| Section |
Page |
| Cisco MDS 9000 Family CLI Configuration Guide, Release 4.x |
1 |
| Contents |
3 |
| New and Changed Information |
57 |
| Preface |
61 |
| Obtaining Documentation and Submitting a Service Request |
68 |
| Part 1 |
69 |
| Getting Started |
69 |
| Product Overview |
71 |
| Hardware Overview |
71 |
| Cisco MDS 9500 Series Multilayer Directors |
72 |
| Cisco MDS 9200 Series Fabric Switches |
73 |
| Cisco MDS 9216i Multiprotocol Fabric Switch |
73 |
| Cisco MDS 9222i Multilayer Fabric Switch |
73 |
| Cisco MDS 9100 Series Fixed Configuration Fabric Switches |
74 |
| Cisco NX-OS Software Configuration |
74 |
| Tools for Software Configuration |
75 |
| CLI |
75 |
| Cisco MDS 9000 Fabric Manager |
75 |
| Software Configuration Overview |
76 |
| Basic Configuration |
76 |
| Advanced Configuration |
76 |
| Switch Configuration |
77 |
| Fabric Configuration |
77 |
| Security |
77 |
| IP Services |
77 |
| Intelligent Storage Services |
78 |
| Network and Switch Monitoring |
78 |
| Traffic Management |
78 |
| Before You Begin |
79 |
| About the Switch Prompt |
80 |
| Default Switch Roles |
81 |
| Using the CLI |
81 |
| CLI Command Modes |
81 |
| CLI Command Hierarchy |
82 |
| EXEC Mode Options |
83 |
| Configuration Mode |
84 |
| Configuration Mode Commands and Submodes |
84 |
| Displaying the Present Working Context |
87 |
| CLI Command Navigation |
88 |
| Command Completion |
88 |
| File System Completion |
88 |
| The no and Default Forms of Commands |
88 |
| CLI Command Configuration Options |
89 |
| Getting Help |
89 |
| Managing the Switch Configuration |
90 |
| Displaying the Switch Configuration |
90 |
| Saving a Configuration |
93 |
| Clearing a Configuration |
93 |
| Displaying Users |
93 |
| Sending Messages to Users |
93 |
| Using the ping and ping ipv6 Commands |
93 |
| Using the Extended ping and ping ipv6 Commands |
94 |
| Using traceroute and traceroute ipv6 Commands |
95 |
| Configuring Terminal Parameters |
96 |
| Setting the Terminal Session Timeout |
96 |
| Displaying Terminal Sessions |
97 |
| Clearing Terminal Sessions |
97 |
| Setting the Terminal Timeout |
97 |
| Setting the Terminal Type |
97 |
| Setting the Terminal Screen Length |
98 |
| Setting the Terminal Screen Width |
98 |
| Displaying Terminal Settings |
98 |
| Configuring the Switch Banner Message |
98 |
| Directing show Command Output to a File |
99 |
| Using CLI Variables |
99 |
| User-Defined CLI Persistent Variables |
100 |
| System-Defined Variables |
101 |
| Using Command Aliases |
101 |
| Defining Command Aliases |
102 |
| About Flash Devices |
102 |
| Internal bootflash |
103 |
| External CompactFlash (Slot0) |
103 |
| Formatting Flash Devices and File Systems |
103 |
| Initializing Internal bootflash |
103 |
| Formatting External CompactFlash |
104 |
| Using Switch File Systems |
104 |
| Specifying File Systems |
105 |
| Setting the Current Directory |
106 |
| Displaying the Current Directory |
106 |
| Displaying File Checksums |
107 |
| Listing the Files in a Directory |
107 |
| Creating a Directory |
107 |
| Deleting an Existing Directory |
107 |
| Moving Files |
108 |
| Copying Files |
108 |
| Deleting Files |
109 |
| Displaying File Contents |
110 |
| Saving Command Output to a File |
110 |
| Compressing and Uncompressing Files |
110 |
| Displaying the Last Lines in a File |
111 |
| Command Scripts |
111 |
| Executing Commands Specified in a Script |
111 |
| Using CLI Variables in Scripts |
112 |
| Setting the Delay Time |
113 |
| Part 2 |
115 |
| Installation and Switch Management |
