Download Print this page

HP Cisco MDS 9216 - Fabric Switch Configuration Manual

Cisco mds 9000 family fabric manager configuration guide, release 3.x (ol-8222-10, april 2008)

Hide thumbs Also See for Cisco MDS 9216 - Fabric Switch:

Update manual (9 pages)

,

Configuration manual (1444 pages)

Table Of Contents

Table of Contents

Advertisement

Quick Links

Download this manual

S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m

Cisco MDS 9000 Family Fabric Manager

Configuration Guide, Release 3.x

Cisco MDS SAN-OS Release 3.0(3) Through 3.3(1a)

Cisco MDS 9000 FabricWare Release 2.x

April 2008

Americas Headquarters

Cisco Systems, Inc.

170 West Tasman Drive

San Jose, CA 95134-1706

USA

http://www.cisco.com

Tel: 408 526-4000

800 553-NETS (6387)

Fax: 408 527-0883

Text Part Number: OL-8222-10

Table of Contents

Advertisement

Table of Contents

Troubleshooting

Need help?

Need help?

Do you have a question about the Cisco MDS 9216 - Fabric Switch and is the answer not in the manual?

Questions and answers

Summary of Contents for HP Cisco MDS 9216 - Fabric Switch

Page 1 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family Fabric Manager Configuration Guide, Release 3.x Cisco MDS SAN-OS Release 3.0(3) Through 3.3(1a)
Page 2 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE.
Page 3: Table Of Contents
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C O N T E N T S New and Changed Information liii...
Page 4 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Preparing to Configure the Switch Default Login Setup Options...
Page 5 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Upgrading the Management Software 2-36 Upgrading Fabric Manager Server and Fabric Manager Standalone Version Using the Fabric Manager...
Page 6 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Toolbar Logical Domains Pane Filtering...
Page 7 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Installing Fabric Manager Web Server Using Fabric Manager Web Server with SSL Launching Fabric Manager Web Server...
Page 8 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Viewing Trap and Syslog Registration Information 7-38 Configuring Forwarding of Notifications for Events...
Page 9 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Licensing Model 10-2 Licensing High Availability...
Page 10 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring NTP 12-6 Edit an NTP Server or Peer Configuration...
Page 11 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Managing CFS Regions Using Fabric Manager 13-13 Creating CFS Regions...
Page 12 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Non-Disruptive Upgrades on Fabric and Modular Switches 15-12 Preparing for a Non-Disruptive Upgrade on Fabric and Modular Switches...
Page 13 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Managing System Hardware 18-1 C H A P T E R...
Page 14 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m 32-Port Switching Module Configuration Guidelines 20-2 About Interface Modes...
Page 15 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Buffer Credits 20-20 About Buffer-to-Buffer Credits...
Page 16 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Out-of-Service Interfaces 22-7 Buffer Credit Allocation...
Page 17 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m PortChannel Examples 23-2 32-Port Switching Module Configuration Guidelines...
Page 18 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring Domain Parameters 25-1 C H A P T E R...
Page 19 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Fabric Configuration P A R T Configuring and Managing VSANs...
Page 20 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About DPVM Databases 28-3 Configuring DPVM Config and Pending Databases...
Page 21 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring IVR NAT and IVR Auto Topology 29-12 About AFIDs...
Page 22 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Zoning Example 30-2 Zone Implementation...
Page 23 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About LUN Zoning 30-36 Configuring a LUN-Based Zone...
Page 24 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m FSPF Examples 32-2 Fault Tolerant Fabric...
Page 25 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Dense Wavelength Division Multiplexing 33-1 C H A P T E R...
Page 26 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m MDS-Specific FICON Advantages 36-3 Fabric Optimization with VSANs...
Page 27 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Assigning a Port Address Name 36-27 About RLIR...
Page 28 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Switch Interoperability 37-8 About Interop Mode...
Page 29 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About SSH 39-15 About the SSH Server Key Pair...
Page 30 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m SNMP Security Options 41-2 Switch AAA...
Page 31 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Users Specifying a TACACS+ Server at Login 41-18 Allowing Users to Specify a TACACS+ Server at Login...
Page 32 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Example IP-ACL Configuration 42-11 Configuring Certificate Authorities and Digital Certificates...
Page 33 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Importingthe CRL 43-36 Maximum Limits...
Page 34 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m SA Establishment Between Peers 44-28 Crypto Map Configuration Guidelines...
Page 35 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Port Security Enforcement 46-2 About Auto-Learning...
Page 36 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Port Security Database Deletion 46-24 Port Security Database Cleanup...
Page 37 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Creating FCIP Profiles 48-16 Creating FCIP Links...
Page 38 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enabling iSCSI 50-4 Creating iSCSI Interfaces...
Page 39 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring and Activating Zones for iSLB Initiators and Initiator Targets 50-42 Configuring iSLB Session Authentication...
Page 40 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m iSNS Client Registration and Deregistration 50-72 Target Discovery...
Page 41 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring IP Storage 52-1 C H A P T E R...
Page 42 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Gigabit Ethernet IPv4-ACL Guidelines 53-6 Default Settings...
Page 43 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Disabling Intelligent Storage Services 55-5 SCSI Flow Statistics...
Page 44 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Topology Mapping 59-1 Using the Topology Map...
Page 45 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enabling RMON Alarms for Physical Components 61-6 Managing RMON Events...
Page 46 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m System Message Logging Servers 63-7 Verifying Syslog Servers from Fabric Manager Web Server...
Page 47 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring Fabric Configuration Servers 65-1 C H A P T E R...
Page 48 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Configuring Linked Ports 67-3 Operationally Binding a Tracked Port...
Page 49 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Displaying Captured Frames 68-20 Defining Display Filters...
Page 50 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m What do I do if fabric changes are not propagated onto the map (for example, links don't disappear)? 69-8...
Page 51 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m How do I fix a "corrupted jar file"...
Page 52 Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family Fabric Manager Configuration Guide OL-8007-10, Cisco MDS SAN-OS Release 3.x...
Page 53: New And Changed Information
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m New and Changed Information This document provides release-specific information for each new and changed feature in Cisco Fabric Manager and Cisco MDS SAN-OS Release 3.x software.
Page 54 New and Changed Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 1 New and Changed Features for Release 3.x Changed...
Page 55 New and Changed Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 1 New and Changed Features for Release 3.x (continued) Changed...
Page 56 New and Changed Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 1 New and Changed Features for Release 3.x (continued) Changed...
Page 57 New and Changed Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 1 New and Changed Features for Release 3.x (continued) Changed...
Page 58 New and Changed Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 1 New and Changed Features for Release 3.x (continued) Changed...
Page 59 New and Changed Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 1 New and Changed Features for Release 3.x (continued) Changed...
Page 60 New and Changed Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 1 New and Changed Features for Release 3.x (continued) Changed...
Page 61 New and Changed Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 1 New and Changed Features for Release 3.x (continued) Changed...
Page 62 New and Changed Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 1 New and Changed Features for Release 3.x (continued) Changed...
Page 63 New and Changed Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 1 New and Changed Features for Release 3.x (continued) Changed...
Page 64 New and Changed Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family Fabric Manager Configuration Guide lxiv OL-8007-10, Cisco MDS SAN-OS Release 3.x...
Page 65 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Preface This preface describes the audience, organization, and conventions of the Cisco MDS 9000 Family Configuration Guides.
Page 66 Preface Organization S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Chapter Title Description...
Page 67 Preface Organization S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Chapter Title Description...
Page 68 Preface Organization S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Chapter Title Description...
Page 69 Preface Organization S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Chapter Title Description...
Page 70: Document Conventions
Preface Document Conventions S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Chapter Title Description...
Page 71 Preface Document Conventions S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Screen examples use these conventions: Terminal sessions and information the switch displays are in screen font.
Page 72: Related Documentation
Preface Related Documentation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Related Documentation The documentation set for the Cisco MDS 9000 Family includes the following documents.
Page 73: Cisco Fabric Manager
Preface Related Documentation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco Fabric Manager •...
Page 74: Obtaining Documentation And Submitting A Service Request
Preface Related Documentation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Obtaining Documentation and Submitting a Service Request For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What’s New in Cisco Product Documentation, which also lists all new and...
Page 75: Documentation Feedback
Preface Related Documentation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Documentation Feedback You can rate and provide feedback about Cisco technical documents by completing the online feedback form that appears with the technical documents on Cisco.com.
Page 76: Obtaining Technical Assistance
Preface Related Documentation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m We encourage you to use Pretty Good Privacy (PGP) or a compatible product (for example, GnuPG) to encrypt any sensitive information that you send to Cisco.
Page 77: Submitting A Service Request
Preface Related Documentation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Submitting a Service Request Using the online TAC Service Request Tool is the fastest way to open S3 and S4 service requests.
Page 78: Obtaining Additional Publications And Information
Preface Related Documentation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Obtaining Additional Publications and Information Information about Cisco products, technologies, and network solutions is available from various online and printed sources.
Page 79 Preface Related Documentation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m World-class networking training is available from Cisco.
Page 80 Preface Related Documentation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide lxxx OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 81: Getting Started
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m A R T Getting Started...
Page 82 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m...
Page 83: Hardware Overview
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Product Overview The Cisco MDS 9000 Family of multilayer directors and fabric switches offers intelligent...
Page 84: Chapter 1 Product Overview
Chapter 1 Product Overview Hardware Overview S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco Fabric Switch for HP c-Class BladeSystem –...
Page 85: Cisco Mds 9200 Series Fabric Switches
Chapter 1 Product Overview Hardware Overview S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Refer to the Cisco MDS 9500 Series Hardware Installation Guide.
Page 86: Cisco Mds 9100 Series Fixed Configuration Fabric Switches
Chapter 1 Product Overview Hardware Overview S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m 32-port Storage Services Module •...
Page 87: Cisco San-Os Software Configuration
Chapter 1 Product Overview Cisco SAN-OS Software Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m These fixed configuration switches are packaged in 1 RU enclosures and provide 1-Gbps, 2-Gbps, 4-Gbps, or 10 Gbps autosensing Fibre Channel ports.
Page 88: Cisco Mds 9000 Fabric Manager
Chapter 1 Product Overview Cisco SAN-OS Software Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m With the CLI, you can type commands at the switch prompt, and the commands are executed when you press the Enter key.
Page 89: Basic Configuration
Chapter 1 Product Overview Cisco SAN-OS Software Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Basic Configuration These sections contain the minimum information you need to get your switch up and running.
Page 90 Chapter 1 Product Overview Cisco SAN-OS Software Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m SAN device virtualization (Chapter 27, “SAN Device Virtualization”)
Page 91 Chapter 1 Product Overview Cisco SAN-OS Software Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m RMON (Chapter 61, “Configuring RMON”)
Page 92 Chapter 1 Product Overview Cisco SAN-OS Software Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 1-10 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 93: Starting A Switch In The Cisco Mds 9000 Family
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Installation of Cisco MDS SAN-OS and Fabric Manager...
Page 94: C H A P T E R 2 Installation Of Cisco Mds San-Os And Fabric Manager
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Initial Setup Routine S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The console port is physically connected to a computer terminal (or terminal server).
Page 95: Default Login
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Initial Setup Routine S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Destination prefix, destination prefix subnet mask, and next hop IP address, if you want to –...
Page 96: Assigning Setup Information
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Initial Setup Routine S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 2-1 Management Access to Switches Router...
Page 97 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Initial Setup Routine S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If a password is trivial (short, easy to decipher), your password configuration is rejected.
Page 98 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Initial Setup Routine S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m SNMP community string: snmp_community Enter a name for the switch.
Page 99 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Initial Setup Routine S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enter yes (yes is the default) to configure the default network (recommended).
Page 100: Configuring In-Band Management
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Initial Setup Routine S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Permits traffic flow to all members of the default zone.
Page 101 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Initial Setup Routine S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You can configure both in-band and out-of-band configuration together by entering Yes in both Step 9c Note...
Page 102 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Initial Setup Routine S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enter no (yes is the default) at the configuration prompt to configure out-of-band management.
Page 103 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Initial Setup Routine S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configure NTP server? (yes/no) [n]: no Enter shut (shut is the default) to configure the default switch port interface to the shut state.
Page 104: Using The Setup Command
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Accessing the Switch S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Caution If you do not save the configuration at this point, none of your changes are updated the next time the switch is rebooted.
Page 105: Where Do You Go Next?
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Where Do You Go Next? S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 2-2 Switch Access Options Router...
Page 106: Fabric Manager Server
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager About Cisco Fabric Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Fabric Manager Server The Fabric Manager Server component must be started before running Fabric Manager.
Page 107: Device Manager
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Cisco MDS 9000 Switch Management S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select the Connections tab and click LAN Settings.
Page 108: Storage Management Solutions Architecture
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Cisco MDS 9000 Switch Management S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 2-1 Supported Management Protocols (continued) Management Protocol...
Page 109: In-Band Management And Out-Of-Band Management
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Cisco MDS 9000 Switch Management S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Device management provides tools to configure and manage a device within a system or a fabric.
Page 110: Installing The Management Software
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Installing the Management Software To install the software for the first time, or if you want to update or reinstall the software, access the supervisor module with a web browser.
Page 111: Supported Software
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Supported Software Note For the latest information on supported softare, refer to the Cisco MDS 9000 Family Release Notes for...
Page 112: Minimum Hardware Requirements
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Minimum Hardware Requirements For a PC running Fabric Manager Server on large fabrics (1000 or more end devices), we recommend you use a Dual Core/Dual CPU high-speed system with 2 GB of RAM and 10 GB of free disk space.
Page 113 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m We recommend the Oracle Database 10g Express option for all users who are running Performance Note Manager on large fabrics (1000 or more end devices).
Page 114: Installing Postgresql
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Installing PostgreSQL If you choose to install PostgreSQL, you must disable any security software you are running, as Note...
Page 115: Increasing Udp Buffer Size
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The installer does not permit any password less than six characters.
Page 116: Backup
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m http://www.postgresql.org/docs/current/interactive/app-pgdump.html Backup dump file represents a snapshot of database at the time of backup.
Page 117 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To download the software from Cisco.com, go to the following website: http://cisco.com/cgi-bin/tablebuild.pl/mds-fm To install Fabric Manager on Solaris, follow these steps:...
Page 118 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 2-3 Welcome to the Management Software Setup Wizard Click Next to begin the installation.
Page 119 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Fabric Manager Standalone is a single application containing Fabric Manager Client and a local Note version of Fabric Manager Server bundled together.
Page 120 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 2-6 User Options Dialog Box Enter a user name and password and click Next.
Page 121 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 2-8 Configuration Options Dialog Box for Fabric Manager Standalone Check the FC Alias and SNMPv3 check boxes as desired and click Install if you are installing Fabric...
Page 122 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If you check the Use HTTPS Web Server check box, the Web Server Port field is grayed out Note and the default port is 443.
Page 123 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 2-11 Install Complete Note...
Page 124: Creating Startup Files In Solaris
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Creating Startup Files in Solaris The Postgre SQL and Fabric Manager does not automatically start-up in Solaris after the installation.
Page 125 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 2-13 Welcome to the Management Software Setup Wizard Window Click Next to begin the Installation.
Page 126: Creating Fm/Dm Shortcut Manually
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 2-15 Install Complete Click Finish to close the Cisco Device Manager Installer window.
Page 127 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Installing the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 2-16 Java Control Panel Dialog Box Step 2...
Page 128: Upgrading The Management Software
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Upgrading the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 2-18 Shortcut Menu Upgrading the Management Software...
Page 129: Upgrading Fabric Manager Server And Fabric Manager Standalone Version Using The Fabric Manager Update Installer
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Upgrading Fabric Manager Server and Fabric Manager Standalone Version Using the Fabric Manager Update S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Upgrading Fabric Manager Server and Fabric Manager Standalone Version Using the Fabric Manager Update Installer As of Release 3.3.1a, the Cisco MDS 9000 Fabric Manager Update Installer can be used to:...
Page 130: Integrating Cisco Fabric Manager With Other Management Tools
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Integrating Cisco Fabric Manager with Other Management Tools S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Integrating Cisco Fabric Manager with Other Management Tools You can use Fabric Manager, Device Manager, and Performance Manager with other management tools.
Page 131 Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Running Fabric Manager Behind a Firewall S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The following table lists all ports used by Fabric Manager applications: Communication Type...
Page 132: Uninstalling The Management Software
Chapter 2 Installation of Cisco MDS SAN-OS and Fabric Manager Uninstalling the Management Software S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m 8092 deploy/jms/oil2-service.
Page 133: Fabric Manager Server Overview
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Fabric Manager Server Fabric Manager Server is a platform for advanced MDS monitoring, troubleshooting, and configuration...
Page 134: Chapter 3 Fabric Manager Server
Chapter 3 Fabric Manager Server Installing and Configuring Fabric Manager Server S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The unlicensed Cisco Fabric Manager can only monitor and configure one fabric at a time.
Page 135: Unlicensed Versus Licensed Fabric Manager Server
Chapter 3 Fabric Manager Server Managing a Fabric Manager Server Fabric S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Manager Server IP address text box, click Options to expand the list of configuration options.
Page 136: Selecting A Fabric To Manage Continuously
Chapter 3 Fabric Manager Server Managing a Fabric Manager Server Fabric S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Selecting a Fabric to Manage Continuously When you quit the Fabric Manager Client, you are prompted as to whether or not you would like to have Fabric Manager Server continuously manage that fabric.
Page 137: Fabric Manager Server Properties File
Chapter 3 Fabric Manager Server Fabric Manager Server Properties File S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Fabric Manager Server Properties File The Fabric Manager Server properties file (MDS 9000\server.properties) contains a list of properties that determine how the Fabric Manager Server will function.
Page 138: Modifying Fabric Manager Server
Chapter 3 Fabric Manager Server Modifying Fabric Manager Server S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m server.callhome.smtphost—Specifies the SMTP host address for outbound e-mail.
Page 139: Changing The Fabric Manager Server User Name And Password
Chapter 3 Fabric Manager Server Modifying Fabric Manager Server S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 3-2 FM User Dialog Box Set the user name and password for the new user and then click Apply.
Page 140: Using Device Aliases Or Fc Aliases
Chapter 3 Fabric Manager Server Modifying Fabric Manager Server S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To change the polling period or full fabric rediscovery setting used by Fabric Manager Server using Fabric Manager, follow these steps: Choose Server >...
Page 141: Fabric Manager Authentication Overview
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Authentication in Fabric Manager Fabric Manager contains interdependent software components that communicate with the switches in...
Page 142: C H A P T E R 4 Authentication In Fabric Manager
Chapter 4 Authentication in Fabric Manager Fabric Manager Authentication Overview S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 4-1 Fabric Manager Authentication Example AAA server...
Page 143: Best Practices For Discovering A Fabric
Chapter 4 Authentication in Fabric Manager Best Practices for Discovering a Fabric S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Best Practices for Discovering a Fabric Fabric Manager Server monitors multiple physical fabrics under the same user interface.
