are the highlighted rows between the faceplate image and the data window entries. Note – The up/down arrows on the divider bar (between the Alerts Panel entries and data windows) enable you to move the divider bar up or down.
FIGURE 1-14 Alerts Panel 1 2 Figure Legend 1 Alerts Panel Entries 2 Move Divider Arrows Port Views and Status Port color and text provide information about the port and its operational state. Green indicates active; gray indicates inactive. The faceplate display provides the following views of port status corresponding to the View menu options in the faceplate display. Refer to “Monitoring Port Status” on page 179 for more information about these displays.
Working with Ports Ports are selectable and serve as access points for other displays and menus. You select ports to display information about them in their respective data windows or to modify them. Context-sensitive popup menus and properties windows are accessible through the port icons. Selecting Ports Selected ports in the faceplate display are outlined in light-blue. Note – When using the Shift key to select a range of ports, the first port you click in the range is the "anchor" selection.
30 ■ Stack Links — displays information about the links between all switches in the stack. ■ Port Statistics — displays performance data for the selected ports. Refer to “Port Statistics Data Window” on page 169 for more information. ■ Port Information — displays information for the selected ports. Refer to “Port Information Data Window” on page 173 for more information. ■ Configured Zonesets — displays all zone sets, zones, and zone membership in the zoning database.
CHAPTER 2 Managing Fabrics This section describes the following fabric management tasks: ■ Tracking Fabric Firmware and Software Versions ■ Managing the Fabric Database ■ Displaying Fabric Information ■ Verifying Fibre Channel Connections ■ Working with Device Information and Nicknames ■ Enabling Fabric Services Tracking Fabric Firmware and Software Versions The Fabric Tracker option allows you to generate a snapshot or baseline of current system version information, which can be viewed, analy
Saving a Version Snapshot To save the current snapshot to an XML file, do the following: 1. In the faceplate display, open the Fabric menu and select Fabric Tracker, and then select Save Snapshot. 2. Enter a filename. 3. Click the Save button to save the snapshot as an XML file. Viewing and Comparing Version Snapshots To view and analyze system version information, open the Fabric menu, select Fabric Tracker, and select Analyze Snapshots.
FIGURE 2-1 Fabric Version Snapshot Analysis Dialog Managing the Fabric Database A fabric database contains the set of fabrics that you have added during an Enterprise Fabric Suite 2007 session. Initially, if you do not open an existing fabric or fabric view file, the Enterprise Fabric Suite 2007 application opens with an empty fabric database. Adding a Fabric To add a fabric to the database, do the following: 1. Open the Fabric menu and select Add Fabric to open the Add a New Fabric dialog (FIGURE 2-2).
FIGURE 2-2 Add a New Fabric Dialog 2. Enter a fabric name in the Fabric Name field. This step is optional. Note – Assigning a fabric name is recommended. However, if you enter a fabric name, it must be unique. 3. In the Entry Switch field, enter the IP address or Domain Name Server (DNS) name of the switch through which to manage the fabric. Refer to “IPv4 and IPv6 Addressing” on page 138 for more information. 4. Enter an account name and password.
6. For security reasons, you will be prompted (FIGURE 1-2) to change your user account password initially set up by the administrator. You will be prompted to change the password each time you attempt to open the fabric until you change the password. Click the OK button, and change the user account password. Refer to “Managing User Accounts” on page 104 for more information.
Saving a Fabric View File To save a fabric view file, do the following: 1. Open the File menu, and select Save View As. 2. In the Save View dialog, enter a new file name. 3. Enter a file password, if necessary. 4. Click the OK button. Rediscovering a Fabric The rediscover fabric option clears out the current fabric information being displayed, and rediscovers all switch information. To rediscover a fabric, open the Fabric menu, and select Rediscover Fabric.
■ Fabric zoning is sent to the switch from the fabric. ■ All ports will be GL_Ports. ■ The default IP address 10.0.0.1 is assigned to the switch without a gateway or boot protocol configured (RARP, BOOTP, and DHCP). If you are adding a switch to a fabric and do not want to accept the default fabric configuration, do the following: 1.
2. At the replacement switch: a. Mount the switch in the location where the failed switch was removed. b. Install the SFPs using the same ports as were used on the failed switch. Caution – Do not reconnect inter-switch links, target devices, and initiator devices at this time. Doing so could invalidate the fabric zoning configuration. c. Attach the AC power cords and power up the switch. 3. Select the failed switch in the topology display. Open the Switch menu and select Delete. 4.
Refer to “Devices Data Window” on page 40 for information on devices in a fabric. Refer to “Active Zoneset Data Window” on page 58 for information on zone definitions for the active zone set. Refer to “Switch Data Window” on page 109 for information about the Name Server and Switch data windows. Refer to “Link and Stack Link Data Windows” on page 39 for information on switch links.
Devices Data Window The Devices data window (FIGURE 2-4) displays information about the devices that are logged into the fabric. Click the Devices tab below the data window to display device information for all devices that are logged into the selected fabric. To narrow the display to devices that are logged into specific switches, select one or more switches in the fabric tree or the topology display. Refer to “Exporting Device Information to a File” on page 50 for exporting device information.
TABLE 2-1 Devices Data Window Entries Entry Description Port WWN Port world wide name Nickname Device port nickname. To create a new nickname or edit an existing nickname, double-click the cell and enter a nickname in the Edit Nickname dialog. Refer to “Managing Nicknames for Fabric Devices” on page 50 for more information. Details Click the (i) to display additional information about the device. Refer to “Displaying Detailed Device Information” on page 49.
Note – Enterprise Fabric Suite 2007 may not support all firmware versions. If the version of Enterprise Fabric Suite 2007 was not intended to support the firmware version on the switch, a warning status of “FW/GUI mismatch” is displayed for the switch. A switch with this status will still be manageable, but may preclude some operations from being performed.
If the Event Browser is enabled using the Preferences dialog, the next time Enterprise Fabric Suite 2007 is started all events from the switch log will be displayed. If the Event Browser is disabled when Enterprise Fabric Suite 2007 is started and later enabled, only those events from the time the Event Browser was enabled and forward will be displayed. To display the Event Browser, open the Fabric menu and select Show Event Browser, or click the Events button on the tool bar.
TABLE 2-3 Severity Icon Severity Levels Description Alarm — a "serviceable event". This means that attention by the user or field service is required. Alarms are posted asynchronously to the screen and cannot be turned off. If the alarm denotes that a system error has occurred the customer and/or field representative will generally be directed to provide a "show support" capture of the switch. Critical event — an event that indicates a potential failure.
You can filter the event browser in the following ways: ■ Severity — select one or more of the corresponding options to display alarm events, critical events, warning events, or informative events. ■ Date/Time — select one or both of the From: and To: options. Enter the bounding timestamps (MM/DD/YY HH:MM AA) to display only those events that fall within those times. ("AA" indicates AM or PM.) The current year (YY) can be entered as either 2 or 4 digits.
headings. You can also open the Sort menu and select By Severity, By Timestamp, By Source, By Type, or By Description. Successive sort operations of the same type alternate between ascending and descending order Note – We recommend using unique fabric names and switch symbolic names to better identify event log entries by source. Saving the Event Browser to a File You can save the displayed Event Browser entries to a file. Filtering affects the save operation, because only displayed events are saved.
FIGURE 2-7 FC Ping Dialog To verify a Fibre Channel connection, do the following: 1. Open the Switch menu and select FC Ping to open the FC Ping dialog. 2. Open the Destination drop-down list and select a destination port. 3. Select the Port WWN or Port Address option. 4. In the Repeat area, use the arrow keys to select or type in a value (between 1-100) for the number of FC ping attempts to perform. 5.
Note – The SANdoctor license key is required to enable this feature. The FC TraceRoute option is displayed in the Fabric menu on all switches in a fabric if at least one switch in the fabric has a SANdoctor license. However, the FC TraceRoute option is only functional on switches that have the SANdoctor license. Contact your switch distributor or authorized reseller for information on purchasing the SANdoctor license key.
Working with Device Information and Nicknames Enterprise Fabric Suite 2007 provides for the following: ■ Displaying Detailed Device Information ■ Exporting Device Information to a File ■ Managing Nicknames for Fabric Devices Displaying Detailed Device Information In addition to the information that is available in the Devices data window, you can click the (i) in the Details column to display more information in the Detailed Device Display dialog (FIGURE 2-9).
