S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m
Configuring Port Security
All switches in the Cisco MDS 9000 Family provide port security features that reject intrusion attempts
and report these intrusions to the administrator.
Note
Port security is only supported for Fibre Channel ports.
This chapter includes the following sections:
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
About Port Security
Typically, any Fibre Channel device in a SAN can attach to any SAN switch port and access SAN
services based on zone membership. Port security features prevent unauthorized access to a switch port
in the Cisco MDS 9000 Family in the following ways:
•
OL-16184-01, Cisco MDS SAN-OS Release 3.x
About Port Security, page 46-1
Port Security Configuration Guidelines, page 46-3
Enabling Port Security, page 46-9
Activating Port Security, page 46-10
About Enabling Auto-learning, page 46-14
Port Security Manual Configuration, page 46-17
Port Security Configuration Distribution, page 46-19
Database Merge Guidelines, page 46-21
Port Security Activation, page 46-10
Auto-learning, page 46-14
Port Security Manual Configuration, page 46-17
Port Security Configuration Distribution, page 46-19
Database Merge Guidelines, page 46-21
Database Interaction, page 46-22
Database Merge Guidelines, page 46-21
Login requests from unauthorized Fibre Channel devices (Nx ports) and switches (xE ports) are
rejected.
46
C H A P T E R
Cisco MDS 9000 Family CLI Configuration Guide
46-1