Cisco MDS 9000 Series Configuration Manual page 251

Configuring Port Security
Table 19: Authorized Auto-learning Device Requests
Condition
1
2
3
4
5
6
7
Authorization Scenarios
Assume that the port security feature is activated and the following conditions are specified in the active
database:
• A pWWN (P1) is allowed access through interface fc1/1 (F1).
• A pWWN (P2) is allowed access through interface fc1/1 (F1).
• A nWWN (N1) is allowed access through interface fc1/2 (F2).
• Any WWN is allowed access through interface fc1/3 (F3).
• A nWWN (N3) is allowed access through any interface.
• A pWWN (P3) is allowed access through interface fc1/4 (F4).
• A sWWN (S1) is allowed access through interface fc1/10-13 (F10 to F13).
• A pWWN (P10) is allowed access through interface fc1/11 (F11).
The following table summarizes the port security authorization results for this active database. The conditions
listed refer to the conditions mentioned in Authorized Auto-learning Device Requests table.
Table 20: Authorization Results for Scenario
Device Connection Request
P1, N2, F1
P2, N2, F1
P3, N2, F1
P1, N3, F1
Device (pWWN, nWWN,
sWWN)
Configured with one or more
switch ports
Not configured
Configured or not configured
Configured to log in to any
switch port
Not configured
Authorization
Permitted
Permitted
Denied
Permitted
Cisco MDS 9000 Series Security Configuration Guide, Release 8.x
Requests Connection to
A configured switch port
Any other switch port
A switch port that is not configured
A switch port that allows any
device
Any port on the switch
A port configured with some other
device
Condition Reason
1 No conflict.
1 No conflict.
2 F1 is bound to P1/P2.
6 Wildcard match for N3.
Authorization Scenarios
Authorization
Permitted
Denied
Permitted if auto-learning
enabled
Denied ifauto-learning
disabled
Permitted
Permitted
Denied
233