HP 8/8 Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20
HP 8/8 Manual
View all HP 8/8 manuals
Add to My Manuals
Save this manual to your list of manuals |
HP 8/8 manual content summary:
- HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 1
53-1001194-01 November 24, 2008 Web Tools Administrator's Guide Supporting Fabric OS v6.2.0 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 2
any equipment, equipment feature, or service offered or to be offered by Brocade. Brocade reserves the right to make brocade.com/support/oscd. Brocade Communications Systems, Incorporated Corporate and Latin American Headquarters Brocade Communications Systems, Inc. 1745 Technology Drive San - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 3
April 2003 Advanced Web Tools User's 53-0000522-04 Insistent Domain ID Mode. October 2003 Guide v4.1.2 Port Swapping information. Minor editorial changes Advanced Web Tools Administrator's Guide, v4.2.0 53-0000522-05 Updates to support new switch types: Brocade 3250, 3850, 24000. Structural - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 4
Data Center Fabric Manager (DCFM). July 2008 53-1001133-01 Updates to add support for Brocade Encryption Switch and FS8-18 Encryption Blade. August 2008 Web Tools Administrator's Guide 53-1001194-01 Updates to add support for Virtual November 2008 Fabrics, IPSec, and consistency with DCFM. - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 5
Web Tools Administrator's Guidev 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 6
viWeb Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 7
xxiii Supported hardware information xxvii Brocade resources and DCFM 2 Web Tools features enabled by the EGM license 2 Web by Java applications . . . 6 Java installation Java plug-in on Windows 8 Java plug-in configuration 8 Configuring the Java plug-in for Windows 9 Configuring the Java - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 8
client window 36 Collecting logs for troubleshooting 36 Managing Fabrics and Switches In this chapter 39 Fabric and switch management overview 39 Opening the Switch Administration window 41 Refreshing the Switch Administration window 41 Configuring IP and netmask information 42 Configuring - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 9
the Switch View 63 Viewing Logical ports 65 Maintaining Configurations and Firmware In this chapter 67 Creating a configuration backup file 67 Restoring a configuration 69 Admin Domain configuration maintenance 71 Uploading and downloading from USB storage 72 Web Tools Administrator's Guide - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 10
SA firmware download 75 Switch configurations for mixed fabrics 76 Enabling interoperability 77 Managing Your Ports In this chapter 79 Port management overview 79 Opening the Port Administration window 79 Port Administration window components 81 Controllable ports 83 Configuring FC ports 84 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 11
ports or switches to the fabric 106 Activating or deactivating an Admin Domain 107 Modifying Admin Domain members 107 Renaming Admin Domains 109 Deleting Admin Domains 109 Clearing the Admin Domain configuration 109 Enabling 118 User- Creating a SCSI vs. IP Traffic Graph 127 Creating SCSI - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 12
133 Opening the Zone Administration window 133 Setting the default zoning mode 133 Zoning management 133 Refreshing fabric information about the enabled zone configuration 147 Adding a WWN to multiple aliases and zones 147 Removing a WWN from multiple aliases and zones 148 Replacing a WWN - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 13
of a switch 156 Port LED interpretation 158 Port icon colors 159 LED representations 159 Brocade 48000 Director LEDs 160 Using the FC-FC Routing Service In this chapter 161 Fibre Channel routing overview 161 Supported switches for Fibre Channel routing 162 Setting up FC-FC routing 162 FC-FC - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 14
on a switch 184 Configuring the e-mail alert 184 Administering Extended Fabrics In this chapter 187 Extended link buffer allocation overview 187 Configuring a port for long distance 189 Administering the iSCSI Target Gateway In this chapter 191 iSCSI service overview 191 Supported platforms - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 15
the iSCSI Setup wizard 196 Activating the iSCSI feature 196 Encryption Services for the iSCSI Gateway 196 Configuring the IP interface 197 Editing an IP Address 198 Configuring the IP route (optional 199 Editing the IP route 199 Creating iSCSI virtual targets 200 Using Easy Create to - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 16
217 Deleting user-defined accounts 219 Changing user account parameters 220 Maintaining passwords 221 Access control list policy configuration 225 Virtual Fabrics considerations 225 Admin Domain considerations 225 Creating an SCC, DCC, or FCS policy 225 Editing an SCC, DCC, or FCS policy 227 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 17
selector 255 Manually creating an SA 257 Editing an IKE or IPSec policy 258 Deleting an IKE or IPSec policy 258 Establishing authentication policies for HBAs 259 Administering FICON CUP Fabrics In this chapter 263 FICON CUP fabrics overview 263 Enabling port-based routing 264 Enabling or - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 18
xvi Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 19
57 Event Filter dialog box 58 Name Server window 60 Default logical switch 63 Logical switch selector 63 Logical switch, fabric ID 2 64 Logical port properties 65 Upload/Download tab 68 USB configuration upload 68 Upload/Download tab 70 Web Tools Administrator's Guide xvii 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 20
configuration download 70 USB Port Management wizard 73 Firmware Download tab 74 Firmware Download tab for bladed switches 76 Configure tab, Interoperability tab 77 Port Administration window, FC Ports, Basic Mode 80 Port Administration window, FC Ports, Advanced Mode 81 Port Administration - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 21
for the FC4-32 port blade in the Brocade 48000 160 Figure 79 FC Routing module in Disabled mode with General tab selected 164 Figure 80 FC Routing module with LSAN Fabrics tab selected 165 Figure 81 FC Routing module with EX_Ports tab selected 166 Figure 82 FC Routing module with LSAN Devices - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 22
Mode 259 Figure 133 Device authentication Shared Secret Keys tab 260 Figure 134 FICON CUP management 265 Figure 135 FICON CUP busy error 268 Figure 136 Port CUP Connectivity Configuration dialog box 271 Figure 137 Switch RNID Information 272 xx Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 23
119 Supported port types for Brocade switches 120 Zoning features supported in DCFM Professional and Enterprise Edition . . . . 131 Qos zone name prefixes 132 Alarm notification table fields 183 Long-distance settings and license requirements 189 iSCSI gateway services terminology 193 User role - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 24
xxii Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 25
about uploading and downloading configuration files and downloading firmware. • Chapter 6, "Managing Administrative Domains", provides information on managing Admin Domains. • Chapter 5, "Managing Your Ports", provides information about managing FC and GbE ports. • Chapter 7, "Enabling ISL Trunking - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 26
procedures documented here apply to some switches but not to others, this guide identifies exactly which switches are supported and which are not. Although many different software and hardware configurations are tested and supported by Brocade Communications Systems, Inc. for 6.2.0, documenting all - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 27
Brocade Encryption Switch • Brocade DCX-4S Enterprise-class platform What's new in this document The following changes have been made since this document was last released: • Changes to GUI icon images and operator components to be consistent with DCFM. • Support of user-manipulated this guide are - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 28
notices and statements are used in this manual. They are listed below in order of hazardous to you or cause damage to hardware, firmware, software, or data. DANGER A Danger statement to Brocade and Fibre Channel, see the Brocade Glossary. For definitions of SAN-specific terms Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 29
, firmware, and software support, including product repairs and part ordering. To expedite your call, have the following information available: 1. General Information • Switch model • Switch operating system version • Error numbers and messages received Web Tools Administrator's Guide xxvii - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 30
• supportSave command output • Detailed description of the problem, including the switch or fabric behavior immediately following the problem, and specific questions • Description of any troubleshooting steps already performed and the results • Serial console and Telnet session logs • syslog message - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 31
Web Tools 11 •Role-Based Access Control 16 •Session management 17 •Requirements for IPv6 support 18 Web Tools overview Brocade Web Tools is an embedded graphical user interface (GUI) that enables administrators to monitor and manage single or small fabrics, switches, and ports. Web Tools may be - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 32
, 5100, and 5300 switches. For non-8 Gbps platforms, all functionalities are available without the EGM license. Also beginning with Fabric OS version 6.1.1, some Web Tools capabilities are moved from Web Tools to DCFM. Table 2 summarizes these changes. Web Tools features enabled by the EGM license - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 33
yes (like ACL) Switch Info tab yes yes Switch Status yes yes Switch View right click yes yes options Trace dump yes yes USB Management yes yes User Management yes yes Verify and trouble no yes shoot accessibility between devices Web Tools Administrator's Guide 3 53-1001194 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 34
is still supported in Web Tools 6.1.1, but New, Edit Config, and delete are only available in DCFM. GigE Ports Interface Port Admin Module > GigE Configure > FCIP Tunnel tab GigE Ports Route Port Admin Module > GigE Configure > FCIP Tunnel tab 4 Web Tools Administrator's Guide 53-1001194 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 35
switch port id/WWN can be added using text box. Configure > Zoning Replace/Replace switches and workstation meet the Web Tools requirements listed in this chapter. Web Tools requires any browser that conforms to HTML version 4.0, JavaScript version 1.0, and Java Plug-in 1.6.0_05 or higher. Brocade - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 36
," as shown in Figure 1 on page 6. Configure your browser to check for newer versions of stored pages every visit to the page. FIGURE 1 Configuring Internet Explorer Deleting temporary internet files used by Java applications For Web Tools to operate correctly, you must delete the temporary internet - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 37
, at the following URL: http://java.sun.com/products/archive/j2se/5.0_06/index.html NOTE This URL points to a non-Brocade Web site and is subject to change without notice. 2. Select JRE 5.0 Update 6. 3. Follow the instructions to install the JRE. Web Tools Administrator's Guide 7 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 38
install JRE 1.6.0. Web Tools guides you through the steps to download the proper Java Plug-in. Java plug-in configuration If you are managing fabrics with more than 10 switches or 1000 ports, or if you are using the iSCSI Gateway module extensively, you should increase the default heap size to 256 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 39
Java Control Panel 3. In the section Java Applet Runtime Settings, click View. The Java Applet Runtime Settings dialog box appears. FIGURE 4 Java Runtime Settings 4. Double-click in the Java your settings and close the Java Control Panel. Configuring the Java plug-in for Mozilla family browsers - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 40
other switches in the fabric that have lower or higher firmware versions. It is important to note that when accessing these switches you are opening the remote switch's version of Web Tools, and the functionality available for those switches might vary. 10 Web Tools Administrator's Guide 53 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 41
OS 6.2.0, see Table 3. Web Tools supports both HTTP and HTTPS protocol. 1. Open the Web browser and type the IP address of the device in the Address field the initial setup procedure for smaller switches. See the EZSwitchSetup Administrator's Guide for information about the EZSwitchSetup interface - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 42
