C H A P T E R
17
Configuring Port Security
This chapter describes how to configure port security.
This chapter includes the following sections:
•
Configuring Port Security, page 245
Configuring Port Security
Cisco SAN switches provide port security features that reject intrusion attempts and report these intrusions
to the administrator.
Port security is supported on virtual Fibre Channel ports and physical Fibre Channel ports.
Note
Information About Port Security
Typically, any Fibre Channel device in a SAN can attach to any SAN switch port and access SAN services
based on zone membership. Port security features prevent unauthorized access to a switch port, using the
following methods:
•
Login requests from unauthorized Fibre Channel devices (N ports) and switches (xE ports) are rejected.
•
All intrusion attempts are reported to the SAN administrator through system messages.
•
Configuration distribution uses the CFS infrastructure, and is limited to those switches that are CFS
capable. Distribution is disabled by default.
•
Configuring the port security policy requires the Storage Protocol Services license.
Port security is supported on virtual Fibre Channel ports and physical Fibre Channel ports.
Note
Cisco Nexus 5500 Series NX-OS SAN Switching Configuration Guide, Release 7.x
OL-30895-01
245