Page 144: Performance Manager Authentication
Chapter 4 Authentication in Fabric Manager Performance Manager Authentication S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Performance Manager Authentication Performance Manager uses the user name and password information stored in the Fabric Manager Server database.
Page 145: Fabric Manager Web Server Authentication
Chapter 4 Authentication in Fabric Manager Fabric Manager Web Server Authentication S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Choose Performance >...
Page 146: Fabric Manager Web Server Authentication
Chapter 4 Authentication in Fabric Manager Fabric Manager Web Server Authentication S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family Fabric Manager Configuration Guide OL-8007-10, Cisco MDS SAN-OS Release 3.x...
Page 147: About Fabric Manager Client
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Fabric Manager Client Cisco Fabric Manager Client is a java-based GUI application that provides access to the Fabric Manager...
Page 148: Chapter 5 Fabric Manager Client
Chapter 5 Fabric Manager Client Launching Fabric Manager Client in Cisco SAN-OS Release 3.2(1) and Later S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Fabric Manager Advanced Mode Advanced mode is enabled by default and provides the full suite of Fabric Manager features, including security, IVR, iSCSI, and FICON.
Page 149 Chapter 5 Fabric Manager Client Launching Fabric Manager Client in Cisco SAN-OS Release 3.2(1) and Later S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enter your user name and password and click Login.
Page 150 Chapter 5 Fabric Manager Client Launching Fabric Manager Client in Cisco SAN-OS Release 3.2(1) and Later S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m When the software is installed and icons are created on your desktop, double-click the Fabric Manager Step 6 icon to launch Fabric Manager.
Page 151 Chapter 5 Fabric Manager Client Launching Fabric Manager Client in Cisco SAN-OS Release 3.2(1) and Later S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Choose the Auth-Privacy option according to the privacy protocol you have configured on your switch: Step 12 If you have not configured the switch with a privacy protocol, then choose Auth-Privacy option MD5...
Page 152: Fabric Manager Client Quick Tour
Chapter 5 Fabric Manager Client Fabric Manager Client Quick Tour S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Changes made using Fabric Manager are applied to the running configuration of the switches Note that you are managing.
Page 153: Menu Bar
Chapter 5 Fabric Manager Client Fabric Manager Client Quick Tour S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Status Bar (right side)—Shows the last entry displayed by the discovery process and the possible error message.
Page 154: Toolbar
Chapter 5 Fabric Manager Client Fabric Manager Client Quick Tour S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Toolbar The Fabric Manager main toolbar provides icons for accessing the most commonly used menu bar options as shown in...
Page 155: Logical Domains Pane
Chapter 5 Fabric Manager Client Fabric Manager Client Quick Tour S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 5-1 Fabric Manager Client Main Toolbar (continued) Icon...
Page 156: Filtering
Chapter 5 Fabric Manager Client Fabric Manager Client Quick Tour S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To change the fabric name using Fabric Manager, follow these steps: Step 1 Choose Server >...
Page 157 Chapter 5 Fabric Manager Client Fabric Manager Client Quick Tour S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 5-2 Information Pane Toolbar Icon...
Page 158: Detachable Tables
Chapter 5 Fabric Manager Client Fabric Manager Client Quick Tour S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Detachable Tables Detachable tables in Fabric Manager let you detach tables and move them to different areas on your desktop so that you can compare similar tables from different VSANs.
Page 159 Chapter 5 Fabric Manager Client Fabric Manager Client Quick Tour S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 5-3 Fabric Manager Graphics (continued) Icon or Graphic...
Page 160: Context Menus
Chapter 5 Fabric Manager Client Fabric Manager Client Quick Tour S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Collapse loops •...
Page 161: Purging Down Elements
Chapter 5 Fabric Manager Client Fabric Manager Client Quick Tour S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Purging Down Elements The Fabric pane allows you to refresh the map at any time by clicking the Refresh Map icon.
Page 162: Filtering By Groups
Chapter 5 Fabric Manager Client Fabric Manager Client Quick Tour S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The Fabric view tab for fabric 172.23.46.152.
Page 163 Chapter 5 Fabric Manager Client Fabric Manager Client Quick Tour S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Use the arrows to move additional switches or end ports from the Available column to the Selected Step 3 column.
Page 164: Status Bar
Chapter 5 Fabric Manager Client Setting Fabric Manager Preferences S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Status Bar The status bar at the bottom of the Fabric Manager window shows the last entry displayed by the discovery process, and the possible error message on the right side.
Page 165: Network Fabric Discovery
Chapter 5 Fabric Manager Client Network Fabric Discovery S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The default SNMP preferences for Fabric Manager are as follows: Retry request 1 time(s) after 5 sec timeout—You can set the retry value to 0-5, and the timeout value •...
Page 166: Modifying The Device Grouping
Chapter 5 Fabric Manager Client Modifying the Device Grouping S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m database and collected using the Fabric Configuration Server’s request/response mechanisms that are defined by the FC-GS-3/4 standard.
Page 167: Controlling Administrator Access With Users And Roles
Chapter 5 Fabric Manager Client Controlling Administrator Access with Users and Roles S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 5-11 Alias Enclosure Click the Apply Changes icon to save these changes.
Page 168: Fabric Manager Troubleshooting Tools
Chapter 5 Fabric Manager Client Fabric Manager Troubleshooting Tools S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m DPVM—Establishes dynamic port VSAN membership, enables autolearning, and activates the •...
Page 169: Device Manager Overview
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Device Manager This chapter contains descriptions of, and instructions for using, the Cisco MDS 9000 Device Manager.
Page 170: Chapter 6 Device Manager
Chapter 6 Device Manager Launching Device Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m View chassis, module, port status, and statistics.
Page 171 Chapter 6 Device Manager Using Device Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 6-1 Device Manager, Device Tab Menu bar...
Page 172: Toolbar Icons
Chapter 6 Device Manager Using Device Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Menu Bar The menu bar at the top of the Device Manager main window provides options for managing and troubleshooting a single switch.
Page 173: Dialog Boxes
Chapter 6 Device Manager Using Device Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 6-1 Device Manager Main Toolbar (continued) Icon...
Page 174: Legend
Chapter 6 Device Manager Using Device Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Legend The legend at the bottom right of the Device Manager indicates port status, as follows: Colors...
Page 175: Supervisor And Switching Modules
Chapter 6 Device Manager Using Device Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Supervisor and Switching Modules In the Device View, you can right-click an object and get information on it, or configure it.
Page 176: Setting Device Manager Preferences
Chapter 6 Device Manager Setting Device Manager Preferences S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Setting Device Manager Preferences To set your preferences for the behavior of the Device Manager application, choose Device >...
Page 177: Fabric Manager Web Server Overview
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Fabric Manager Web Server With Fabric Manager Web Server you can monitor Cisco MDS switch events, performance, and...
Page 178: Navigating Fabric Manager Web Server
Chapter 7 Fabric Manager Web Server Navigating Fabric Manager Web Server S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see Fabric Manager Web Server as shown in Figure 7-1.
Page 179: Chapter 7 Fabric Manager Web Server
Chapter 7 Fabric Manager Web Server Installing Fabric Manager Web Server S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table Filtering and Navigation You can filter the display of some tables to view subsets of the information.
Page 180 Chapter 7 Fabric Manager Web Server Installing Fabric Manager Web Server S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Optionally, enter the IP address or host name of the supervisor module running Cisco MDS SAN-OS in Step 1 the Location or Address field of your browser.
Page 181: Using Fabric Manager Web Server With Ssl
Chapter 7 Fabric Manager Web Server Installing Fabric Manager Web Server S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Using Fabric Manager Web Server with SSL Fabric Manager Web Server uses TCP port 80 by default.
Page 182 Chapter 7 Fabric Manager Web Server Installing Fabric Manager Web Server S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m For Verisign.com commercial certificates, go to: Step 6 http://www.verisign.com/support/install/intermediate.html...
Page 183: Launching Fabric Manager Web Server
Chapter 7 Fabric Manager Web Server Launching Fabric Manager Web Server S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m port="443"...
Page 184: Health
Chapter 7 Fabric Manager Web Server Health S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-2 Fabric Manager Web Server Login Dialog Box Enter your user name and password.
Page 185: Viewing Summary Information
Chapter 7 Fabric Manager Web Server Health S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Viewing Summary Information To view a summary of events and problems using Fabric Manager Web Server, follow these steps: Choose Health >...
Page 186: Viewing Syslog Information
Chapter 7 Fabric Manager Web Server Health S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Choose Health >...
Page 187: Viewing Analysis Reports
Chapter 7 Fabric Manager Web Server Health S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-5 Syslog Tab Step 2...
Page 188: Performance
Chapter 7 Fabric Manager Web Server Performance S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Fabric Configuration—The fabric configuration analysis compares multiple switches to a specific •...
Page 189: Viewing Performance Summary Information
Chapter 7 Fabric Manager Web Server Performance S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Flows—Shows a detailed list of host-to-storage traffic.
Page 190: Viewing Performance Information For End Devices
Chapter 7 Fabric Manager Web Server Performance S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click a pie chart (Hosts, Storage, or ISLs) to go to the appropriate performance table.
Page 191: Viewing Performance Information For Isls
Chapter 7 Fabric Manager Web Server Performance S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select the Host Enclosures type filter and then click a link in the Name column to display the •...
Page 192: Viewing Performance Information For Flows
Chapter 7 Fabric Manager Web Server Performance S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Viewing Performance Information for Flows To view host and storage traffic using Fabric Manager Web Server, follow these steps: Choose Performance >...
Page 193: Viewing Performance Information For Gige Ports
Chapter 7 Fabric Manager Web Server Performance S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Viewing Performance Information for GigE Ports To view GigE ports using Fabric Manager Web Server, follow these steps: Choose Performance >...
Page 194: Viewing Detailed Traffic Information
Chapter 7 Fabric Manager Web Server Performance S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-12 Others Tab Step 2...
Page 195: Viewing Predicted Future Performance
Chapter 7 Fabric Manager Web Server Performance S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-13 Traffic Analyzer Tab Step 2...
Page 196: Using Your Own Values
Chapter 7 Fabric Manager Web Server Performance S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Scope—entire SAN •...
Page 197: Viewing Switch Bandwidth
Chapter 7 Fabric Manager Web Server Performance S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enter the number of ISLs, hosts, storage devices, or flows for which you want to make the prediction.
Page 198: Inventory
Chapter 7 Fabric Manager Web Server Inventory S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Inventory The Inventory tab shows an inventory of the selected SAN, fabric, or switch.
Page 199: Viewing Detailed Information For Switches
Chapter 7 Fabric Manager Web Server Inventory S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select one of the fabrics to display VSAN inventory information for that fabric.
Page 200: Viewing License Information
Chapter 7 Fabric Manager Web Server Inventory S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Viewing License Information To view license information for switches using Fabric Manager Web Server, follow these steps: Choose Inventory >...
Page 201: Viewing Detailed Information For End Devices
Chapter 7 Fabric Manager Web Server Inventory S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-19 Modules Tab Step 2...
Page 202: Viewing Detailed Information For Isls
Chapter 7 Fabric Manager Web Server Inventory S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-20 End Devices Tab Step 2...
Page 203: Viewing Detailed Information For Zones
Chapter 7 Fabric Manager Web Server Inventory S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-21 ISLs Tab Step 2...
Page 204: Viewing Summary Inventory Information
Chapter 7 Fabric Manager Web Server Inventory S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-22 Zones Tab Step 2...
Page 205: Custom
Chapter 7 Fabric Manager Web Server Custom S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-23 Summary Tab Step 2...
Page 206 Chapter 7 Fabric Manager Web Server Custom S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m and schedule a report of your fabric based on this template immediately or at a later time.
Page 207: Viewing Custom Reports By Template
Chapter 7 Fabric Manager Web Server Custom S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Viewing Custom Reports by Template Reports you generate are saved by Fabric Manager Server and are viewable by choosing Custom >...
Page 208: Modifying A Custom Report Template
Chapter 7 Fabric Manager Web Server Custom S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-26 Generate Custom Report Tab Step 3...
Page 209: Viewing Scheduled Jobs By Report Template
Chapter 7 Fabric Manager Web Server Custom S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the current information that this report gathers.
Page 210: Admin
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-28 Scheduled Jobs Table Step 2...
Page 211: Recovering A Web Server Password
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Recovering a Web Server Password Fabric Manager Web Server user passwords are encrypted and stored locally on the workstation where you installed Web Server.
Page 212: Adding, Editing, And Removing Managed Fabrics
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-29 Fabric Manager Services Status Select the service(s) you want to start, restart, or stop.
Page 213 Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-30 List of Fabrics Managed by Fabric Manager Server Click Add.
Page 214: Viewing Trap And Syslog Registration Information
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Choose Admin >...
Page 215: Configuring Forwarding Of Notifications For Events
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-33 Registration Screen Step 4...
Page 216: Viewing And Disconnecting Clients
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-34 Add Notification Dialog Box Step 4...
Page 217: Configuring Fabric Manager Server Preferences
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-35 List of Clients Step 3...
Page 218 Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-36 Add Community Dialog Box Step 4...
Page 219: Configuring Aaa Information
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Check the check box next to the community you want to remove and click Remove.
Page 220: Adding And Removing Roles
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-39 Add User Dialog Box Step 4...
Page 221 Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-40 Local Roles Page Step 3...
Page 222: Creating Performance Collections
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To remove a role using Fabric Manager Web Server, follow these steps: Step 1 Choose Admin >...
Page 223: Configuring Other Statistics
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Add.
Page 224 Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 7-44 Others Page Step 3...
Page 225: Configuring Collection Thresholds
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring Collection Thresholds To configure collection thresholds using Fabric Manager Web Server, follow these steps: Choose Admin >...
Page 226: Configuring The Rrd Database
Chapter 7 Fabric Manager Web Server Admin S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To configure conditions for sending Warning notifications, check the Send Warning check box.
Page 227: Viewing Log Information
Chapter 7 Fabric Manager Web Server Download S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Apply to apply your changes, or click Defaults to reset the file sizes to the default values.
Page 228 Chapter 7 Fabric Manager Web Server Download S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family Fabric Manager Configuration Guide 7-52 OL-8007-10, Cisco MDS SAN-OS Release 3.x...
Page 229: Performance Manager Architecture
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Performance Manager The primary purpose of Fabric Manager is to manage the network.
Page 230: Chapter 8 Performance Manager
Chapter 8 Performance Manager Performance Manager Architecture S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Data Interpolation One of the unique features of Performance Manager is its ability to interpolate data when statistical polling results are missing or delayed.
Page 231: Flow Setup Wizards
Chapter 8 Performance Manager Flow Statistics Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 8-1 Baseline Threshold Example Two thresholds per throughput...
Page 232: About Flow Statistics
Chapter 8 Performance Manager Flow Statistics Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Flow Statistics, page 8-4 •...
Page 233 Chapter 8 Performance Manager Flow Statistics Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If you are managing your fabrics with Performance Manager, you need to set up an initial set of Note flows and collections on the fabric.
Page 234 Chapter 8 Performance Manager Flow Statistics Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 8-4 Review Traffic Flows Dialog Box Remove any flows you are not interested in.
Page 235: Understanding Span
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Cisco Traffic Analyzer Cisco Traffic Analyzer is a version of network top (ntop) software that is modified to support Fibre...
Page 236: Chapter 9 Cisco Traffic Analyzer
Chapter 9 Cisco Traffic Analyzer Using Cisco Traffic Analyzer with Performance Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Using Cisco Traffic Analyzer with Performance Manager Performance Manager works in conjunction with Cisco Traffic Analyzer to monitor and manage the traffic on your fabric.
Page 237: Understanding Cisco Traffic Analyzer
Chapter 9 Cisco Traffic Analyzer Installing Cisco Traffic Analyzer S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Understanding Cisco Traffic Analyzer Performance Manager collects Fibre Channel level performance statistics using SNMP to access counters on Cisco MDS 9000 Family switches.
Page 238 Chapter 9 Cisco Traffic Analyzer Installing Cisco Traffic Analyzer S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Interfaces >...
Page 239: Accessing Traffic Analyzer From Fabric Manager Web Server
Chapter 9 Cisco Traffic Analyzer Accessing Traffic Analyzer from Fabric Manager Web Server S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To modify the script that launches ntop (ntop.sh or ntop.bat), follow the instructions provided within the script file.
Page 240 Chapter 9 Cisco Traffic Analyzer Accessing Traffic Analyzer from Fabric Manager Web Server S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click a Traffic Analyzer to launch that Traffic Analyzer within Fabric Manager Web Server.
Page 241 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m A R T Cisco MDS SAN-OS Installation and Switch Management...
Page 242 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m...
Page 243: Licensing Terminology
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Obtaining and Installing Licenses Licenses are available in all switches in the Cisco MDS 9000 Family.
Page 244: C H A P T E R 10 Obtaining And Installing Licenses
Chapter 10 Obtaining and Installing Licenses Licensing Model S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Licensed application—A software feature that requires a license to be used.
Page 245 Chapter 10 Obtaining and Installing Licenses Licensing Model S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Chapter 11, “On-Demand Port Activation Licensing”...
Page 246 Chapter 10 Obtaining and Installing Licenses Licensing Model S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The Cisco MDS 9216i switch enables SAN extension features on the two fixed IP services ports only.
Page 247 Chapter 10 Obtaining and Installing Licenses Licensing Model S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 10-1 Feature-Based Licenses (continued) Feature License...
Page 248 Chapter 10 Obtaining and Installing Licenses Licensing Model S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 10-1 Feature-Based Licenses (continued) Feature License...
Page 249 Chapter 10 Obtaining and Installing Licenses Licensing Model S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 10-1 Feature-Based Licenses (continued) Feature License...
Page 250: Licensing High Availability
Chapter 10 Obtaining and Installing Licenses Licensing High Availability S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 10-1 Feature-Based Licenses (continued) Feature License...
Page 251: Obtaining A Factory-Installed License
Chapter 10 Obtaining and Installing Licenses Obtaining a Factory-Installed License S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Obtaining a Factory-Installed License You can obtain factory-installed licenses for a new switch.
Page 252: Installing The License Key File
Chapter 10 Obtaining and Installing Licenses Installing the License Key File S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select Physical >...
Page 253: Installing Licenses Using Fabric Manager License Wizard
Chapter 10 Obtaining and Installing Licenses Installing Licenses Using Fabric Manager License Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Installing Licenses Using Fabric Manager License Wizard To install licenses using the Fabric Manager License Wizard, follow these steps: Step 1...
Page 254: Installing Or Updating Licenses Using Device Manager
Chapter 10 Obtaining and Installing Licenses Installing or Updating Licenses Using Device Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select the switches for which you have PAKs or license key files.
Page 255: Identifying License Features In Use
Chapter 10 Obtaining and Installing Licenses Identifying License Features in Use S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Install if you are installing, or Update if you are updating.
Page 256: Uninstalling Licenses
Chapter 10 Obtaining and Installing Licenses Uninstalling Licenses S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Uninstalling Licenses You can only uninstall a permanent license that is not in use.
Page 257: Grace Period Alerts
Chapter 10 Obtaining and Installing Licenses Grace Period Alerts S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To update a license, follow these steps: Step 1 Obtain the updated license file using the procedure described in the...
Page 258: License Transfers Between Switches
Chapter 10 Obtaining and Installing Licenses License Transfers Between Switches S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m License Transfers Between Switches A license is specific to the switch for which it is issued and is not valid on any other switch.
Page 259: Viewing Licenses Using Fabric Manager Web Server
Chapter 10 Obtaining and Installing Licenses Fabric Manager Server Licensing S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Files tab to display the information about each of the License Key files installed on your Step 3 switch.
Page 260 Chapter 10 Obtaining and Installing Licenses Fabric Manager Server Licensing S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 10-18 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 261: About On-Demand Port Activation Licensing
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R On-Demand Port Activation Licensing This chapter describes how to use the on-demand port activation licensing feature on the Cisco MDS...
Page 262: Port-Naming Conventions
Chapter 11 On-Demand Port Activation Licensing About On-Demand Port Activation Licensing S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Port-Naming Conventions Table 11-1 describes the port-naming conventions for the four Cisco Fabric switches.
Page 263: C H A P T E R 11 On-Demand Port Activation Licensing
Chapter 11 On-Demand Port Activation Licensing About On-Demand Port Activation Licensing S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 11-3 Cisco Fabric Switch for HP c-Class BladeSystem Default Port Licenses (ext1 - ext4) EXT 1...
Page 264: Configuring Port Activation Licenses
Chapter 11 On-Demand Port Activation Licensing Configuring Port Activation Licenses S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 11-2 Port Activation License Status Definitions Port Activation License Status...
Page 265: Making A Port Eligible For A License
Chapter 11 On-Demand Port Activation Licensing Configuring Port Activation Licenses S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 11-5 Licenses Dialog Box Step 2...
Page 266: Acquiring A License For A Port
Chapter 11 On-Demand Port Activation Licensing Configuring Port Activation Licenses S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 11-7 FC Interfaces Dialog Box Step 3...
Page 267 Chapter 11 On-Demand Port Activation Licensing Configuring Port Activation Licenses S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Right-click the selected ports, select Configure, and click the License tab.