), which you must accept before logging in. The security banner displays every time you access the switch. When you are presented with the login screen you must provide a user name and a password. Your home Admin Domain is automatically selected. You can choose to log into an Admin Domain other - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 43
between Home Logical Fabric and User Specified Virtual Fabric (Figure 9). Home Logical Fabric is the default. This option logs in to the physical switch, and displays the physical switch configuration. It is given a default fabric ID number of 128. Web Tools Administrator's Guide 13 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 44
in to a platform that is capable of supporting Admin Domains, the log in dialog box provides enabled. Admin Domains and Virtual Fabrics are mutually exclusive. 1. Select Options to select an Admin Domain other than your default home domain. You are given a choice of Home Domain (the default), or User - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 45
Opening Web Tools 1 FIGURE 10 Login dialog box with Admin Domain options If the user name or password is incorrect, a dialog box displays indicating an authentication failure. If you entered valid domain. FIGURE 11 Invalid Admin Domain dialog box Web Tools Administrator's Guide 15 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 46
initiate a firmware download from the Web Tools Switch Administration window. In this case, you are logged out a few minutes later when the switch reboots. • Your session times out. Role-Based Access Control Role-Based Access Control (RBAC) defines the capabilities that a user account has based on - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 47
Web Tools windows become invalid and you must restart Web Tools and log in again. Web Tools enables sessions to both secure and nonsecure switches. Access rights for your session are determined by your role-based access rights and by the contents of your selected Admin Domain. After you log in, you - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 48
support: • In a pure IPv6 environment, you must configure DNS maps to the IPv6 address of the switch. • The switch switch. • Use a switch with v5.3.0 or higher firmware to manage a mixed fabric of IPv4 and IPv6 switches. • Switches running on version 5.2.0 do not discover IPv6 address-only switches - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 49
as zone administration, switch administration, port administration, admin domain error message displays. The EGM license is required only for 8 Gbps platforms, such as the Brocade DCX and DCX4S enterprise-class platforms, the Encryption Switch, the 300, 5100, and 5300 switches Guide 19 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 50
the Switch Event tab displays the switch. When you log out of Web Tools, it remembers the last window settings the next time you log in to the application. If you display the switch, the next time you log into Web Tools, by default Switch View will appear. 20 Web Tools Administrator's Guide 53 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 51
the areas of Switch Explorer. 1 Tasks and Fabric Tree 2 Menu bar 3 Switch View buttons 4 Changing the Virtual Fabric ID, or Changing the Admin Domain 5 Switch Events and Switch Information 6 Indicator bar 7 Professional Management Tool offering 8 Switch View Web Tools Administrator's Guide 21 53 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 52
DCFM Beginning with Fabric OS version 6.2.0, Web Tools icons are changed to be consistent with DCFM. Table 5 summarizes these changes. TABLE 5 Icon image changes Image Name Old Image New Image Switch Director or DCX Fabric Fabric segment Admin port Generic port Zone Zone Admin Zone - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 53
TABLE 5 Icon image changes (Continued) Image Name Old Image New Image Switch event - Fatal Switch event - Informational Switch event - Warning Refresh Enable Disable Prohibit Viewing Switch Explorer 2 Web Tools Administrator's Guide 23 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 54
but not activated. See "Zoning management" on page 133 for more information. • Switch administration • Port administration • Admin Domain administration • FCR (present only on the base switch when the Virtual Fabrics capability is enabled. 24 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 55
currently selected Admin Domain and allows you to change to a different one. The ability to change Admin Domain context requires that the EGM license is enabled on the switch; otherwise, the following error message displays. Web Tools Administrator's Guide 25 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 56
2 Viewing Switch Explorer FIGURE 14 Missing EGM license If you are logged into Web Tools without the EGM license, you must log in again using tasks, you must be in either AD0 or the physical fabric. FIGURE 15 Login dialog with Admin Domain 26 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 57
Switch from the Admin Domain menu. 2. Click OK in the confirmation window. Switch Explorer refreshes to display the new Admin Domain context. You can monitor the open windows, or cancel the action and return to Switch Explorer. NOTE The Telnet window and the Fabric Details are not AD- - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 58
. NOTE In Switch View, for the Brocade 7500E Extension switch, the Model Type field distinguishes the 7500E from the 7500. Without the 7500E license installed, FC ports 2-15 are disabled. With the 7500E license installed, all the FC ports are enabled. 28 Web Tools Administrator's Guide 53-1001194 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 59
in the DCX-4s. TABLE 6 Blade CR4s-8 Graphic CP8 FC8-48 FC8-32 FC8-16 FS8-18 FR4-81i FA4-18 FC10-6 Port representations The ports in the Switch View show the port type. Borders around the accessible ports indicate that SFP modules are present. A colored border indicates the status of the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 60
these ports. For the Brocade DCX, the Port Admin view is launched for ICL ports. USB port representation For switches with USB ports, the USB Storage Management view is launched for USB ports (see Figure 17). FIGURE 17 USB port storage management 30 Web Tools Administrator's Guide 53-1001194 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 61
You can also use it with the Enhanced Group Management license to manage groups of switches, download firmware, manage security settings, and deploy configurations across groups of switches. Contact your preferred storage supplier to get a complimentary copy of the Professional Management tool. The - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 62
, Ethernet IP, Fibre Channel IP, and status of the switch. In Switch View, you can hover over a blade to view the blade ID and its status. It is easier to use the top of the blade to display the tool tip so that you do not inadvertently display the port tool tips. Firmware versions and IP addressing - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 63
from the switch(s). • port statistics tab might not be refreshed as expected. The counter time indicates only that "this statistics data is retrieved from the switch in this time." To ensure the correct information, the time field is updated along with the port Port Management FC Routing User - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 64
the error messages, refresh the window, and make your changes again. Do not continue making changes without refreshing the window and determining which changes were saved correctly. • In a fabric containing switches and directors running different versions of firmware, use the switches or directors - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 65
or SSH window displays. 6. Enter your user credentials at the login prompt. 7. To close the session, type exit at the prompt. Collecting logs for troubleshooting If you encounter problems using the Web Tools interface, collect Java logs for use in troubleshooting. From Microsoft Windows, do the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 66
2 Collecting logs for troubleshooting 36 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 67
Admin Domain, most tabs in the Switch Administration window display in read-only mode, regardless of your permission level. The User tab is editable because most of its information does not require switch membership in the current Admin Domain. Web Tools Administrator's Guide 39 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 68
or SSH client window" on page 36 for information on how to launch a telnet window using Web Tools. The remainder of this section describes basic Switch Administration window procedures that are useful for many switch management operations. 40 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 69
Switch Administration window. 1. Select a switch in Fabric Tree. The switch displays in Switch View. 2. Click Switch Admin in the Manage section of the Tasks menu. The Switch Show Advanced Mode. Refreshing the Switch Administration window You can refresh the the Switch Administration window, - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 70
Ethernet IP address. 5. You can also enable automatic configuration of IPv6 addresses by selecting Enable IPV6 Auto Configuration. The automatically generated IPv6 addresses are displayed under Auto Configured IPV6 Addresses. Eight auto-configured addresses are created per switch, and up to 24 for - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 71
users, depending on the system configuration. When one or more IP addresses are configured, the switch forwards all error log entries to the syslog on the specified servers. Up to six servers are supported. See Fabric OS Administrator's Guide IP address, and modify the service/destination port, - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 72
only to the Brocade 48000 and Brocade DCX and DCX-4S enterprise-class platforms. Enabling or disabling a blade 1. Open the Switch Administration window as described on page 41. 2. Click the Blade tab (Figure 22). FIGURE 22 Blade tab The Firmware Version columns display the firmware loaded onto each - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 73
Clear the check box to disable the blade. You cannot enable or disable the CP blades. 4. Click Apply. Setting a slot-level IP address 1. Open the Switch Administration window as described on page 41. 2. Click the Blade tab. 3. Click Set IP address. 4. Select a slot number from the list. 5. Enter the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 74
number of characters is 30, unless FICON mode is enabled. When FICON mode is enabled, the maximum number of characters is 24. NOTE Some system messages identify a switch service by the chassis name. If you assign meaningful chassis names and switch names, system logs are easier to use. 1. Open the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 75
switch report The switch report includes the following information: • A list of switches in the fabric • Switch configuration parameters • A list of ISLs and ports POST). 1. Open the Switch Administration window as described on booting sequence. 1. Open the Switch Administration window as described on - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 76
• Virtual channel settings • Arbitrated loop parameters • System services • Signed firmware Configuring fabric settings 1. Open the Switch Administration window as described on page 41. 2. Disable the switch as described in "Enabling and disabling a switch" on page 46. 3. Click the Configure tab - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 77
with the E_D_TOV to determine switch actions when presented with an error condition. The default is 10000. The possible enable fine-tuning for a specific application. You cannot modify the first two virtual channels, which are reserved for switch internal functions. Web Tools Administrator's Guide - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 78
default virtual channel settings are already optimized for switch performance. Changing the default values can improve switch enable or disable the corresponding arbitrated loop parameters. 6. Click Apply. 7. Enable the switch as described in "Enabling and disabling a switch 's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 79
5. Click Apply. 6. Enable the switch as described in "Enabling and disabling a switch" on page 46. Configuring signed firmware When the firmware is downloaded to a device, the system can validate the firmware based on a configuration setting. By default, the signed firmware download is not validated - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 80