Exporting Device Information to a File To save device information to a file, open the topology display and do the following: 1. Select one or more switches in the graphic window. If no switches are selected, Devices information is gathered for all switches. 2. Open the Switch menu and select Export Devices. 3. In the Save dialog, enter a file name. Select the extension for the type of output file (CSV or text format) to be saved. CSV files can be opened with Microsoft Excel or most spreadsheet applications.
■ Click on a device in the table. Open the Edit menu and select Create Nickname to open the Add Nickname dialog. In the Add Nickname dialog, enter a nickname and WWN and click the OK button. Editing a Nickname A nickname must start with a letter and can have up to 64 characters. Valid characters include alphanumeric characters [aA-zZ][0-9] and special symbols [$ _ ^]. In the topology or faceplate display, open the Fabric menu and select Nicknames to open the Nicknames dialog.
Importing a Nicknames File Importing a nicknames file merges (adds) the contents to the existing nicknames file used by Enterprise Fabric Suite 2007. This is useful for when retaining nicknames for devices moved to another fabric. To import a nickname file, do the following: 1. Open the Fabric menu and select Nicknames to open the Nicknames dialog. 2. Open the File menu in the Nicknames dialog, and select Import. 3. Select a nickname file in the Open dialog and click Open.
Enabling SNMP Configuration To enable SNMP configuration, do the following: 1. Choose one of the following: ■ On the faceplate display, open the Switch menu and select SNMP Properties to open the SNMP Properties dialog. In the SNMP Configuration area, select the SNMP Enabled option. ■ On the faceplate display, open the Switch menu and select Services to open the System Services dialog. Select the SNMP option. 2. Click the OK button to save the change.
54 Enterprise Fabric Suite 2007 User Guide • September 2008
CHAPTER 3 Managing Fabric Zoning This section consists of zoning concepts and tasks. Zoning Concepts The following zoning concepts provide some context for the zoning tasks described in this section: ■ Zones ■ Aliases ■ Zone Sets ■ Zoning Database ■ Active Zoneset Data Window ■ Configured Zonesets Data Window Zones Zoning divides the fabric for purposes of controlling discovery and inbound traffic. A zone is a named group of ports or devices.
A zone can be a component of more than one zone set. Several zone sets can be defined for a fabric, but only one zone set can be active at one time. The active zone set determines the current fabric zoning. Membership in a zone can be defined by switch domain ID and port number, device Fibre Channel address (FCID), or device world wide name (WWN). ■ WWN entries define zone membership by the world wide name of the attached device.
To apply zoning to a fabric, choose a zone set and activate it. When you activate a zone set, the switch distributes that zone set and its zones, excluding aliases, to every switch in the fabric. (However, the contents of the aliases are distributed.) This zone set is known as the active zone set. Only one zone set can be active at one time. Refer to “Active Zoneset Data Window” on page 59 for information about displaying the active zone set. Zoning Database Each switch has its own zoning database.
To view zoning properties and limits on a switch, do the following: 1. On the faceplate display, open the Zoning menu and select Edit Zoning or click the Zoning button to open the Edit Zoning dialog. 2. Choose one of the following: ■ The zoning properties/limits are displayed under the zoning toolbar (FIGURE 3-3). ■ In the zone sets tree (left window pane), right-click the top zone sets entry, a zone, or an alias. Open the Edit menu and select Properties.
FIGURE 3-1 Active Zoneset Data Window Active Zoneset Data Window Configured Zonesets Data Window The Configured Zonesets data window (FIGURE 3-2) displays all zone sets, zones, aliases, and zone membership in the zoning database. To open the Configured Zonesets data window, click the Configured Zonesets tab below the data window in the faceplate display. The Configured Zonesets data window uses display conventions for expanding and contracting entries that are similar to the fabric tree.
FIGURE 3-2 Configured Zonesets Data Window Zoning a Fabric Zoning allows you to divide the ports and devices of the fabric into zones for more efficient and secure communication among functionally grouped nodes.
Using the Zoning Wizard The Zoning Wizard is a series of dialogs that leads you through the process of zoning a fabric. To open the Zoning Wizard, open the Wizards menu in the faceplate display, and select Zoning Wizard. The Zoning Wizard helps you zone the two most typical reasons for zoning: ■ Zoning Windows servers storage ■ Assign storage to servers. To solve these problems, there must be at least one target and at least one initiator in the name server.
FIGURE 3-3 Edit Zoning Dialog 2 1 Figure Legend 1 Zone Sets Tree 2 Port/Device Tree To apply zoning to a fabric, choose a zone set and activate it. When you activate a zone set, the switch distributes that zone set and its zones, excluding aliases, to every switch in the fabric. This zone set is known as the active zone set. You can not edit an active zone set on a switch.
The Edit Zoning dialog has a Zone Sets tree on the left and a Port/Device (or members) tree on the right. Both trees use display conventions similar to the fabric tree for expanding and contracting zone sets, zones, and ports. An expanded port shows the port Fibre Channel address; an expanded address shows the port world wide name. You can select zone sets, zones, and ports in the following ways: ■ Click a zone, zone set, or port icon.
TABLE 3-1 Button/Icon Edit Zoning Dialog Tool Bar Buttons and Icons (Continued) Description Remove Member button – delete the selected zone from a zone set, or delete the selected port/device from a zone Paste button – pastes clipboard items into selected zone set tree items. Copy button – copies items selected in the zone set tree to the clipboard.
Resolving Zoning The Resolving Zoning options enable you to manage the active, configured, and merged zone sets in the zoning database. To access the Resolving Zoning options, open the faceplate display, open the Zoning menu, and select Resolve Zoning Capture Active Zoning The Capture Active Zoning option copies the active zone set to the configured zone set. Restore Configured Zoning The Restore Configured Zoning option reverts back to the previously saved configured zone set.
FIGURE 3-4 Zoning Config Dialog Merge Auto Save The Merge Auto Save parameter determines whether changes to the active zone set that a switch receives from other switches in the fabric will be saved to the zoning database on that switch. Changes are saved when an updated zone set is activated. Zoning changes are always saved to temporary memory. However, if Merge Auto Save is enabled, the switch firmware saves changes to the active zone set in temporary memory and to the zoning database.
Discard Inactive The Discard Inactive parameter automatically removes inactive zones and zone sets when a zone set is activated or deactivated from a remote switch. Saving the Zoning Database to a File You can save the zoning database to an XML file. You can later reload this zoning database on the same switch or another switch. To save a zoning database to a file, do the following: 1. In the faceplate display, open the Zoning menu, and select Edit Zoning. 2.
1. In the faceplate display, open the Zoning menu and select Restore Default Zoning. 2. Click the OK button to confirm that you want to restore default zoning, deactivate any currently active zone set, and save changes to the zoning database. Removing All Zoning Definitions To clear all zone and zone set definitions from the zoning database, choose one of the following: ■ Open the Edit menu and select Clear Zoning.
2. Open the Edit menu, and select Create Zone Set to open the Create Zone Set dialog. 3. Enter a name for the zone set, and click the OK button. The new zone set name is displayed in the Zone Sets tree. A zone set name must begin with a letter and be no longer than 64 characters. Valid characters are 0-9, A-Z, a-z, _, -, ^, and $. 4. To create new zones in a zone set, do one of the following: ■ Right-click a zone set and select Create A Zone from the popup menu.
Renaming a Zone Set To rename a zone set, do the following: 1. In the Zone Sets tree of the Edit Zoning dialog, click the zone set to be renamed. 2. Open the Edit menu and select Rename. 3. In the Rename Zone Set dialog, enter a new name for the zone set. 4. Click the OK button. Removing a Zone Set Removing a zone set from the database affects the member zones in the following ways. ■ Member zones that are members of other zone sets are not affected.
■ Removing a Zone from a Zone Set ■ Removing a Zone from All Zone Sets Note – Changes that you make to the zoning database are limited to the managed switch and do not propagate to the rest of the fabric. To distribute changes to configured zone sets fabric wide, you must edit the zoning databases on the individual switches. Creating a Zone in a Zone Set To create a zone in a zone set, do the following: 1. Open the Zoning menu, and select Edit Zoning to open the Edit Zoning dialog. 2.
Copying a Zone to a Zone Set To copy an existing zone and its membership from one zone set to another, do the following: 1. In the faceplate display, open the Zoning menu and select Edit Zoning to open the Edit Zoning dialog. 2. Choose one of the following: ■ In the zone set tree, select the zone to copy, and click the Copy button. Select the zone set destination and click the Paste button. ■ In the zone set tree, select the zone to copy, and drag it to the chosen zone set. 3.
c. Select the WWN, Domain/Port, or FC Address option. d. Enter the hexadecimal value for the port/device according to the option selected: 16 digits for a WWN member, 4 digits for a Domain/ Port member (DDPP), or a 6-digit Fibre Channel Address for a First Port Address member (DDPPAA) where D=domain ID, P=port number, and A=ALPA. 3. Click the OK button on the Create Zone Member dialog. 4. Click the Apply button to open the Save Zoning & Error Check dialog. 5.
