Zone Enforcement - Cisco Nexus 6000 Series Configuration Manual

Hide thumbs Also See for Nexus 6000 Series:

Installation manual (86 pages)

Reference manual (12 pages)

Configuration manual (232 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

page of 216

/ 216
Contents
Table of Contents
Bookmarks

Table of Contents

Configuring and Managing Zones

Step 2

Step 3

Step 4

Step 5

Tip

You do not have to copy the running configuration to the startup configuration to store the active zone

set. However, you need to copy the running configuration to the startup configuration to explicitly store

full zone sets.

Zone Enforcement

Zoning can be enforced in two ways: soft and hard. Each end device (N port) discovers other devices in the

fabric by querying the name server. When a device logs in to the name server, the name server returns the list

of other devices that can be accessed by the querying device. If an N port does not know about the FC IDs of

other devices outside its zone, it cannot access those devices.

In soft zoning, zoning restrictions are applied only during interaction between the name server and the end

device. If an end device somehow knows the FC ID of a device outside its zone, it can access that device.

Hard zoning is enforced by the hardware on each frame sent by an N port. As frames enter the switch,

source-destination IDs are compared with permitted combinations to allow the frame at wire speed. Hard

zoning is applied to all forms of zoning.

Note

Hard zoning enforces zoning restrictions on every frame, and prevents unauthorized access.

Cisco SAN switches support both hard and soft zoning.

OL-27932-01

Command or Action

zone set name zoneset-name vsan

vsan-id

Example:

switch(config)# zone set name new

vsan 23

member name

Example:

switch(config-zoneset)# member new

zone name zone-name

Example:

switch(config-zoneset)# zone name

trial

member fcid fcid

Example:

switch(config-zoneset-zone)# member

fcid 0x222222

Cisco Nexus 6000 Series NX-OS SAN Switching Configuration Guide, Release 6.x

Purpose

Configures a zone set with the configured

zoneset-name.

To activate a zone set, you must first create the

Tip

zone and a zone set.

Adds a zone as a member of the previously specified

zone set.

If the specified zone name was not previously

Tip

configured, this command will return a "zone

not present" error message:

Adds a zone to the specified zone set.

Tip

Execute this step only if you need to create a

zone from a zone set prompt.

Adds a new member to the new zone.

Execute this step only if you need to add a

Tip

member to a zone from a zone set prompt.

Zone Sets

Table of Contents

Zone Enforcement - Cisco Nexus 6000 Series Configuration Manual

Zone Enforcement

Related Manuals for Cisco Nexus 6000 Series

Related Content for Cisco Nexus 6000 Series

Table of Contents