24 License tab Use the links above the table to export data, copy data, or search the table. Activating a license on a switch switch software or see the Fabric OS Administrator's Guide for instructions on how to obtain a license key at the Brocade Web site (www.brocade.com). 1. Open the Switch - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 81
Admin Domain, the Synchronize Services and Initiate Failover buttons are unavailable. Launching the High Availability Window 1. Select a Brocade 48000, Brocade DCX, or Brocade DCX-4S from the Fabric Tree. The Switch View is displayed. 2. Click the HA button in the Switch View. The High Availability - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 82
open the High Availability window, the switch must be a member of the Admin Domain you are currently logged in to. If the switch is not a member of the current Admin Domain, the Synchronized Services and Initiate Failover buttons are unavailable. 54 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 83
when all the services are synchronized between 3. 3. Click Synchronize Services. The Warning dialog box displays. 4. Click the CPs to complete a synchronization of services, so that a nondisruptive failover is , close the Web Tools Switch Explorer window and all associated windows - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 84
and that the failed power supply must be replaced or fixed. Information-level messages report the current nonerror status of the system Info components; for example, the online and offline status of a fabric port. Displaying Switch Events The Switch Events tab displays a running log of events - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 85
Switch View appears. 2. Click the Switch Events tab, if necessary. Event monitoring 3 FIGURE 26 Switch Switch Events You can filter the fabric and switch events by time, severity, message ID, and service unfiltered. 1. Open the Switch Events tab as described in "Displaying Switch Events" on page 56 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 86
in "Displaying Switch Events" on page 56. 2. Click Filter. The Event Filter dialog box appears. 3. Check Level. 4. Check the event levels you want to display. 5. Click OK. The filter is enabled and the window is refreshed to show the filtered information. 58 Web Tools Administrator's Guide 53 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 87
Service. The event service menu is enabled. 4. Select either Switch or Chassis from the menu to show only those messages from the logical switch or from the chassis. 5. Click OK. The filter is enabled is filtered based on Admin Domain are attached to ports that are direct Guide 59 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 88
type an auto-refresh interval (in seconds). The minimum (and default) interval is 15 seconds. Printing the Name Server entries 1. Click and click OK. The Print dialog box appears. 4. Select a printer and click OK. Displaying Name Server information for a particular device 1. Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 89
Tree. The selected switch appears in the Switch View. 2. Click Beacon for a switch, or Chassis Beacon for a chassis-based switch. The LED lights on the actual switch light up on the physical switch in a pattern running back and forth across the switch itself. In chassis-based switches, the LEDs glow - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 90
Virtual Fabrics feature allows SAN design and management to be done at the granularity of a port. This enables partitioning of a physical switch into multiple logical switches, which may be organized into logical fabrics. The following platforms are Virtual Fabrics-capable: • Brocade DCX and DCX-4S - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 91
View. If you do not log in to a specific logical switch, you are presented with the default logical switch. Figure 29 is an example. FIGURE 29 Default logical switch 1. To select a different logical switch, use the Logical Switch selector to select the fabric ID, as shown in Figure 30. A dialog - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 92
overview FIGURE 31 Logical switch, fabric ID 2. Under System Information, Base Switch, Default Switch, and Allow XISL Use are specific to VIrtual Fabrics: • Base Switch indicates whether or not the logical switch can act as a base switch. A base switch is a special logical switch that can be used - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 93
in different chassis. A logical link is established in the base fabric to carry frames between the logical switches. Logical ports are created in the respective switches to support the logical link. Logical ports are software constructs, and have no corresponding hardware to represent them on - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 94
3 Virtual Fabrics overview 66 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 95
a configuration backup file 67 •Restoring a configuration 69 •Admin Domain configuration maintenance 71 •Uploading and downloading from USB storage 72 •Performing a firmware download 73 •Switch configurations for mixed fabrics 76 Creating a configuration backup file Keep a backup copy of the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 96
file FIGURE 33 Upload/Download tab 5. If you upload from a network, type the host name or IP address in the Host Name or IP field, the user ID and password required for access to the host in the User Name and Password fields, and choose the Protocol Type used for the upload. The default is FTP. If - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 97
model switches might cause your switch to fail. 1. Open the Switch Administration window. 2. Select Show Advanced Mode. 3. Select the Configure tab. The Configure screen is displayed. 4. Select the Upload/Download tab. The Upload/Download configuration screen is displayed (). By default, Config - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 98
, select Config Download to Switch. 6. If you download from a network, type the host name or IP address in the Host Name or IP field, the user ID and password required for access to the host in the User Name and Password fields, and choose the Protocol Type used for the upload. The default is FTP - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 99
select the fabric ID of the logical switch to which the configuration file is to downloaded. The selector will show all the virtual fabric IDs that have been defined, the default of 128 for the physical switch, chassis level configuration, and all chassis and switches. 10. Type the fabric ID of the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 100
instructions. The EGM license is required only for 8 Gbps platforms, such as the Brocade DCX and DCX-4S enterprise-class platforms, the Encryption Switch, the 300, 5300, and 5100 switches. For non-8 Gbps platforms, all functionalities are available without EGM license. Uploading and downloading - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 101
this happens, contact your switch support supplier. NOTE You can perform a firmware download only when the current Admin Domain owns the switch. 1. Open the Switch Administration window as described on page 41. 2. Click the Firmware Download tab. Web Tools Administrator's Guide 73 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 102
you select the USB button, you can specify only a firmware path or directory name. No other fields on the tab are available. The USB button is available if the USB is present on the switch. 5. Type the host name or IP address, user name, password, and fully-qualified path to the file release.plist - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 103
tab, as shown in Figure 39. Also, for the Brocade 7600 and a collapsible area appears on the Firmware Download tab to show application firmware information. NOTE SAS firmware download is not supported on the Brocade Encryption Switch. In addition to specifying the information described in the steps - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 104
Fabric Mode, which supports M-EOS switches v9.6.2 and higher: • Switch View displays McDATA Fabric in the Interoperability Mode field. • Brocade Fabric OS switches uses McDATA OUI in the WWN. • For configuration download: • When downloading the configuration file, the download process checks the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 105
to disable the switch if the Admin Domain you are logged into owns the switch. 3. Click the Configure tab, and then click the Interoperability subtab. FIGURE 40 Configure tab, Interoperability tab 4. Select the mode and click Apply. 5. Enable the switch. Web Tools Administrator's Guide 77 53 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 106
4 Switch configurations for mixed fabrics 78 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 107
In this chapter •Port management overview 79 •Configuring FC ports 84 •Assigning a name to a port 87 •Enabling and disabling a port 88 •Persistent enabling and disabling ports 89 •Enabling and disabling NPIV ports 89 •Port activation 90 •Port swapping index 92 Port management overview This - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 108
41 Port Administration window, FC Ports, Basic Mode The Port Administration window displays information about the ports on the switch. Click the Show Advanced Mode button in the upper-right corner of the window to see more port management options (see Figure 42). 80 Web Tools Administrator's Guide - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 109
the top left: • FC Ports to display all of the FC ports on the switch (physical FC ports and logical FCIP ports) • GigE Ports to display all of the GbE ports, click the GigEPorts tab. If the switch does not have GbE ports, the GigE Ports tab does not appear. Web Tools Administrator's Guide 81 53 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 110
Configuration • Enable/Disable (port) • Persistent Enable/Persistent Disable (port) • Inband Management status (enabled or disabled) on 7500 extension switches - SFP-Physical ports only (FC and GbE) • Basic information about the port equipment - Port Statistics-All ports • Basic port information and - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 111
ports • Enable/Disable Trunking • Enable/Disable NPIV • Port Swap • F_Port Trunking • Re-Authenticate - SFP-Physical ports only (FC and GbE) • Advanced information about the port equipment - Port Statistics • Advanced port statistics • Error details • FCIP Tunnels-GbE ports and logical FCIP ports - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 112
ports With the FC Port Configuration wizard, you can configure allowed port types, port speed, and long distance mode for physical ports. You must use Web Tools with the EGM license enabled on the switch to configure long distance; otherwise, access to this feature is denied and the following error - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 113
on page 80). 2. Click the FC Ports tab. FIGURE 45 FC Port Configuration Wizard, FC Ports 3. Select the port you want to configure from the tree on the left. 4. Click the General subtab. Long distance does not display from the General or Table subtabs if the EGM license is not enabled on the switch - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 114
. At least one type must remain selected. L_Port and F_Port cannot both be cleared. An FC port cannot be configured only to an E_Port and L_Port. NOTE To configure a port as an EX_Port, the switch must be capable of supporting FCR/FCIP features. The EX_Port option is disabled in the wizard if the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 115
switches and Brocade 48000 and Brocade DCX and DCX-4S enterprise-class platforms with FR4-18i blades. When FC Fastwrite is enabled, all GbE ports and FCIP features are disabled. Assigning a name to a port Port enabled; if FMS mode is enabled, port names should be limited from 1 through 24 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 116
OS Administrator's Guide. Persistent enabling and disabling ports Use the following procedure to enable or disable an FC port so that it remains enabled or disabled across switch reboots. NOTE Ports cannot be persistently enabled or disabled when FMS is enabled. 1. Click a port in the Switch View to - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 117
POD Licenses and DPOD Feature Switch Name Enabled by Default Enabled with Ports on Demand License(s) Enabled with the Dynamic Ports on Demand Feature Brocade Encryption Brocade 300 Brocade 200E Brocade 5000 Brocade 4100 Brocade 4016 0-15 0--24 0-7 0-15 0-7, 10-13 Not supported 8-11 12-15 16 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 118
Dynamic PODs feature is supported on the Brocade 4018, 4020, and 4024 switches only. If you click the Enable DPOD button on an unsupported switch, an error message displays. 1. Click a port in the Switch View to open the Port Administration window. 2. Click the FC Ports or GigE Ports tab. 90 Web - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 119