Page 268 Chapter 11 On-Demand Port Activation Licensing Configuring Port Activation Licenses S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 11-8 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 269: Assigning A Switch Name
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Initial Configuration Most of the initial switch configuration procedures can only be performed using the CLI.
Page 270: Chapter 12 Initial Configuration
Chapter 12 Initial Configuration Verifying the Module Status S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see a list of switches in the Information pane.
Page 271: Configuring Date, Time, And Time Zone
Chapter 12 Initial Configuration Configuring Date, Time, and Time Zone S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If the status is OK or active, you can continue with your configuration (see Chapter 19, “Managing Modules”).
Page 272: Ntp Configuration
Chapter 12 Initial Configuration NTP Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If you do not enter a time zone, GMT is used as the default.
Page 273: Ntp Configuration Guidelines
Chapter 12 Initial Configuration NTP Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If an active server fails, a configured peer helps in providing the NTP time.
Page 274: Configuring Ntp
Chapter 12 Initial Configuration NTP Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m NTP peer 10.10.10.2 –...
Page 275: Delete An Ntp Server Or Peer
Chapter 12 Initial Configuration NTP Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m In Fabric Manager, you see the System information pane.
Page 276: Ntp Cfs Distribution
Chapter 12 Initial Configuration NTP Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m NTP CFS Distribution You can enable NTP fabric distribution for all Cisco MDS switches in the fabric.
Page 277: Committing Ntp Configuration Changes
Chapter 12 Initial Configuration NTP Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m A warning displays if you do not enable CFS for all switches in the fabric for this feature.
Page 278: Database Merge Guidelines
Chapter 12 Initial Configuration Management Interface Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The changes are only available in the volatile directory and are subject to being discarded if the switch is restarted.
Page 279: Default Gateway Configuration
Chapter 12 Initial Configuration Default Gateway Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Default Gateway Configuration The supervisor module sends IP packets with unresolved destination IPv4 addresses to the default gateway (see...
Page 280: Configuring Cdp
Chapter 12 Initial Configuration Configuring CDP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Apply.
Page 281 Chapter 12 Initial Configuration Configuring CDP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To disable CDP using Device Manager, follow these steps: Step 1 Click IP >...
Page 282 Chapter 12 Initial Configuration Configuring CDP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 12-14 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 283: About Cfs
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Using the CFS Infrastructure The Cisco MDS SAN-OS software uses the Cisco Fabric Services (CFS) infrastructure to enable...
Page 284: Chapter 13 Using The Cf Infrastructure
Chapter 13 Using the CFS Infrastructure About CFS S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco Fabric Services (CFS) provides a common infrastructure for automatic configuration synchronization in the fabric.
Page 285: Cfs Protocol
Chapter 13 Using the CFS Infrastructure About CFS S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Physical scope: The distribution spans the entire physical topology.
Page 286: Cfs Distribution Modes
Chapter 13 Using the CFS Infrastructure Disabling CFS Distribution on a Switch S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m CFS Distribution Modes CFS supports different distribution modes to support different application requirements: coordinated and uncoordinated distributions.
Page 287: Cfs Application Requirements
Chapter 13 Using the CFS Infrastructure CFS Application Requirements S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Choose any CFS feature.
Page 288: Enabling Cfs For An Application
Chapter 13 Using the CFS Infrastructure Enabling CFS for an Application S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enabling CFS for an Application All CFS based applications provide an option to enable or disable the distribution capabilities.
Page 289: Locking The Fabric
Chapter 13 Using the CFS Infrastructure Locking the Fabric S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Locking the Fabric When you configure (first time configuration) a Cisco SAN-OS feature (or application) that uses the CFS infrastructure, that feature starts a CFS session and locks the fabric.
Page 290: Discarding Changes
Chapter 13 Using the CFS Infrastructure Discarding Changes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the CFS dialog box with the CFS status for all features on that switch.
Page 291: Cfs Merge Support
Chapter 13 Using the CFS Infrastructure CFS Merge Support S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the CFS tab.
Page 292: Cfs Distribution Over Ip
Chapter 13 Using the CFS Infrastructure CFS Distribution over IP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the CFS dialog box.
Page 293 Chapter 13 Using the CFS Infrastructure CFS Distribution over IP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 13-3 Network Example 2 with Fibre Channel and IP Connections Node A...
Page 294: Cfs Regions
Chapter 13 Using the CFS Infrastructure CFS Regions S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m CFS Regions This section contains the following topics: About CFS Regions, page 13-12...
Page 295: Managing Cfs Regions Using Fabric Manager
Chapter 13 Using the CFS Infrastructure CFS Regions S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Managing CFS Regions Using Fabric Manager This section describes how to use Fabric Manager for managing CFS regions.
Page 296: Moving A Feature To A Different Region
Chapter 13 Using the CFS Infrastructure CFS Regions S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Create Row button on the toolbar.
Page 297: Removing A Feature From A Region
Chapter 13 Using the CFS Infrastructure CFS Regions S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 13-7 Feature by Region Tab Step 3...
Page 298: Cfs Example Using Fabric Manager
Chapter 13 Using the CFS Infrastructure CFS Example Using Fabric Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 13-9 shows a confirmation dialog box.
Page 299 Chapter 13 Using the CFS Infrastructure CFS Example Using Fabric Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the configuration for this feature based on the master switch (see Figure 13-11).
Page 300 Chapter 13 Using the CFS Infrastructure CFS Example Using Fabric Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 13-14 Status Change to Running Select abortChanges from the Config Action drop-down list for each switch that you enabled for CFS...
Page 301: Cfs Example Using Device Manager
Chapter 13 Using the CFS Infrastructure CFS Example Using Device Manager S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m CFS Example Using Device Manager This procedure is an example of what you see when you use Device Manager to configure a feature that uses CFS.
Page 302 Chapter 13 Using the CFS Infrastructure Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 13-1 Default CFS Parameters (continued) Parameters...
Page 303: About Flexattach Virtual Pwwn
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring FlexAttach Virtual pWWN This chapter describes the FlexAttach virtual port world-wide name (pWWN) feature and includes the...
Page 304: C H A P T E R 14 Configuring Flexattach Virtual Pwwn
Chapter 14 Configuring FlexAttach Virtual pWWN Configuring FlexAttach Virtual pWWN S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enabling FlexAttach Virtual pWWN, page 14-2 •...
Page 305: Launching Flexattach In Fabric Manager
Chapter 14 Configuring FlexAttach Virtual pWWN Configuring FlexAttach Virtual pWWN S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 14-2 FlexAttach Window in Device Manager Select the VirtualPwwnAuto box to enable automatic generation of Virtualv WWNs on all the Fabric...
Page 306: Manually Enabling Flexattach Virtual Pwwn
Chapter 14 Configuring FlexAttach Virtual pWWN Configuring FlexAttach Virtual pWWN S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 14-3 FlexAttach Menu Manually Enabling FlexAttach Virtual pWWN...
Page 307 Chapter 14 Configuring FlexAttach Virtual pWWN Configuring FlexAttach Virtual pWWN S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 14-4 Virtual PWWN Tab View in Device Manager The Virtual pWWN tab view displays a list of the interfaces.
Page 308: Mapping Pwwn To Virtual Pwwn
Chapter 14 Configuring FlexAttach Virtual pWWN Configuring FlexAttach Virtual pWWN S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 14-5 Virtual pWWN Tab View in Fabric Manager The interface mentioned in the interface value must be in a shut state.
Page 309 Chapter 14 Configuring FlexAttach Virtual pWWN Configuring FlexAttach Virtual pWWN S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 14-6 Physical to Virtual WWNs Tab View in Device Manager The LastChange field displays the time when the virtual pWWN was changed.
Page 310: Debugging Flexattach Virtual Pwwn
Chapter 14 Configuring FlexAttach Virtual pWWN Configuring FlexAttach Virtual pWWN S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The specified virtual pWWN and the real pWWN must not be logged in.
Page 311: Flexattach Virtual Pwwn Cfs Distribution
Chapter 14 Configuring FlexAttach Virtual pWWN Difference Between San Device Virtualization and FlexAttach Port Virtualization S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m FlexAttach Virtual pWWN CFS Distribution FlexAttach virtual pWWN configuration is distributed for CFS through IPv4, and is enabled by default.
Page 312 Chapter 14 Configuring FlexAttach Virtual pWWN Difference Between San Device Virtualization and FlexAttach Port Virtualization S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family Fabric Manager Configuration Guide 14-10 OL-8007-10, Cisco MDS SAN-OS Release 3.x...
Page 313: About Software Images
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Software Images This chapter describes how to install and upgrade Cisco MDS SAN-OS software images.
Page 314: Selecting The Correct Software Images For Cisco Mds 9100 Series Switches
Chapter 15 Software Images About Software Images S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Software images—The kickstart and system image files reside in directories or folders that can be •...
Page 315: Chapter 15 Software Image
Chapter 15 Software Images Essential Upgrade Prerequisites S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 15-3 Supervisor Module Software Image Naming Conventions for MDS 9500 Series Cisco MDS 9500 Series...
Page 316 Chapter 15 Software Images Essential Upgrade Prerequisites S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configure the IPv4 address or IPv6 address for the 10/100/1000 BASE-T Ethernet port –...
Page 317: Software Upgrade Methods
Chapter 15 Software Images Software Upgrade Methods S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If the switching module(s) are not compatible with the new supervisor module image, some Note traffic disruption may be noticed in the related modules, depending on your configuration.
Page 318: Automated Upgrades
Chapter 15 Software Images Automated Upgrades S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuration incompatibility—There is a possible incompatibility if certain features in the running •...
Page 319: Recognizing Failure Cases
Chapter 15 Software Images Automated Upgrades S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m After a switchover process, you can see the progress from both the supervisor modules.
Page 320: Using The Software Install Wizard
Chapter 15 Software Images Using the Software Install Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Using the Software Install Wizard You can use the Software Install Wizard to install Cisco SAN-OS images on supported switches.
Page 321 Chapter 15 Software Images Using the Software Install Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 15-4 Specify Software Image(s) by Model Dialog Box Click the row under the System, Kickstart, ASM-SFN, or SSI columns to enter image URIs.You must...
Page 322 Chapter 15 Software Images Using the Software Install Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the Start Install dialog box shown in Figure 15-6.
Page 323: Upgrading Services Modules
Chapter 15 Software Images Using the Software Install Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 15-7 Download and Install Status Dialog Box On hosts where the TFTP server cannot be started, a warning is displayed.
Page 324: Non-Disruptive Upgrades On Fabric And Modular Switches
Chapter 15 Software Images Non-Disruptive Upgrades on Fabric and Modular Switches S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Each IPS module in a switch requires a 5-minute delay before the next IPS module is upgraded.
Page 325: Performing A Non-Disruptive Upgrade On A Fabric Switch
Chapter 15 Software Images Maintaining Supervisor Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m telnet sessions –...
Page 326: Replacing Supervisor Modules
Chapter 15 Software Images Maintaining Supervisor Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Replacing Supervisor Modules To avoid packet loss when removing a supervisor module from a Cisco MDS 9500 Series Director, take the supervisor modules out of service before removing the supervisor module.
Page 327: Installing Generation 2 Modules In Generation 1 Chassis
Chapter 15 Software Images Installing Generation 2 Modules in Generation 1 Chassis S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Installing Generation 2 Modules in Generation 1 Chassis The Generation 2 modules have the following installation restrictions: Supervisor-2 modules can be installed on all Cisco MDS 9500 Series Directors.
Page 328: Default Settings
Chapter 15 Software Images Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Verify that space is available on the standby supervisor bootflash by clicking Admin >...
Page 329: About Flash Devices
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Managing Configuration Files This chapter describes how to initially configure switches using the configuration files so they can be...
Page 330: C H A P T E R 16 Managing Configuration Files
Chapter 16 Managing Configuration Files Formatting Flash Devices and File Systems S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 16-2 External CompactFlash in the Cisco MDS 9000 Supervisor Module CompactFlash 1...
Page 331: Using The File System
Chapter 16 Managing Configuration Files Using the File System S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Reset System.
Page 332: Creating A Directory
Chapter 16 Managing Configuration Files Using the File System S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 16-3 Flash Files Dialog Box Select the device and partition for the directory you want to view from the drop-down lists.
Page 333: Deleting An Existing File Or Directory
Chapter 16 Managing Configuration Files Using the File System S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select the device and partition from the drop-down lists for the directory where you want to create the Step 2 directory.
Page 334: Copying Files
Chapter 16 Managing Configuration Files Using the File System S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the file or directory you want to delete.
Page 335: Performing Other File Manipulation Tasks
Chapter 16 Managing Configuration Files Using the File System S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 16-8 Copy Flash Files in Device Manager Choose the protocol you want to use for the copy, tftp, ftp, scp, or flashToFlash.
Page 336: Working With Configuration Files
Chapter 16 Managing Configuration Files Working with Configuration Files S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Working with Configuration Files Configuration files can contain some or all of the commands needed to configure one or more switches.
Page 337: Saving Startup Configurations In The Fabric
Chapter 16 Managing Configuration Files Working with Configuration Files S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 16-9 Copy Configuration Dialog Box Select the location of the file you will copy from (serverFile, startupConfig, runningConfig).
Page 338 Chapter 16 Managing Configuration Files Working with Configuration Files S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select Admin >...
Page 339: Configuring High Availability
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring High Availability The Cisco MDS 9500 Series of multilayer directors support application restartability and nondisruptive...
Page 340: Switchover Mechanisms
Chapter 17 Configuring High Availability Switchover Mechanisms S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m both supervisor modules come up at the same time, sup-1 becomes active.
Page 341: C H A P T E R 17 Configuring High Availability
Chapter 17 Configuring High Availability Switchover Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 17-1 Modules Screen Shows Current Supervisor Click Admin >...
Page 342: Switchover Mechanisms
Chapter 17 Configuring High Availability Synchronizing Supervisor Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The standby supervisor module automatically synchronizes its image with the running image on the active supervisor module.
Page 343: Synchronizing Supervisor Modules
Chapter 17 Configuring High Availability Synchronizing Supervisor Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 17-3 Internal States (continued) State...
Page 344 Chapter 17 Configuring High Availability Synchronizing Supervisor Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 17-6 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 345: Displaying Switch Hardware Inventory
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Managing System Hardware This chapter provides details on how to manage system hardware other than services and switching...
Page 346: Chapter 18 Managing System Hardware
Chapter 18 Managing System Hardware ,Running the CompactFlash Report S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m In Device Manager, choose Physical >...
Page 347: Displaying The Switch Serial Number
Chapter 18 Managing System Hardware Displaying the Switch Serial Number S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Download m9000-lc1-gplug-mz.1.0.2.bin from the Software Center on Cisco.com Step 1 (http://www.cisco.com/cgi-bin/tablebuild.pl/mds-utilities).
Page 348: Power Supply Configuration Modes
Chapter 18 Managing System Hardware Power Supply Configuration Modes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m In a Cisco MDS 9500 Series switch, power usage is reserved for both supervisorswhether one or both Note supervisor modules are present.
Page 349: Power Supply Configuration Guidelines
Chapter 18 Managing System Hardware Power Supply Configuration Modes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 18-4 Power Supply Information in Device Manager Step 3...
Page 350 Chapter 18 Managing System Hardware Power Supply Configuration Modes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 18-1 Redundant Mode Power Supply Scenarios (continued) Power...
Page 351: About Crossbar Management
Chapter 18 Managing System Hardware About Crossbar Management S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Reason: 1800 W is the lesser of the two power supplies and it is less than the system usage.
Page 352: Operational Considerations When Removing Crossbars
Chapter 18 Managing System Hardware About Crossbar Management S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m 16-port 2-Gbps Fibre Channel switching module •...
Page 353 Chapter 18 Managing System Hardware About Crossbar Management S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 18-5 Shutting Down a Crossbar Select Out of Service to gracefully shut down the integrated crossbar.
Page 354: Backward Compatibility For Generation 1 Modules In Cisco Mds 9513 Directors
Chapter 18 Managing System Hardware About Module Temperature S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Backward Compatibility for Generation 1 Modules in Cisco MDS 9513 Directors To provide backward compatibility for a Generation 1 module in a Cisco MDS 9513 chassis, the active and backup Supervisor-2 modules are associated to a specific crossbar module.
Page 355: Displaying Module Temperature
Chapter 18 Managing System Hardware About Fan Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If the threshold is exceeded in an active supervisor module with HA-standby or standby present, only that supervisor module is shut down and the standby supervisor module takes over.
Page 356: Default Settings
Chapter 18 Managing System Hardware Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If the fan is physically present but not working properly, the status is failure.
Page 357: About Modules
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Managing Modules This chapter describes how to manage switching and services modules (also known as line cards) and...
Page 358: Chapter 19 Managing Module
Chapter 19 Managing Modules About Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 19-1 Supervisor Module Options (continued) Number of...
Page 359: Switching Modules
Chapter 19 Managing Modules Verifying the Status of a Module S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 19-2 Supervisor Module Terms and Usage Module Terms...
Page 360: Obtaining Supervisor Module Statistics
Chapter 19 Managing Modules Obtaining Supervisor Module Statistics S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 19-1 Card Module Status Display The Status column in the output should display an...
Page 361: Reloading Modules
Chapter 19 Managing Modules Reloading Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 19-3 Module States Module Status...
Page 362: Power Cycling Modules
Chapter 19 Managing Modules Reloading Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see a list of modules contained in the selected switches.
Page 363: Preserving Module Configuration
Chapter 19 Managing Modules Preserving Module Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Preserving Module Configuration Use the “copy running-config to startup-config”...
Page 364: Powering Off Switching Modules
Chapter 19 Managing Modules Powering Off Switching Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 19-4 Switching Module Configuration Status (continued) Scenario...
Page 365: Identifying Module Leds
Chapter 19 Managing Modules Identifying Module LEDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To power on a module, repeat Steps 1-4 but select on in Step 3.
Page 366 Chapter 19 Managing Modules Identifying Module LEDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 19-6 describes the LEDs for the Cisco MDS 9200 Series interface module.
Page 367 Chapter 19 Managing Modules Identifying Module LEDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 19-7 LEDs for the Cisco MDS 9000 Family Fibre Channel Switching Modules Status...
Page 368: Default Settings
Chapter 19 Managing Modules Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 19-8 LEDs for the Cisco MDS 9500 Series Supervisor Modules Status...
Page 369 Chapter 19 Managing Modules Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 19-9 Default Supervisor Module Settings Parameters...
Page 370 Chapter 19 Managing Modules Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 19-14 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 371: Switch Configuration
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m A R T Switch Configuration...
Page 372 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m...
Page 373: Common Interface Configuration
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring Interfaces A switch's main function is to relay frames from one data link to another.
Page 374: Chapter 20 Configuring Interface
Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 20-1 Fibre Channel Interface Configuration Fibre Channel Interfaces...
Page 375: About Interface Modes
Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You can configure only the first port in each 4-port group (for example, the first port in ports 1-4, •...
Page 376 Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 20-2 Cisco MDS 9000 Family Switch Port Modes NL port...
Page 377: Np Ports
Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m F Port In fabric port (F port) mode, an interface functions as a fabric port.
Page 378 Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m TE Port In trunking E port (TE port) mode, an interface functions as a trunking expansion port.
Page 379: Auto Mode
Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 52-1 on page 52-2 depicts a typical SAN extension over an IP network.
Page 380: Reason Codes
Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 20-2 Operational States (continued) Operational State...
Page 381 Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 20-4 Reason Codes for Nonoperational States Applicable...
Page 382 Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 20-4 Reason Codes for Nonoperational States (continued) Applicable...
Page 383: Graceful Shutdown
Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Graceful Shutdown Interfaces on a port are shutdown by default (unless you modified the initial configuration).
Page 384: Configuring Interface Modes
Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Optionally, set other configuration parameters using the other tabs.
Page 385: Autosensing
Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Autosensing Autosensing speed is enabled on all 4-Gbps switching module interfaces by default.
Page 386: Identifying The Beacon Leds
Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 20-4 Changing Rx Data Size Optionally, set other configuration parameters using the other tabs.
Page 387: About Beacon Mode
Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Off or solid green—Beacon mode is disabled.
Page 388: Switch Port Attribute Default Values
Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You can configure the switch to not disable an interface when the threshold is crossed.
Page 389: About Gathering Interface Statistics
Chapter 20 Configuring Interfaces Fibre Channel Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Expand Switches >...
Page 390: Tl Ports For Private Loops
Chapter 20 Configuring Interfaces TL Ports for Private Loops S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m TL Ports for Private Loops Private loops require setting the interface mode to TL.
Page 391: Configuring Tl Ports
Chapter 20 Configuring Interfaces TL Ports for Private Loops S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 20-7 TL Port Translation Support Examples Private...