115 |
| Obtaining and Installing Licenses |
117 |
| Licensing Terminology |
117 |
| Licensing Model |
118 |
| Licensing High Availability |
124 |
| Options to Install a License |
124 |
| Obtaining a Factory-Installed License |
125 |
| Performing a Manual Installation |
125 |
| Obtaining the License Key File |
126 |
| Installing the License Key File |
126 |
| Installing the License Key File to a Remote Location |
128 |
| Backing Up License Files |
128 |
| Identifying License Features in Use |
128 |
| Uninstalling Licenses |
129 |
| Updating Licenses |
130 |
| Grace Period Alerts |
131 |
| License Transfers Between Switches |
132 |
| Displaying License Information |
133 |
| On-Demand Port Activation Licensing |
135 |
| About On-Demand Port Activation Licensing |
135 |
| Port-Naming Conventions |
136 |
| Port Licensing |
136 |
| Default Configuration |
138 |
| License Status Definitions |
142 |
| Configuring Port Activation Licenses |
144 |
| Making a Port Eligible for a License |
145 |
| Acquiring a License for a Port |
145 |
| Moving Licenses Among Ports |
146 |
| On-Demand Port Activation License Example |
147 |
| Initial Configuration |
151 |
| Starting a Switch in the Cisco MDS 9000 Family |
152 |
| Initial Setup Routine |
153 |
| Preparing to Configure the Switch |
153 |
| Default Login |
154 |
| Setup Options |
154 |
| Assigning Setup Information |
155 |
| Configuring Out-of-Band Management |
156 |
| Configuring In-Band Management |
161 |
| Using the setup Command |
165 |
| Accessing the Switch |
165 |
| Assigning a Switch Name |
166 |
| Where Do You Go Next? |
166 |
| Verifying the Module Status |
167 |
| Configuring Date, Time, and Time Zone |
167 |
| Configuring the Time Zone |
168 |
| Adjusting for Daylight Saving Time or Summer Time |
168 |
| NTP Configuration |
169 |
| About NTP |
170 |
| NTP Configuration Guidelines |
170 |
| Configuring NTP |
171 |
| NTP CFS Distribution |
174 |
| Enabling NTP Distribution |
174 |
| Committing NTP Configuration Changes |
174 |
| Discarding NTP Configuration Changes |
175 |
| Releasing Fabric Session Lock |
175 |
| Database Merge Guidelines |
175 |
| NTP Session Status Verification |
175 |
| Management Interface Configuration |
176 |
| Obtaining Remote Management Access |
176 |
| Using the force Option During Shutdown |
177 |
| Default Gateway Configuration |
177 |
| Configuring the Default Gateway |
178 |
| Telnet Server Connection |
178 |
| Disabling a Telnet Connection |
179 |
| Configuring Console Port Settings |
179 |
| Verifying Console Port Settings |
179 |
| Configuring COM1 Port Settings |
180 |
| Verifying COM1 Port Settings |
181 |
| Configuring Modem Connections |
181 |
| Guidelines to Configure Modems |
182 |
| Enabling Modem Connections |
183 |
| Configuring the Initialization String |
183 |
| Configuring the Default Initialization String |
184 |
| Configuring a User-Specified Initialization String |
185 |
| Initializing a Modem in a Powered-On Switch |
185 |
| Verifying the Modem Connection Configuration |
186 |
| Configuring CDP |
187 |
| Clearing CDP Counters and Tables |
188 |
| Displaying CDP Information |
188 |
| Configuring FlexAttach Virtual pWWN |
193 |
| About FlexAttach Virtual pWWN |
193 |
| FlexAttach Virtual pWWN Guidelines and Requirements |
194 |
| Configuring FlexAttach Virtual pWWN |
194 |
| Enabling FlexAttach Virtual pWWN |
194 |
| Automatically Enabling FlexAttach Virtual pWWN |
194 |
| Manually Enabling FlexAttach Virtual pWWN |
195 |
| Mapping pWWN to Virtual pWWN |
195 |