5. Click the Save Zoning button to implement the changes. Removing a Zone from a Zone Set To remove a zone from a zone set, do the following: 1. In the Edit Zoning dialog, select the zone to be removed. The selected zone will be removed from that zone set only. 2. Open the Edit menu and select Remove. 3. Click the Yes button in the Remove dialog. 4. Click the Apply button to save the changes and open the Save Zoning & Error Check dialog. 5. Click the Save Zoning button to implement the changes.
Note – Changes that you make to the zoning database are limited to the managed switch and do not propagate to the rest of the fabric. To distribute changes to configured zone sets fabric wide, you must edit the zoning databases on the individual switches. You will not see aliases in the active zone set. Creating an Alias To create an alias, do the following: 1. Open the Zoning menu, and select Edit Zoning to open the Edit Zoning dialog. 2.
d. Enter the hexadecimal value for the port/device according to the option selected: 16 digits for a WWN member, 4 digits for a Domain/ Port member (DDPP), or a 6-digit Fibre Channel Address for a First Port Address member (DDPPAA) where D=domain ID, P=port number, and A=ALPA. 3. Click the OK button to add the member to the alias. Removing an Alias from All Zones To remove an alias from all zones, do the following: 1. In the Zone Sets tree in the Edit Zoning dialog, select the alias to be removed. 2.
A zone merge may also fail if the merged zones/members exceeds the max zoning limits. Refer to “Viewing Zoning Limits and Properties” on page 57 for more information on zoning limits. Zone Merge Failure Recovery When a zone merge failure occurs, the conflict that caused the failure must be resolved. You can correct a failure due to a zone conflict by deactivating one of the active zone sets or by editing the conflicting zones so that their membership is the same.
78 Enterprise Fabric Suite 2007 User Guide • September 2008
CHAPTER 4 Managing Fabric Security The following fabric security concepts provide context for fabric security management tasks.
Connection Security Connection security provides an encrypted data path for switch management methods. The switch supports the Secure Shell (SSH) protocol for the command line interface and the Secure Socket Layer (SSL) protocol for management applications such as Enterprise Fabric Suite 2007 and Common Information Module (CIM). The SSL handshake process between the workstation and the switch involves the exchanging of certificates.
Port Security Port binding ties a specific device WWN to a physical port number. The Port Binding dialog allows you to enable/disable port binding for the port, and will allow the user to add WWNs to the list of WWNs bound to the port. The dialog will display the values that are read from the port binding data received from the switch for the selected port.
Configured Security Data Window The Configured Security data window (FIGURE 4-2) displays a graphical representation of all security sets, groups, and members in the database. To open the Configured Security data window, click the Configured Security tab below the data window in the faceplate display. Note – The Security data windows are available only on a secure (SSL) fabric and on the entry switch (out of band switch). Open the Switch menu and select Services to enable the SSL option for that switch.
Active Security Data Window The Active Security data window (FIGURE 4-3) displays a graphical representation of the active security set, its groups, and members in the database. To open the Active Security data window, click the Active Security tab below the data window in the faceplate display. Note – The Security data windows are available only on a secure (SSL) fabric and on the entry switch (out of band switch). Open the Switch menu and select Services to enable the SSL option for that switch.
Fabric Binding Each switch maintains its own fabric security configuration consisting of the active security set (if one has been activated), any inactive security sets, domain IDs, world wide names, authentication type (Chap or None), Chap hash protocol (MD5 or SHA1) and a hashing protocol secret. A switch may have more than one configured security set, but only one security set may be active on a switch.
The propagated ISL-related security information is then combined with the active security set on each switch and is automatically renamed the "Learned" security set. The Learned security set now consists of the most current active security set on that switch with new propagated domain ID and WWN information. The active security set is not renamed on the originating switch. To activate a security set on a switch, open the Security menu, select Activate Security Set to open the Activate Security Set dialog.
security database for the entire fabric resides on the server. In this way, the security database can be managed centrally, rather than on each switch. You can configure up to five RADIUS servers to provide failover. You can configure the RADIUS server to authenticate just the switch or both the switch and the initiator device if the device supports authentication. When using a RADIUS server, every switch in the fabric must have a network connection.
Using the Edit Security Dialog The Edit Security dialog (FIGURE 4-4) opens after clicking the Security button on the toolbar or selecting Edit Security from the Security menu. The primary use of the Edit Security dialog is to edit the security configuration on the switch. You can also open and edit a security configuration saved to a file. Editing security files consists of renaming and removing security sets, groups, and members.
Use the File menu to: ■ Open or edit security files.
4. Click the OK button to close the Create a Security Set dialog. Create a Security Group Dialog Use the Create a Security Group dialog (FIGURE 4-6) to add a security group to a security set. The Create a Security Group dialog is displayed after clicking the Security Group button on the toolbar, or after you right-click on a security set in the graphic window and select Create a Security Group from the popup menu.
3. Enter a security group name and select a security group type (ISL, Port, or MS). Remember, only one security group type (1 ISL, 1 Port, 1 MS) in each security set is allowed. The naming conventions for security groups are: ■ Must start with a letter ■ All alphanumeric chars [aA- zZ] [0-9] ■ The symbols $ _ - and ^ are the only symbols allowed 4. Click the OK button to save the change.
■ Primary Hash — the primary algorithm used first to authenticate the communication link. If the primary algorithm is not supported on the authentication initiator end of the link, the secondary algorithm is used. If there is no common algorithm (either primary or secondary) configured between the two ends of the link, the link will isolate. ■ Secondary Hash — the secondary algorithm used to authenticate the communication link.
■ You can enter member world wide name (WWN), which must be 16 hex characters, or 23 characters with valid WWN format xx:xx:xx:xx:xx:xx:xx:xx. ■ The authentication choices are None and Chap. ■ The (one) Secret field is disabled if authentication is None. If authentication is Chap, the Secret field is enabled. ■ Enter the Confirm Primary field re-enter the primary hash key to validate the primary secret. ■ The Generate button is only enabled when authentication is Chap.
1. On the faceplate display, click the Security button on the toolbar, or open the Security menu and select Edit Security to open the Edit Security dialog. By default, the current security configuration on the switch is displayed in the Edit Security dialog. To edit a security configuration previously saved to a file, open the File menu and select Open File, or press Ctrl+o (letter o) to open the Open dialog.
Using the Security Config Dialog Use the Security Config dialog (FIGURE 4-8) to save the active security configuration on the switch to non-volatile memory or to temporary memory, or to require the domain ID of a switch be validated before attaching to the fabric. FIGURE 4-8 Security Config Dialog To configure security on the switch, do the following: 1. On the faceplate display, open the Security menu and select Edit Security Config to open the Security Config dialog. 2.
5. Click the Save button to save the security configuration to a file. 6. In the File Password dialog, enter a password and click the Yes button to save the file with a password and close the File Password dialog. Or, click the No button to save the file without a password and close the File Password dialog. Activating a Security Set Only one security set can be active at one time. To activate a security set, do the following: 1.
the response to the challenge. This information is forwarded to the RADIUS server for authentication and the server responds with the results, either an accept or reject. The RADIUS client does not need to be configured with any user authentication information, this all resides on the RADIUS server and can be managed centrally and separately from the clients. In addition, no passwords are exchanged between the RADIUS server and its clients.
FIGURE 4-9 Add Server To add a RADIUS server, do the following: 1. Open the faceplate display, open the Switch menu, and select Radius Servers. 2. In the Radius Server Information dialog (FIGURE 4-9), click the Add Server tab. 3. Select the server type (Device, User, Account). 4. In the IP Address field, enter the remote IP address of the server. 5. In the UDP Port field, enter the remote UDP port number of the Authentication Radius Server.
8. Select the Sign Packets option to enable the switch to include a digital signature (Message-Authenticator) in all RADIUS access request packets sent to the RADIUS server. A valid Message-Authenticator attribute will be required in all RADIUS server responses. 9. In the Secret field, enter the server secret. A secret is required for all RADIUS servers. The secret is used when generating and checking the MessageAuthenticator attribute. 10. Click the Add Server button to add the server. 11.
