Authorization Scenario - Cisco DS-C9216I-K9 Configuration Manual

Chapter 20 Configuring Port Security
Table 20-1
Configured or not
configured
Configured to login to
any switch port
Not configured

Authorization Scenario

Assuming that the port security feature is activated and the following conditions are specified in the
active database:
•
•
•
•
•
•
•
•
Table 20-2
Table 20-2
Scenario
1
2
3
4
5
6
7
8
9
10
OL-7753-01
Auto-learn Device Authorization (continued)
A switch port that
allows any device
Any port on the switch
A port configured with
some other device
A pWWN (P1) is allowed access through interface fc1/1 (F1)
A pWWN (P2) is allowed access through interface fc1/1 (F1)
A nWWN (N1) is allowed access through interface fc1/2 (F2)
Any WWN is allowed access through interface fc1/3 (F3)
A nWWN (N3) is allowed access through any interface
A pWWN (P3) is allowed access through interface fc1/4 (F4)
A sWWN (S1) is allowed access through interface fc1/10-13 (F10 to F13)
A pWWN (P10) is allowed access through interface fc1/11 (F11)
summarizes the port security authorization results for this active database.
Authorization Results for Scenario
Device
Connection
Request
P1, N2, F1
P2, N2, F1
P3, N2, F1
P1, N3, F1
P1, N1, F3
P1, N4, F5
P5, N1, F5
P3, N3, F4
S1, F10
S2, F11
Permitted
Permitted
Denied
Authorization Condition
Permitted 1
Permitted 1
Denied 2
Permitted 6
Permitted 5
Denied 2
Denied 2
Permitted 1
Permitted 1
Denied 7
Cisco MDS 9000 Fabric Manager Switch Configuration Guide
About Auto-Learn
5
6
7
Reason
No conflict
No conflict
F1 is bound to
P1/P2
Wildcard match
for N3
Wildcard match
for F3
P1 is bound to F1
N1 is only
allowed on F2
No conflict
No conflict
P10 is bound to
F11
20-5