Page 392: Buffer Credits
Chapter 20 Configuring Interfaces Buffer Credits S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m A cache contains entries for recently allocated ALPA values.
Page 393: About Performance Buffers
Chapter 20 Configuring Interfaces Buffer Credits S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Expand Switches >...
Page 394: Extended Bb_Credits On Generation 1 Switching Modules
Chapter 20 Configuring Interfaces Buffer Credits S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Extended BB_credits on Generation 1 Switching Modules, page 20-22 •...
Page 395: Extended Bb_Credits On Generation 2 Switching Modules
Chapter 20 Configuring Interfaces Management Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The extended BB_credit configuration takes precedence over the receive BB_credit and performance Note buffer configurations.
Page 396: Configuring Management Interfaces
Chapter 20 Configuring Interfaces VSAN Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The management port (mgmt0) is autosensing and operates in full duplex mode at a speed of 10/100/1000 Mbps.
Page 397: Creating Vsan Interfaces
Chapter 20 Configuring Interfaces VSAN Interfaces S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m After configuring the VSAN interface, you can configure an IP address or Virtual Router Redundancy Protocol (VRRP) feature (see Chapter 51, “Configuring IP...
Page 398: Default Settings
Chapter 20 Configuring Interfaces Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Create to create the VSAN interface or click Close to close the dialog box without creating the Step 5 VSAN interface.
Page 399: About Npv
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring N Port Virtualization N Port virtualization (NPV) reduces the number of Fibre Channel domain IDs in SANs.
Page 400: C H A P T E R 21 Configuring N Port Virtualization
Chapter 21 Configuring N Port Virtualization About NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-1 Cisco NPV Fabric Configuration NPV-Core Switch...
Page 401: Np Links
Chapter 21 Configuring N Port Virtualization About NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m NP Ports An NP port (proxy N port) is a port on a device that is in NPV mode and connected to the NPV core switch using an F port.
Page 402: Default Port Numbers
Chapter 21 Configuring N Port Virtualization NPV Guidelines and Requirements S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-3 Internal FLOGI Flows NPV Core Switch...
Page 403: Configuring Npv
Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Nondisruptive upgrades are supported.
Page 404: Using The Npv Setup Wizard
Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-4 Enabling NPIV and NPV Click Apply.
Page 405 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-5 Launching NPV Setup Wizard Before the wizard starts, Fabric Manager checks if there are any NPV and NPIV capable switches from...
Page 406 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-7 Selecting the NPV Devices A table lists all the available NPV-capable switches including the switches on which NPV is not yet...
Page 407 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-8 Warning to Enable NPV Feature on NPV-Capable Switches Step 3...
Page 408 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Create new NPV device and NPIV core switch pairs as required.
Page 409 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m NPV wizard does not detect ports that are in a channel-group and that are not connected by ISLs.
Page 410 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-12 Warning, NPV Setup Wizard Figure 21-13...
Page 411 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-14 Configuring NPV Associated Ports by the Automatic Method The Auto Port Selection has two options.
Page 412 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The ISLs are ignored in the second method.
Page 413 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-16 Configuring NPV Associated Ports by manual method.
Page 414 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-17 Message Alert to Connect Port Pair.
Page 415 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-19 Completing the NPV Setup Enable Switch Feature lists the switches, the impending actions against them with reference to features,...
Page 416 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-20 Error in Applying Configurations and Details After the completion of all the tasks a link View NPV Port Connections is displayed in the place of the...
Page 417 Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-21 New NPV Port Pairs Cisco MDS 9000 Family CLI Configuration Guide...
Page 418: Configuring Npv With Fabric Manager
Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-22 New NPV Port Pairs, Details Configuring NPV with Fabric Manager...
Page 419: Dpvm Configuration
Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 21-23 Enabling NPIV and NPV Click Apply.
Page 420: Npv And Port Security
Chapter 21 Configuring N Port Virtualization Configuring NPV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You must explicitly configure the WWN of the internal FLOGI in DPVM.If DPVM is configured on •...
Page 421: About Generation 2 Modules And Switches
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring Generation 2 Switches and Modules The Cisco MDS 9500 Series switches and Cisco MDS 9216A and Cisco MDS 9216i switches support a...
Page 422: Port Groups
Chapter 22 Configuring Generation 2 Switches and Modules About Generation 2 Modules and Switches S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 22-1 Generation 2 Fibre Channel Modules and Fabric Switches (continued) Part Number...
Page 423: C H A P T E R 22 Configuring Generation 2 Switches And Modules
Chapter 22 Configuring Generation 2 Switches and Modules About Generation 2 Modules and Switches S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 22-2 Bandwidth and Port Groups for Generation 2 FC Modules and Fabric Switches Product Name/...
Page 424: Port Rate Modes
Chapter 22 Configuring Generation 2 Switches and Modules About Generation 2 Modules and Switches S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 22-2 Bandwidth and Port Groups for Generation 2 FC Modules and Fabric Switches Product Name/...
Page 425 Chapter 22 Configuring Generation 2 Switches and Modules About Generation 2 Modules and Switches S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 22-3 Port Rate Mode Support on Generation 2 Modules and Switches (continued) Product Name/...
Page 426: Dedicated Mode
Chapter 22 Configuring Generation 2 Switches and Modules About Generation 2 Modules and Switches S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m 2.
Page 427: Out-Of-Service Interfaces
Chapter 22 Configuring Generation 2 Switches and Modules Buffer Credit Allocation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Ports configured in dedicated mode are allocated the required bandwidth to sustain a line rate of traffic at the maximum configured operating speed, and ports configured in shared mode share the available remaining bandwidth within the port group.
Page 428: Buffer Pools
Chapter 22 Configuring Generation 2 Switches and Modules Buffer Credit Allocation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Buffer Pools In the architecture of Generation 2 modules, receive buffers shared by a set of ports are called buffer groups.
Page 429: Bb_Credit Buffers For Switching Modules
Chapter 22 Configuring Generation 2 Switches and Modules Buffer Credit Allocation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m 24-port module All ports All ports...
Page 430 Chapter 22 Configuring Generation 2 Switches and Modules Buffer Credit Allocation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m BB_credit buffers for ISL connections can be configured from a minimum of 2 buffers to a •...
Page 431: Port 4-Gbps Fibre Channel Module Bb_Credit Buffers
Chapter 22 Configuring Generation 2 Switches and Modules Buffer Credit Allocation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 22-4 Example Speed and Rate Configuration on a 48-Port 4-Gbps Switching Module 2-Gbps...
Page 432: Port Fibre Channel/4-Port Gigabitethernet Multiservice Module Bb_Credit Buffers
Chapter 22 Configuring Generation 2 Switches and Modules Buffer Credit Allocation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Six ports with dedicated rate mode and 2-Gbps speed •...
Page 433: Port 10-Gbps Switching Module Bb_Credit Buffers
Chapter 22 Configuring Generation 2 Switches and Modules Buffer Credit Allocation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The following considerations apply to BB_credit buffers on 12-port 4-Gbps switching modules: BB_credit buffers for ISL connections can be configured from a minimum of 2 buffers to a •...
Page 434: Bb_Credit Buffers For Fabric Switches
Chapter 22 Configuring Generation 2 Switches and Modules Buffer Credit Allocation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m There are 4488 extra buffers available as extended BB_credits after allocating all the default •...
Page 435: Cisco Mds 9222I Multiservice Modular Switch Bb_Credit Buffers
Chapter 22 Configuring Generation 2 Switches and Modules About Combining Generation 1 and Generation 2 Switching Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9222i Multiservice Modular Switch BB_Credit Buffers Table 22-12 lists the BB_credit buffer allocation for 18-port 4-Gbps Multiservice Modular switches.
Page 436: Port Indexes
Chapter 22 Configuring Generation 2 Switches and Modules About Combining Generation 1 and Generation 2 Switching Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Supervisor-2 modules support a maximum of 1020 port indexes when all switching modules in the •...
Page 437: Portchannels
Chapter 22 Configuring Generation 2 Switches and Modules About Combining Generation 1 and Generation 2 Switching Modules S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 22-13 Port Index Requirements for Generation 1 Modules (continued) Number of Port Indexes Required...
Page 438: Configuring Generation 2 Module Interface Shared Resources
Chapter 22 Configuring Generation 2 Switches and Modules Configuring Generation 2 Module Interface Shared Resources S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 22-14 PortChannel Configuration and Addition Results Configured Speed...
Page 439: Configuration Guidelines For 48-Port And 24-Port 4-Gbps Fibre Channel Switching Modules
Chapter 22 Configuring Generation 2 Switches and Modules Configuring Generation 2 Module Interface Shared Resources S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Taking Interfaces Out of Service, page 22-28 •...
Page 440: Configuration Guidelines For 12-Port 4-Gbps Switching Module Interfaces
Chapter 22 Configuring Generation 2 Switches and Modules Configuring Generation 2 Module Interface Shared Resources S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configure the port mode.
Page 441: Configuring Port Speed
Chapter 22 Configuring Generation 2 Switches and Modules Configuring Generation 2 Module Interface Shared Resources S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Performance buffers •...
Page 442: Configuring Rate Mode
Chapter 22 Configuring Generation 2 Switches and Modules Configuring Generation 2 Module Interface Shared Resources S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 22-6 Speed Admin column in Port Configuration The auto parameter enables autosensing on the interface.
Page 443: Configuring Oversubscription Ratio Restrictions
Chapter 22 Configuring Generation 2 Switches and Modules Configuring Generation 2 Module Interface Shared Resources S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Apply Changes icon.
Page 444: Disabling Restrictions On Oversubscription Ratios
Chapter 22 Configuring Generation 2 Switches and Modules Configuring Generation 2 Module Interface Shared Resources S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m When restrictions on oversubscription ratios are disabled, the bandwidth allocation among the shared Note ports is proportionate to the configured speed.
Page 445: Enabling Restrictions On Oversubscription Ratios
Chapter 22 Configuring Generation 2 Switches and Modules Configuring Generation 2 Module Interface Shared Resources S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 22-9 Module Dialog Box Click the disabled radio button to disable restrictions on oversubscription ratios.
Page 446: Configuring Bandwidth Fairness
Chapter 22 Configuring Generation 2 Switches and Modules Configuring Generation 2 Module Interface Shared Resources S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the enabled radio button to enable restrictions on oversubscription ratios.
Page 447: Disabling Bandwidth Fairness
Chapter 22 Configuring Generation 2 Switches and Modules Configuring Generation 2 Module Interface Shared Resources S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To enable bandwidth fairness on a single 48-port or 24-port 4-Gbps Fibre Channel switching module using Device Manager, follow these steps: Right-click a module and select Configure.
Page 448: Upgrade Or Downgrade Scenario
Chapter 22 Configuring Generation 2 Switches and Modules Configuring Generation 2 Module Interface Shared Resources S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To disable bandwidth fairness on a single 48-port or 24-port 4-Gbps Fibre Channel switching module using Device Manager, follow these steps: Right-click a module and select Configure.
Page 449: Releasing Shared Resources In A Port Group
Chapter 22 Configuring Generation 2 Switches and Modules Configuring Generation 2 Module Interface Shared Resources S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select in or out from the Status Service column.
Page 450: Displaying Sfp Diagnostic Information
Chapter 22 Configuring Generation 2 Switches and Modules Displaying SFP Diagnostic Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Displaying SFP Diagnostic Information To view diagnostic information for multiple ports using Device Manager, follow these steps: Step 1...
Page 451: Default Settings
Chapter 22 Configuring Generation 2 Switches and Modules Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 22-14 Diagnostics Tab for Selected Port Step 2...
Page 452 Chapter 22 Configuring Generation 2 Switches and Modules Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 22-32 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 453: About Portchannels
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring PortChannels PortChannels refer to the aggregation of multiple physical interfaces into one logical interface to provide...
Page 454: C H A P T E R 23 Configuring Portchannels
Chapter 23 Configuring PortChannels About PortChannels S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family switches with Generation 1 switching modules, or a combination of Generation 1 and Generation 2 switching modules, support a maximum of 128 PortChannels.
Page 455: About Portchanneling And Trunking
Chapter 23 Configuring PortChannels About PortChannels S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If you execute the write erase command on a 32-port switching module, and then copy a saved •...
Page 456: About Load Balancing
Chapter 23 Configuring PortChannels About PortChannels S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 23-3 PortChanneling and Trunking Switch 1...
Page 457 Chapter 23 Configuring PortChannels About PortChannels S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 23-4 SID1 and DID1 Based Load Balancing Link 1...
Page 458: Portchannel Configuration
Chapter 23 Configuring PortChannels PortChannel Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 23-5 SID1, DID1, and Exchange Based Load Balancing Link 1...
Page 459 Chapter 23 Configuring PortChannels PortChannel Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 23-6 Valid PortChannel Configurations Channel Group 10...
Page 460: About Portchannel Configuration
Chapter 23 Configuring PortChannels PortChannel Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About PortChannel Deletion, page 23-12 •...
Page 461 Chapter 23 Configuring PortChannels PortChannel Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 23-9 Select Switch Pairs Click Next.
Page 462 Chapter 23 Configuring PortChannels PortChannel Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 23-11 Dynamically Form a PortChannel If you did not choose to dynamically form a PortChannel, you see the third PortChannel Wizard dialog...
Page 463: About Portchannel Modes
Chapter 23 Configuring PortChannels PortChannel Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The following attributes are shown in Figure 23-12:...
Page 464: About Portchannel Deletion
Chapter 23 Configuring PortChannels PortChannel Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 23-1 Channel Group Configuration Differences (continued) ON Mode...
Page 465: Interfaces In A Portchannel
Chapter 23 Configuring PortChannels Interfaces in a PortChannel S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the PortChannel Wizard icon in the toolbar (see Figure 23-13).
Page 466: Compatibility Check
Chapter 23 Configuring PortChannels Interfaces in a PortChannel S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Compatibility Check A compatibility check ensures that the same parameter settings are used in all physical ports in the channel.
Page 467: Forcing An Interface Addition
Chapter 23 Configuring PortChannels Interfaces in a PortChannel S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 23-14 Port Channels Step 2...
Page 468: About Interface Deletion From A Portchannel
Chapter 23 Configuring PortChannels PortChannel Protocol S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Interface Deletion from a PortChannel When a physical interface is deleted from the PortChannel, the channel membership is automatically updated.
Page 469: About Channel Group Creation
Chapter 23 Configuring PortChannels PortChannel Protocol S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The PortChannel protocol uses two sub-protocols: Bringup protocol—Automatically detects misconfigurations so you can correct them.
Page 470: About Autocreation
Chapter 23 Configuring PortChannels PortChannel Protocol S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 23-2 Channel Group Configuration Differences User-Configured Channel Group...
Page 471: Enabling And Configuring Autocreation
Chapter 23 Configuring PortChannels PortChannel Protocol S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You can enable or disable the autocreation feature on a per-port basis or for all ports in the switch.
Page 472: Portchannel Configuration Verification
Chapter 23 Configuring PortChannels PortChannel Configuration Verification S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 23-16 Switch Protocols Step 2...
Page 473 Chapter 23 Configuring PortChannels Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 23-3 Default PortChannel Parameters (continued) Parameters...
Page 474 Chapter 23 Configuring PortChannels Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 23-22 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 475: About Trunking
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring Trunking This chapter describes the trunking feature provided in Cisco MDS 9000 switches.
Page 476: Chapter 24 Configuring Trunking
Chapter 24 Configuring Trunking Trunking Protocol S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Trunking Configuration Guidelines If you misconfigure VSAN configurations across E ports, you could face consequences such as merging the traffic in two VSANs (thus causing both VSANs to mismatch).
Page 477: About Trunk Mode
Chapter 24 Configuring Trunking Trunking Protocol S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m We recommend that both ends of a trunking ISL belong to the same port VSAN.
Page 478: About Trunk-Allowed Vsan Lists
Chapter 24 Configuring Trunking Trunking Protocol S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Expand Interfaces and then select FC Physical.
Page 479 Chapter 24 Configuring Trunking Trunking Protocol S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 24-6, switch 1 has VSANs 1 through 5, switch 2 has VSANs 1 through 3, and switch 3 has VSANs 1, 2, 4, and 5 with a default configuration of trunk-allowed VSANs.
Page 480: Configuring An Allowed-Active List Of Vsans
Chapter 24 Configuring Trunking Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 24-7 Operational and Allowed VSAN Configuration Switch 2...
Page 481 Chapter 24 Configuring Trunking Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 24-7 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 482 Chapter 24 Configuring Trunking Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 24-8 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 483: Configuring Domain Parameters
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring Domain Parameters The Fibre Channel domain (fcdomain) feature performs principal switch selection, domain ID...
Page 484: C H A P T E R 25 Configuring Domain Parameters
Chapter 25 Configuring Domain Parameters Fibre Channel Domains S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Fibre Channel Domains This section describes each fcdomain phase: Principal switch selection—This phase guarantees the selection of a unique principal switch across...
Page 485: About Domain Restart
Chapter 25 Configuring Domain Parameters Fibre Channel Domains S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Restarting a Domain, page 25-3 •...
Page 486: About Switch Priority
Chapter 25 Configuring Domain Parameters Fibre Channel Domains S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To restart the fabric disruptively or nondisruptively using Fabric Manager, follow these steps: Step 1 Expand Fabricxx >...
Page 487: Configuring Switch Priority
Chapter 25 Configuring Domain Parameters Fibre Channel Domains S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Any new switch cannot become the principal switch when it joins a stable fabric.
Page 488: Setting Fabric Names
Chapter 25 Configuring Domain Parameters Fibre Channel Domains S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Expand Fabricxx >...
Page 489: About Autoreconfiguring Merged Fabrics
Chapter 25 Configuring Domain Parameters Fibre Channel Domains S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Expand Switches >...
Page 490: Domain Ids
Chapter 25 Configuring Domain Parameters Domain IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Expand Fabricxx >...
Page 491 Chapter 25 Configuring Domain Parameters Domain IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The principal switch assigns the requested domain ID if available.
Page 492: Specifying Static Or Preferred Domain Ids
Chapter 25 Configuring Domain Parameters Domain IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m When the FICON feature is enabled in a given VSAN, the domain ID for that VSAN remains in the static state.
Page 493: About Allowed Domain Id Lists
Chapter 25 Configuring Domain Parameters Domain IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Allowed Domain ID Lists By default, the valid range for an assigned domain ID list is from 1 to 239.
Page 494: About Cfs Distribution Of Allowed Domain Id Lists
Chapter 25 Configuring Domain Parameters Domain IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 25-9 Allowed Domain ID List Set the list to the allowed domain IDs list for this domain.
Page 495: Committing Changes
Chapter 25 Configuring Domain Parameters Domain IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Apply Changes icon to enable CFS distribution for the allowed domain ID list.
Page 496: Clearing A Fabric Lock
Chapter 25 Configuring Domain Parameters Domain IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Clearing a Fabric Lock If you have performed a domain configuration task and have not released the lock by either committing or discarding the changes, an administrator can release the lock from any switch in the fabric.
Page 497: About Contiguous Domain Id Assignments
Chapter 25 Configuring Domain Parameters Domain IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Contiguous Domain ID Assignments By default, the contiguous domain assignment is disabled.
Page 498 Chapter 25 Configuring Domain Parameters FC IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To enable contiguous domains in a specific VSAN (or a range of VSANs) using Fabric Manager, follow these steps: Expand Fabricxx >...
Page 499: About Persistent Fc Ids
Chapter 25 Configuring Domain Parameters FC IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Persistent FC IDs When persistent FC IDs are enabled, the following consequences apply: The currently in use FC IDs in the fcdomain are saved across reboots.
Page 500: Configuring Persistent Fc Ids
Chapter 25 Configuring Domain Parameters FC IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Ensure that the required VSAN is an active VSAN—persistent FC IDs can only be configured on •...
Page 501: About Unique Area Fc Ids For Hbas
Chapter 25 Configuring Domain Parameters FC IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To configure persistent FC IDs using Fabric Manager, follow these steps: Step 1 Expand Fabricxx >...
Page 502 Chapter 25 Configuring Domain Parameters FC IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Expand End Device in the Physical Attributes pane and select the FLOGI tab in the Information pane Step 1 to obtain the port WWN (Port Name field) of the HBA (see...
Page 503: About Persistent Fc Id Selective Purging
Chapter 25 Configuring Domain Parameters FC IDs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 25-13 Setting the FC ID in Fabric Manager Step 8...
Page 504: Displaying Fcdomain Statistics
Chapter 25 Configuring Domain Parameters Displaying fcdomain Statistics S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 25-14 Persistent FC ID Information in Fabric Manager Step 3...
Page 505 Chapter 25 Configuring Domain Parameters Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 25-2 Default fcdomain Parameters (continued) Parameters...
Page 506 Chapter 25 Configuring Domain Parameters Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 25-24 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 507 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m A R T Fabric Configuration...
Page 508 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m...
Page 509: About Vsans
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring and Managing VSANs You can achieve higher security and greater stability in Fibre Channel fabrics by using virtual SANs...
Page 510 Chapter 26 Configuring and Managing VSANs About VSANs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Events causing traffic disruptions in one VSAN are contained within that VSAN and are not •...
Page 511: Chapter 26 Configuring And Managing Vsan
Chapter 26 Configuring and Managing VSANs About VSANs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 26-2 Example of two VSANs Link in VSAN 2...
Page 512: Vsans Versus Zones
Chapter 26 Configuring and Managing VSANs About VSANs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Traffic isolation—Traffic is contained within VSAN boundaries and devices reside only in one •...
