Configuring Port Security With Auto-Learning Without Cfs; Configuring Port Security With Manual Database Configuration - Cisco Nexus 6000 Series Configuration Manual

Configuring Port Security
Related Topics
Activating Port Security, on page 153
Committing the Changes, on page 162
Copying the Port Security Database, on page 168
Disabling Auto-Learning, on page 157
Enabling Port Security, on page 153
Enabling Port Security Distribution, on page 161

Configuring Port Security with Auto-Learning without CFS

You can configure port security using auto-learning without Cisco Fabric Services (CFS).
Procedure
Step 1
Enable port security.
Step 2 Activate port security on each VSAN, which turns on auto-learning by default.
Step 3 Wait until all switches and all hosts are automatically learned.
Step 4 Disable auto-learning on each VSAN.
Step 5
Copy the active database to the configured database on each VSAN.
Step 6 Copy the running configuration to the startup configuration, which saves the port security configuration
database to the startup configuration.
Step 7
Repeat the above steps for all switches in the fabric.
Related Topics
Activating Port Security, on page 153
Copying the Port Security Database, on page 168
Disabling Auto-Learning, on page 157
Enabling Port Security, on page 153

Configuring Port Security with Manual Database Configuration

You can configure port security and manually configure the port security database.
Procedure
Step 1
Enable port security.
Step 2 Manually configure all port security entries into the configured database on each VSAN.
Step 3 Activate port security on each VSAN. This action turns on auto-learning by default.
Step 4 Disable auto-learning on each VSAN.
Cisco Nexus 6000 Series NX-OS SAN Switching Configuration Guide, Release 6.x
152
Configuring Port Security
OL-27932-01