Removing a RADIUS Server When you remove a RADIUS server, you disable the management of authentication usernames and passwords over the network for that server. FIGURE 4-10 Remove Server To remove a RADIUS server, do the following: 1. Open the faceplate display, open the Switch menu, and select Radius Servers. 2. In the Radius Server Information dialog (FIGURE 4-10), click the Remove Server tab. 3. In server list at the top of the dialog, select the server to be removed. 4.
Editing RADIUS Server Information Editing information of a RADIUS server involves changing the configuration of a RADIUS server. FIGURE 4-11 Edit Radius Server Information To edit information of a RADIUS server, do the following: 1. Open the faceplate display, open the Switch menu, and select Radius Servers. 2. In the Radius Server Information dialog (FIGURE 4-11), click the Edit Server tab. 3. In the server list at the top of the dialog, select the server to be edited. 4.
Modifying Authentication Order RADIUS Server Information Editing information of a RADIUS server involves changing the configuration of a RADIUS server. FIGURE 4-12 Modify Authentication Order - Radius Server Information To modify the authentication order information of a RADIUS server, do the following: 1. Open the faceplate display, open the Switch menu, and select Radius Servers. 2. In the Radius Server Information dialog (FIGURE 4-12), click the Modify Authentication Order tab. 3.
■ RADIUS — only attempts to authenticate using the RADIUS server (another computer that provides authentication). ■ RADIUS Local — attempts to authenticate using the RADIUS server. If the switch can not contact the RADIUS server due to a network or some other problem, the switch will authenticate using the local password database. 5. Click the Modify Order button to save the changes, and click the Close button to exit the dialog.
CHAPTER 5 Managing Switches This section describes the following tasks that manage switches in the fabric.
Managing User Accounts Only the Admin account can manage user accounts with the User Account Administration dialogs. However, any user can modify their own password. To open the User Account Administration dialogs, open the Switch menu in the faceplate display, and select User Accounts.
Creating User Accounts To create a user account on a switch, open the Switch menu in the faceplate display and select User Accounts. This displays the User Account Administration dialog (FIGURE 5-1). A switch can have a maximum of 15 user accounts. FIGURE 5-1 User Account Administration Dialog – Add Account 1. To open the User Account Administration dialogs, open the Switch menu in the faceplate display, and select User Accounts. 2. Click the Add Account tab to open the Add Account tab page. 3.
6. If this account is to be permanent with no expiration date, select the Permanent Account option. Otherwise, click the Account Will Expire button and enter the number days in which the account will expire. 7. Click the Add Account button to add the newly defined account. Removing a User Account To remove a user account on a switch, open the Switch menu in the faceplate display and select User Accounts.
Changing a User Account Password To change the password for an account on a switch, open the Switch menu in the faceplate display and select User Accounts. Click the Change Password tab in the User Account Administration dialog to present the display (FIGURE 5-3). Select the account name from the list of accounts at the top of the dialog, then enter the old password, the new password, and verify the new password in the corresponding fields. Click the Change Password button.
Modifying a User Account To modify a user account on a switch, open the Switch menu in the faceplate display and select User Accounts. Click the Modify Account tab in the User Account Administration dialog to present the display (FIGURE 5-4). Select the account name from the list of accounts at the top of the dialog. Select the Admin authority Enabled option to grant admin authority to the account name. Select an Account Expiration Date option.
■ Configuration parameters ■ Port information and performance statistics ■ Configured zone sets ■ Configured and active security ■ Link information ■ Mouse-overs display popup-like information when you rest the cursor over key elements, such as ports, blades, and LEDs. The fabric updates the topology and faceplate displays by forwarding changes in status to the management workstation as they occur. You can allow the fabric to update the switch status, or you can refresh the display at any time.
FIGURE 5-5 Switch Data Window Refer to “Configuring a Switch” on page 122 for more information about the Switch data window. To open the Switch data window, select one or more switches in the topology display or open the faceplate display, and click the Switch tab below the window.
FIGURE 5-6 Switch Data Window Buttons TABLE 5-2 describes the Switch data window entries. TABLE 5-2 Switch Data Window Entries Entry Description Summary Group Switch Type Switch model First Port Address Switch Fibre Channel address World Wide Name Switch world wide name Serial Number Number assigned to each chassis. Reason for Status The reason for the operational state.
TABLE 5-2 Switch Data Window Entries (Continued) Entry Description Primary CPU N/A - does not apply to this switch Secondary CPU Status N/A - does not apply to this switch Switchover Reason N/A - does not apply to this switch Switchover Timestamp N/A - does not apply to this switch Number of Switchovers N/A - does not apply to this switch Number of Ports Number of ports activated on the switch Operational State Switch operational state: Online, Offline, Diagnostic, Down Administrative Stat
TABLE 5-2 Switch Data Window Entries (Continued) Entry Description Warning Temperature Non-configurable temperature threshold (65° Celsius) above which a warning condition alarm is generated. Failure Temperature Non-configurable temperature threshold (70° Celsius) above which a failure condition alarm is generated. POST Status Status from the most recent Power On Self Test (Passed, Failed, Compromised (implies one or two bad ports)).
TABLE 5-2 Switch Data Window Entries (Continued) Entry Description Configured Local Hostname Hostname for the switch. If a fully qualified domain name is given, the domain suffix is used as the first suffix in the DNS search list for DNS lookups performed by the switch. IPv6 Assigned Address (1-20) The set of IPv6 addresses assigned by DHCPv6, NDP, or the switch administrator.
TABLE 5-2 Switch Data Window Entries (Continued) Entry Description GUI Mgmt Enabled Out-of-band management application status. If disabled, the switch cannot be managed out-of-band using applications such as Enterprise Fabric Suite 2007 or QuickTools. Telnet Enabled Telnet client status SSH Enabled Secure Shell status. If enabled, an encrypted data path is provided for command line interface sessions. SSL Enabled Secure Sockets Layer status.
TABLE 5-2 Switch Data Window Entries (Continued) Entry Description Implicit Hard Zoning Introduces hardware enforcement of zoning regardless of type. All zones and all supported zone member types will have hardware enforcement. Security Auto Save If enabled, the security configuration is saved to nonvolatile memory on the switch. If disabled, the security file is saved only to temporary memory. The Auto Save feature is used when Fabric Binding is enabled.
FIGURE 5-7 Port Threshold Alarm Configuration Dialog 2. Select the Enable All Port Threshold Alarms option to enable monitoring for all the individual alarm types that are enabled. The Enable All Port Threshold Alarms option is the master control for the individual alarms. For example, the switch will monitor CRC errors only if both the CRC Error Enable and Enable All Port Threshold Alarms options are selected. 3. Select an event type from the Port Threshold Alarm drop-down list.
FIGURE 5-8 Port Threshold Alarm Example Generate rising trigger alarm; eligibility ends Generate rising trigger alarm; eligibility ends Rising Trigger Event Count Generate falling trigger alarm; eligibility is reset Falling Trigger Sample Window 7. Enter a sample window in seconds. The sample window defines the period of time in which to count events. 8. Repeat steps 3 through 7 for each alarm you want to configure or enable. 9. Click the OK button to save all changes.
Setting the Date/Time and Enabling NTP Client The Date/Time dialog allows you to manually set the date, time, and time zone on a switch, or to enable NTP (Network Time Protocol) Client to synchronize the date and time on the switch with an NTP server. Enabling the NTP client requires an Ethernet connection to an NTP server, but ensures the consistency of date and time stamps in alarms and log entries. When the date/time is set or displayed in the firmware, it is always in Universal Time.
6. Click the OK button. Resetting a Switch Resetting a switch reboots the switch using configuration parameters in memory. Depending on the reset type, a switch reset may or may not include a power-on self test or it may or may not disrupt traffic. TABLE 5-3 describes the types of switch resets. TABLE 5-3 Switch Resets Type Description Hot Reset Resets a switch without a Power On Self Test. This reset activates the pending firmware, but does not disrupt switch traffic.
Managing Switch Stacks Enterprise Fabric Suite 2007 recognizes switches as a stack if they are connected by their high speed stacking ports. The switch management application will auto-detect switches connected by their 10/20-Gbit/sec ports and display these stacked switches as a single stack entity in the topology and faceplate displays. The graphic window (upper right pane of the faceplate display) displays one faceplate image for each switch in the stack.
displayed is the configuration that will be applied to all other switches in the stack after you click the OK button. The following operations are available to configure the stack as a single entity: ■ Date/time and Network Time Protocol (NTP) settings. Refer to “Setting the Date/Time and Enabling NTP Client” on page 119 for more information. ■ Firmware load and activation. Refer to “Installing Firmware” on page 155 for more information. ■ Switch reset.