| Verifying FlexAttach Virtual pWWN |
196 |
| Verifying the End Device |
196 |
| Debugging FlexAttach Virtual pWWN |
197 |
| Security Settings for FlexAttach Virtual pWWN |
197 |
| FlexAttach Virtual pWWN CFS Distribution |
198 |
| Difference Between San Device Virtualization and FlexAttach Port Virtualization |
198 |
| Using the CFS Infrastructure |
199 |
| About CFS |
199 |
| Cisco MDS NX-OS Features Using CFS |
200 |
| CFS Features |
200 |
| CFS Protocol |
201 |
| CFS Distribution Scopes |
201 |
| CFS Distribution Modes |
202 |
| Uncoordinated Distribution |
202 |
| Coordinated Distribution |
202 |
| Unrestricted Uncoordinated Distributions |
202 |
| Disabling CFS Distribution on a Switch |
202 |
| Verifying CFS Distribution Status |
203 |
| CFS Application Requirements |
203 |
| Enabling CFS for an Application |
204 |
| Verifying Application Registration Status |
204 |
| Locking the Fabric |
205 |
| Verifying CFS Lock Status |
205 |
| Committing Changes |
206 |
| Discarding Changes |
206 |
| Saving the Configuration |
206 |
| Clearing a Locked Session |
206 |
| CFS Merge Support |
207 |
| Verifying CFS Merge Status |
207 |
| CFS Distribution over IP |
209 |
| Enabling CFS Over IP |
211 |
| Verifying the CFS Over IP Configuration |
211 |
| Configuring IP Multicast Address for CFS over IP |
211 |
| Verifying IP Multicast Address Configuration for CFS over IP |
212 |
| Configuring Static IP Peers for CFS over IP |
212 |
| Verifying Static IP Peer Configuration |
214 |
| CFS Regions |
215 |
| About CFS Regions |
215 |
| Managing CFS Regions |
216 |
| Creating CFS Regions |
216 |
| Assigning Applications to CFS Regions |
216 |
| Moving an Application to a Different CFS Region |
216 |
| Removing an Application from a Region |
217 |
| Deleting CFS Regions |
217 |
| Displaying CFS Regions |
217 |
| Default Settings |
217 |
| Software Images |
219 |
| About Software Images |
219 |
| Dependent Factors for Software Installation |
220 |
| Selecting the Correct Software Images for Cisco MDS 9100 Series Switches |
220 |
| Selecting the Correct Software Images for Cisco MDS 9200 Series Switches |
220 |
| Selecting the Correct Software Images for Cisco MDS 9500 Family Switches |
220 |
| Essential Upgrade Prerequisites |
221 |
| Software Upgrade Methods |
223 |
| Determining Software Compatibility |
224 |
| Automated Upgrades |
225 |
| Benefits of Using the install all Command |
225 |
| Recognizing Failure Cases |
226 |
| Using the install all Command |
227 |
| Upgrading Services Modules |
230 |
| Sample install all Commands |
231 |
| Upgrade Status Verification |
238 |
| Nondisruptive Upgrades on Fabric and Modular Switches |
239 |
| Preparing for a Nondisruptive Upgrade on Fabric and Modular Switches |
239 |
| Performing a Nondisruptive Upgrade on a Fabric Switch |
242 |
| Viewing the Status of a Nondisruptive Upgrade on a Fabric Switch |
243 |
| Troubleshooting a Nondisruptive Upgrade on a Fabric Switch |
244 |
| Manual Upgrade on a Dual Supervisor Module Switch |
244 |
| Preparing for a Manual Installation |
245 |
| Upgrading a Loader |
246 |
| Upgrading the BIOS |
248 |
| Quick Upgrade |
249 |
| Downgrading from a Higher Release |
249 |
| Maintaining Supervisor Modules |
250 |
| Replacing Supervisor Modules |
251 |
| Migrating from Supervisor-1 Modules to Supervisor-2 Modules |
251 |
| Standby Supervisor Module Boot Variable Version |
251 |
| Standby Supervisor Module Bootflash Memory |
252 |
| Standby Supervisor Module Boot Alert |
252 |
| Installing Generation 2 Modules in Generation 1 Chassis |