. The Dynamic PODs feature is supported on the Brocade 4018, 4020, and 4024 switches only. You must disable the port or switch before reserving or releasing a license. 1. Click a port in the Switch View to open the Port Administration window. 2. Click the FC Ports or GigE Ports tab. 3. From the tree - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 120
disables the two ports, swaps the area IDs, and enables the ports. NOTE Port swapping is supported on the Brocade Encryption Switch and the FS8-18 Encryption blade. Port swapping 1. Click a port in the Switch View to open the Port Administration window. 2. Click the FC Ports tab. 3. Click Advanced - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 121
Port swapping index 5 FIGURE 47 Port Swapping Index Web Tools Administrator's Guide 93 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 122
5 Port swapping index 94 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 123
: • Admin Domains are supported on fabrics with switches running Fabric OS v5.2.0 user with the Admin role and access to all Admin Domains (AD0 through AD255). • The default zone mode setting must be set to No Access (see "Enabling administrative domains" on page 97). Web Tools Administrator's Guide - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 124
switches, and switch ports that were not assigned to any user-defined Admin Domain. AD0 also implicitly contains all devices from switches running Fabric OS versions user-defined Admin Domain. The only difference between AD0 and user contains all devices, switches, and switch ports in the fabric. - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 125
was added to the Admin Domain. • A switch to which the port belongs is a member of the Admin Domain. • Indirect device members-Devices that are connected to ports that are direct members of an Admin Domain. Enabling administrative domains The default zone mode setting gives attached devices either - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 126
operations is denied and the following error message displays. . FIGURE 48 Missing EGM license The EGM license is required only for 8 Gbps platforms, such as the Brocade DCX and DCX-4S enterprise-class platforms, the Encryption Switch, the 300, 5300, and 5100 switches. For non-8 Gbps platforms, all - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 127
display detailed information about that Admin Domain, as shown in Figure 50. The detailed view displays summary information as well as information about the online switch, port, and device members of the selected Admin Domain. Web Tools Administrator's Guide 99 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 128
displays launched switches and their ports. It also displays all the devices in the fabric. Slot and port information of other switches are not any content. NOTE You must accept the Brocade Certificate at the beginning of the login to Web Tools to enable the functionality of Export and Copy. • - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 129
Switch Members box appears, as shown in Figure 51. In the Switch Members box, type the text string and press Enter. This is an incremental search and allows 24 maximum The status for the fabric, including switches, ports, and devices is refreshed. Web Tools Administrator's Guide 101 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 130
, any Admin Domain configuration changes you made and not yet saved are erased from the buffer and replaced with the currently enabled Admin Domain information that is saved on the switch. Use the following procedure to update the information in the Admin Domain window with the information saved - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 131
even if no other users are assigned (see "Changing user account parameters" on page deactivated. The following procedures provide detailed instructions for creating an Admin Domain and the Admin Domain window, as described on page 101. 2. Click New. The Create Admin Domain Guide 103 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 132
finish creating it. This is the default setting. Clear the Active check box ports or other switches in the fabric, you must do it from the Manual button, which launches the Add Member wizard. FIGURE 53 Adding members to an Admin Domain NOTE The tree only displays two FC ports and all logical ports - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 133
to enforce the new Admin Domain configuration as the effective configuration. Adding ports or switches to the fabric 1. From the Create Admin Domain wizard, click Manual. The Add Member window displays. FIGURE 55 Add Member wizard 2. Select Port and enter the member ID in the Member field using the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 134
. When you deactivate an Admin Domain, no one can use this Admin Domain to log in to a switch. Modifying Admin Domain members Use the following procedure to modify members from an Admin Domain. 1. Open the wizard opens on the Membership step. 106 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 135
switch or slot and click Add Ports to add all of the ports in the selected switch or slot. • Select a switch, slot, or port, and click Add Devices to add all of the devices for the selected element. Optional: Click Manual to add offline switches . Web Tools Administrator's Guide 107 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 136
as the effective configuration. Clearing the Admin Domain configuration When you clear the Admin Domain configuration, all user-defined Admin Domains are deleted and all fabric resources (switches, ports, and devices) are returned to AD0. You cannot clear the Admin Domain configuration if zone - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 137
111 •Disabling or enabling ISL trunking 112 •Viewing Guide. You must use Web Tools with the EGM license to create ISL trunk groups and to manage F_Port trunks. NOTE The EGM license is required only for 8 Gbps platforms, such as the Brocade DCX enterprise-class platform, the Encryption Switch - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 138
procedure to disable trunking on a port or to re-enable trunking if it has been disabled. Trunking is not supported on logical ports, GbE ports, or EX_Ports. 1. Click a port in the Switch View to open the Port Admin window (see Figure 41 on page 80). 2. Click the FC Ports tab. Trunking mode does not - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 139
information Use the Trunking tab of the Switch Admin window to view trunk group information (see Figure 58). FIGURE 58 Trunking tab The following trunking attributes can be displayed from the Port Admin view by selecting Show Advanced Mode. • Trunk port state, either master or slave. • Trunk master - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 140
applicable to front end ports. On the Brocade Encryption Switch, the trunk groups are in the following port ranges 0-7, 815, 16-23, 24-31, which are applicable on the front end ports. 1. Select Port Admin. 2. Select the Show Advanced Mode view. 114 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 141
dialog box 5. Select one or more ports in the Ports for trunking pane. A dialog box the ports. A trunk group is created, identified by the trunk index, and containing the port ports can be added by selecting a port, then selecting Add Members. To remove a port from the trunk group, select the port - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 142
7 F_Port trunk groups 116 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 143
enabled on the switch; otherwise, when you click on the Performance Monitor tab, access to this feature is denied and an error messages displays. NOTE The EGM license is required only for 8 Gbps platforms, such as the Brocade any Admin Domain context. Only users with the admin, switchadmin and - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 144
performance information to help you manage your fabric. You can access the basic monitoring graphs on all switches; advanced monitoring graphs are available only on switches that have a Brocade Advanced Performance Monitoring license activated. 118 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 145
and 7500E Extension switches include physical FC ports, logical FC ports, and GbE ports. The Brocade FC4-16IP blade includes physical FC ports and GbE ports. Not all of the performance monitoring graphs support the logical FC ports and GbE ports. Web Tools Administrator's Guide 119 53-1001194 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 146
N/A Throughput1 Switch Throughput P P Utilization Port Error P P P Switch Percent Utilization P P Port Snapshot Error P P SID/DID Performance P P SCSI Commands P SCSI vs. IP Traffic P 1. Blade Aggregate Throughput graph is supported only on the Brocade 48000 and Brocade DCX and - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 147
Monitoring window for a Brocade 48000 director with the 61 Accessing performance graphs User-defined graphs You can page 123 for more information). These user-defined graphs can be added and graphs can be either the Web Tools predefined graphs or user-defined graphs. Each canvas can hold up to eight - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 148
access to this feature is denied and an error messages displays. Use the following procedure to open the Web Tools Performance Monitoring window. 1. Select a switch from the Fabric Tree and log in when Graphs > Basic Monitoring > Graph Type. 122 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 149
48000 and Brocade DCX and DCX-4S enterprise-class platforms, you can also customize these graphs to display information for a slot. You can customize the following graphs: • Switch Throughput Utilization • Switch Percent Utilization • Port Snapshot Error Web Tools Administrator's Guide 123 53 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 150
instructions on creating a graph. 2. For Brocade 48000 and Brocade DCX and DCX-4S enterprise-class platforms, display detailed port throughput utilization rates for each port for the Edit Switch Throughput Utilization graph. FIGURE 64 Select Ports for customizing the Switch Throughput Utilization - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 151
advanced monitoring graphs are not supported for GbE ports. NOTE You must have an user-defined Admin Domains are configured, Advanced Performance Monitoring works only in AD255. Creating SID-DID Performance Graphs The SID/DID Performance graph displays the traffic between a SID-DID pair on the switch - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 152
FC ports of the launched switch display in the tree. The All Devices tab lists all the devices in the fabric and lets you select the source and destination. Slot and port information of other switches , and will persist if the switch is rebooted. 126 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 153
IP Traffic Graph The SCSI vs. IP Traffic graph displays the SCSI versus IP traffic for selected ports. For Brocade 48000 and Brocade DCX and DCX-4S enterprise-class platforms, the slot and port "SCSI Read/Write on a LUN per port Setup" dialog box. Web Tools Administrator's Guide 127 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 154
3. Navigate to a switch > slot > port in the Slot/Port Selection List. 4. Click the port from the Slot/Port Selection List and drag it into the Enter/drag slot,port field. 5. Optional: For the LUN per port graphs, type a LUN number, in hexadecimal notation. For the Brocade Encryption Switch you can - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 155
the list and click Edit. The Performance Monitor Canvas: Canvas Name dialog box displays. 4. Select a graph from the list and click Edit. Web Tools Administrator's Guide 129 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 156
8 Modifying graphs NOTE The Edit button is enabled only for the graphs that are configurable or editable. 5. Make changes in the Edit dialog box, as necessary. Monitor Canvas dialog box. 8. Click Close to close the Canvas Configuration List. 130 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 157
Gbps platforms, such as the Brocade DCX and DCX-4S enterprise-class platforms, the Encryption Switch, the 300, 5300, and 5100 switches. For non-8 Gbps platforms yes yes Live Fabric library scope yes yes QoS support yes yes Zone alias support yes yes Ability to delete zone database no yes - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 158
Basic zoning enables you to partition a storage area network (SAN) into logical groups of devices that can access each other. For example, you can partition a SAN into two must be identified by their port WWN because port IDs are not necessarily unique across fabrics. 132 Web Tools Administrator - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 159