Using the Configuration Wizard The Configuration Wizard is a series of dialogs you can use to configure the IP address and other basic parameters on new or replacement switches. The application will detect the first time use and present the Initial Start dialog, from which the Configuration Wizard can be launched. You can also launch the Configuration Wizard from the Wizards menu in either the topology display or the faceplate display. Open the Wizards menu and select Configuration Wizard.
FIGURE 5-10 Switch Properties Dialog Domain ID and Domain ID Lock The domain ID is a unique Fibre Channel identifier for the switch. The Fibre Channel address consists of the domain ID, port ID, and the Arbitrated Loop Physical Address (ALPA). The maximum number of switches within a fabric is 239, with each switch having a unique domain ID. Switches come from the factory with the domain IDs unlocked.
Syslog The Syslog (Remote Logging) feature enables saving of the log information to a remote host that supports the syslog protocol. When enabled, the log entries are sent to the syslog host at the IP address that you specify in the Logging Host IP Address field. Log entries are saved in the internal switch log whether this feature is enabled or not. To save log information to a remote host, you must edit the syslog.conf file (located on the remote host) and then restart the syslog daemon.
TABLE 5-4 describes the administrative state values. TABLE 5-4 Switch Administrative States Parameter Description Online The switch is available. Offline The switch is unavailable. Diagnostics The switch is in diagnostics mode, is unavailable, and tests can then be run on all ports of the switch. Broadcast Support Broadcast is supported on the switch which allows for TCP/IP support.
FDMI is comprised of the fabric-to-device interface and the application-to-fabric interface. The fabric-to-device interface enables a device’s management information to be registered. The application-to-fabric interface provides the framework by which an application obtains device information from the fabric. Use the FDMI HBA Entry Limit field on the Switch Properties dialog to configure the maximum number of HBAs that can be registered with a switch.
FIGURE 5-11 Advanced Switch Properties Dialog Timeout Values The switch timeout values determine the timeout values for all ports on the switch. The timeout values must be the same for all switches in the fabric. ■ R_A_TOV (Resource Allocation Timeout) — the maximum time a frame could be delayed and still be delivered. The default is 10000 milliseconds. ■ E_D_TOV (Error Detect Timeout) — the maximum round trip time that an operation between two N_Ports could require. The default is 2000 milliseconds.
Note – System services requiring you to enter an IP address are dependant on the settings of the IPv4 Network and IPv6 Network options in the Network Properties IP dialog. If both options are disabled, all services except SSL and Management Server will be disabled. FIGURE 5-12 System Services Dialog Note – Use caution when disabling the Embedded GUI, GUI Mgmt, Telnet, SSL, and SSH, as it is possible to disable all access to the switch except through a serial connection.
the switch and workstation date/time are not in sync, invalid certificates will be generated and prevent an SSL connection from being established between the switch and switch management application (GUI). To disable SSL when using a user authentication RADIUS server, the RADIUS authentication order must first be set to Local. ■ Telnet (command line interface) — allows users to manage the switch through a Telnet command line interface session. Disabling Telnet access to the switch is not recommended.
■ IP configuration ■ SNMP configuration ■ Nicknames ■ Port properties and statistics ■ Name server ■ Date/Time and NTP settings ■ Alarm configuration ■ Zoning configuration ■ Call Home parameters ■ User account information (but not restored) ■ Configured security, excluding group primary and secondary secrets (only with SSL connection to the switch) ■ RADIUS Server information (only with SSL connection to the switch) To archive a switch, do the following: 1.
2. Open the Switch menu in the faceplate display and select Restore to display the Restore dialog (FIGURE 5-13). The Restore dialog offers a Full Restore and a Selective Restore tab. FIGURE 5-13 Restore Dialogs – Full and Selective 3. Enter the archive file name or browse for the file. This archive file must be one that was produced by the Enterprise Fabric Suite 2007 Archive function.
■ Nicknames — restores the last saved nickname configuration. ■ Switch Properties — restores all settings presented in the Switch properties dialog except the domain ID. Refer to “Switch Properties” on page 123. Additional settings that are restored when this option is enabled include other dialogs: Blade Properties, Port Threshold Alarm Configuration, System Services, and Date/Time dialog. ■ Domain ID — restores switch domain ID in addition to the other switch properties.
FIGURE 5-14 Switch Diagnostics Dialog To test a switch, do the following: 1. Open the faceplate display of the switch to be tested. 2. Open the Switch menu and select Switch Diagnostics, and select Online Switch Diagnostics or Other Switch Diagnostics to open the Switch Diagnostics dialog. 3. Select the test type in the pull-down menu. Caution – If you selected the Other Switch Diagnostics option, your test type options are Offline and Connectivity. These tests will disrupt traffic.
4. Enter a frame size in the Frame Size field. 5. Enable or disable the Terminate Test Upon Error option. 6. Select a Loop Count option. The Loop Forever option runs the test until you click the Stop Test button. The Loop Count option runs the test a specific number of times. 7. Select the default test pattern or enter a user-defined (hexadecimal) test pattern. 8. Click the Start Test button to begin the next test. Observe the results in the Test Results area.
TABLE 5-5 136 Factory Default Configuration Settings (Continued) Setting Value Device Scan Enabled True Error Detect Timeout (ED TOV) 2000 milliseconds SNMP Enabled True SNMP Proxy True IP address 10.0.0.1 FDMI Enabled True FDMI HBA Entry Level 1000 Subnet mask address 255.0.0.0 Gateway address 10.0.0.254 Network Discovery Static Remote Logging False Remote Logging host IP address 10.0.0.254 NTP Client Enabled False NTP Server IP Address 10.0.0.
Configuring the Network Configuring the network includes: ■ ■ Network Properties ■ Network IP Configuration ■ IPv4 and IPv6 Addressing ■ Network DNS (Domain Name Service) Configuration Network IP Security Network Properties Use the Network Properties dialogs (FIGURE 5-15) to configure IP and DNS parameters. To open the Network Properties dialog, select a switch in the topology display or open the faceplate/backplate display, open the Switch menu, select Network, and select Network Properties.
FIGURE 5-15 Network Properties Dialogs Network IP Configuration The IP configuration identifies the switch on the Ethernet network, determines which network discovery method to use, and enables/disables the IPv4 and IPv6 network addressing. IPv4 and IPv6 Addressing The firmware supports the IPv4 and IPv6 address families. An IPv4 address is 32 bits, and consists of four blocks of decimal numbers, with each block separated by a period. Each block can have up to three numbers.
An IPv6 address allows for a much wider range of IP addresses assigned to a host than an IPv4 address. An IPv6 address is 128 bits, and consists of eight blocks of hexadecimal numbers, with each block separated by a colon. The maximum number of numerals in each block is four. One or more blocks with all zeroes are represented by two colon characters. The total number of blocks always adds up to eight.
TABLE 5-6 Network Properties- IP Configuration Parameter Description IPv4 Configuration 140 Network Discovery Choose one of the following methods by which to assign the IP address: • Static — uses the IP configuration parameters entered in the Network Properties dialog. • BootP — acquires the IP configuration from a BootP server. If no IP address is obtained, the switch reverts to the previously configured IP address.
TABLE 5-6 Network Properties- IP Configuration Parameter Description IPv6 Configuration Discovery Choose one of the following methods by which to assign the IP address: • Static — uses the IP configuration parameters entered in the Network Properties dialog • Dhcpv6 (Dynamic Host Configuration Protocol version 6) — acquires the IP configuration from a DHCP server. If no satisfactory lease is obtained, the DHCP client attempts to use the previously configured lease.
TABLE 5-7 Network Properties - DNS Configuration Parameter Description DNS Server Server Discovery Choose one of the following methods by which to assign the IP address: • Static — uses the IP configuration parameters entered in the Network Properties dialog. • DHCP (Dynamic Host Configuration Protocol) — acquires the IP configuration from a DHCP server. If no satisfactory lease is obtained, the DHCP client attempts to use the previously configured lease.
Network IP Security Network IP Security provides encryption-based security for IP version 4 and IP version 6 communications through the use of security policies and associations. The security policy database is the set of all security policies configured on the switch.
Use the IPsec Configuration dialog to add IP security associations and policies. To open the IPsec Configuration dialog, open the Switch menu and select Network, and select IPv6 Ipsec Properties. Network IP Security (IP sec) consists of a suite of protocols for securing Internet Protocol (IP) communications by authenticating and/or encrypting each IP packet in a data stream. IPsec also includes protocols for cryptographic key establishment.