252 |
| Replacing Modules |
252 |
| Default Settings |
253 |
| Working with Configuration Files |
255 |
| Managing Configuration Files |
255 |
| Displaying Configuration Files |
255 |
| Downloading Configuration Files to the Switch |
256 |
| Using a File From a Remote Server |
256 |
| Using a File From an External CompactFlash Disk (slot0:) |
257 |
| Saving Configuration Files to an External Device |
257 |
| Saving to a Remote Server |
257 |
| Saving to an External CompactFlash Disk (slot0:) |
258 |
| Saving the Running Configuration |
258 |
| Saving Startup Configurations in the Fabric |
258 |
| Unlocking the Startup Configuration File |
259 |
| Copying Configuration Files |
259 |
| Backing Up Configuration Files |
260 |
| Rolling Back to a Previous Configuration |
261 |
| Restoring the Configured Redundancy Mode |
261 |
| Accessing File Systems on the Standby Supervisor Module |
262 |
| Deleting Configuration Files |
262 |
| Configuring High Availability |
263 |
| About High Availability |
263 |
| Switchover Mechanisms |
264 |
| HA Switchover Characteristics |
264 |
| Initiating a Switchover |
264 |
| Switchover Guidelines |
265 |
| Verifying Switchover Possibilities |
265 |
| Process Restartability |
266 |
| Synchronizing Supervisor Modules |
266 |
| Copying Boot Variable Images to the Standby Supervisor Module |
266 |
| Automatic Copying of Boot Variables |
266 |
| Verifying the Copied Boot Variables |
266 |
| Displaying HA Status Information |
267 |
| Displaying the System Uptime |
269 |
| Managing System Hardware |
271 |
| Displaying Switch Hardware Inventory |
271 |
| Running Compact Flash Tests |
274 |
| Running the CompactFlash CRC Checksum Test On Demand |
274 |
| Enabling and Disabling the Automatic CompactFlash CRC Checksum Test |
274 |
| Setting the CompactFlash CRC Checksum Test Interval |
275 |
| Enabling and Disabling Failure Action at the Failure of a CompactFlash Checksum Test |
275 |
| Displaying the Frequency and Status of the CompactFlash CRC Checksum Test |
275 |
| Updating the CompactFlash Firmware |
276 |
| Updating the CompactFlash Firmware On Demand |
276 |
| Enabling and Disabling the CompactFlash Firmware Update |
277 |
| Setting the CompactFlash Firmware Update Interval |
277 |
| Enabling and Disabling Failure Action at the Failure of a CompactFlash Firmware Update |
277 |
| Displaying the Frequency and Status of CompactFlash Updates |
278 |
| Displaying CompactFlash CRC Test and Firmware Update Statistics |
278 |
| Displaying the Switch Serial Number |
279 |
| Displaying Power Usage Information |
280 |
| Power Supply Configuration Modes |
280 |
| Power Supply Configuration Guidelines |
281 |
| About Crossbar Management |
283 |
| Operational Considerations When Removing Crossbars |
284 |
| Gracefully Shutting Down a Crossbar |
285 |
| Backward Compatibility for Generation 1 Modules in Cisco MDS 9513 Directors |
285 |
| About Module Temperature |
286 |
| Displaying Module Temperature |
287 |
| About Fan Modules |
287 |
| About Clock Modules |
289 |
| Displaying Environment Information |
290 |
| Default Settings |
291 |
| Managing Modules |
293 |
| About Modules |
294 |
| Supervisor Modules |
294 |
| Switching Modules |
295 |
| Services Modules |
295 |
| Verifying the Status of a Module |
296 |
| Checking the State of a Module |
296 |
| Connecting to a Module |
297 |
| Reloading Modules |
298 |
| Reloading a Switch |
298 |
| Power Cycling Modules |
298 |
| Reloading Switching Modules |
299 |
| Preserving the Module Configuration |
299 |