Page 513: Vsan Configuration
Chapter 26 Configuring and Managing VSANs VSAN Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 26-3 VSANS with Zoning Physical Topology...
Page 514: About Vsan Creation
Chapter 26 Configuring and Managing VSANs VSAN Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m OX ID based load balancing of IVR traffic from IVR- enabled switches is not supported on Note Generation 1 switching modules.
Page 515: About Port Vsan Membership
Chapter 26 Configuring and Managing VSANs VSAN Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 26-5 Create VSAN Dialog Box As of Cisco SAN-OS Release 3.1(2) and later, if you check the Static Domain IDs check box,...
Page 516: Assigning Static Port Vsan Membership
Chapter 26 Configuring and Managing VSANs VSAN Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Dynamically—by assigning VSANs based on the device WWN.
Page 517: Displaying Isolated Vsan Membership
Chapter 26 Configuring and Managing VSANs VSAN Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Up to 256 VSANs can be configured in a switch.
Page 518: Deleting Static Vsans
Chapter 26 Configuring and Managing VSANs VSAN Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 26-6 VSAN Port Membership Details Before...
Page 519: Configuring Load Balancing
Chapter 26 Configuring and Managing VSANs VSAN Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 26-7 Deleting a VSAN You see a confirmation dialog box.
Page 520: About Interop Mode
Chapter 26 Configuring and Managing VSANs Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Apply Changes to save these changes, or click Undo Changes to discard any unsaved changes.
Page 521: About Sdv
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R SAN Device Virtualization This chapter describes how to configure virtual devices to represent physical end devices for switches...
Page 522: Chapter 27 San Device Virtualization
Chapter 27 SAN Device Virtualization About SDV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 27-2 Initiator Virtualization Primary...
Page 523: Key Concepts
Chapter 27 SAN Device Virtualization About SDV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Clustering (multiple initiators) compounds the problem, and the failover procedure must be repeated •...
Page 524: Configuring Sdv
Chapter 27 SAN Device Virtualization Configuring SDV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Virtual device •...
Page 525 Chapter 27 SAN Device Virtualization Configuring SDV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 27-5 Creating a Virtual Device i1pwwn...
Page 526: Linking A Virtual Device With A Physical Device
Chapter 27 SAN Device Virtualization Configuring SDV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the Create Virtual Devices dialog box (see Figure 27-7).
Page 527: Resolving Fabric Merge Conflicts
Chapter 27 SAN Device Virtualization Configuring SDV S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m When a link operation fails over to the secondary device, the virtual device is taken offline and then Note brought online.
Page 528: Sdv Requirements And Guidelines
Chapter 27 SAN Device Virtualization SDV Requirements and Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m A blank commit is a commit operation that does not contain configuration changes, and enforces the SDV configuration of the committing switch fabric-wide.
Page 529: Default Settings
Chapter 27 SAN Device Virtualization Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Caution There must be at least one SDV-enabled switch that is not a Cisco MDS 9124 Switch between the server and the device that are being virtualized.
Page 530 Chapter 27 SAN Device Virtualization Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 27-10 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 531: Dpvm
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Creating Dynamic VSANs Port VSAN membership on the switch is assigned on a port-by-port basis.
Page 532: Chapter 28 Creating Dynamic Vsan
Chapter 28 Creating Dynamic VSANs DPVM S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m DPVM is not supported on FL ports.
Page 533: About Dpvm Databases
Chapter 28 Creating Dynamic VSANs DPVM S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 28-1 DPVM Wizard Icon You see the Select Master Switch page.
Page 534: Configuring Dpvm Config And Pending Databases
Chapter 28 Creating Dynamic VSANs DPVM S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 28-2 DPVM Configuration in Fabric Manager Configuring DPVM Config and Pending Databases...
Page 535: Activating Dpvm Config Databases
Chapter 28 Creating Dynamic VSANs DPVM S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 28-4 Config Action Drop-down Menu Select commit from the drop-down menu to distribute these changes or abort to discard the changes.
Page 536: Viewing The Pending Database
Chapter 28 Creating Dynamic VSANs DPVM S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 28-6 Config Action Drop-down Menu Select commit from the drop-down menu to distribute these changes or abort to discard the changes.
Page 537: About Autolearned Entries
Chapter 28 Creating Dynamic VSANs DPVM S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Autolearned Entries The DPVM database can be configured to automatically learn (autolearn) about new devices within each VSAN.
Page 538: Clearing Learned Entries
Chapter 28 Creating Dynamic VSANs DPVM Database Distribution S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Clearing Learned Entries You can clear DPVM entries from the active DPVM database (if autolearn is still enabled) using one of two methods.
Page 539: About Dpvm Database Distribution
Chapter 28 Creating Dynamic VSANs DPVM Database Distribution S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m This section describes how to distribute the DPVM database and includes the following topics: About DPVM Database Distribution, page 28-9 •...
Page 540: About Locking The Fabric
Chapter 28 Creating Dynamic VSANs DPVM Database Distribution S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Apply Changes to save this change or click Undo Changes to discard the change.
Page 541: Committing Changes
Chapter 28 Creating Dynamic VSANs DPVM Database Distribution S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Committing Changes If you commit the changes made to the configuration, the configuration in the DPVM pending database are distributed to other switches.
Page 542: Clearing A Locked Session
Chapter 28 Creating Dynamic VSANs Database Merge Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Discarding Changes If you discard (abort) the changes made to the DPVM pending database, the configurations remain unaffected and the lock is released.
Page 543: About Copying Dpvm Databases
Chapter 28 Creating Dynamic VSANs Database Merge Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m This section describes how to merge DPVM databases and includes the following topics: About Copying DPVM Databases, page 28-13 •...
Page 544: Default Settings
Chapter 28 Creating Dynamic VSANs Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Default Settings Table 28-1 lists the default settings for DPVM parameters.
Page 545: Inter-Vsan Routing
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring Inter-VSAN Routing This chapter explains the Inter-VSAN routing (IVR) feature and provides details on sharing resources...
Page 546: C H A P T E R 29 Configuring Inter-Vsan Routing
Chapter 29 Configuring Inter-VSAN Routing Inter-VSAN Routing S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About IVR IVR is not supported on the Cisco MDS 9124 Fabric Switch, the Cisco MDS 9134 Fabric Switch, the Note...
Page 547: Ivr Features
Chapter 29 Configuring Inter-VSAN Routing Inter-VSAN Routing S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m IVR Features IVR supports the following features: Accesses resources across VSANs without compromising other VSAN benefits.
Page 548: Ivr Limits Summary
Chapter 29 Configuring Inter-VSAN Routing Inter-VSAN Routing S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Border switch—An IVR-enabled switch that is a member of two or more VSANs.
Page 549: Ivr Nat Requirements And Guidelines
Chapter 29 Configuring Inter-VSAN Routing Inter-VSAN Routing S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m IVR NAT Without Network Address Translation (NAT), IVR requires unique domain IDs for all switches in the fabric.
Page 550: Ivr Vsan Topology
Chapter 29 Configuring Inter-VSAN Routing Inter-VSAN Routing S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 29-2 Extended Link Service Messages Supported by IVR NAT (continued) Link Service Command...
Page 551: Autonomous Fabric Id
Chapter 29 Configuring Inter-VSAN Routing About the IVR Zone Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m IVR topology in auto mode requires Cisco MDS SAN-OS Release 2.1(1a) or later and enabling CFS for Note IVR on all switches in the fabric.
Page 552 Chapter 29 Configuring Inter-VSAN Routing About the IVR Zone Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 29-2 IVR Zone Wizard Icon To migrate to IVR NAT mode click Yes, otherwise click No.
Page 553: Manual Ivr Configuration
Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If you did not enable IVR NAT, verify the transit VSAN or configure the transit VSAN if Fabric Manager Step 7 cannot find an appropriate transit VSAN.
Page 554: About Ivr Nat And Auto Topology
Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring Persistent FC IDs for IVR, page 29-20 •...
Page 555 Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Border switches require Cisco MDS SAN-OS Release 2.1(1a) or later.
Page 556: Configuring Ivr Nat And Ivr Auto Topology
Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring IVR NAT and IVR Auto Topology To configure IVR in NAT mode and IVR topology in auto mode from Fabric Manager, follow these steps: Expand All VSANs and then select IVR in the Logical Domains pane.
Page 557: Configuring Individual Afids
Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Default Fabric ID tab to display the existing default AFIDs.
Page 558: Domain Id Guidelines
Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configure unique domain IDs across all VSANs and switches participating in IVR operations if you •...
Page 559: Border Switch Guidelines
Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Transit VSAN information is common to all IVR zone sets.
Page 560 Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 29-7 Example IVR Topology with Non-Unique VSAN IDs Using AFIDs VSAN 10...
Page 561: Activating A Manually Configured Ivr Topology
Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Repeat this configuration in all IVR-enabled switches or distribute using CFS.
Page 562: Migrating From Ivr Auto Topology Mode To Manual Mode
Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Apply Changes icon to delete the IVR topology.
Page 563: Configuring Ivr Virtual Domains
Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Only add IVR domains in the edge VSANs and not in transit VSANs.
Page 564: Configuring Persistent Fc Ids For Ivr
Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Current VSAN –...
Page 565: Configuring Ivr Logging Levels
Chapter 29 Configuring Inter-VSAN Routing Manual IVR Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Create Row icon to create an FC ID (see Figure 29-12).
Page 566: Ivr Zones And Ivr Zone Sets
Chapter 29 Configuring Inter-VSAN Routing IVR Zones and IVR Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m IVR Zones and IVR Zone Sets As part of the IVR configuration, you need to configure one or more IVR zone to enable cross-VSAN communication.
Page 567: Automatic Ivr Zone Creation
Chapter 29 Configuring Inter-VSAN Routing IVR Zones and IVR Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Automatic IVR Zone Creation Figure 29-14 depicts an IVR zone consisting of four members.
Page 568: Configuring Ivr Zones And Ivr Zone Sets
Chapter 29 Configuring Inter-VSAN Routing IVR Zones and IVR Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring IVR Zones and IVR Zone Sets To create IVR zones and IVR zone sets using Fabric Manager, follow these steps: Choose Zone >...
Page 569 Chapter 29 Configuring Inter-VSAN Routing IVR Zones and IVR Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Permit QoS traffic with Priority—You set the priority from the drop-down menu.
Page 570: About Activating Zone Sets And Using The Force Option
Chapter 29 Configuring Inter-VSAN Routing IVR Zones and IVR Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 29-19 Save Configuration Dialog Box Step 9...
Page 571 Chapter 29 Configuring Inter-VSAN Routing IVR Zones and IVR Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If IVR and iSLB are enabled in the same fabric, at least one switch in the fabric must have both features Note enabled.
Page 572: Recovering An Ivr Full Zone Database
Chapter 29 Configuring Inter-VSAN Routing IVR Zones and IVR Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 29-21 Edit Zone Database Dialog Box Select a Zoneset folder and then click Activate to activate the zone set (shown in...
Page 573: Recovering An Ivr Full Topology
Chapter 29 Configuring Inter-VSAN Routing IVR Zones and IVR Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Choose Edit >...
Page 574: About Luns In Ivr Zoning
Chapter 29 Configuring Inter-VSAN Routing IVR Zones and IVR Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Copy to copy the topology.
Page 575: Clearing The Ivr Zone Database
Chapter 29 Configuring Inter-VSAN Routing Database Merge Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click a zone or zone set in the left pane.
Page 576 Chapter 29 Configuring Inter-VSAN Routing Database Merge Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 29-25 Fabric Merge Consequences Fabrics with...
Page 577: Resolving Database Merge Failures
Chapter 29 Configuring Inter-VSAN Routing Database Merge Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If only some of the switches in the fabrics are running Cisco SAN-OS Release 3.0(3) or later, and the Note number of zone members exceeds 10,000, you must either reduce the number of zone members in the...
Page 578: Default Settings
Chapter 29 Configuring Inter-VSAN Routing Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If the failure is due to exceeding the maximum configuration limits in a fabric where the switches •...
Page 579: About Zoning
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring and Managing Zones Zoning enables you to set up access control between storage devices or user groups.
Page 580: Chapter 30 Configuring And Managing Zone
Chapter 30 Configuring and Managing Zones About Zoning S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Zones can vary in size.
Page 581: Zone Implementation
Chapter 30 Configuring and Managing Zones About Zoning S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-1 Fabric with Two Zones Zone 1...
Page 582 Chapter 30 Configuring and Managing Zones About Zoning S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Each VSAN has a full database and an active database.
Page 583: Active And Full Zone Set Considerations
Chapter 30 Configuring and Managing Zones About Zoning S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Active and Full Zone Set Considerations Before configuring a zone set, consider the following guidelines: Each VSAN can have multiple zone sets but only one zone set can be active at any given time.
Page 584 Chapter 30 Configuring and Managing Zones About Zoning S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-3 Active and Full Zone Sets Full zone set...
Page 585: Using The Quick Config Wizard
Chapter 30 Configuring and Managing Zones Using the Quick Config Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Using the Quick Config Wizard The Quick Config Wizard supports only switch interface zone members.
Page 586 Chapter 30 Configuring and Managing Zones Using the Quick Config Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-4 Discrepancies Dialog Box Step 2...
Page 587 Chapter 30 Configuring and Managing Zones Using the Quick Config Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-5 Quick Config Wizard Step 3...
Page 588: Zone Configuration
Chapter 30 Configuring and Managing Zones Zone Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-6 Confirm Changes Dialog Box Step 6...
Page 589: About The Edit Full Zone Database Tool
Chapter 30 Configuring and Managing Zones Zone Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About the Edit Full Zone Database Tool The Edit Full Zone Database tool allows you to zone across multiple switches and all zoning features are available through the Edit Local Full Zone Database dialog box (see...
Page 590: Configuring A Zone Using The Zone Configuration Tool
Chapter 30 Configuring and Managing Zones Zone Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Interface-based zoning only works with Cisco MDS 9000 Family switches.
Page 591 Chapter 30 Configuring and Managing Zones Zone Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the Create Zone dialog box shown in Figure 30-10.
Page 592: Adding Zone Members
Chapter 30 Configuring and Managing Zones Zone Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-12 Select Zone Dialog Box Step 10...
Page 593: Zone Sets
Chapter 30 Configuring and Managing Zones Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select the members you want to add from the Fabric pane (see Figure 30-13) and click Add to Zone or...
Page 594: About Zone Set Creation
Chapter 30 Configuring and Managing Zones Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About FC Alias Creation, page 30-20 •...
Page 595: Activating A Zone Set
Chapter 30 Configuring and Managing Zones Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Activating a Zone Set Changes to a zone set do not take effect in a full zone set until you activate it.
Page 596 Chapter 30 Configuring and Managing Zones Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-18 Save Configuration Dialog Box Step 6...
Page 597: Displaying Zone Membership Information
Chapter 30 Configuring and Managing Zones Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Displaying Zone Membership Information To display zone membership information for members assigned to zones in Fabric Manager, follow these steps:...
Page 598: Configuring The Default Zone
Chapter 30 Configuring and Managing Zones Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring the Default Zone To permit or deny traffic to members in the default zone using Fabric Manager, follow these steps: Expand a VSAN and then select Default Zone in the Fabric Manager Logical Domains pane.
Page 599: Creating Fc Aliases
Chapter 30 Configuring and Managing Zones Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Creating FC Aliases To create an FC alias using Fabric Manager, follow these steps: Choose Zone >...
Page 600 Chapter 30 Configuring and Managing Zones Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Choose Zone >...
Page 601: Converting Zone Members To Pwwn-Based Members
Chapter 30 Configuring and Managing Zones Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-24 Add Member to Alias Dialog Box Note...
Page 602 Chapter 30 Configuring and Managing Zones Zone Sets S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Yes in the confirmation dialog box to convert that member to pWWN-based membership.
Page 603: Zone Enforcement
Chapter 30 Configuring and Managing Zones Zone Set Distribution S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Zone Enforcement Zoning can be enforced in two ways: soft and hard.
Page 604: Enabling A One-Time Distribution
Chapter 30 Configuring and Managing Zones Zone Set Distribution S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Expand a VSAN and select a zone set in the Logical Domains pane.
Page 605: About Recovering From Link Isolation
Chapter 30 Configuring and Managing Zones Zone Set Distribution S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Recovering from Link Isolation When two switches in a fabric are merged using a TE or E port, these TE and E ports may become isolated when the active zone set databases are different between the two switches or fabrics.
Page 606: Zone Set Duplication
Chapter 30 Configuring and Managing Zones Zone Set Duplication S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-27 Zone Merge Failure Recovery Dialog Box Click the Import Active Zoneset or the Export Active Zoneset radio button.
Page 607: Copying Zone Sets
Chapter 30 Configuring and Managing Zones Zone Set Duplication S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Migrating a Non-MDS Database, page 30-32 •...
Page 608: Backing Up And Restoring Zones
Chapter 30 Configuring and Managing Zones Zone Set Duplication S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Backing Up and Restoring Zones To back up or restore the full zone configuration using Fabric Manager, follow these steps: Choose Zone >...
Page 609: Cloning Zones, Zone Sets, Fc Aliases, And Zone Attribute Groups
Chapter 30 Configuring and Managing Zones Zone Set Duplication S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-30 Edit Local Full Zone Database Dialog Box Step 3...
Page 610: Migrating A Non-Mds Database
Chapter 30 Configuring and Managing Zones Advanced Zone Attributes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-31 Clone Zoneset Dialog Box Step 4...
Page 611: About Zone-Based Traffic Priority
Chapter 30 Configuring and Managing Zones Advanced Zone Attributes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Broadcast Zoning, page 30-35 •...
Page 612: Configuring Default Zone Qos Priority Attributes
Chapter 30 Configuring and Managing Zones Advanced Zone Attributes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-32 Zone Policies Tab in the Information Pane Use the check boxes and drop-down menus to configure QoS on the default zone.
Page 613: Configuring The Default Zone Policy
Chapter 30 Configuring and Managing Zones Advanced Zone Attributes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click OK to save these changes.
Page 614: Configuring Broadcast Zoning
Chapter 30 Configuring and Managing Zones Advanced Zone Attributes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 30-2 Broadcasting Requirements Active Zoning?
Page 615: Configuring A Lun-Based Zone
Chapter 30 Configuring and Managing Zones Advanced Zone Attributes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Caution LUN zoning can only be implemented in Cisco MDS 9000 Family switches.
Page 616: Assigning Luns To Storage Subsystems
Chapter 30 Configuring and Managing Zones Advanced Zone Attributes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-37 Add Member to Zone Dialog Box Click either the WWN or FCID radio button from the Zone By options to create a LUN-based zone.
Page 617: Configuring Read-Only Zones
Chapter 30 Configuring and Managing Zones Displaying Zone Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring Read-Only Zones To configure read-only zones using Fabric Manager, follow these steps: Choose Zone >...
Page 618: Enhanced Zoning
Chapter 30 Configuring and Managing Zones Enhanced Zoning S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enhanced Zoning The zoning feature complies with the FC-GS-4 and FC-SW-3 standards.
Page 619: Changing From Basic Zoning To Enhanced Zoning
Chapter 30 Configuring and Managing Zones Enhanced Zoning S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 30-3 Advantages of Enhanced Zoning (continued) Basic Zoning...
Page 620: Enabling Enhanced Zoning
Chapter 30 Configuring and Managing Zones Enhanced Zoning S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If a switch running Cisco SAN-OS Release 2.0(1b), or later, with enhanced zoning enabled is Note downgraded to Cisco SAN-OS Release 1.3(4), or earlier, the switch comes up in basic zoning...
Page 621: Analyzing A Zone Merge
Chapter 30 Configuring and Managing Zones Enhanced Zoning S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 30-4 Database Zone Merge Status (continued) Local Database...
Page 622: Configuring Zone Merge Control Policies
Chapter 30 Configuring and Managing Zones Compacting the Zone Database for Downgrading S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 30-39 Zone Merge Analysis Dialog Box Step 2...
Page 623: Default Settings
Chapter 30 Configuring and Managing Zones Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Default Settings Table 30-5 lists the default settings for basic zone parameters.
Page 624 Chapter 30 Configuring and Managing Zones Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 30-46 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 625: About Device Aliases
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Distributing Device Alias Services All switches in the Cisco MDS 9000 Family support Distributed Device Alias Services (device alias) on...
Page 626: C H A P T E R 31 Distributing Device Alias Services
Chapter 31 Distributing Device Alias Services Device Alias Databases S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Device Alias Requirements Device aliases have the following requirements: You can only assign device aliases to pWWNs.
Page 627: About Device Alias Distribution
Chapter 31 Distributing Device Alias Services Device Alias Databases S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Discarding Changes, page 31-5 •...
Page 628: About Creating A Device Alias
Chapter 31 Distributing Device Alias Services Device Alias Databases S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Creating a Device Alias When you perform the first device alias task (regardless of which device alias task), the fabric is automatically locked for the device alias feature.
Page 629: Legacy Zone Alias Conversion
Chapter 31 Distributing Device Alias Services Legacy Zone Alias Conversion S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Committing Changes If you commit the changes made to the pending database, the following events occur: The pending database contents overwrites the effective database contents.
Page 630: Device Alias Statistics Cleanup
Chapter 31 Distributing Device Alias Services Legacy Zone Alias Conversion S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The name and definition of the zone alias should not be the same as any existing device alias name.
Page 631: Database Merge Guidelines
Chapter 31 Distributing Device Alias Services Database Merge Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Database Merge Guidelines Refer to the “CFS Merge Support”...
Page 632: Default Settings
Chapter 31 Distributing Device Alias Services Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Default Settings Table 31-2 lists the default settings for device alias parameters.
Page 633 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring Fibre Channel Routing Services and Protocols...
Page 634: C H A P T E R 32 Configuring Fibre Channel Routing Services And Protocols
Chapter 32 Configuring Fibre Channel Routing Services and Protocols About FSPF S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About FSPF FSPF is the protocol currently standardized by the T11 committee for routing in Fibre Channel networks.