any other device in the fabric. Web Tools supports default zoning on switches running firmware v5.1.0 or higher. Default zoning on legacy switches (switches running firmware versions prior to v 5.1.0) are not supported. Legacy switches can use default zoning; however, they cannot manipulate the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 160
zoning can be administered only from the primary FCS switch. If the selected switch has an Advanced Zoning license installed, but is not the primary FCS switch, the Zone Admin option is displayed, but not activated. You must be logged into the switch using a user name with one of the following roles - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 161
are shown under a separate folder icon called Virtual Initiators. If the chassis has the Brocade 7500E Extended Switch license installed, the tree displays only two FC ports; otherwise all logical ports display if you have the 7500 without the extended license installed. Admin Domain considerations - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 162
for the fabric, including switches, ports, and devices. NOTE Depending on the role associated with your user name or if the switch is owned by the current erased from the buffer and replaced with the currently enabled zone configuration information that is saved on the switch. 1. Launch the Zone - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 163
database on the switch. If another user has a zoning enable the configuration before the changes are effective. To enable the configuration, see "Enabling FC Virtual Initiators on switches that support iSCSI. In the Fabric View, you can select ports for port-based zoning or devices for WWN-based - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 164
enabling you to configure zones using an alias rather than inputting a long string of individual members. You can specify members of an alias using the following methods: • Identifying members by switch domain and port save and enable your changes. 138 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 165
Zone Admin buffer. At this point you can either save your changes or save and enable your changes. 6. Click Zoning Action > Save Config to save the configuration changes. To enable the configuration, see "Enabling zone configurations" on page 145. Web Tools Administrator's Guide 139 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 166
A zone is a region within the fabric where specified switches and devices can communicate. A device can communicate only to include a WWN or port that is not currently a part of the fabric. At this point you can either save your changes or save and enable your changes. 11. Click Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 167
Enabling zone configurations" on page 145. Cloning zones NOTE To perform clone operations for zoning, the EGM license must be installed on the switch; otherwise, access to this feature is denied and an error message displays. The EGM license is required only for 8 Gbps platforms, such as the Brocade - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 168
enable the configuration, see "Enabling zone configurations" on page 145. Creating and populating traffic isolation zones A traffic isolation zone (TI zone) is a special zone that creates a dedicated path for a specific traffic flow. When a TI zone is activated, inter-switch 's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 169
does not appear until you re-enable the configuration. 1. Open the Zone Administration window as described on page 133. 2. Select a format to display zoning members in the Member Selection List as described in "Select a zoning view" on page 137. Web Tools Administrator's Guide 143 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 170
changes. To enable the configuration, see "Enabling zone configurations" is currently enabled; however, changes do not appear until you re-enable the configuration To enable the configuration, see "Enabling zone configurations You cannot rename the currently enabled configuration. 1. Open the Zone - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 171
is denied and an error message displays. Use the not need to enable the configuration. cannot delete a enabled configuration. 1. Open Enabling zone configurations Several zone configurations can reside on a switch enabled. If the zoning database size exceeds the maximum allowed, you cannot enable - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 172
the fabric, and according to the default zone set, devices within the fabric ports, WWNs) are displayed next to them. Aliases are not displayed in the enabled zone configuration. If there is no active zone configuration enabled on the switch, a message is displayed to that effect. NOTE The enabled - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 173
you made in the Zone Administration window, click Print > Print Effective Zone Configuration in the Zone Administration window. If no zone is enabled, a message is displayed, indicating that there is no active zoning configuration on the switch. Web Tools Administrator's Guide 147 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 174
new WWNs. All of the elements are selected by default. 4. Click items in the list to select or Admin buffer. Replacing a WWN in Multiple Aliases and Zones This procedure enables you to replace a WWN Replace WWN. The Replace WWN dialog box opens. 148 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 175
click Replace to replace the WWN in all the selected zoning elements. The former WWN is replaced in elements like switch names and domain numbers, port names and "domain, port" addresses, parent or children can be found. By default, the Member Selection List is searched from Guide 149 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 176
one and only one name for each device port (WWN). Devices with one or more aliases Replace offline devices • Define device alias Best practices for zoning The following are recommendations for using zoning: • Always zone using the highest Fabric OS-level switch. Switches with lower Fabric OS versions - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 177
switch information 154 •Port LED interpretation 158 Trace dumps A trace dump is a snapshot of the running behavior within the Brocade switch. The dump can be used by developers and troubleshooters at Brocade if automatic FTP uploading is enabled. Web Tools Administrator's Guide 151 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 178
generation of trace dumps on faults, you can also generate a trace dump manually or when certain system error messages are logged. This is normally done with assistance from Brocade customer support when diagnosing switch behavior. For details on the commands, see the Fabric OS Command Reference - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 179
files, FTP user name, and FTP password in the appropriate fields. The IP address can be IPv4 or IPv6 format, or a DNS name. The password is optional if you log in as an anonymous user. 5. Click Apply. Enabling automatic transfer of trace dumps You can perform this task only if the switch belongs to - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 180
switch information The Fan, Temperature, and Power Status windows have Export, Copy, and Search options at the top of the tables. These options are not available if the table does not have any content. You must accept the Brocade Certificate at the beginning of the login to Web Tools to enable 24 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 181
switches, and the Brocade Encryption Switch, the Fan No. column indicates the fan FRU number. • The Brocade 200E, 300, 4012, 4016, 4018, 4020, and 4024 switches do not contain fan FRUs, so for these switch for the switch is displayed, Switch View. The detailed temperature sensor states for the switch - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 182
The icon on the button displays the real-time status of the switch. If no data is available from a switch, the most recent background color remains displayed. For all statuses that are based on errors per time interval, any errors cause the status to show faulty until the entire sample interval has - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 183
the underlined links in the left panel to display detailed information about ports and Switch Availability Monitoring (SAM). NOTE The Port Detail Report and Switch Availability Monitor (SAM) reports display the details of only those ports which are members of the current Admin Domain context and the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 184
for the switch you are viewing. (The blink rate of the LEDs in the Switch View does not necessarily match the blink rate of the LEDs on the physical switch.) NOTE Some Brocade switches and port blades do not have port speed LEDs, but only port status LEDs. 158 Web Tools Administrator's Guide 53 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 185
bottom row of LEDs corresponds to the lower port. Brocade 4100 FIGURE 77 Port and LED status color-coded information in the Port icon in Switch View Brocade 48000 Director LEDs For the Brocade 48000 director, the representation of the port LEDs on the FC4-32 port blade is not the same as the LEDs - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 186
Representation 3 1 2 4 FC4 32 1. Port Speed LED for the right port 2. Port Status LED for the right port 3. Port Speed LED for the left port 4. Port Status LED for the left port FIGURE 78 Port LEDs for the FC4-32 port blade in the Brocade 48000 160 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 187
cross physical SAN boundaries without merging the fabrics while maintaining the access controls of zones. NOTE When the Virtual Fabrics capability is enabled, FCR operations are allowed only on the base switch. EX_port configurations are supported only on the base switch. Also, because FC ports on - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 188
to another. FC Router A switch running FC-FC Routing Service. interfabric link (IFL) The link between an E_Port and an EX_Port, or a VE_Port and a VEX_Port. metaSAN The collection of all SANs interconnected with FC Routers. VEX_Port A virtual port that enables routing functionality through - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 189
with an FR4-18i blade. • Brocade DCX and DCX-4S enterprise-class platforms, when configured with FR4-18i, FR8-16, FR8-32, or FR8-48 blades. NOTE When the Virtual Fabrics capability is enabled, the FCR icon is present only on the base switch. Web Tools Administrator's Guide 163 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 190
LSAN Fabric tab (see Figure 80 on page 165) displays all the LSAN fabrics visible to your switch, in both a tabular and tree form. (If FC-FC Routing is disabled, the table launched with the following url: http://ip-address-of-lsan-fabric-switch 164 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 191
the switch, including configuration and status information. The ports are sorted by slot number, and then by row number within each slot. IP address information is displayed in IPv4 and IPv6 formats. NOTE If FC Routing is disabled, then you must disable all of the EX_Ports and you cannot enable them - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 192
-click and Ctrl-click to select multiple ports in the table, and then click one of the enable or disable tasks in the task bar. You can select multiple ports in the table, but you can select only one port at a time in the tree. FIGURE 81 FC Routing module with EX_Ports tab selected Configuring - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 193
0, the default cost will be used for that link. 1. Open the Switch View window. 2. Click FCR in Manage section of the Tasks menu. 3. Click the Ex_Ports tab. 4. Click the Router Port Cost tab. Viewing LSAN zones The LSAN Zones tab displays all the LSAN zones, in both a tabular and tree form. If FC-FC - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 194
proxy devices and displays these devices in a tree on the left side of the window. (If FC-FC Routing is disabled, the tables and tree nodes in this tab are empty.) Click the LSAN device, as shown in Figure 82. FIGURE 82 FC Routing module with LSAN Devices tab selected 168 Web Tools Administrator - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 195
After the fabric ID is changed, you can enable these ports again manually. The fabric ID for a backbone fabric must be different from the fabric IDs of all other edge fabrics; otherwise, a fabric ID conflict error can occur. Make sure that all switches in the backbone fabric have the same fabric ID - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 196
11 Configuring the backbone fabric ID 170 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 197
domain IDs and ports. Access Gateway mode is available on the 5100, 4012, 4016, 4018, 4020, 4024, 4424, 200E and 300 switches. For detailed descriptions of the Access Gateway, see Brocade Access Gateway Administrator's Guide. NOTE When Access Gateway mode is enabled on switches managed through Web - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 198