TABLE 5-8 IPsec Configuration Dialog Buttons Button Description Copy Allows you to make a copy of the selected IPsec association or policy. This puts the association or policy into the clipboard. When you paste a copy, it is added to the list. Paste Pastes an IPsec association or policy from the clipboard. This makes a copy of the association or policy in the clipboard. The newly created associations must be edited to make them unique.
TABLE 5-9 describes the fields in the Create IP Security Association dialog. TABLE 5-9 146 Create IP Security Association Dialog Fields Field Description Name The name you assign to the association Description The description of the association Source Address The IP address (version 4 or 6) or DNS host name of the host, switch, or gateway from which data originates. Destination Address The IP address (version 4 or 6) or DNS host name of the host, switch, or gateway receiving data.
Create IP Security Policy Dialog The Create IP Security Policy dialog allows you to define a network IP security policy. FIGURE 5-18 Create IP Security Policy Dialog TABLE 5-10 describes the fields in the Create IP Security Policy dialog.
TABLE 5-10 148 Create IP Security Policy Dialog Fields Field Description Protocol Protocol or application to which to apply IP security.
Configuring SNMP Configuring the Simple Network Management Protocol includes: ■ SNMP Properties Configuration ■ SNMP Trap Configuration ■ SNMP v3 Manager and User Configuration SNMP Properties Use the SNMP Properties dialog (FIGURE 5-19) to change SNMP configuration parameters. To open the SNMP Properties dialog, select a switch in the topology display or open the faceplate/backplate display, open the Switch menu, select SNMP, and select SNMP Properties.
SNMP Configuration The SNMP configuration defines how authentication traps are managed.TABLE 5-11 describes the SNMP configuration parameters. The illegal characters for the userdefined fields are the pound sign (#), semi-colon (;), and comma (,). TABLE 5-11 SNMP Configuration Parameters Parameter Description SNMP Enabled Enables or disables SNMP communication with other switches in the fabric.
TABLE 5-12 describes the SNMP configuration parameters. TABLE 5-12 SNMP Trap Configuration Parameters Parameter Description Trap Version Specifies the SNMP version (1 or 2) with which to format traps. Trap 1 Enabled Enables or disables the trap. If disabled, traps are not sent to trap monitoring stations and the trap settings are not configurable. Trap Address* Specifies the IP address to which SNMP traps are sent. A maximum of 5 trap addresses are supported. The default address for trap 1 is 10.0.
The SNMP v3 Manager dialog allows you to add, remove, and edit an SNMP v3 user. To display the SNMP v3 Manager dialog (FIGURE 5-20) open the Switch menu, select SNMP, and select SNMP v3 Manager. The SNMP v3 Security option allows you to turn SNMP v3 security on or off. Click the Add button to open the SNMP v3 User Editor dialog (FIGURE 5-21), and add an SNMP v3 user. After SNMP v3 users are configured and saved, they are displayed in the SNMPv3 Users list window in the SNMP v3 Manager dialog.
FIGURE 5-21 SNMP v3 User Editor Dialog TABLE 5-13 describes the SNMP v3 User Editor dialog parameters. After configuring the user, click the OK button to save the settings and close the dialog. TABLE 5-13 SNMP v3 User Editor Dialog Parameter Description User Name Name for this SNMP v3 user. Group Read Only permits user to view only SNMP v3 user settings. Read Write permits user to view and change SNMP v3 user settings. Authentication Type None, MD5, SHA.
Downloading a Support File The Download Support File menu option assembles all log files and switch memory data into an archive file (dump_support.tgz) that can be sent to technical support personnel for troubleshooting switch problems. The Download Support File menu option is not accessible (displayed) for switches that don't support the download support file function. To create a support file, do the following: 1. On the faceplate display, open the Switch menu, and select Download Support File. 2.
FIGURE 5-22 Features License Key Dialog 4. In the Add License Key dialog (FIGURE 5-23), enter the license key in the Key field. FIGURE 5-23 Add License Key Dialog 5. Click the Get Description button. The license key description is retrieved and displayed in the Description area for you to verify that this is the license key you ordered. 6. Click the Add Key button to upgrade the switch. Allow a minute or two for the upgrade to complete.
Caution – Changes to the fabric may disrupt the NDCLA process. Common administrative operations that change the fabric include: ■ Zoning modifications ■ Adding, moving or removing devices attached to the switch fabric. This includes powering up or powering down attached devices. ■ Adding, moving or removing ISLs or other connections. After an NDCLA operation is complete, management connections must be reinitiated: Note – Enterprise Fabric Suite 2007 may not support all firmware versions.
FIGURE 5-24 Load Firmware Dialog To install firmware, do the following: 1. In the faceplate display, open the Switch menu and select Load Firmware. 2. In the Load Firmware dialog, click the Browse button next to the Firmware Image Folder field to browse for and select the folder containing firmware file to be loaded. 3. Select the firmware file from the Firmware Image Folder. 4. Click the Start button to begin the firmware load process.
FIGURE 5-25 Call Home Setup Dialog TABLE 5-14 lists the entries in the Call Home Setup dialog. TABLE 5-14 158 Call Home Setup Entries Entry Description Primary SMTP: (active) The "(active)" indicates the Primary SMTP (Simple Mail Transfer Protocol) is the SMTP server that CallHome is going to try to use when transmitting Email messages. CallHome operates as an SMTP client, or more correctly, and SMTP sending agent.
TABLE 5-14 Call Home Setup Entries (Continued) Entry Description Secondary SMTP: The Secondary SMTP is the second SMTP server. If the primary SMTP is not enabled/defined, or if there was a failure in communicating with the primary SMTP server, the Secondary SMTP server will become the (active) SMTP server — the one used by Call Home for the next attempt to transmit Email. Secondary SMTP Server Address: The IP address of the secondary (second) SMTP server.
TABLE 5-14 Call Home Setup Entries (Continued) Entry Description From Email Address: The Email address that will be provided to the SMTP server to indicate the sender of the Email being transmitted. In Emails sent by Call Home, this address will appear in the message heading as the "From: " address. This value is required to send Emails. If there are any problems encountered in routing the Email to any of the intended recipients, the notice of the problem will be sent to this address.
option allows you to propagate all profiles on the switch to one or more switches in the fabric. Refer to “Applying All Profiles on a Switch to Other Switches” on page 165 for more information. FIGURE 5-26 Call Home Profile Manager Dialog Using the Call Home Profile Editor Use the Call Home Profile Editor dialog (FIGURE 5-27) when creating a new profile, and editing/copying an existing profile.
You can use the Call Home Profile Editor dialog to make a copy of an existing profile. In the Call Home Profile Manager dialog, select a profile in the list of existing profiles (FIGURE 5-26). To open the Call Home Profile Editor dialog (FIGURE 5-27), click the Copy button or open the Edit menu and select Copy Profile. The dialog is pre-populated with all of the information from the selected profile, except the name. Enter a unique name for the profile copy and click the OK button to save the new profile.
Using the Call Home Profile Editor - Tech Support Center Profile Dialog You can use the Call Home Profile Editor - Tech Support Center Profile dialog to create, edit, or remove a Tech Support Center profile. You can open the Call Home Profile Editor - Tech Support Center Profile dialog two ways: click the Support button on the tool bar in the Call Home Profile Manager dialog, or open the Edit menu and select Create Tech Support Center Profile.
TABLE 5-15 lists the entries in the Call Home Editor - Tech Support Center Profile dialog. TABLE 5-15 164 Call Home Editor - Tech Support Center Profile Entries Entry Description Name The name automatically assigned to the profile. This profile can not be changed or deleted, but the settings can be modified. Level The severity level of the event (Alarm, Critical, Warning). The level of events processed by the profile to produce Emails that will be sent to the Email addresses listed in the profile.
TABLE 5-15 Call Home Editor - Tech Support Center Profile Entries (Continued) Entry Description Day of Week The day of the week, specified as Sunday, Monday, Tuesday, Wednesday, Thursday, Friday or Saturday, when the capture operation will be executed on the switch. The default is Monday. Interval (1-26 weeks) The number of weeks that must pass between executions of the capture operation. The default is 1. Address The Email address of the recipient being added to the Tech Support Center profile.
Using the Call Home Message Queue Use the Call Home Message Queue dialog (FIGURE 5-30) to access the logged call home statistics. Click the Update Stats button to refresh with the most recent switch Call Home information. Click the Clear Queue button to clear the current statistics. FIGURE 5-30 Call Home Message Queue Dialog Testing Call Home Profiles Use the Call Home Test Profile dialog (FIGURE 5-31) to test the Call Home parameters currently configured.