Page 635: Redundant Links
Chapter 32 Configuring Fibre Channel Routing Services and Protocols About FSPF S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Redundant Links To further improve on the topology in Figure...
Page 636: Fspf Global Configuration
Chapter 32 Configuring Fibre Channel Routing Services and Protocols FSPF Global Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 32-2 Shutting Down the Switch for the SmartBits Scenario PortChannel Scenario...
Page 637: Configuring Fspf On A Vsan
Chapter 32 Configuring Fibre Channel Routing Services and Protocols FSPF Global Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 32-3 LSR Default Settings LSR Option...
Page 638: Enabling Or Disabling Fspf
Chapter 32 Configuring Fibre Channel Routing Services and Protocols FSPF Interface Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Apply Changes to save these changes, or click Undo Changes to discard any unsaved changes.
Page 639: Configuring Fspf Link Cost
Chapter 32 Configuring Fibre Channel Routing Services and Protocols FSPF Interface Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring FSPF Link Cost To configure FSPF link cost using Fabric Manager, follow these steps: Expand Switches, expand Interfaces and then select FC Physical.
Page 640: Configuring Hello Time Intervals
Chapter 32 Configuring Fibre Channel Routing Services and Protocols FSPF Interface Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring Hello Time Intervals To configure the FSPF Hello time interval using Fabric Manager, follow these steps: Expand Switches, expand Interfaces and then select FC Physical.
Page 641: Configuring Retransmitting Intervals
Chapter 32 Configuring Fibre Channel Routing Services and Protocols FSPF Interface Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m This value must be the same on the switches on both ends of the interface.
Page 642: Displaying The Fspf Database
Chapter 32 Configuring Fibre Channel Routing Services and Protocols FSPF Interface Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Displaying the FSPF Database The FSPF database for a specified VSAN includes the following information: Link State Record (LSR) type...
Page 643: Viewing Fspf Statistics
Chapter 32 Configuring Fibre Channel Routing Services and Protocols FSPF Interface Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 32-7 FSPF Database Information in the LSDB LSRs Tab Click Close to close the dialog box.
Page 644: Fspf Routes
Chapter 32 Configuring Fibre Channel Routing Services and Protocols FSPF Routes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the FSPF interface statistics in the Information pane.
Page 645 Chapter 32 Configuring Fibre Channel Routing Services and Protocols FSPF Routes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 32-10 Fibre Channel Static Route Configuration Dialog Box Click Create to create a static route.
Page 646: About Broadcast And Multicast Routing
Chapter 32 Configuring Fibre Channel Routing Services and Protocols FSPF Routes S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Broadcast and Multicast Routing Broadcast and multicast in a Fibre Channel fabric uses the concept of a distribution tree to reach all switches in the fabric.
Page 647: In-Order Delivery
Chapter 32 Configuring Fibre Channel Routing Services and Protocols In-Order Delivery S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 32-12 Multicast Root Configuration Step 3...
Page 648 Chapter 32 Configuring Fibre Channel Routing Services and Protocols In-Order Delivery S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 32-13 Route Change Delivery Old path...
Page 649: About Reordering Portchannel Frames
Chapter 32 Configuring Fibre Channel Routing Services and Protocols In-Order Delivery S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Reordering PortChannel Frames When a link change occurs in a PortChannel, the frames for the same exchange or the same flow can switch from one path to another faster path.
Page 650: Enabling In-Order Delivery Globally
Chapter 32 Configuring Fibre Channel Routing Services and Protocols In-Order Delivery S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enabling In-Order Delivery Globally To ensure that the in-order delivery parameters are uniform across all VSANs on an MDS switch, enable in-order delivery globally.
Page 651: Default Settings
Chapter 32 Configuring Fibre Channel Routing Services and Protocols Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Expand a fabric and select All VSANS.
Page 652 Chapter 32 Configuring Fibre Channel Routing Services and Protocols Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 32-4 Default FSPF Settings (continued) Parameters...
Page 653: Viewing Dwdm Links
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Dense Wavelength Division Multiplexing About DWDM...
Page 654: C H A P T E R 33 Dense Wavelength Division Multiplexing
Chapter 33 Dense Wavelength Division Multiplexing Viewing DWDM Links S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 33-1 Fabric Manager with ISL Link The ISL’s Physical table displays the connector type as “sfpDwdm”...
Page 655 Chapter 33 Dense Wavelength Division Multiplexing Viewing DWDM Links S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Move the mouse over the link to see the tooltip as DWDM indicating the link type as shown in Step 5 Figure...
Page 656 Chapter 33 Dense Wavelength Division Multiplexing Viewing DWDM Links S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family Fabric Manager Configuration Guide 33-4 OL-8007-10, Cisco MDS SAN-OS Release 3.x...
Page 657: Flogi
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Managing FLOGI, Name Server, FDMI, and RSCN Databases...
Page 658: C H A P T E R 34 Managing Flogi, Name Server, Fdmi, And Rscn Databases
Chapter 34 Managing FLOGI, Name Server, FDMI, and RSCN Databases Name Server Proxy S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 34-1 FLOGI Physical Interfaces Name Server Proxy...
Page 659: About Rejecting Duplicate Pwwn
Chapter 34 Managing FLOGI, Name Server, FDMI, and RSCN Databases Name Server Proxy S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 34-2 Name Server Proxies Step 3...
Page 660: Fdmi
Chapter 34 Managing FLOGI, Name Server, FDMI, and RSCN Databases FDMI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 34-3 Name Server Dialog Box The General tab is the default tab;...
Page 661: Rscn
Chapter 34 Managing FLOGI, Name Server, FDMI, and RSCN Databases RSCN S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m RSCN The Registered State Change Notification (RSCN) is a Fibre Channel service that informs hosts about changes in the fabric.
Page 662: About The Multi-Pid Option
Chapter 34 Managing FLOGI, Name Server, FDMI, and RSCN Databases RSCN S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 34-4 RSCN Statistics About the multi-pid Option...
Page 663: Clearing Rscn Statistics
Chapter 34 Managing FLOGI, Name Server, FDMI, and RSCN Databases RSCN S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 34-5 RSCN Multi-PID Step 3...
Page 664: Configuring The Rscn Timer With Cfs
Chapter 34 Managing FLOGI, Name Server, FDMI, and RSCN Databases Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Before performing a downgrade, make sure that you revert the RCSN timer value in your network to the Note default value.
Page 665 Chapter 34 Managing FLOGI, Name Server, FDMI, and RSCN Databases Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 34-1 Default RSCN Settings Parameters...
Page 666 Chapter 34 Managing FLOGI, Name Server, FDMI, and RSCN Databases Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 34-10 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 667: About Scsi Lun Discovery
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Discovering SCSI Targets This chapter describes the SCSI LUN discovery feature provided in switches in the Cisco MDS 9000...
Page 668: Chapter 35 Discovering Scsi Target
Chapter 35 Discovering SCSI Targets About SCSI LUN Discovery S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Starting SCSI LUN Discovery To begin SCSI LUN discovery using Device Manager, follow these steps: Choose FC >...
Page 669: Displaying Scsi Lun Information
Chapter 35 Discovering SCSI Targets Displaying SCSI LUN Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Apply to begin discovery.
Page 670 Chapter 35 Discovering SCSI Targets Displaying SCSI LUN Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 35-4 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 671: About Ficon
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring FICON Fibre Connection (FICON) interface capabilities enhance the Cisco MDS 9000 Family by supporting...
Page 672: Chapter 36 Configuring Ficon
Chapter 36 Configuring FICON About FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The 32-port Fibre Channel switching module •...
Page 673: Mds-Specific Ficon Advantages
Chapter 36 Configuring FICON About FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You need the MAINFRAME_PKG license to configure FICON parameters.
Page 674 Chapter 36 Configuring FICON About FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-2 VSAN-Specific Fabric Optimization Separate physical fabrics...
Page 675: Fcip Support
Chapter 36 Configuring FICON About FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Addition of ports to a FICON LPAR is a non-disruptive process.
Page 676 Chapter 36 Configuring FICON About FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Refer to the Cisco MDS 9500 Series Hardware Installation Guide and the Cisco MDS 9200 Series Hardware Installation Guide.
Page 677: Ficon Cascading
Chapter 36 Configuring FICON About FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Date and time—Set the date and time on the switch.
Page 678: Ficon Port Numbering
Chapter 36 Configuring FICON FICON Port Numbering S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m FICON Port Numbering With reference to the FICON feature, ports in Cisco MDS switches are identified by a statically defined 8-bit value known as the port number.
Page 679 Chapter 36 Configuring FICON FICON Port Numbering S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-3 Default FICON Port Number in Numbering on the Cisco MDS 9000 Family9509 Switch Module 1 16-Port module...
Page 680 Chapter 36 Configuring FICON FICON Port Numbering S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 36-1 Default FICON Port Numbering in the Cisco MDS 9000 Family Implemented Port Allocation...
Page 681: Port Addresses
Chapter 36 Configuring FICON FICON Port Numbering S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 36-1 Default FICON Port Numbering in the Cisco MDS 9000 Family (continued) Implemented Port Allocation...
Page 682: Installed And Uninstalled Ports
Chapter 36 Configuring FICON FICON Port Numbering S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m FICON port numbers are not changed for ports that are active.
Page 683: Assigning Ficon Port Numbers To Slots
Chapter 36 Configuring FICON FICON Port Numbering S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Assigning FICON Port Numbers to Slots Caution When you assign, change, or release a port number, the port reloads.
Page 684: Fc Id Allocation
Chapter 36 Configuring FICON FICON Port Numbering S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click FICON >...
Page 685: Configuring Ficon
Chapter 36 Configuring FICON Configuring FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring FICON By default FICON is disabled in all switches in the Cisco MDS 9000 Family.
Page 686: Setting Up A Basic Ficon Configuration
Chapter 36 Configuring FICON Configuring FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Using Device Manager, FICON auto-save can be invoked by multiple users logged on to the same FICON-enabled switch.
Page 687 Chapter 36 Configuring FICON Configuring FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-8 Create VSAN Dialog Box Step 2...
Page 688: Manually Enabling Ficon On A Vsan
Chapter 36 Configuring FICON Configuring FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-9 VSAN Dialog Box in Device Manager Enter the VSAN membership information.
Page 689: Suspending A Ficon Vsan
Chapter 36 Configuring FICON Configuring FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-10 All VSANs Table Click anywhere in the row of the VSAN that you want to delete.
Page 690: Assigning Fc Id Last Byte
Chapter 36 Configuring FICON Configuring FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m This is an optional configuration.
Page 691: Allowing The Host To Move The Switch Offline
Chapter 36 Configuring FICON Configuring FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-12 Persistent FcIds Tab Step 3...
Page 692: Allowing The Host To Change Ficon Port Parameters
Chapter 36 Configuring FICON Configuring FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Allowing the Host to Change FICON Port Parameters By default, mainframe users are not allowed to configure FICON parameters on Cisco MDS switches—they can only query the switch.
Page 693: Ficon Information Refresh Note
Chapter 36 Configuring FICON Configuring FICON S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If you disable SNMP in the Cisco MDS switch, you cannot configure FICON parameters using the Fabric Note Manager.
Page 694: Configuring Ficon Ports
Chapter 36 Configuring FICON Configuring FICON Ports S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m FICON-specific configuration changes are immediately saved to the IPL file (see the “FICON •...
Page 695: Configuring Port Blocking
Chapter 36 Configuring FICON Configuring FICON Ports S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Viewing ESCON Style Ports, page 36-26 •...
Page 696: Viewing Escon Style Ports
Chapter 36 Configuring FICON Configuring FICON Ports S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Viewing ESCON Style Ports To view the available and prohibited ESCON style ports using Device Manager, follow these steps: Check the ESCON Style check box to see the available and prohibited ESCON style ports.
Page 697: Assigning A Port Address Name
Chapter 36 Configuring FICON Configuring FICON Ports S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Choose FICON >...
Page 698: Ficon Configuration Files
Chapter 36 Configuring FICON FICON Configuration Files S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Choose FICON >...
Page 699: About Ficon Configuration Files
Chapter 36 Configuring FICON FICON Configuration Files S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Normal configuration files used by Cisco MDS switches include FICON-enabled attributes for a VSAN, Note port number mapping for PortChannels and FCIP interfaces, port number to port address mapping, port...
Page 700: Editing Ficon Configuration Files
Chapter 36 Configuring FICON FICON Configuration Files S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-17 FICON VSANs Dialog Box Highlight the file you want to apply and click Apply File to apply the configuration to the running...
Page 701: Copying Ficon Configuration Files
Chapter 36 Configuring FICON Port Swapping S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Open.
Page 702: About Port Swapping
Chapter 36 Configuring FICON Port Swapping S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If you swap a port in a module that has unlimited oversubscription ratios enabled with a port in a •...
Page 703: Swapping Ports
Chapter 36 Configuring FICON FICON Tape Acceleration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Swapping Ports To swap ports using Device Manager, follow these steps: Select two Fibre Channel ports by holding down the CTRL key and clicking them.
Page 704 Chapter 36 Configuring FICON FICON Tape Acceleration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-20 Host Directly Accessing IBM/STK (StorageTek) Library FICON...
Page 705: Configuring Ficon Tape Acceleration
Chapter 36 Configuring FICON FICON Tape Acceleration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-23 Host Accessing Peer-to-Peer VTS (Virtual Tape Server) OS/390...
Page 706 Chapter 36 Configuring FICON FICON Tape Acceleration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-24 FCIP Tunnels Tab in Fabric Manager Click the Create Row icon to create an FCIP tunnel.
Page 707: Cup In-Band Management
Chapter 36 Configuring FICON CUP In-Band Management S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-25 Create FCIP Tunnel Dialog Box Configure the tunnel with the options shown in...
Page 708 Chapter 36 Configuring FICON CUP In-Band Management S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m CUP is supported by switches and directors in the Cisco MDS 9000 Family.
Page 709: Calculating Ficon Flow Load Balance
Chapter 36 Configuring FICON Calculating FICON Flow Load Balance S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-28 Adding FICON:CUP WWN to Zone Calculating FICON Flow Load Balance...
Page 710: Displaying Ficon Information
Chapter 36 Configuring FICON Displaying FICON Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 36-29 Flow Load Balance Calculator Click Add to enter the source and destination(s) flows.
Page 711: Receiving Ficon Alerts
Chapter 36 Configuring FICON Displaying FICON Information S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Receiving FICON Alerts To receive an alert to indicate any changes in the FICON configuration using Device Manager, follow these steps:...
Page 712: Default Settings
Chapter 36 Configuring FICON Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The director history buffer provides a mechanism to determine the change in the port state from the previous time when a value was contained in the key counter.
Page 713: Common Information Model
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Advanced Features and Concepts This chapter describes the advanced features provided in switches in the Cisco MDS 9000 Family.
Page 714: Chapter 37 Advanced Feature And Concept
Chapter 37 Advanced Features and Concepts Fibre Channel Time Out Values S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Fibre Channel Time Out Values You can modify Fibre Channel protocol related timer values for the switch by configuring the following time out values (TOVs):...
Page 715: Timer Configuration Per-Vsan
Chapter 37 Advanced Features and Concepts Fibre Channel Time Out Values S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 37-1 Configure Timers in Fabric Manager To configure timers in Device Manager, click FC >...
Page 716: About Fctimer Distribution
Chapter 37 Advanced Features and Concepts Fibre Channel Time Out Values S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click FC >...
Page 717: World Wide Names
Chapter 37 Advanced Features and Concepts World Wide Names S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m When you commit the fctimer configuration changes, the effective database is overwritten by the configuration changes in the pending database and all the switches in the fabric receive the same configuration.
Page 718: Displaying Wwn Information
Chapter 37 Advanced Features and Concepts World Wide Names S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Link Initialization WWN Usage, page 37-6 •...
Page 719: Fc Id Allocation For Hbas
Chapter 37 Advanced Features and Concepts FC ID Allocation for HBAs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Apply to save these changes, or click Close to discard any unsaved changes.
Page 720: Verifying The Company Id Configuration
Chapter 37 Advanced Features and Concepts Switch Interoperability S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m New company IDs added to subsequent releases are automatically added to existing company IDs.
Page 721 Chapter 37 Advanced Features and Concepts Switch Interoperability S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m For information about configuring interop modes 2, 3, and 4, refer to the Cisco MDS 9000 Family Switch-to-Switch Interoperability Configuration...
Page 722 Chapter 37 Advanced Features and Concepts Switch Interoperability S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 37-2 Changes in Switch Behavior When Interoperability Is Enabled (continued) Switch Feature...
Page 723: Configuring Interop Mode 1
Chapter 37 Advanced Features and Concepts Switch Interoperability S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring Interop Mode 1 The interop mode1 in Cisco MDS 9000 Family switches can be enabled disruptively or nondisruptively.
Page 724: Verifying Interoperating Status
Chapter 37 Advanced Features and Concepts Switch Interoperability S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The Cisco MDS 9000, Brocade, and McData FC error detect (ED_TOV) and resource allocation Note (RA_TOV) timers default to the same values.
Page 725: Default Settings
Chapter 37 Advanced Features and Concepts Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 37-7 Name Server Dialog Box Click Close to close the dialog box.
Page 726 Chapter 37 Advanced Features and Concepts Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 37-4 Default Settings for Advanced Features Parameters...
Page 727 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m A R T Security...
Page 728 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m...
Page 729 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring FIPS The Federal Information Processing Standards (FIPS) Publication 140-2, Security Requirements for...
Page 730: Chapter 38 Configuring Fip
Chapter 38 Configuring FIPS Configuration Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuration Guidelines Follow these guidelines before enabling FIPS mode.
Page 731 Chapter 38 Configuring FIPS FIPS Self-Tests S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 38-2 System Dialog Box Step 2...
Page 732: Fips Self-Tests
Chapter 38 Configuring FIPS FIPS Self-Tests S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 38-4 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 733: Role-Based Authorization
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring Users and Common Roles The CLI and SNMP use common roles in all switches in the Cisco MDS 9000 Family.
Page 734: Chapter 39 Configuring User And Common Role
Chapter 39 Configuring Users and Common Roles Role-Based Authorization S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Roles Each role can contain multiple users and each user can be part of multiple roles.
Page 735: Deleting Common Roles
Chapter 39 Configuring Users and Common Roles Role-Based Authorization S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the Roles - Create dialog box in Figure 39-2.
Page 736: Modifying The Vsan Policy
Chapter 39 Configuring Users and Common Roles Role-Based Authorization S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You can configure a role so that it only allows tasks to be performed for a selected set of VSANs.
Page 737: Modifying Rules
Chapter 39 Configuring Users and Common Roles Role-Based Authorization S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m In this case, exec CLI commands refer to all commands in the EXEC mode that do not fall in the show, Note debug, and clear, CLI command categories.
Page 738 Chapter 39 Configuring Users and Common Roles Role-Based Authorization S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the Rules dialog box shown in Figure 39-4.
Page 739: Displaying Role-Based Information
Chapter 39 Configuring Users and Common Roles Role Distributions S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Displaying Role-Based Information The rules are displayed by rule number and are based on each role.
Page 740: Committing The Changes
Chapter 39 Configuring Users and Common Roles Role Distributions S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Locking the Fabric The first action that modifies the database creates the pending database and locks the feature in the entire fabric.
Page 741: Discarding The Changes
Chapter 39 Configuring Users and Common Roles Role Distributions S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Discarding the Changes If you discard (abort) the changes made to the pending database, the configuration database remains unaffected and the lock is released.
Page 742: Displaying Roles When Distribution Is Enabled
Chapter 39 Configuring Users and Common Roles User Accounts S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Database Merge Guidelines Fabric merge does not modify the role database on a switch.
Page 743: About Users
Chapter 39 Configuring Users and Common Roles User Accounts S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The password should have the strong characteristics, such as the following: Are at least eight characters long •...
Page 744: Configuring Users
Chapter 39 Configuring Users and Common Roles User Accounts S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Caution Cisco MDS SAN-OS does not support all numeric user names, whether created with TACACS+ or RADIUS, or created locally.
Page 745 Chapter 39 Configuring Users and Common Roles User Accounts S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the Create Users dialog box shown in Figure 39-8.
Page 746: Deleting A User
Chapter 39 Configuring Users and Common Roles SSH Services S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Deleting a User To delete a user using Fabric Manager, follow these steps: Expand Switches >...
Page 747: About Ssh
Chapter 39 Configuring Users and Common Roles SSH Services S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Generating the SSH Server Key Pair, page 39-16 •...
Page 748: Generating The Ssh Server Key Pair
Chapter 39 Configuring Users and Common Roles SSH Services S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Generating the SSH Server Key Pair To generate the SSH server key pair, follow these steps: Expand Switches >...
Page 749: Overwriting A Generated Key Pair
Chapter 39 Configuring Users and Common Roles SSH Services S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Overwriting a Generated Key Pair If the SSH key pair option is already generated for the required version, you can force the switch to overwrite the previously generated key pair.
Page 750: Ssh Authentication Using Digital Certificates
Chapter 39 Configuring Users and Common Roles SSH Services S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If you are logging in to a switch through SSH and you have issued the aaa authentication login Note default none CLI command, you must enter one or more key strokes to log in.
Page 751: Recovering The Administrator Password
Chapter 39 Configuring Users and Common Roles Recovering the Administrator Password S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Caution Cisco MDS SAN-OS does not support all numeric usernames, whether created with TACACS+ or RADIUS, or created locally.
Page 752: Configuring Cisco Acs Servers
Chapter 39 Configuring Users and Common Roles Configuring Cisco ACS Servers S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring Cisco ACS Servers The Cisco Access Control Server (ACS) uses TACACS+ and RADIUS protocols to provide AAA services that ensure a secure environment.When using the AAA server, user management is normally...