| Purging Module Configuration |
300 |
| Powering Off Switching Modules |
301 |
| Identifying Module LEDs |
301 |
| EPLD Configuration |
304 |
| Upgrading EPLD Images |
305 |
| Displaying EPLD Versions |
308 |
| Installing the SSI Boot Image |
310 |
| Upgrading the SSI Boot Image |
311 |
| SSI Boot Image Upgrade Considerations for the SSM |
311 |
| Verifying the SSI Boot Image |
312 |
| Configuring the SSI Image Boot Variable |
315 |
| Using the install ssi Command |
317 |
| Managing SSMs and Supervisor Modules |
320 |
| Configuring SSM Global Upgrade Delay |
320 |
| Considerations for Replacing SSMs and Supervisor Modules |
320 |
| Recovering an SSM After Replacing Corrupted CompactFlash Memory |
321 |
| Considerations for Upgrading and Downgrading Cisco MDS NX-OS Releases |
321 |
| Default Settings |
323 |
| Part 3 |
325 |
| Switch Configuration |
325 |
| Configuring Interfaces |
327 |
| Fibre Channel Interfaces |
327 |
| Generation 1 Interfaces Configuration Guidelines |
328 |
| About Interface Modes |
329 |
| E Port |
330 |
| F Port |
330 |
| FL Port |
330 |
| NP Ports |
330 |
| TL Port |
331 |
| TE Port |
331 |
| TF Port |
331 |
| TNP Port |
332 |
| SD Port |
332 |
| ST Port |
332 |
| Fx Port |
332 |
| B Port |
332 |
| Auto Mode |
333 |
| N Port Identifier Virtualization |
333 |
| About Interface States |
333 |
| Administrative States |
333 |
| Operational States |
334 |
| Reason Codes |
334 |
| Configuring Fibre Channel Interfaces |
337 |
| Graceful Shutdown |
338 |
| Setting the Interface Administrative State |
338 |
| Configuring Interface Modes |
339 |
| Configuring System Default Port Mode F |
339 |
| Configuring Port Speeds |
340 |
| Autosensing |
341 |
| Specifying a Port Owner |
341 |
| Configuring Port Guard |
342 |
| Enabling N Port Identifier Virtualization |
343 |
| About Interface Descriptions |
343 |
| Configuring the Interface Description |
343 |
| About Frame Encapsulation |
343 |
| About Receive Data Field Size |
344 |
| Configuring Receive Data Field Size |
344 |
| Identifying the Beacon LEDs |
344 |
| About Speed LEDs |
344 |
| About Beacon Mode |
345 |
| Configuring Beacon Mode |
345 |
| About Bit Error Thresholds |
345 |
| Switch Port Attribute Default Values |
346 |
| About SFP Transmitter Types |
347 |
| Displaying Interface Information |
348 |
| TL Ports for Private Loops |
356 |
| About TL Ports |
356 |
| About TL Port ALPA Caches |
358 |
| Displaying TL Port Information |
358 |
| Manually Inserting Entries into ALPA Cache |
360 |
| Displaying the ALPA Cache Contents |
360 |
| Clearing the ALPA Cache |
360 |
| Buffer Credits |
360 |
| About Buffer-to-Buffer Credits |
360 |
| Configuring Buffer-to-Buffer Credits |
361 |
| About Performance Buffers |
362 |
| Configuring Performance Buffers |
362 |
| About Extended BB_credits |
362 |
| Extended BB_credits on Generation 1 Switching Modules |
363 |
| Extended BB_credits on Generation 2 and Generation 3 Switching Modules |
364 |
| Configuring Extended BB_credits |
364 |
| Displaying BB_Credit Information |
365 |
| Management Interfaces |
366 |
| About Management Interfaces |
366 |
| Configuring Management Interfaces |
366 |
| Displaying Management Interface Configuration |
367 |
| VSAN Interfaces |
368 |
| About VSAN Interfaces |
368 |
| Creating VSAN Interfaces |
368 |
| Displaying VSAN Interface Information |
368 |
| Default Settings |
369 |
| Configuring N Port Virtualization |
371 |
| About NPV |
371 |
| NPV Mode |
373 |
| NP Ports |
374 |
| NP Links |
374 |
| Internal FLOGI Parameters |
374 |