Change Over Changes the inactive SMTP server to become the active SMTP server. To make the inactive SMTP become the active SMTP, open the Switch menu, select Call Home, and select Change Over. Click the OK button to confirm the change over.
168 Enterprise Fabric Suite 2007 User Guide • September 2008
CHAPTER 6 Managing Ports This section describes the following tasks that manage ports and devices: ■ Displaying Port Information ■ Configuring Ports ■ Testing Ports ■ Graphing Port Performance Displaying Port Information Port information is available primarily in the faceplate display with the Port Statistics data window and the Port Information data window. Port Statistics Data Window The Port Statistics data window (FIGURE 6-1) displays port performance data for the selected ports.
FIGURE 6-1 Faceplate Display — Port Statistics TABLE 6-1 describes the Port Statistics data window entries. TABLE 6-1 Port Statistics Data Window Entries Entry Description Start Time The beginning of the period over which the statistics apply. The start time for the Absolute view is not applicable. The start time for the Rate view is the beginning of polling interval. The start time for the Baseline view is the last time the baseline was set.
TABLE 6-1 Port Statistics Data Window Entries (Continued) Entry Description BB_CreditRecoveryRRDYF Number of times more when R_RDYs were lost during a credit ailure recovery period than the recovery process could resolve. This causes a Link Reset to recover the credits. Class 2 Frames In Number of class 2 frames received by this port. Class 2 Frames Out Number of class 2 frames transmitted by this port. Class 2 Words In Number of class 2 words received by this port.
TABLE 6-1 172 Port Statistics Data Window Entries (Continued) Entry Description LIP_F8_F7 This LIP is a loop initialization primitive frame used to indicate that a Loop Failure has been detected at its receiver and does not have a valid AL_PA LIP(F7,AL_PS) This LIP is a loop initialization primitive frame used to reinitialize the loop. An L_port, identified by AL_PS, may have noticed a performance degradation and is trying to restore the loop.
TABLE 6-1 Port Statistics Data Window Entries (Continued) Entry Description TotalTXErrors Total number of errors transmitted by the port. TotalRXErrors Total number of errors received by the port. Total Offline Sequences Total number of offline sequences transmitted and received by the port. Port Information Data Window The Port Information data window (FIGURE 6-2) displays port detail information for the selected ports.
Information in the Port Information data window is grouped and viewed by the Summary, Advanced, Extended Credits, Media, and DDM (Digital Diagnostics Monitoring) buttons. Click a button to display the corresponding information in the data window on the right. FIGURE 6-3 describes the Port Information data window buttons. FIGURE 6-3 Port Information Data Window Buttons TABLE 6-2 describes the Port Information data window entries.
TABLE 6-2 Port Information Data Window Entries (Continued) Entry Description Logged In Indicates whether logged in or not. Port Connection Status E_Port connection status. Status can be None, Connecting, Connected or Isolated. Port Isolation Reason Why E_Port is isolated. Administrative Port Speed The speed requested by the user. Operational Port Speed The speed actually being used by the port.
TABLE 6-2 Port Information Data Window Entries (Continued) Entry Description Credits to Donate The number of credits available to be donated by the selected port. Donor Group The donor group of the selected port. Valid Donor Groups The number of separate groups within which extended credits may be donated and assigned. Media Group Media Type The transceiver fibre type, such as single mode, multi-mode, copper. Media Speed The maximum transceiver speed Media The transceiver type.
warning and high warning threshold values indicate the normal guaranteed range of operation. Exceeding either low warning or high warning should not be a cause for link failure. Exceeding either low alarm or high alarm would most likely cause a link failure. Note – The SANdoctor license key is required to enable this feature. Click the DDM button in Port Information data window to display the DDM entries. Refer to TABLE 6-2 for descriptions of DDM entries.
FIGURE 6-5 Detailed Media Display Dialog The Detailed Media Display dialog (FIGURE 6-5) is opened after you click the (i) button at the top of the Port column. The data displayed is a snapshot of the values of that particular media at the time the dialog is displayed. The dialog displays a more detailed look at the media inserted into a specific port. The values are readonly; they serve as a snapshot for that time and do not change.
Monitoring Port Status Use the faceplate display to perform the following port monitoring tasks: ■ Displaying Port Types ■ Displaying Port Operational States ■ Displaying Port Speeds ■ Displaying Transceiver Media Status To display port number and status information for a port, position the cursor over a port on the faceplate display. The status information changes depending on the View menu option selected.
Displaying Port Operational States To display the operational state on each port in the faceplate display, open the View menu and select View Port States. TABLE 6-4 lists the possible operational states and their meanings. The port operational state refers to actual port state and not the administrative state you may have assigned. TABLE 6-4 Symbol Port Operational States Description Online — port is active and ready to send data.
Displaying Transceiver Media Status To display transceiver media status, open the View menu and select View Port Media. TABLE 6-6 lists the port media states and their meanings. TABLE 6-6 Transceiver Media View Media Icon Description Optical SFP, online (green/black), logged-in, active, and ready to send data.
FIGURE 6-6 Port Properties Dialog The Port Properties dialog displays the switch name and the selected ports. Use the Port Properties dialog to configure port parameters. Note – Use the Select to Propagate Changes to Entire Column options to propagate the same change to all selected ports, select the check box before making a change to a port.
Changing Port Administrative States The port administrative state determines the operational state of a port. The port administrative state exists in two forms: the configured administrative state and the current administrative state. ■ Configured administrative state — the state that is saved in the switch configuration and is preserved across switch resets. Enterprise Fabric Suite 2007 always makes changes to the configured administrative state.
Note – 8-Gbit/sec SFPs do not support 1-Gbit/sec speed. You should not set the port speed to 1-Gbit/sec if an 8-Gbit/sec SFP is inserted, as the port will be downed if you do. To change the port speed, do the following: 1. Select one or more ports in the faceplate display. 2. Open the Port menu and select Port Properties. 3. Select the option that corresponds to the port speed you want. 4. Click the OK button to write the new port speed to the switch. TABLE 6-8 describes the port speeds.
4. Click the OK button to write the new port type to the switch. TABLE 6-9 Port Types State Description F_Port Fabric port — supports a single public device (N_Port). FL_Port Fabric loop port — self discovers a single device (N_Port) or a loop of up to 126 public devices (NL_Port). G_Port Generic port — self discovers as an F_Port or an E_Port. GL_Port Generic loop port — self discovers as an F_Port, FL_Port, or an E_Port. GL_Port is the default port type.
on the operational state of the port. The AL Fairness option controls how frequently the switch can arbitrate for access. Applies only to ports running in loop (FL) mode. To open the Advanced Port Properties dialog, select one or more ports, open the Port menu, and select Advanced Port Properties.
Longer distances can be spanned at full bandwidth on ports by extending credits to G_Ports, F_Ports, and E_Ports. Each port can donate 15 credits to a pool from which a recipient port can borrow. The recipient port also loses a credit in the process. For example, you can configure a recipient port to borrow 15 credits from one donor port for a total of 30 credits (15+15=30). This will support communication over the following approximate distances: ■ 50 Km at 1-Gbit/sec (30÷0.
FIGURE 6-8 Designate Donor Ports 4. Verify Requested Changes: Review the extended distance requests and the selected donor ports. Click the Finish button to apply the changes, and redistribute the credits. Note – As credits are used, the Logged-In LEDs on the corresponding donor ports illuminate continuously. In addition, donor port Activity LEDs will reflect the same traffic as the recipient port. Donor ports whose credits are being used are unavailable to devices that are connected to them.
Moving a Licensed Port The Move Port option opens the Move Port dialog which allows you to move a currently licensed port to another port of the same type that is currently unlicensed. To move a licensed port, do the following: 1. Open the Port menu and select Move Port to open the Move Port dialog (FIGURE 6-9). 2. Select the source port from the Source Port drop-down list. 3. Select the destination port from the Destination Port drop-down list.
■ Internal — a disruptive test that verifies port circuitry. The SerDes level test sends a test frame from the ASIC through the SerDes chip and back to the ASIC for the selected ports. The port passes the test if the frame that was sent by the ASIC matches the test frame that was received. This test requires that the port be in diagnostics mode. ■ External — a disruptive test that verifies port circuitry.