Page 753 Chapter 39 Configuring Users and Common Roles Configuring Cisco ACS Servers S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 39-14 Configuring Multiple Roles with SNMPv3 Attributes When Using RADIUS Cisco MDS 9000 Family Fabric Manager Configuration Guide...
Page 754 Chapter 39 Configuring Users and Common Roles Configuring Cisco ACS Servers S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 39-15 Configuring the network-admin Role with SNMPv3 Attributes When Using TACACS+ Cisco MDS 9000 Family Fabric Manager Configuration Guide...
Page 755: Default Settings
Chapter 39 Configuring Users and Common Roles Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 39-16 Configuring Multiple Roles with SNMPv3 Attributes When Using TACACS+ Default Settings...
Page 756 Chapter 39 Configuring Users and Common Roles Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 39-1 Default Switch Security Settings (continued) Parameters...
Page 757: About Snmp Security
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring SNMP The CLI and SNMP use common roles in all switches in the Cisco MDS 9000 Family.
Page 758: Chapter 40 Configuring Snmp
Chapter 40 Configuring SNMP SNMPv3 CLI User Management and AAA Integration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m SNMP Version 1 and Version 2c, page 40-2 •...
Page 759: Cli And Snmp User Synchronization
Chapter 40 Configuring SNMP SNMPv3 CLI User Management and AAA Integration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m SNMPv3 user management can be centralized at the AAA server level.
Page 760: Creating And Modifying Users
Chapter 40 Configuring SNMP Creating and Modifying Users S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You can begin communicating with the agent once your user name is created, your roles are set up by your administrator, and you are added to the roles.
Page 761: Enforcing Snmpv3 Message Encryption
Chapter 40 Configuring SNMP Creating and Modifying Users S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enforcing SNMPv3 Message Encryption By default the SNMP agent allows the securityLevel parameters of authNoPriv and authPriv for the SNMPv3 messages that use user-configured SNMPv3 message encryption with auth and priv keys.
Page 762: Assigning Snmpv3 Users To Multiple Roles
Chapter 40 Configuring SNMP Creating and Modifying Users S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select a VSAN in the Logical Domains pane.
Page 763: Adding Communities
Chapter 40 Configuring SNMP Creating and Modifying Users S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Optionally provide an expiration date for the user and the file name of an SSH key.
Page 764: Snmp Trap And Inform Notifications
Chapter 40 Configuring SNMP SNMP Trap and Inform Notifications S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the name of the community you want to delete.
Page 765: Configuring Snmpv3 Notifications
Chapter 40 Configuring SNMP SNMP Trap and Inform Notifications S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 40-7 Create Destinations Dialog Box Check the switches for which you want to configure a new destination.
Page 766 Chapter 40 Configuring SNMP SNMP Trap and Inform Notifications S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 40-1 lists the Fabric Manager procedures that enable the notifications for Cisco MDS MIBs.
Page 767: Configuring The Notification Target User
Chapter 40 Configuring SNMP SNMP Trap and Inform Notifications S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Check each notification check box that you want to enable.
Page 768: Default Settings
Chapter 40 Configuring SNMP Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 40-8 Events Information Note...
Page 769: Switch Management Security
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring RADIUS and TACACS+ The authentication, authorization, and accounting (AAA) feature verifies the identity of, grants access...
Page 770: Chapter 41 Configuring Radiu And Tacac+
Chapter 41 Configuring RADIUS and TACACS+ Switch AAA S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Fabric Manager Security Options You can access Fabric Manager using the console (serial connection), Telnet, or Secure Shell (SSH).
Page 771: Authentication
Chapter 41 Configuring RADIUS and TACACS+ Switch AAA S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Authentication Authentication is the process of verifying the identity of the person or device accessing the switch.
Page 772: Remote Aaa Services
Chapter 41 Configuring RADIUS and TACACS+ Switch AAA S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Remote AAA Services Remote AAA services provided through RADIUS and TACACS+ protocols have the following advantages over local AAA services:...
Page 773: Aaa Server Monitoring
Chapter 41 Configuring RADIUS and TACACS+ Switch AAA S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Caution Cisco MDS SAN-OS does not support all numeric usernames, whether created with TACACS+ or RADIUS, or created locally.
Page 774: Authentication And Authorization Process
Chapter 41 Configuring RADIUS and TACACS+ Switch AAA S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Authentication and Authorization Process Authentication is the process of verifying the identity of the person managing the switch.
Page 775: Configuring Radius Server Monitoring Parameters
Chapter 41 Configuring RADIUS and TACACS+ Configuring RADIUS Server Monitoring Parameters S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 41-2 Switch Authorization and Authentication Flow Start...
Page 776: About Radius Server Default Configuration
Chapter 41 Configuring RADIUS and TACACS+ Configuring RADIUS Server Monitoring Parameters S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m This section includes the following topics: About RADIUS Server Default Configuration, page 41-8 •...
Page 777: Setting The Default Radius Server Timeout Interval And Retransmits
Chapter 41 Configuring RADIUS and TACACS+ Configuring RADIUS Server Monitoring Parameters S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 41-3 RADIUS Default Settings Step 3...
Page 778: Configuring A Radius Server
Chapter 41 Configuring RADIUS and TACACS+ Configuring RADIUS Server Monitoring Parameters S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring a RADIUS Server To configure a RADIUS server and all its options using Fabric Manager, follow these steps: Expand Switches >...
Page 779: Configuring The Test Idle Timer
Chapter 41 Configuring RADIUS and TACACS+ Configuring RADIUS Server Monitoring Parameters S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enter the test user with the default password.
Page 780: Displaying Radius Server Statistics
Chapter 41 Configuring RADIUS and TACACS+ Configuring RADIUS Server Monitoring Parameters S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see any existing RADIUS servers.
Page 781: About Vendor-Specific Attributes
Chapter 41 Configuring RADIUS and TACACS+ Configuring RADIUS Server Monitoring Parameters S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Vendor-Specific Attributes The Internet Engineering Task Force (IETF) draft standard specifies a method for communicating vendor-specific attributes (VSAs) between the network access server and the RADIUS server.
Page 782: Configuring Tacacs+ Server Monitoring Parameters
Chapter 41 Configuring RADIUS and TACACS+ Configuring TACACS+ Server Monitoring Parameters S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The SNMPv3 authentication protocol options are SHA and MD5.
Page 783: About The Default Tacacs+ Server Encryption Type And Preshared Key
Chapter 41 Configuring RADIUS and TACACS+ Configuring TACACS+ Server Monitoring Parameters S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Timeout value •...
Page 784: About Tacacs+ Servers
Chapter 41 Configuring RADIUS and TACACS+ Configuring TACACS+ Server Monitoring Parameters S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Apply Changes icon to save the changes.
Page 785: About Validating A Tacacs+ Server
Chapter 41 Configuring RADIUS and TACACS+ Configuring TACACS+ Server Monitoring Parameters S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 41-5 Create TACACS+ Server Dialog Box Select the switches that you want to assign as TACACS servers.
Page 786: Periodically Validating A Tacacs+ Server
Chapter 41 Configuring RADIUS and TACACS+ Configuring TACACS+ Server Monitoring Parameters S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You can configure this option to test the server periodically, or you can run a one-time only test.
Page 787: About Custom Attributes For Roles
Chapter 41 Configuring RADIUS and TACACS+ Server Groups S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Custom Attributes for Roles Cisco MDS 9000 Family switches use the TACACS+ custom attribute for service shells to configure roles to which a user belongs.
Page 788: About Configuring Server Groups
Chapter 41 Configuring RADIUS and TACACS+ Server Groups S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The AAA server monitoring feature can mark an AAA server as dead.
Page 789: About Bypassing A Nonresponsive Server
Chapter 41 Configuring RADIUS and TACACS+ AAA Server Distribution S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 41-7 Applications Tab Step 8...
Page 790: Enabling Aaa Server Distribution
Chapter 41 Configuring RADIUS and TACACS+ AAA Server Distribution S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Merge Guidelines for RADIUS and TACACS+ Configurations, page 41-24 •...
Page 791: Displaying The Session Status
Chapter 41 Configuring RADIUS and TACACS+ AAA Server Distribution S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Displaying the Session Status Once the implicit distribution session has started, you can check the session status from Fabric Manager by expanding Switches >...
Page 792: Clearing Sessions
Chapter 41 Configuring RADIUS and TACACS+ MSCHAP Authentication S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To discard RADIUS or TACACS+ distribution using Fabric Manager, follow these steps: Step 1 Expand Switches >...
Page 793: About Enabling Mschap
Chapter 41 Configuring RADIUS and TACACS+ MSCHAP Authentication S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Enabling MSCHAP By default, the switch uses Password Authentication Protocol (PAP) authentication between the switch and the remote server.
Page 794: Local Aaa Services
Chapter 41 Configuring RADIUS and TACACS+ Local AAA Services S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Apply Changes to save the changes.
Page 795 Chapter 41 Configuring RADIUS and TACACS+ Configuring Cisco Access Control Servers S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 41-10 Configuring the network-admin Role When Using RADIUS Cisco MDS 9000 Family CLI Configuration Guide...
Page 796 Chapter 41 Configuring RADIUS and TACACS+ Configuring Cisco Access Control Servers S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 41-11 Configuring Multiple Roles with SNMPv3 Attributes When Using RADIUS Cisco MDS 9000 Family CLI Configuration Guide...
Page 797 Chapter 41 Configuring RADIUS and TACACS+ Configuring Cisco Access Control Servers S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 41-12 Configuring the network-admin Role with SNMPv3 Attributes When Using TACACS+ Cisco MDS 9000 Family CLI Configuration Guide...
Page 798: Default Settings
Chapter 41 Configuring RADIUS and TACACS+ Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 41-13 Configuring Multiple Roles with SNMPv3 Attributes When Using TACACS+ Default Settings...
Page 799 Chapter 41 Configuring RADIUS and TACACS+ Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 41-2 Default Switch Security Settings (continued) Parameters...
Page 800 Chapter 41 Configuring RADIUS and TACACS+ Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 41-32 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 801 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring IPv4 and IPv6 Access Control Lists Cisco MDS 9000 Family switches can route IP version 4 (IPv4) traffic between Ethernet and Fibre...
Page 802: C H A P T E R 42 Configuring Ipv4 And Ipv6 Access Control Lists
Chapter 42 Configuring IPv4 and IPv6 Access Control Lists IPv4-ACL and IPv6-ACL Configuration Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m IPv4-ACL and IPv6-ACL Configuration Guidelines Follow these guidelines when configuring IPv4-ACLs or IPv6-ACLs in any switch or director in the Cisco MDS 9000 Family:...
Page 803: Address Information
Chapter 42 Configuring IPv4 and IPv6 Access Control Lists About Filter Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Address Information The address information is required in each filter.
Page 804: Icmp Information
Chapter 42 Configuring IPv4 and IPv6 Access Control Lists About Filter Contents S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 42-1 TCP and UDP Port Numbers (continued) Protocol...
Page 805: Creating Ipv4-Acls Or Ipv6-Acls With The Ip-Acl Wizard
Chapter 42 Configuring IPv4 and IPv6 Access Control Lists Creating IPv4-ACLs or IPv6-ACLs with the IP-ACL Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Creating IPv4-ACLs or IPv6-ACLs with the IP-ACL Wizard Traffic coming into the switch is compared to IPv4-ACL or IPv6-ACL filters based on the order that the filters occur in the switch.
Page 806: Creating Ipv4-Acls Or Ipv6-Acls In Device Manager
Chapter 42 Configuring IPv4 and IPv6 Access Control Lists Creating IPv4-ACLs or IPv6-ACLs with the IP-ACL Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Up or Down to order the filters in this IP-ACL.
Page 807 Chapter 42 Configuring IPv4 and IPv6 Access Control Lists Creating IPv4-ACLs or IPv6-ACLs with the IP-ACL Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Create and then click Close.
Page 808: Removing Ip Filters From An Existing Ipv4-Acl Or Ipv6-Acl
Chapter 42 Configuring IPv4 and IPv6 Access Control Lists Reading the IP-ACL Log Dump S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Set the transport layer source port range if the protocol chosen is TCP or UDP.
Page 809: Applying An Ip-Acl To An Interface
Chapter 42 Configuring IPv4 and IPv6 Access Control Lists Applying an IP-ACL to an Interface S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m For the input ACL, the log displays the raw MAC information.
Page 810 Chapter 42 Configuring IPv4 and IPv6 Access Control Lists Applying an IP-ACL to an Interface S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The terms in, out, source, and destination are used as referenced by the switch: In—Traffic that arrives at the interface and goes through the switch;...
Page 811: Example Ip-Acl Configuration
Chapter 42 Configuring IPv4 and IPv6 Access Control Lists Example IP-ACL Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the newly associated access list in the list of IP-ACLs.
Page 812 Chapter 42 Configuring IPv4 and IPv6 Access Control Lists Example IP-ACL Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Create an IP filter to allow ICMP ping commands: Step 7 Choose the permit Action and select 1-ICMP from the Protocol drop-down menu.
Page 813: About Cas And Digital Certificates
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring Certificate Authorities and Digital Certificates...
Page 814: C H A P T E R 43 Configuring Certificate Authorities And Digital Certificates
Chapter 43 Configuring Certificate Authorities and Digital Certificates About CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Purpose of CAs and Digital Certificates CAs manage certificate requests and issue certificates to participating entities such as hosts, network devices, or users.
Page 815: Multiple Trusted Ca Support
Chapter 43 Configuring Certificate Authorities and Digital Certificates About CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The following list summarizes the relationship between trust points, RSA key-pairs, and identity certificates: •...
Page 816: Pki Enrollment Support
Chapter 43 Configuring Certificate Authorities and Digital Certificates About CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m PKI Enrollment Support Enrollment is the process of obtaining an identity certificate for the switch that is used for applications like IPsec/IKE or SSH.
Page 817: Peer Certificate Verification
Chapter 43 Configuring Certificate Authorities and Digital Certificates About CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Peer Certificate Verification The PKI support on an MDS switch provides the means to verify peer certificates.
Page 818: Configuring Cas And Digital Certificates
Chapter 43 Configuring Certificate Authorities and Digital Certificates Configuring CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring CAs and Digital Certificates This section describes the tasks you must perform to allow CAs and digital certificates your Cisco MDS switch device to interoperate.
Page 819 Chapter 43 Configuring Certificate Authorities and Digital Certificates Configuring CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 43-1 PKI RSA Key-Pair Information Click Create Row.
Page 820: Creating A Trust Point Ca Association
Chapter 43 Configuring Certificate Authorities and Digital Certificates Configuring CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Create to create the RSA Key-Pair.
Page 821: Copying Files To Bootflash
Chapter 43 Configuring Certificate Authorities and Digital Certificates Configuring CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The OSCP URL must be configured before configuring the revocation checking method.
Page 822: Authenticating The Ca
Chapter 43 Configuring Certificate Authorities and Digital Certificates Configuring CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 43-6 Copy Files Dialog Box Step 4...
Page 823: Confirming Ca Authentication
Chapter 43 Configuring Certificate Authorities and Digital Certificates Configuring CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Command field drop-down menu and select the appropriate option.
Page 824: Configuring Certificate Revocation Checking Methods
Chapter 43 Configuring Certificate Authorities and Digital Certificates Configuring CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring Certificate Revocation Checking Methods During security exchanges with a client (for example, an IKE peer or SSH user), the MDS switch performs the certificate verification of the peer certificate sent by the client and the verification process...
Page 825: Installing Identity Certificates
Chapter 43 Configuring Certificate Authorities and Digital Certificates Configuring CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The challenge password is not saved with the configuration.
Page 826: Ensuring Trust Point Configurations Persist Across Reboots
Chapter 43 Configuring Certificate Authorities and Digital Certificates Configuring CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Ensuring Trust Point Configurations Persist Across Reboots The trust point configuration is a normal Cisco SAN-OS configuration that persists across system reboots only if you copy it explicitly to the startup configuration.
Page 827: Configuring A Crl
Chapter 43 Configuring Certificate Authorities and Digital Certificates Configuring CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 43-9 Pkcs12export Option Exports a Key-Pair Step 4...
Page 828: Deleting Certificates From The Ca Configuration
Chapter 43 Configuring Certificate Authorities and Digital Certificates Configuring CAs and Digital Certificates S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Trust Point Actions tab in the Information pane.
Page 829: Example Configurations
Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Yes or No in the Confirmation dialog box.
Page 830 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Download the CA certificate from the CA that you want to add as the trustpoint CA.
Page 831: Downloading A Ca Certificate
Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enter the name of the certificate file which was copied to bootflash, in the URL field in the bootflash:filename format.
Page 832 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Open button in the File Download dialog box.
Page 833 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select the Base-64 encoded X.509 (CER) on the Certificate Export Wizard dialog box and click Next.
Page 834 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Step 7 Click the Finish button on the Certificate Export Wizard dialog box.
Page 835 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 43-23 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 836: Requesting An Identity Certificate
Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Requesting an Identity Certificate To request an identify certificate from a Microsoft Certificate server using a PKCS#10 certificate signing request (CRS), follow these steps:...
Page 837 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select the Submit a certificate request using a base64 encoded PKCS#10 file or a renewal request Step 3 using a base64 encoded PKCS#7 file radio button and click Next.
Page 838 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Wait one or two days until the certificate is issued by the CA administrator.
Page 839 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select the Check on a pending certificate radio button on the Microsoft Certificate Services web Step 7 interface and click Next.
Page 840 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select Base 64 encoded and click the Download CA certificate link.
Page 841 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Details tab on the Certificate dialog and click the Copy to File button.
Page 842: Revoking A Certificate
Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Step 14 Display the identity certificate in base64-encoded format using the Microsoft Windows type command.
Page 843 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Issued Certificates folder on the Certification Authority tree.
Page 844 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select a reason for the revocation from the Reason code drop-down list, and click Yes.
Page 845: Generating And Publishing The Crl
Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Generating and Publishing the CRL To generate and publish the CRL using the Microsoft CA administrator program, follow these steps: Select Action >...
Page 846: Downloading The Crl
Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Downloading the CRL To download the CRL from the Microsoft CA website, follow these steps:.
Page 847 Chapter 43 Configuring Certificate Authorities and Digital Certificates Example Configurations S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enter the destination file name in the Save As dialog box and click Save.
Page 848: Importingthe Crl
Chapter 43 Configuring Certificate Authorities and Digital Certificates Maximum Limits S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Importingthe CRL To import the CRL to the trust point corresponding to the CA, follow these steps: Step 1...
Page 849: Default Settings
Chapter 43 Configuring Certificate Authorities and Digital Certificates Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 43-1 Maximum Limits for CA and Digital Certificate Feature...
Page 850 Chapter 43 Configuring Certificate Authorities and Digital Certificates Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 43-38 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 851 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring IPsec Network Security IP security (IPsec) protocol is a framework of open standards that provides data confidentiality, data...
Page 852: C H A P T E R 44 Configuring Ipsec Network Security
Chapter 44 Configuring IPsec Network Security About IPsec S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About IPsec IPsec is not supported by the Cisco Fabric Switch for HP c-Class BladeSystem and the Cisco Fabric Note...
Page 853: About Ike
Chapter 44 Configuring IPsec Network Security About IKE S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 44-1 FCIP and iSCSI Scenarios Using MPS-14/2 Modules iSCSI Servers...
Page 854: Using Ipsec
Chapter 44 Configuring IPsec Network Security Using IPsec S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The IPsec feature inserts new headers in existing packets (see the “Configuring the MTU Frame Size”...
Page 855: Ipsec And Ike Terminology
Chapter 44 Configuring IPsec Network Security Using IPsec S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Manually configuring security associations.
Page 856: Supported Ipsec Transforms And Algorithms
Chapter 44 Configuring IPsec Network Security Using IPsec S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Data flow—A grouping of traffic, identified by a combination of source address and mask or prefix, •...
Page 857: Ipsec Digital Certificate Support
Chapter 44 Configuring IPsec Network Security IPsec Digital Certificate Support S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Data Encryption Standard (DES) is used to encrypt packet data and implements the mandatory •...
Page 858: Implementing Ipsec With Cas And Digital Certificates
Chapter 44 Configuring IPsec Network Security IPsec Digital Certificate Support S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 44-2 Two IPsec Switches Without CAs and Digital Certificates Cleartext...
Page 859: How Ca Certificates Are Used By Ipsec Devices
Chapter 44 Configuring IPsec Network Security IPsec Digital Certificate Support S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 44-4 Dynamically Authenticating Devices with a CA Certificate...
Page 860: Configuring Ipsec Using Fcip Wizard
Chapter 44 Configuring IPsec Network Security Configuring IPsec Using FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If the peer asks for a certificate which is signed by a CA that it trusts, then IKE uses that certificate, •...
Page 861 Chapter 44 Configuring IPsec Network Security Configuring IPsec Using FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 44-6 Enabling IPsec on an FCIP Link Click Next.
Page 862 Chapter 44 Configuring IPsec Network Security Configuring IPsec Using FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 44-7 IPSec Configuration The Control tab is the default.
Page 863: Manually Configuring Ipsec And Ike
Chapter 44 Configuring IPsec Network Security Manually Configuring IPsec and IKE S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Manually Configuring IPsec and IKE This section describes how to manually configure IPsec and IKE if you are not using the FCIP Wizard.
Page 864: About Ike Policy Negotiation
Chapter 44 Configuring IPsec Network Security Manually Configuring IPsec and IKE S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m IKE version 2 (IKEv2) is a simplified and more efficient version and does not interoperate with •...
Page 865: Configuring An Ike Policy
Chapter 44 Configuring IPsec Network Security Manually Configuring IPsec and IKE S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m When you configure the hash algorithm, the corresponding HMAC version is used as the authentication Note algorithm.
Page 866: Optional Ike Parameter Configuration
Chapter 44 Configuring IPsec Network Security Optional IKE Parameter Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 44-10 Create IKE Step 4...