| Default Port Numbers |
375 |
| NPV CFS Distribution over IP |
376 |
| NPV Traffic Management |
376 |
| Auto |
376 |
| Traffic Map |
376 |
| Disruptive |
377 |
| Multiple VSAN Support |
377 |
| NPV Guidelines and Requirements |
377 |
| NPV Traffic Management Guidelines |
378 |
| Configuring NPV |
378 |
| SUMMARY STEPS |
378 |
| Configuring NPV Traffic Management |
380 |
| Configuring List of External Interfaces per Server Interface |
380 |
| Enable or Disable the Global Policy for Disruptive Load Balancing |
380 |
| DPVM Configuration |
381 |
| NPV and Port Security |
381 |
| Verifying NPV |
381 |
| Verifying NPV Traffic Management |
383 |
| Configuring Generation 2 and Generation 3 Switching Modules |
385 |
| About Generations of Modules and Switches |
385 |
| Port Groups and Port Rate Modes |
387 |
| Port Groups |
387 |
| Port Rate Modes |
388 |
| Dedicated Rate Mode |
390 |
| Shared Rate Mode |
391 |
| Dedicated Rate Mode Configurations for the 8-Gbps Modules |
391 |
| Dynamic Bandwidth Management |
392 |
| Out-of-Service Interfaces |
392 |
| Buffer Credit Allocation |
392 |
| Buffer Pools |
393 |
| BB_Credit Buffers for Switching Modules |
395 |
| 48-Port 8-Gbps Fibre Channel Module BB_Credit Buffers |
396 |
| 24-Port 8-Gbps Fibre Channel Module BB_Credit Buffers |
397 |
| 4/44-Port 8-Gbps Host-Optimized Fibre Channel Module BB_Credit Buffers |
398 |
| 48-Port 4-Gbps Fibre Channel Module BB_Credit Buffers |
399 |
| 24-Port 4-Gbps Fibre Channel Module BB_Credit Buffers |
401 |
| 18-Port Fibre Channel/4-Port Gigabit Ethernet Multiservice Module BB_Credit Buffers |
402 |
| 12-Port 4-Gbps Switching Module BB_Credit Buffers |
402 |
| 4-Port 10-Gbps Switching Module BB_Credit Buffers |
404 |
| BB_Credit Buffers for Fabric Switches |
405 |
| Cisco MDS 9134 Fabric Switch BB_Credit Buffers |
405 |
| Cisco MDS 9124 Fabric Switch BB_Credit Buffers |
405 |
| Cisco MDS 9222i Multiservice Modular Switch BB_Credit Buffers |
406 |
| Extended BB_Credits |
406 |
| Combining Generation 1, Generation 2, and Generation 3 Modules |
406 |
| Port Indexes |
407 |
| PortChannels |
409 |
| Configuring Module Interface Shared Resources |
412 |
| Displaying Interface Capabilities |
413 |
| Configuration Guidelines for 48-Port, 24-Port, and 4/44-Port 8-Gbps Fibre Channel Switching Modules |
414 |
| Migrating from Shared Mode to Dedicated Mode |
414 |
| Migrating from Dedicated Mode to Shared Mode |
414 |
| Configuration Guidelines for 48-Port and 24-Port 4-Gbps Fibre Channel Switching Modules |
415 |
| Migrating from Shared Mode to Dedicated Mode |
415 |
| Migrating from Dedicated Mode to Shared Mode |
416 |
| Configuration Guidelines for 12-Port 4-Gbps Switching Module Interfaces |
416 |
| Configuration Guidelines for 4-Port 10-Gbps Switching Module Interfaces |
417 |
| Configuring Port Speed |
417 |
| Configuring Rate Mode |
419 |
| Configuring Oversubscription Ratio Restrictions |
424 |
| Disabling Restrictions on Oversubscription Ratios |
426 |
| Oversubscription Ratio Restrictions Example |
427 |
| Enabling Restrictions on Oversubscription Ratios |
429 |
| Configuring Bandwidth Fairness |
429 |
| Enabling Bandwidth Fairness |
430 |
| Disabling Bandwidth Fairness |
430 |
| Upgrade or Downgrade Scenario |
431 |
| Taking Interfaces Out of Service |
431 |
| Releasing Shared Resources in a Port Group |
432 |
| Enabling the Buffer-to-Buffer State Change Number |
433 |
| Disabling ACL Adjacency Sharing for System Image Downgrade |
434 |
| Displaying SFP Diagnostic Information |
434 |
| Example Configurations |