■ Select Other Port Diagnostics to open the Port Diagnostics dialog (this option will disrupt traffic). Select the port number and Internal or External test type in the drop-down list. 3. Enter a frame size (default is 256). 4. Enable or disable the Terminate Test Upon Error option. 5. Select a Loop Count option. The Loop Forever option runs the test until you click the Stop Test button. The Loop Count option runs the test a specific number of times. 6. Select a Test Pattern option.
FIGURE 6-11 Fabric View Graphs This section describes how to do the following: ■ Starting Performance View ■ Exiting Performance View ■ Saving and Opening Performance View Files ■ Changing the Default Performance View File Encryption Key ■ Setting Performance View Preferences ■ Setting the Polling Frequency ■ Displaying Graphs ■ Saving Graph Statistics to a File Starting Performance View To start Performance View from within Enterprise Fabric Suite 2007, open the topology display, select a
Exiting Performance View To exit a Performance View session, open the File menu and select Exit. The current fabric view is automatically saved to your Default Performance View File upon exit, if you have defined an encryption key. The key is encrypted and saved with your Default Performance View File. A Performance View file contains the set of fabrics that have been added and the graphs that have been opened during a Performance View session.
FIGURE 6-13 Load Default Performance File Dialog Saving and Opening Performance View Files In addition to the Default Performance View File, you can save and open your own Performance View files. A Performance View file contains the set of fabrics, graphs, and graphing options. To save a Performance View file, do the following: 1. Open the File menu and select Save View As to open the Save View dialog. 2. Enter a name for the Performance View file or click the Browse button to select an existing file.
3. Re-enter the same encryption key in the Re-enter Encryption Key to Confirm field. 4. Click the OK button to save the changes. Setting Performance View Preferences To set Performance View preferences, open the File menu and select Preferences to open the Preferences dialog (FIGURE 6-14). Set the following preferences and click the OK button to save the changes: ■ Change the location of the working directory in which to save files ■ Change the location of the browser used to view the online help.
Note – System performance decreases as more graphs are opened. To improve system performance, increase the polling frequency (higher number of seconds between polls) and/or tile the graphs (fastest refresh time). Refer to “Arranging Graphs in the Display” on page 197 for information on the arrangement and size of graphs in the display.. To change this polling frequency, do the following: 1. Open the Graph menu, and select Set Polling Frequency to open the Set Graph Polling Frequency dialog.
4. You can move graphs around individually by clicking and dragging, or you can arrange them as a group. Refer to “Arranging Graphs in the Display” on page 197 for more information. To remove a graph, click the graph’s X button. To remove all graphs, open the Window menu and select Close All. To remove a fabric and its graphs, select the fabric in the fabric tree, then select Remove Fabric from the Fabric menu. You can also right-click on a fabric and select Remove Fabric for the popup menu.
FIGURE 6-16 Default Graph Options Dialog To modify the graph options, do the following: 1. Choose the units for the graph: ■ Select the Show Bytes Data on Graph option to plot data in KBytes/second ■ Select the Show Frames Data on Graph option to plot data in frames/second 2. Choose what data type to plot. For example, if you selected Show Frames Data on Graph in step 1., you can plot one or all of the following.
clicking the corresponding color field or button. In each case, you can choose a color using the Swatches, Red-Green-Blue (RGB), or Hue-Saturation-Brightness (HSB) method. Note – Clicking the Reset button in the Swatches, HSB, and RGB tab pages of the Select Color dialogs will reset the colors in the Preview area to the last saved color scheme. At this point you are only selecting a new color scheme to be saved. ■ Swatches — click the Swatches tab. Select a swatch from the palette.
Printing Graphs To print a graph, select a graph, then open the File menu and select Print Graph Window. You can also right-click on a graph and select Print Graph Window from the popup menu. Saving Graph Statistics to a File Statistics for one or all graphs can be saved to a file that can be opened with a spreadsheet application. To save a graph statistics file, do the following: 1. Select a graph. 2.
Glossary Access Control List Zone Active Zone Set Active Firmware Activity LED Access Control List zoning divides the fabric for purposes of controlling discovery and inbound traffic. The zone set that defines the current zoning for the fabric. The firmware image on the switch that is in use. A port LED that indicates when frames are entering or leaving the port. Administrative State State that determines the operating state of the port or switch.
Buffer Credit Class 2 Service A service which multiplexes frames at frame boundaries to or from one or more N_Ports wit h acknowledgment provided. Class 3 Service A service which multiplexes frames at frame boundaries to or from one or more N_Ports without acknowledgment. Configured Zone Sets Domain ID Enterprise Fabric Suite 2007 The zone sets stored on a switch excluding the active zone set. User defined number that identifies the switch in the fabric. Switch management application.
Maintenance Button Maintenance Mode Management Information Base Management Workstation MIB Momentary button on the switch used to reset the switch or place the switch in maintenance mode. Maintenance mode sets the IP address to 10.0.0.1 and provides access to the switch for maintenance purposes. A set of guidelines and definitions for SNMP functions. PC workstation that manages the fabric through the fabric management switch.
World Wide Name (WWN) WWN World wide name XPAK A 10-Gbit/sec transceiver device that plugs into the Fibre Channel port. Zone Zone Set Zoning Database 204 A unique 64-bit address assigned to a device by the device manufacturer. A set of ports or devices grouped together to control the exchange of information. A set of zones grouped together. The active zone set defines the zoning for a fabric. The set of zone sets, zones, and aliases stored on a switch.
Index A Active Security data window, 83 active zone set, 56 Active Zoneset data window, 58 administrative state configured, 125, 183 current, 125, 183 port, 183 switch, 125 alarm configuration, 116 Alerts Panel, 27 alias add members, 75 create, 75 description, 56 remove, 76 archive configuration, 130 authentication device, 95 trap, 150 user, 95 auto save default fabric view file, 10 graphing options, 195 zoning configuration, 66 B BootP boot method, 140 broadcast, 126 browser, 2 browser location, 9, 195
Port Information, 173 Port Statistics, 169 Switch, 109 database fabric, 33 zoning, 61 date, 119 Decode error, 117 default configuration, 135 visibility, 69 zoning, 67 default fabric view file auto save, 10 Enterprise Fabric Suite 2007, 10 device authentication, 95 nickname, 50 scan, 185 security, 85 Devices data window, 40 disk space, 2 distance, 186 domain ID description, 124 lock, 124 donor port, 179, 185 Dynamic Host Configuration Protocol, 140, 142 E E_D_TOV, 128 E_Port isolation, 76, 124 self-discover
FL_Port, 179, 185 G gateway address, 140 generic loop port, 185 port, 179, 185 global graph type, 199 graph print, 200 rescale, 199 statistics, 200 type, 199 graphic window, 16 group add member, 92 create, 89 edit member attributes, 93 remove, 93 remove member, 93 rename, 93 GUI management service, 129 H hard reset, 120 help, 11 hot reset, 120 I I/O Stream Guard, 185 in-band management description, 126 enable, 53 Initial Start Dialog, 10 internal test, 190 internet browser, 2 IP address, 140 ISL monitori
user account, 107 performance graphs, 196 Performance View arrange graphs, 197 display graphs, 196 exit, 193 preferences, 195 start, 192 performance view file default, 193 encryption key, 194 open, 194 save, 194 popup menu, 21 port administrative state, 183 buffer credits, 186 configuration, 181 displaying information, 169 mode, 179 operational state, 180 performance, 191 reset, 188 selecting, 29 SFP, 183 speed, 180 status, 28 symbolic name, 182 test, 189 type, 184 view, 10, 28 XPAK, 183 Port Information da
SFP level test, 190 Simple Network Management Protocol configuration, 150 enable, 53, 150 proxy, 150 service, 130 trap configuration, 150 Stack Links data window, 39 Stacks, 121 static boot method, 140, 141, 142 status icon color, 15 subnet mask address, 140 support file, 154 switch add, 36 administrative state, 125 advanced properties, 127 configuration, 122 delete, 36 displaying information, 108 hard reset, 120 hot reset, 120 icons, 41 location, 150 management service, 129 properties, 123 replace, 37 rese
add member port, 72 copy, 72 definition, 55 discard inactive, 67 remove, 74 remove all, 74 remove member port, 73 rename, 70, 73 zone merge description, 76 failure, 76 failure recovery, 77 zone set activate, 69 active, 56 create, 68 deactivate, 69 definition, 56 discard inactive, 67 management, 68 orphan, 56 remove, 70 rename, 70, 73 tree, 63 zoning configuration, 65 database, 57, 61 default, 67 remove all, 68 wizard, 61 210 Enterprise Fabric Suite 2007 User Guide • September 2008