. To disable Management Server, enter the MsplmgmtDeactivate command. 1. Select a switch. 2. Click Switch Admin in the Manage section under Tasks. The Switch Administration window opens. 3. Save the switch configuration. 4. Click Enable in the Access Gateway Mode section. 5. Click Apply. 6. Click - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 199
and sets the initial defaults for port types, groups, and the F_Port-to-N_Port mappings. When the policy is Automatic, the port type assignments and mappings are configured automatically based on device and switch connections and internal load-balancing and grouping; user controls are disabled. When - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 200
and click Close. Defining custom primary and secondary mapping You can also manually change port mappings. 1. Click a port in the Switch View to open the Port Administration window. 2. Click the FC Ports tab. 3. Click Configure F_N Port Mappings. 174 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 201
85 F-N Port Mapping Configuration dialog box 4. In the Primary Mappings area, select ports and use N_Port in the Secondary Failover Mappings area, by selecting the ports using the Add and Remove buttons to set up the switches in Access Gateway mode, Web Tools only provides the ability to enable and - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 202
the appropriate check box to modify the policy. 5. Click Save. Enabling the Automatic Port Configuration policy The Automatic Port Configuration Policy (APC) is a global configuration policy for a switch in Access Gateway mode. By default, this policy is disabled. If you created an N_Port grouping - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 203
3. Click Yes in the confirmation window. Access Gateway policy modification 12 Web Tools Administrator's Guide 177 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 204
12 Access Gateway policy modification 178 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 205
Brocade licensed feature that monitors the performance and status of switches. Fabric Watch can automatically alert you when problems arise, before they become costly failures. NOTE Fabric Watch is view-only if you do not own the switch. Owning ports on a switch is not enough to enable Fabric - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 206
switch is a member of the current Admin Domain context, Fabric Watch is view-only. FIGURE 88 The Fabric Watch window Fabric Watch Explorer, on the left side of the window, displays the available classes. Not all classes are available for all switches of those elements and enable the custom limits - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 207
switch from the Fabric Tree and log in if necessary. 2. Select Tasks > Manage > Fabric Watch. The Fabric Watch window opens, as shown in Figure 88. Fabric Watch threshold configuration The Threshold Configuration tab enables : • Time Base-The time base (second, minute Guide 179 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 208
column. 6. In the Activate Level area: • Use the system default settings and proceed to step 11. or • Click Custom Defined to specify new settings and proceed to the next step. 7. If necessary, select a time to record the event in the Time Base field. 8. Type the lowest boundary of the normal zone - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 209
; not all alarm options are available for all switches. For more information, see the Fabric Watch Administrator's Guide. 3. Click the Threshold Configuration tab. 4. Under Area Selection, choose the area with the alarms that you want to enable or disable. 5. Click the Element Configuration subtab - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 210
other classes. Because FRUs are not monitored through a threshold-based system, they have a simpler interface for configuration. For error log and e-mail alert. 7. Click Apply to apply the changes to the switch. A confirmation dialog box displays, asking if you want to apply the changes to the switch - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 211
from Fabric Watch Explorer (see "Enabling or disabling threshold alarms for individual occurred for a selected class/ area (see Figure 88 on page 178). Table 15 describes the columns fan or a fan FRU, depending on the switch model. See "Viewing detailed fan hardware status" Guide 183 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 212
for which e-mail notification is enabled. 1. Open the Switch Administration window as described on page 41. 2. Click the Switch tab. 3. In the DNS Configuration area, in the DNS Server 1 field, type the primary domain Name Server IP address. You can enter the IP address in IPv4 or IPv6 format. 4. In - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 213
is working correctly. You can send a test e-mail only after you have applied your settings. FIGURE 90 Fabric Watch Email Configuration tab Web Tools Administrator's Guide 185 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 214
13 E-mail notification 186 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 215
to modify extended fabric settings on a port. The EGM license must be enabled on the switch; otherwise, access to configuring long distance is denied and an error message displays. The EGM license is required only for 8 Gbps platforms, such as the Brocade DCX and DCX-4S enterprise-class platforms - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 216
, the slots for CP are not available. You can view only two FC and two logical ports in the Extended Fabric tab for the 7500E Extension switches without upgrade license. The Brocade Encryption Switch and the FS8-18 Encryption blade support auto-negotiated link speeds of 1, 2, 4, and 8 Gbps. The GE - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 217
km at 2 Gbps, or 125 km at 4 Gbps, depending on the switch platform and the availability of frame buffers within the port group. LS Static setting is enabled. Buffer credits for the given E_Port are statically Yes configured based on the desired link distance. The LS-level link can operate at - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 218
value is the upper limit for calculating buffer availability for other ports in the same port group. If the actual distance is more than the desired distance, the port operates in buffer-limited mode. c. Press Enter or click another port entry for the value to be accepted. 6. Click Apply. 190 Web - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 219
gateway service through any iSCSI-capable switch in a fabric. Any applied iSCSI target gateway change is propagated and enforced to the whole fabric. Web Tools can recognize and manage all Fibre Channel ports and GbE ports on the supported blades. When a GbE port is configured to support iSCSI - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 220
iSCSI The iSCSI target gateway service is supported on the Brocade 48000 director with CP blades of each tab. NOTE You must accept the Brocade Certificate at the beginning of the log in to Web Tools to enable the functionality of Export and Copy. • Click Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 221
device in the network that allows the iSCSI initiators in an IP SAN to access and utilize storage in a Fibre Channel SAN. the FC4-16IP AP blade in a Brocade 48000 director functions as an iSCSI target gateway. A special GbE port used for iSCSI only. A Fibre Channel virtual initiator is created - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 222
and all CHAP users and associated secrets. The IP interface information, services. The iSCSI Setup wizard guides you through the steps to set up iSCSI connectivity between IP networks and your Fibre Channel SAN This option is available on all Brocade 48000 switches with option 5 configured and with - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 223
Gateway Services 15 FIGURE 93 iSCSI Target Gateway Admin with the Targets tab selected 1. Select a switch from the Fabric Tree and log in, if necessary. The selected switch appears in Switch View. Make sure that your Admin Domain Context is either AD0 or AD255. Generally, the default user Admin - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 224
on. 2. Open iSCSI Target Gateway Admin as described on page 194. 3. Click Enable iSCSI. 4. Click Apply. Encryption Services for the iSCSI Gateway Data-At-Rest encryption services for the iSCSI hosts is supported for the Encryption Switch and the FS8-18 Encryption blade in the case where they are in - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 225
the tasks you can perform on that switch in relation to one of the GbE ports. When you select one of the GbE ports, you can perform the same tasks listed previously: view and capture statistics related to the port, add or delete IP addresses, add or delete IP routes, view current sessions, and view - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 226
Gateway Services 1. Open iSCSI Target Gateway Admin as described on page 194. 2. Select the iSCSI Port tab. 3. In the left pane, select the GbE port to use. 4. Select the IP Interface subtab and click Add. 5. Enter the IP address and subnet mask. 6. Enter the MTU size or accept the default MTU - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 227
Setting up iSCSI Target Gateway Services 15 Configuring the IP route (optional) 1. Launch the iSCSI Target Gateway Admin module as described on page 194. 2. Select the iSCSI Port tab. 3. From the left pane, select the GbE port that to use. 4. Select the IP Routes tab. 5. Click Add. FIGURE 96 Add - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 228
15 Setting up iSCSI Target Gateway Services Creating iSCSI virtual targets SCSI virtual target creation is done from the first pane in the iSCSI Target LUN(s). This adds the selected LUNs to your virtual target. 8. Click Next and click Finish. 200 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 229
up iSCSI Target Gateway Services 15 Using Easy Create tab. 3. Click Easy Create. FIGURE 98 Easy VT Creation Dialog 4. Follow the instructions in the wizard to create a virtual target in iSCSI. The wizard is self-explanatory wizard opens. Web Tools Administrator's Guide 201 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 230
Gateway Services 5. Follow the instructions in targets. 1. Click the Search link. 2. Input the , partial WWN, or vendor name, or a combination of these When you set up the iSCSI target gateway on a switch, all initiators may not be online yet, but the initiators Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 231
If you select an object in the discovery domain set listed you can view, create, edit, delete, enable, or disable any of the discovery domain information contained in each object. If you select a discovery domain targets, iSCSI initiators, or both. Web Tools Administrator's Guide 203 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 232
member in the IQN Name text box and click the Filter button. Based on the filter criteria, the tree displays only those members satisfying the Click Create DD. The Create DD wizard opens. FIGURE 101 Create DD wizard 4. Follow the instructions in the wizard to create an iSCSI discovery domain. The - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 233
to iSCSI virtual targets. The DD view displays all DDSets created and allows you to create, edit, enable, or disable a discovery domain set. Select a DDSet from the left pane to view the contents of Create DDSet. The Create DDSet wizard opens. Web Tools Administrator's Guide 205 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 234
4. Follow the instructions in the wizard You can create, view, and change CHAP users and their associated secrets. After a CHAP user is created, you can modify only the user name and chap secret in encrypted format (*). You can add, delete, or modify CHAP entries. Each CHAP secret has: • User name - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 235
194. 2. Select the CHAP tab. 3. Click Create. 4. Enter the CHAP user name. Optional: To add more than one user at a time, click Add. 5. Enter a CHAP secret and click Apply the CHAP secret, but not the CHAP user name. 4. Fill in the fields in the dialog box to edit a CHAP secret. Web Tools - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 236
Enter a new CHAP user, if necessary. 6. Select the CHAP users and click Add or enabled to include this zone. NOTE If you do not have a zoning license or any zoning implemented, you do not need to create one for iSCSI target gateway service. The following default zoning conditions apply: • If default - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 237
FC ZONE," which is not placed into a defined configuration or automatically enabled. 4. Add the ISCSI FC the configuration is re-enabled. This affects the entire SAN; the zoning database enabling the effective configuration affects the entire fabric. Web Tools Administrator's Guide 209 53-1001194 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 238