Page 867: Configuring The Keepalive Time For A Peer
Chapter 44 Configuring IPsec Network Security Optional IKE Parameter Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Only IKE v1 is supported to build IPsec between 2.x and 3.x MDS switches.
Page 868: Configuring The Initiator Version
Chapter 44 Configuring IPsec Network Security Optional IKE Parameter Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 44-11 IKE Configuration Select the Global tab.
Page 869 Chapter 44 Configuring IPsec Network Security Optional IKE Parameter Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the IKE configuration in the Information pane (see Figure 44-13).
Page 870: Clearing Ike Tunnels Or Domains
Chapter 44 Configuring IPsec Network Security Optional IKE Parameter Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Create to create this initiator version or click Close to discard any unsaved changes.
Page 871: Crypto Ipv4-Acls
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 44-16 IKE Configuration Click the Pre-Shared AuthKey tab in the Information pane.
Page 872: About Crypto Ipv4-Acls
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring Perfect Forward Secrecy, page 44-35 •...
Page 873 Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The deny option prevents traffic from being protected by crypto.
Page 874: Mirror Image Crypto Ipv4-Acls
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m For IPsec to interoperate effectively with Microsoft iSCSI initiators, specify the TCP protocol and •...
Page 875: The Any Keyword In Crypto Ipv4-Acls
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m In case 4, an SA cannot be established because SAs are always requested according to the crypto IPv4-ACLs at the initiating packet's end.
Page 876: Configuring Transform Sets
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m When you enable IPsec, the Cisco SAN-OS software automatically creates a default transform set Note (ipsec_default_tranform_set) using AES-128 encryption and SHA-1 authentication algorithms.
Page 877 Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 44-19 IPsec Configuration Click the Transform Set tab in the Information pane.
Page 878: About Crypto Map Entries
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Crypto Map Entries Once you have created the crypto IPv4-ACLs and transform sets, you can create crypto map entries that combine the various parts of the IPsec SA, including the following:...
Page 879: Crypto Map Configuration Guidelines
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Crypto Map Configuration Guidelines When configuring crypto map entries, follow these guidelines: •...
Page 880: About Sa Lifetime Negotiation
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 44-22 Existing Crypto Maps Step 3...
Page 881: Setting The Sa Lifetime
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To specify SA lifetime negotiation values, you can optionally configure the lifetime value for a specified crypto map.
Page 882: About The Autopeer Option
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see more columns shown in Figure 44-26.
Page 883: Configuring The Autopeer Option
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 44-27 iSCSI with End-to-End IPsec Using the auto-peer Option Subnet X...
Page 884: About Perfect Forward Secrecy
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 44-28 IPsec Configuration Choose the CryptoMap Set Entry tab.
Page 885: Configuring Perfect Forward Secrecy
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring Perfect Forward Secrecy To configure the PFS value using Fabric Manager, follow these steps: Expand Switches >...
Page 886: About Crypto Map Set Application
Chapter 44 Configuring IPsec Network Security Crypto IPv4-ACLs S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Crypto Map Set Application You need to apply a crypto map set to each interface through which IPsec traffic will flow.
Page 887: Ipsec Maintenance
Chapter 44 Configuring IPsec Network Security IPsec Maintenance S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Interfaces tab.
Page 888 Chapter 44 Configuring IPsec Network Security Global Lifetime Values S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Assuming that the particular crypto map entry does not have lifetime values configured, when the switch requests new SAs it will specify its global lifetime values in the request to the peer;...
Page 889: Default Settings
Chapter 44 Configuring IPsec Network Security Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Default Settings Table 44-3 lists the default settings for IKE parameters.
Page 890 Chapter 44 Configuring IPsec Network Security Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 44-40 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 891: About Fabric Authentication
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring FC-SP and DHCHAP Fibre Channel Security Protocol (FC-SP) capabilities provide switch-switch and host-switch...
Page 892: Dhchap
Chapter 45 Configuring FC-SP and DHCHAP DHCHAP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 45-1 Switch and Host Authentication Trusted hosts...
Page 893: Chapter 45 Configuring Fc-Sp And Dhchap
Chapter 45 Configuring FC-SP and DHCHAP DHCHAP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configure the hash algorithm and DH group.
Page 894: About Enabling Dhchap
Chapter 45 Configuring FC-SP and DHCHAP DHCHAP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About Enabling DHCHAP By default, the DHCHAP feature is disabled in all switches in the Cisco MDS 9000 Family.
Page 895: About Dhchap Authentication Modes
Chapter 45 Configuring FC-SP and DHCHAP DHCHAP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About DHCHAP Authentication Modes The DHCHAP authentication status for each interface depends on the configured DHCHAP port mode.
Page 896: About The Dhchap Hash Algorithm
Chapter 45 Configuring FC-SP and DHCHAP DHCHAP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 45-3 FC-SP (DHCHAP) Interface Modes Step 3...
Page 897: About The Dhchap Group Settings
Chapter 45 Configuring FC-SP and DHCHAP DHCHAP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About the DHCHAP Group Settings All switches in the Cisco MDS Family support all DHCHAP groups specified in the standard: 0 (null DH group, which does not perform the Diffie-Hellman exchange), 1, 2, 3, or 4.
Page 898: Configuring Dhchap Passwords For The Local Switch
Chapter 45 Configuring FC-SP and DHCHAP DHCHAP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring DHCHAP Passwords for the Local Switch To configure the DHCHAP password for the local switch using Fabric Manager, follow these steps: Expand Switches >...
Page 899: About The Dhchap Timeout Value
Chapter 45 Configuring FC-SP and DHCHAP DHCHAP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 45-6 Enable FC-SP Dialog Box Click Apply to save the updated password.
Page 900: Configuring Dhchap Aaa Authentication
Chapter 45 Configuring FC-SP and DHCHAP Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Apply Changes icon to save the updated information.
Page 901: About Port Security
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring Port Security All switches in the Cisco MDS 9000 Family provide port security features that reject intrusion attempts...
Page 902: Chapter 46 Configuring Port Security
Chapter 46 Configuring Port Security About Port Security S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m All intrusion attempts are reported to the SAN administrator through system messages.
Page 903: Port Security Activation
Chapter 46 Configuring Port Security Port Security Configuration Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If you enable auto-learning before activating port security, you cannot activate until auto-learning is Note disabled.
Page 904: Configuring Port Security With Auto-Learning Without Cfs
Chapter 46 Configuring Port Security Port Security Configuration Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Activate port security on each VSAN.
Page 905: Configuring Port Security Using Wizard
Chapter 46 Configuring Port Security Port Security Configuration Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Activate port security on each VSAN.
Page 906 Chapter 46 Configuring Port Security Port Security Configuration Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 46-1 Tools >...
Page 907 Chapter 46 Configuring Port Security Port Security Configuration Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 46-3 Select Master Switch Page Step 4...
Page 908 Chapter 46 Configuring Port Security Port Security Configuration Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 46-4 Edit and Activate Configuration Page Step 6...
Page 909: Enabling Port Security
Chapter 46 Configuring Port Security Enabling Port Security S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Finish to complete the Port Security Configuration for the selected switch.
Page 910: Activating Port Security
Chapter 46 Configuring Port Security Port Security Activation S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Enable CFS on all participating switches in the VSAN by clicking each entry in the Global column and Step 3 selecting enable.
Page 911: Database Activation Rejection
Chapter 46 Configuring Port Security Activating Port Security S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the port security configuration for that VSAN in the Information pane.
Page 912: Database Reactivation
Chapter 46 Configuring Port Security Activating Port Security S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Actions tab.
Page 913: Displaying Activated Port Security Settings
Chapter 46 Configuring Port Security Activating Port Security S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click Apply Changes to save these changes or click Undo Changes to discard any unsaved changes.
Page 914: Auto-Learning
Chapter 46 Configuring Port Security Auto-learning S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Expand a VSAN and select Port Security in the Logical Domains pane.
Page 915: Disabling Auto-Learning
Chapter 46 Configuring Port Security Auto-learning S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click in the Action column under Activation, next to the switch or VSAN on which you want to activate Step 3 port security.
Page 916: Authorization Scenarios
Chapter 46 Configuring Port Security Auto-learning S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 46-1 Authorized Auto-Learning Device Requests (continued) Condition Device (pWWN, nWWN, sWWN)
Page 917: Port Security Manual Configuration
Chapter 46 Configuring Port Security Port Security Manual Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 46-2 Authorization Results for Scenario (continued) Device Connection Request...
Page 918: Adding Authorized Port Pairs
Chapter 46 Configuring Port Security Port Security Manual Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m By saving the running configuration, you save the configuration database and activated entries in the •...
Page 919: Port Security Configuration Distribution
Chapter 46 Configuring Port Security Port Security Configuration Distribution S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Expand a VSAN and select Port Security in the Logical Domains pane.
Page 920: Activation And Auto-Learning Configuration Distribution
Chapter 46 Configuring Port Security Port Security Configuration Distribution S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Click the Control tab.
Page 921: Database Merge Guidelines
Chapter 46 Configuring Port Security Database Merge Guidelines S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 46-3 Scenarios for Activation and Auto-learning Configurations in Distributed Mode Scenario...
Page 922: Database Interaction
Chapter 46 Configuring Port Security Database Interaction S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Verify that the combined number of configurations for each VSAN in both databases does not •...
Page 923: Port Security Database Copy
Chapter 46 Configuring Port Security Database Interaction S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 46-11 Port Security Database Scenarios Switch 1...
Page 924: Port Security Database Deletion
Chapter 46 Configuring Port Security Database Interaction S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To copy the active database to the configuration database, using Fabric Manager, follow these steps: Step 1 Expand a Fabric, expand a VSAN and then select Port Security in the Logical Domains pane.
Page 925: Default Settings
Chapter 46 Configuring Port Security Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Select the Statistics tab.
Page 926 Chapter 46 Configuring Port Security Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 46-26 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 927: About Fabric Binding
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring Fabric Binding This chapter describes the fabric binding feature provided in the Cisco MDS 9000 Family of directors...
Page 928: Fabric Binding Enforcement
Chapter 47 Configuring Fabric Binding About Fabric Binding S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 47-1 Fabric Binding and Port Security Comparison Fabric Binding...
Page 929: Chapter 47 Configuring Fabric Binding
Chapter 47 Configuring Fabric Binding Fabric Binding Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Fabric Binding Configuration To configure fabric binding in each switch in the fabric, follow these steps.
Page 930: Fabric Binding Activation
Chapter 47 Configuring Fabric Binding Fabric Binding Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m To configure a list of sWWNs and domain IDs for a FICON VSAN, follow these steps: Command Purpose...
Page 931: Forcing Fabric Binding Activation
Chapter 47 Configuring Fabric Binding Fabric Binding Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m By default, the fabric binding feature is not activated.
Page 932: Clearing The Fabric Binding Statistics
Chapter 47 Configuring Fabric Binding Fabric Binding Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Use the fabric-binding database diff active vsan command to view the differences between the •...
Page 933 Chapter 47 Configuring Fabric Binding Fabric Binding Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Example 47-2 Displays Active Fabric Binding Information switch# show fabric-binding database active --------------------------------------------------...
Page 934 Chapter 47 Configuring Fabric Binding Fabric Binding Configuration S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Statistics For VSAN: 345 ------------------------ Number of sWWN permit: 0...
Page 935: Default Settings
Chapter 47 Configuring Fabric Binding Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m VSAN Switch WWN [domain] Last-Time [Repeat count] Reason...
Page 936 Chapter 47 Configuring Fabric Binding Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 47-2 Default Fabric Binding Settings Parameters...
Page 937 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m A R T IP Services...
Page 938 S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m...
Page 939: About Fcip
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring FCIP Cisco MDS 9000 Family IP storage (IPS) services extend the reach of Fibre Channel SANs by using...
Page 940: Chapter 48 Configuring Fcip
Chapter 48 Configuring FCIP About FCIP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-1 Fibre Channel SANs Connected by FCIP Virtual (E)ISL...
Page 941: Fcip Links
Chapter 48 Configuring FCIP About FCIP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-2 FCIP Links and Virtual ISLs Switch A...
Page 942: Fcip Profiles
Chapter 48 Configuring FCIP About FCIP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m FCIP Profiles The FCIP profile contains information about the local IP address and TCP parameters.
Page 943: Fibre Channel Portchannels
Chapter 48 Configuring FCIP About FCIP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Fibre Channel PortChannels Figure 48-4 provides an example of a PortChannel-based load-balancing configuration.
Page 944: Vrrp
Chapter 48 Configuring FCIP About FCIP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m VRRP Figure 48-6 displays a Virtual Router Redundancy Protocol (VRRP)-based high availability FCIP...
Page 945: Ethernet Portchannels And Fibre Channel Portchannels
Chapter 48 Configuring FCIP Configuring FCIP S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The FCIP link stays up during the failover.
Page 946: Enabling Fcip
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Verifying Interfaces and Extended Link Protocol, page 48-17 •...
Page 947 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-9 FCIP Wizard You see the switch selections as shown in...
Page 948 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-11 Enabling IPsec on an FCIP link Step 5...
Page 949 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-12 Specify IP Address/Route Step 7...
Page 950 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-13 Specifying Tunnel Properties Step 9...
Page 951 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-14 Create FCIP ISL Cisco MDS 9000 Family CLI Configuration Guide...
Page 952 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-15 Enter FICON Port Address Figure 48-16...
Page 953: Basic Fcip Configuration
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-17 Enter FICON Port Address Step 13...
Page 954: Creating Fcip Profiles
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Creating FCIP Profiles You must assign a local IP address of a Gigabit Ethernet interface or subinterface to the FCIP profile to create an FCIP profile.
Page 955: Verifying Interfaces And Extended Link Protocol
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-19 Assigning Profiles to Each Gigabit Ethernet Interface Endpoint...
Page 956: Launching Cisco Transport Controller
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Launching Cisco Transport Controller Cisco Transport Controller (CTC) is a task-oriented tool used to install, provision, and maintain network elements.
Page 957: Configuring Tcp Parameters
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Configuring TCP Parameters You can control TCP behavior in a switch by configuring the following TCP parameters.
Page 958 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Path MTUs Path MTU (PMTU) is the minimum MTU on the IP network between the two endpoints of the FCIP link.
Page 959: Advanced Fcip Interface Configuration
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m If the average rate of the Fibre Channel traffic is greater than min-available-bandwidth multiplied •...
Page 960: Configuring Peers
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Time Stamp Control, page 48-25 •...
Page 961 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m From Device manager, choose IP >...
Page 962 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Set the ProfileID and TunnelID fields.
Page 963: Active Connections
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Active Connections You can configure the required mode for initiating a TCP connection.
Page 964 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-20 FCIP B Port and Fibre Channel E Port E port...
Page 965 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The IPS module and MPS-14/2 module support FCIP links that originate from a B port SAN extender device by implementing the B access ISL protocol on a Gigabit Ethernet interface.
Page 966: Quality Of Service
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m You see the FCIP Tunnels dialog box.
Page 967: Advanced Fcip Features
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m An FCIP interface can be a member of any VSAN (see Chapter 26, “Configuring and Managing •...
Page 968 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-22 FCIP Link Write Acceleration Initiator...
Page 969: Configuring Fcip Write Acceleration
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Caution FCIP write acceleration with FCIP ports as members of PortChannels in Cisco MDS SAN-OS Release 2.0(1b) and later are incompatible with the FCIP write acceleration in earlier releases.
Page 970: Fcip Tape Acceleration
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-24 FCIP Tunnels (Advanced) Tab Step 3...
Page 971 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-25 FCIP Link Tape Acceleration for Write Operations Backup...
Page 972 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 48-26 FCIP Link Tape Acceleration for Read Operations Restore...
Page 973 Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m amount of data has been buffered at the local Cisco MDS switch, the read operations to the tape drive are flow controlled by the remote Cisco MDS switch by not issuing any further reads.
Page 974: Configuring Fcip Tape Acceleration
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 48-1 Correct LUN Mapping Example with Single Host Access Host...
Page 975: Fcip Compression
Chapter 48 Configuring FCIP Using the FCIP Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Set the RemoteIPAddress and RemoteTCPPort fields for the peer IP address you are configuring.
Page 976: Default Settings
Chapter 48 Configuring FCIP Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 48-5 lists the performance settings for different cards.
Page 977 Chapter 48 Configuring FCIP Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 48-6 Default FCIP Parameters (continued) Parameters...
Page 978 Chapter 48 Configuring FCIP Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 48-40 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 979: Configuring The San Extension Tuner
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring the SAN Extension Tuner The SAN extension tuner (SET) feature is unique to the Cisco MDS 9000 Family of switches.
Page 980: C H A P T E R 49 Configuring The San Extension Tuner
Chapter 49 Configuring the SAN Extension Tuner About the SAN Extension Tuner S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 49-1 SCSI Command Generation to the Virtual Target Virtual initiator...
Page 981: Data Pattern
Chapter 49 Configuring the SAN Extension Tuner License Prerequisites S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 49-2 N Port Tuning Configuration Physical Example Cisco MDS Switch...
Page 982: Data Pattern
Chapter 49 Configuring the SAN Extension Tuner Using the SAN Extension Tuner Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Tuning Guidelines To tune the required FCIP link, follow these steps: Configure the nWWN for the virtual N ports on the switch.
Page 983: Using The San Extension Tuner Wizard
Chapter 49 Configuring the SAN Extension Tuner Using the SAN Extension Tuner Wizard S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 49-4 Select Ethernet Port Pair Dialog Box Select the Ethernet port pairs that correspond to the FCIP link you want to tune and click Next.
Page 984 Chapter 49 Configuring the SAN Extension Tuner Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Optionally, change the default settings for the transfer data size and the number of concurrent SCSI read Step 4 and write commands as follows:...
Page 985: Default Settings
Chapter 49 Configuring the SAN Extension Tuner Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Table 49-1 Default Tuning Parameters Parameters...
Page 986 Chapter 49 Configuring the SAN Extension Tuner Default Settings S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Cisco MDS 9000 Family CLI Configuration Guide 49-8 OL-16184-01, Cisco MDS SAN-OS Release 3.x...
Page 987: About Iscsi
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m C H A P T E R Configuring iSCSI Cisco MDS 9000 Family IP storage (IPS) services extend the reach of Fibre Channel SANs by using...
Page 988: Chapter 50 Configuring Iscsi
Chapter 50 Configuring iSCSI About iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The iSCSI feature consists of routing iSCSI requests and responses between iSCSI hosts in an IP network and Fibre Channel storage devices in the Fibre Channel SAN that are accessible from any Fibre Channel interface of the Cisco MDS 9000 Family switch (see...
Page 989 Chapter 50 Configuring iSCSI About iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m For the Fibre Channel SAN view, the IPS module or MPS-14/2 module presents iSCSI hosts as a virtual Fibre Channel host.
Page 990: About Iscsi Configuration Limits
Chapter 50 Configuring iSCSI Configuring iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m About iSCSI Configuration Limits iSCSI configuration has the following limits: The maximum number of iSCSI and iSLB initiators supported in a fabric is 2000.
Page 991: Creating Iscsi Interfaces
Chapter 50 Configuring iSCSI Configuring iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 50-5 iSCSI Tables in Fabric Manager The Control tab is the default tab.
Page 992 Chapter 50 Configuring iSCSI Configuring iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 50-6 iSCSI Wizard Configure Initiator Dialog Box Step 2...
Page 993: Presenting Fibre Channel Targets As Iscsi Targets
Chapter 50 Configuring iSCSI Configuring iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The iSCSI wizard turns on the Dynamic Import FC Targets feature.
Page 994: Dynamic Mapping
Chapter 50 Configuring iSCSI Configuring iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m The IPS module or MPS-14/2 module does not import Fibre Channel targets to iSCSI by default.
Page 995 Chapter 50 Configuring iSCSI Configuring iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 50-9 Dynamic Target Mapping MDS-mgntIP...
Page 996: Static Mapping
Chapter 50 Configuring iSCSI Configuring iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Static Mapping You can manually (statically) create an iSCSI target by assigning a user-defined unique iSCSI node name to it.
Page 997 Chapter 50 Configuring iSCSI Configuring iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 50-13 Create iSCSI Targets Dialog Box Step 4...
Page 998: Iscsi Virtual Target Configuration Examples
Chapter 50 Configuring iSCSI Configuring iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Advertising Static iSCSI Targets You can limit the Gigabit Ethernet interfaces through which static iSCSI targets are advertised.
Page 999 Chapter 50 Configuring iSCSI Configuring iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Figure 50-15 Mapping LUNs to an iSCSI Node Name iSCSI view of storage device...
Page 1000: Presenting Iscsi Hosts As Virtual Fibre Channel Hosts
Chapter 50 Configuring iSCSI Configuring iSCSI S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m Presenting iSCSI Hosts as Virtual Fibre Channel Hosts The IPS module or MPS-14/2 module connects to the Fibre Channel storage devices on behalf of the iSCSI host to send commands and transfer data to and from the storage devices.

This manual is also suitable for:

Aj732a - cisco mds 9134 fabric switch Cisco mds 9124 - fabric switch Cisco mds 9216a - fabric switch Cisco mds 9222i - multiservice modular fabric switch Cisco mds 9120 - fabric switch Cisco mds 9124 - fabric switch ... Show all