Port Security Manual Configuration; Wwn Identification Guidelines; Adding Authorized Port Pairs - Cisco AP775A - Nexus Converged Network Switch 5010 Configuration Manual

Port Security Manual Configuration

Port Security Manual Configuration
To configure port security on a Cisco Nexus 5000 Series switch, perform this task:
Procedure
Step 1 Identify the WWN of the ports that need to be secured.
Step 2 Secure the fWWN to an authorized nWWN or pWWN.
Step 3
Activate the port security database.
Step 4 Verify your configuration.

WWN Identification Guidelines

If you decide to manually configure port security, note the following guidelines:
• Identify switch ports by the interface or by the fWWN.
• Identify devices by the pWWN or by the nWWN.
• If an N port is allowed to log in to SAN switch port F, then that N port can only log in through the
• If an N port's nWWN is bound to an F port WWN, then all pWWNs in the N port are implicitly paired
• TE port checking is done on each VSAN in the allowed VSAN list of the VSAN trunk port.
• All port channel xE ports must be configured with the same set of WWNs in the same SAN port channel.
• E port security is implemented in the port VSAN of the E port. In this case, the sWWN is used to secure
• Once activated, the configuration database can be modified without any effect on the active database.
• By saving the running configuration, you save the configuration database and activated entries in the

Adding Authorized Port Pairs

After identifying the WWN pairs that need to be bound, add those pairs to the port security database.
Tip Remote switch binding can be specified at the local switch. To specify the remote interfaces, you can use
either the fWWN or sWWN-interface combination.
To add authorized port pairs for port security, perform this task:
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
644
specified F port.
with the F port.
authorization checks.
active database. Learned entries in the active database are not saved.
Configuring Port Security
OL-16597-01