The effective configuration is modified and re-enabled. Managing and Troubleshooting Accessibility The Web Tools iSCSI accessibility feature that the iSCSI Fibre Channel zone has been set up and, if appropriate, enable the defined configuration. See "Creating an iSCSI Fibre Channel zone with an - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 239
(DSL) configurations, the EGM license must be installed on the switch; otherwise, access to these features is denied and an error message displays. For Fabric OS 6.2.0, the supported routing policies are: • Port-based routing Port-based routing assigns a "static route," in which the path chosen for - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 240
tree. Configuring dynamic load sharing The exchange-based routing policy depends on the Fabric OS dynamic load sharing feature (DLS) for dynamic routing path selection. When this policy is in force, DLS is always enabled and cannot be disabled. 212 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 241
Specifying frame order delivery 16 When the port-based policy is in force, you can enable DLS to optimize routing. When DLS is enabled, it shares traffic among multiple equivalent paths between switches. DLS recomputes load sharing either when a switch boots up or each time an E_Port or FX_Port - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 242
cost is 500. Use this procedure to set a non-default, "static" cost for any port. 1. Open the Switch Administration window as described on page 41. 2. Click the Routing tab. 3. This step is switch-specific: For the Brocade 48000 and Brocade DCX, enterprise-class platforms, click the slot number of - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 243
over FCIP 246 •IPSec over management ports 249 •Establishing authentication policies for HBAs 259 User-defined accounts In addition to the default accounts-root, factory, admin, and user-Fabric OS supports up to 256 user-defined accounts in each logical switch (domain). These accounts expand your - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 244
and user-defined accounts Change your own password and cannot user is not allowed to log in to any switch in the fabric. If no Home Domain is specified for a user, the system provides a default home domain. The default home domain for predefined account is AD0. User-defined accounts, the default - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 245
window as described on page 41. 2. Click the User tab. 3. Click Add. The Add User Account dialog box opens. For switches that support Virtual Fabrics, refer to Figure 107. For switches that support Administrative Domains (AD), refer to Figure 108. Web Tools Administrator's Guide 217 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 246
17 User-defined accounts FIGURE 107 Add User Account dialog box (VF) FIGURE 108 Add User Account dialog box (AD) 218 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 247
. For VF-enabled switches, the selection is done per logical fabric ID. (See "Role-Based Access Control" on page 16 for information about these roles.) 6. Optional: Type a description of the account. 7. Click Enabled or Disabled to enable or disable the account. 8. Type the password for the account - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 248
select their own accounts in the user account table and change the password. All other buttons will be unavailable. 1. Open the Switch Administration window as described on page 41. 2. Click the User tab. 3. Select the account to modify. You cannot modify the default root and factory accounts, even - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 249
Admin Domain becomes the user's default home Admin Domain. 10. Click OK and click Apply to apply your changes. Maintaining passwords When you expire a password, the next time that user logs in, Web Tools requires the user to provide a new password. NOTE You have to own the switch in order to modify - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 250
locked from further change attempts, and the amount of time the password will be locked (0-99999 minutes) • Number of days to warn user before password expiration (0-999) 5. Choose whether to enable or disable the lockout administration features. If you choose to disable the lockout administration - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 251
expired. 5. Click Apply to save your changes. Unlocking a password 1. Open the Switch Administration window as described on page 41. 2. Click the User tab. 3. Select the account. 4. Click Unlock Password. If the button is unavailable, this means the password is already unlocked or was not locked out - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 252
17 User-defined accounts The Role Mapping for that user is displayed (Figure 110). FIGURE 110 Role Mapping (Virtual Fabrics) 224 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 253
configuration Support for the Access Control List (ACL) policies is currently defined in the Switch Connection Control (SCC) and Device Connection Control (DCC) policies. SCC and DCC policy configuration in base Fabric OS is performed on a switch-local basis. Fabric Configuration Server (FCS) Policy - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 254
, Port Index field, enter the value in the Domain, Index format and click Add. 10. Click Ok to confirm the changes to the switch. You must activate the policy in order to implement it. See "Activating an SCC, DCC, or FCS policy" on page 227, for instructions. 226 Web Tools Administrator's Guide - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 255
to confirm the changes to the switch. Deleting an SCC, DCC, or FCS policy You cannot delete the FCS policy from non-primary or non-FCS switches. 1. Open the Switch Administration window as described on page 41 must activate a new or empty policy. Web Tools Administrator's Guide 227 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 256
distributed to. 6. Select OK. If the policy distribution fails, an error dialog box is displayed. Moving an FCS policy switch position You can move the position of a member switch in the FCS policy list. 1. Open the Switch Administration window as described on page 41. 2. Click the Security Policies - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 257
A hash function (like SHA or MD5)is used for authentication. Off The switch does not support authentication. Any authentication negotiation is rejected. 6. Select a DH-Group type. 7. 5. Choose whether the is off or passive. 6. Click Apply. Web Tools Administrator's Guide 229 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 258
. Re-authenticating policies A user who has changed authentication policy parameters or a shared secret key pair can reinitialize the authentication. 1. Click a port in the Switch View to open the Port Administration window The Port Administration window appears with the port selected. 2. Click Re - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 259
. 1. Open the Switch Administration window as described on page 41. 2. Click the Security Policies tab. 3. Click Authentication on the Security Policies menu. 4. Use the Switch Policy Authentication Mode selector to choose the authentication policy. Web Tools Administrator's Guide 231 53-1001194 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 260
of the SNMP agent in the switch. The configuration includes SNMPv1 and Command Reference. Setting SNMP Trap Levels 1. Open the Switch Administration window as described on page 41. 2. Click editing the user name can be done only through the CLI and by selecting a user name from the User Name menu - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 261
in the SNMP Information section. 4. Optional: Select the Enable Authentication Trap check box to allow authentication traps to be sent to the reception IP address. 5. Click Apply. Setting SNMPv1 configuration parameters 1. Open the Switch Administration window as described on page 41. 2. Click the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 262
server cannot be configured as a backup for the switch user login database. When the primary AAA service is RADIUS you can enable the secondary service which offers three choices: • None • Switch Database when RADUIS authorization fails • Switch Database when RADIUS times out When RADIUS login fails - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 263
17 FIGURE 116 AAA Service tab Enabling and Disabling RADIUS Service At least one RADIUS server must be configured before you can enable RADIUS service. 1. Open the Switch Administration window as described on page 41. 2. Click the AAA Service tab. 3. To enable RADIUS service, select RADIUS from the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 264
the RADIUS Service The configuration is chassis-based, so it applies to all logical switches (domains) on the switch and it is replicated on a standby CP, if one is present. It is saved in a configuration upload, and can be applied to other switches in a configuration download. You should - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 265
authentication mechanism. You can add, remove, and modify settings of Active Directory Server. Enabling Active Directory service For adding a new Active Directory server, you must provide the server IP address, port number, secret string, timeout value, and LDAP as the authentication protocol. The - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 266
port, timeout, and domain. 6. Click OK to return to the AAA Service tab and click Apply. Removing Active Directory service Use the following procedure to remove a RADIUS server. 1. Open the Switch the changes from the AAA Services tab. 5. Click Apply in the AAA Services tab. A confirmation dialog box - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 267
services for IP switches and FR4-18i blades, and you can establish IPSec policies for IP interfaces that provide management access to switches . The supported protocols and IP Authentication Header RFC 4303 IP Version 2 (IKEv2) Protocol Cryptographic Algorithms for Internet Key Exchange Version - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 268
both endpoints implement IPSec. Tunnel mode encapsulates an IP datagram in a new datagram, with a new IP header specifying the addresses of the tunnel end the IP header in the original packet. Figure 117 provides a basic visual comparison of how transport mode and tunnel mode modify an IP datagram - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 269
IP datagram to enable authentication and privacy. There are two options: • Authentication Header (AH) • Encapsulating Security Payload (ESP) Authentication Header AH can be used to authenticate a data stream privacy by encrypting the IP datagram. The use value is sent in an IP datagram, and the same - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 270
, UDP must be used to encapsulate the tunneled packets. Port numbers in the UDP headers can then be used to A tunnel endpoint represents a set of IP addresses associated with actual endpoints that use service laptop, to a protected network. 242 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 271
to authenticate the end points of an IP connection, and to determine security policies for IP traffic over the connection. The initiating node proposes a policy based on the following: • An encryption produces a 160-bit hash. FIPS Pub 180-1 Web Tools Administrator's Guide 243 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 272
based authentication Industry standard X.500 database servers are available as certificate authority servers to enable certificate-based The SA lifetime limits the length of time a key is used before it is replaced by a new key, thus limiting the amount of time a given key is 's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 273
parties over a secure channel before it is used. Typically, the PSK is a password or pass phrase. PSKs are created in the end systems used by the two a private key to generate a digital signature. Each user possesses a private and public key pair. Signature generation can be Guide 245 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 274
SA proposal. • Add an IPSec selector that allows you to apply a Transform policy to a specific IP flow. • Enable the policy. Accessing the IPSec Policies dialog box 1. Open the Switch Administration window. 2. Select Show Advanced Mode. 3. Select the Security Policies tab. 4. Under Security Policies - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 275
The choices are SHA-1, MD5, and AESXCBC. 6. Turn Perfect Forward Secrecy on or off. The default is On. Perfect Forward Secrecy (PFS) provides additional security by means of a Diffie-Hellman shared available to a potential attacker. 9. Click OK. Web Tools Administrator's Guide 247 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 276
choices are SHA-1, MD5, and AESXCBC. The remaining three fields are grayed out. They apply only to IKE policies. 7. Click OK. 248 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 277
the Switch Administration window. 2. Select Show Advanced Mode. 3. Select the Security Policies tab. 4. Under Security Policies, select Ethernet IPSec. The Ethernet IPSec Policies screen is displayed (Figure 123). FIGURE 123 IPSec Policies (Ethernet management port) Web Tools Administrator's Guide - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 278
(Figure 124). FIGURE 124 Add IKE Policy for management port 2. Type an IKE Policy Name. 3. Type the IP address of the authentication partner in Peer IP Address. 4. Type the switch's local identifier in the Local Identifier field. This is normally the IP address in IPv4 or IPv6 format, but it may - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 279
IPSec over management ports 17 5. Type the identifier of the remote peer switch in Peer Identifier. This is normally the IP address in IPv4 or IPv6 format, but it may also be a DNS name. 6. is displayed (Figure 125). FIGURE 125 Add SA dialog box Web Tools Administrator's Guide 251 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 280
17 IPSec over management ports 4. Type a name for the SA in number. An SPI (Security Parameter Index) number is automatically assigned, but may be manually overridden. 9. Click OK. Creating an SA proposal An SA proposal is sent from one dialog box 252 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 281
IPSec over management ports 17 3. Type a name in the SA Proposal Name field. 4. Type the SAs policy The IPSec transform policy is the combination of protocols and algorithms applied to a flow of IP packets. IPSec unidirectional, and policies need to be applied to both inbound and outbound flows. - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 282
be rejected if there is an invalid pair of source and destination addresses or invalid port addresses. - Bypass allows a data packet to be transmitted or received without IPsec policy. 8. Optionally, enter a local and peer IP address. 9. Click OK. 254 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 283
IPSec over management ports 17 Adding an IPSec selector Selectors are used to apply transform policies to an IP flow. Flows are uni-directional. Selectors are associated with a specific source IP address, a specific peer IP address, and a specific transform. 1. Select the Selectors tab. The - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 284
management ports The Add Selector dialog box is displayed. FIGURE 130 Add Selector dialog box 3. Type a name in the Selector Name field. 4. Select the Traffic Flow Direction (in or out). IPSec policies are unidirectional, and must be applied separately to inbound and outbound flows. 5. Type the IP - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 285
ports 17 Manually creating an SA You can manually create a security association (SA). 1. Select the SA(Manual) tab. 2. Select Add. The Add Manual-SA dialog box is displayed (Figure 131) FIGURE 131 Add Manual flow from source to peer choose out. Web Tools Administrator's Guide 257 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 286
ports and destination addresses or invalid port addresses. - Bypass allows enter a local and peer tunnel IP address. 16. Click OK. Editing an be edited. 1. Open the Switch Administration window. 2. Select Show Advanced or IPSec policies. 1. Open the Switch Administration window. 2. Select Show Advanced - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 287
authentication policies for HBAs To establish and enable authentication policies for HBAs as the log in to a fabric, do the following. 1. Open the Switch Administration window. 2. Select Show Advanced Mode mode. The choices are On, Off, or Passive. Web Tools Administrator's Guide 259 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 288
12. Select Add. The Add Shared Secret Keys dialog box is displayed. 13. Browse to select the switch WWN or name and domain ID, or type the switch WWN or name and domain ID in the Switch WWN: Name/Domain ID field. 14. Generate shared secrets. Several tools and methods are available for - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 289
the peer device (an HBA in this case) in the Peer Shared Secret and Confirm Peer Shared Secret fields. 16. Enter the shared secret for switch in the Local Shared Secret and Confirm Local Shared Secret fields. 17. Click Add. An entry is added in the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 290
17 Establishing authentication policies for HBAs 262 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 291
263 •Enabling port-based routing 264 •Enabling or disabling Brocade switch or director that supports CUP can be controlled by one or more host-based management programs or director consoles, such as Brocade Web Tools or Brocade Fabric Manager. (Refer to the Fabric Manager Administrator's Guide - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 292
in which paths are chosen based on ingress port and destination only. This also includes user-configured paths. All ports with FICON devices attached must have port-based routing policy enabled. Port-based routing is a per-switch routing policy. After port-based routing is enabled, you can continue - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 293
support switch management using CUP. To be able to use the CUP functionality, all switches in the fabric must have FICON Management Server mode (FMS mode) enabled. FMS mode is a per-switch setting. After FMS mode is enabled -capable switch from the Fabric Tree. 2. Open the Switch Administration - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 294
can be reset by Web Tools. Active=Saved Mode Controls the IPL file update. The IPL file saves port connectivity attributes and port names. After a switch reboot or power cycle, the switch reads the IPL file and actives its contents as default configuration. When this mode is enabled, activating - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 295
port connectivity. This parameter is set as disabled by the hardware after system installation. and can be reset by Web Tools. Configuring FMS mode parameters 1. Click a FICON-enabled switch from the Fabric Tree. 2. Open the Switch the parameter is enabled. You cannot configure the User Alert Mode - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 296
can cause the FICON CUP Busy error: • Mode Register • Port Names (also called Port Address Name) • PDCM and Port Connectivity Attributes • Switch enable/disable • Switch name change 1. Click a FICON-enabled switch from the Fabric Tree. 2. Open the Switch Administration window as described on page - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 297
displayed are user-defined configurations and are stored on the switch. You can create, activate, copy, or delete saved CUP port connectivity configurations list of CUP port connectivity configurations. 1. Click a FICON-enabled switch from the Fabric Tree. 2. Open the Switch Administration window as - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 298
Port CUP Connectivity Configuration dialog box displays all ports and port names on the selected switch (similar to the dialog box shown in Figure 136). The Block column, Prohibit column, and prohibited ports , as described in "Activating a CUP Port Connectivity Configuration" on page 271. • Click - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 299
CUP Connectivity Configuration dialog box Activating a CUP Port Connectivity Configuration When you activate a saved CUP port connectivity configuration on the switch, the preceding configuration (currently activated) is overwritten. 1. Open the CUP port connectivity configuration list. 2. Click the - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 300
Data (RNID) Web Tools displays RNID information for the local switch, and for attached FICON devices and FICON channel paths. RNID information for the switch displays on the switch view (see Figure 137). FIGURE 137 Switch RNID Information 272 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 301
that completed an RNID exchange display FICON in the Capability column. For those ports, the following information specific to RNID displays in the following columns: • Device Type • Model • Manufacturer • Manufacturer Plant • Unit Type • Tag Web Tools Administrator's Guide 273 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 302
18 Displaying Request Node Identification Data (RNID) 274 Web Tools Administrator's Guide 53-1001194-01 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 303
Configuration If a blade fails on the switch, the Web Tools interface can still display slot and ports as healthy. In this case, the enable telnet functionality if you want to use it. Launching the default telnet is not supported in Windows Vista and Windows 2008 server. Fabric Watch, Switch - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 304
. Brocade 200E, 300, 4012, 4016, 4018, 4020, 4024, 4100, 4900, 5000, 5100, 5300, 7500 and 7500E Extension switches, 7600, and the Encryption Switch: Loss of network connectivity is up to 1 minute if POST is disabled. If POST is enabled, the loss of network connectivity can exceed 1 minute. Firmware - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 305
ten switches or more than 1000 ports, or if you are using the iSCSI Gateway module extensively, you might encounter out-ofmemory errors such as the following: java.lang.OutOfMemoryError: Java heap space To avoid this problem, increase the default heap size in the Java Control Panel. See "Java plug - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 306
, routing information will not be shown. Workaround: Following a switch enable or disable, wait at least 25-30 seconds before further to the switch by pinging the logical switch IP address. Windows Operating Systems While working on Internet Explorer 6.0, when the user launches Switch Explorer it - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 307
, enabling and disabling, 44 browsers limitations, 275, 278 refresh frequency, setting, 6 supported, 5 buffer-limited ports, 187 C Challenge Handshake Authentication Protocol. See CHAP changing domain ID, 46 passwords, 221 switch name, 46 CHAP authentication, 193 secret, editing, 207 user, creating - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 308
IOD frames delivery, 213 IP address for iSCSI Target Gateway, 198 IP route for iSCSI Target Gateway, 199 Java Plug-in, 8 link cost, 214 long-distance settings, 189 port speed, 84 port type, 84 ports, 79 RADIUS server, 236 routes, 211 syslog IP address, 43 system services, 51 threshold alarms, Fabric - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 309
Gateway service, 196 ports, 88 Ports on Demand, 90 RADIUS service, 235 RLS probing, 51 switch, 46 trunking mode, 112 zone configurations, 145 ending sessions, 16 events displaying, 56 filtering, 57 severity levels, 56 EX_Ports, configuring, 165 exchange-based routing, 211, 212 expiring passwords - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 310
cost, 167 FCS policy activate, 227 create, 225 deactivate, 227 delete, 227 distribute, 227 moving switch position, 228 feature licenses, 52 FICON Management Server mode, enabling and disabling, 265 parameters, 266 filtering events, 57 Filtering IP Addresses, 43 firmware download, 73 FRU alarms - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 311
111 J Java Plug-ins configuring, 8 installing, 7, 8 supported, 5 JRE, installing, 7 L launching FC Routing module, 163 iSCSI Target Gateway module, 194 Web Tools, 11 LEDs, port, 158 licensed features, 52 licenses activating, 52 removing, 53 limitations browsers, 275, 278 firmware download, 276 HTTP - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 312
a port, 89 platforms, supported, 5 polling rates, 34 port membership in Admin Domains, 81 port menu, 33 port names, assigning, 87 port speed, configuring, 84 port swapping, 93 port type, configuring, 84 port-based routing, 211 ports buffer-limited, 187 configuring, 79 disabling, 88, 89 enabling, 88 - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 313
, 4 troubleshooting iSCSI Target Gateway, 210 Web Tools, 35 trunking mode, enabling and disabling, 112 U unlocking passwords, 223 user accounts, managing, 215 V value line licenses, 10 VC Priority, 50 viewing EX_Ports, 165 LSAN devices, 168 LSAN fabrics, 164 LSAN zones, 167 swapped ports, 93 Switch - HP 8/8 | Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 20 - Page 314
best practices, 149 creating, 140 deleting, 142 description, 140 LSAN, 167 modifying, 140 removing WWNs, 148 renaming, 141 replacing WWNs, 148 selecting a view, 137 zoning all access, 133 default zoning, 133 no access, 133 zoning database clearing, 149 maximum size, 136, 145 zoning views, 137 zoning
53-1001194-01
November 24, 2008
Web Tools
Administrator’s Guide
Supporting Fabric OS v6.2.0