434 |
| Configuring a 48-Port 8-Gbps Fibre Channel Switching Module Example |
435 |
| Configuring a 24-Port 8-Gbps Fibre Channel Switching Module Example |
436 |
| Configuring a 4/44-Port 8-Gbps Fibre Channel Switching Module Example |
436 |
| Configuring a 24-Port 4-Gbps Fibre Channel Switching Module Example |
437 |
| Configuring a 48-Port 4-Gbps Fibre Channel Switching Module Example |
438 |
| Default Settings |
439 |
| Configuring Trunking |
441 |
| About Trunking |
441 |
| Trunking E Ports |
442 |
| Trunking F Ports |
442 |
| Key Concepts |
443 |
| Trunking Guidelines and Restrictions |
443 |
| Trunking Misconfiguration Examples |
444 |
| Upgrade and Downgrade Restrictions |
445 |
| Difference Between TE Ports and TF-TNP Ports |
445 |
| Enabling the Trunking Protocols |
447 |
| About Trunking Protocols |
447 |
| Enabling the Cisco Trunking and Channeling Protocols |
448 |
| Enabling the F Port Trunking and Channeling Protocol |
448 |
| Configuring Trunk Mode and VSAN List |
448 |
| About Trunk Modes |
448 |
| Configuring Trunk Mode |
449 |
| About Trunk-Allowed VSAN Lists and VF_IDs |
449 |
| Configuring an Allowed-Active List of VSANs |
452 |
| Example F Port Trunking Configuration |
452 |
| Displaying Trunking Information |
453 |
| Default Settings |
454 |
| Configuring PortChannels |
455 |
| About PortChannels |
455 |
| About E PortChannels |
456 |
| About F and TF PortChannels |
457 |
| About PortChanneling and Trunking |
457 |
| About Load Balancing |
458 |
| About PortChannel Modes |
460 |
| Configuration Guidelines and Restrictions |
461 |
| Generation 1 PortChannel Restrictions |
461 |
| F and TF PortChannel Restrictions |
462 |
| PortChannel Configuration |
463 |
| About PortChannel Configuration |
464 |
| Creating a PortChannel |
465 |
| Configuring the PortChannel Mode |
465 |
| About PortChannel Deletion |
466 |
| Deleting PortChannels |
466 |
| Interfaces in a PortChannel |
466 |
| About Interface Addition to a PortChannel |
467 |
| Compatibility Check |
467 |
| Suspended and Isolated States |
467 |
| Adding an Interface to a PortChannel |
468 |
| Forcing an Interface Addition |
468 |
| About Interface Deletion from a PortChannel |
469 |
| Deleting an Interface from a PortChannel |
469 |
| PortChannel Protocols |
469 |
| About Channel Group Creation |
470 |
| About Autocreation |
472 |
| Enabling and Configuring Autocreation |
472 |
| About Manually Configured Channel Groups |
473 |
| Converting to Manually Configured Channel Groups |
473 |
| Example F and TF PortChannel Configurations |
473 |
| Verifying the PortChannel Configuration |
475 |
| Default Settings |
479 |
| Configuring Domain Parameters |
481 |
| Fibre Channel Domains |
482 |
| About Domain Restart |
483 |
| Restarting a Domain |
484 |
| About Domain Manager Fast Restart |
484 |
| Enabling Domain Manager Fast Restart |
484 |
| About Switch Priority |
485 |
| Configuring Switch Priority |
485 |
| About fcdomain Initiation |
485 |
| Disabling or Reenabling fcdomains |
485 |
| Configuring Fabric Names |
486 |
| About Incoming RCFs |
486 |
| Rejecting Incoming RCFs |
486 |
| About Autoreconfiguring Merged Fabrics |
486 |
| Enabling Autoreconfiguration |
487 |
| Domain IDs |
487 |
| About Domain IDs |
487 |
| Specifying Static or Preferred Domain IDs |
489 |
| About Allowed Domain ID Lists |
490 |
| Configuring Allowed Domain ID Lists |
491 |
| About CFS Distribution of Allowed Domain ID Lists |
491 |
| Enabling Distribution |
491 |
| Locking the Fabric |
492 |
| Committing Changes |
492 |
| Discarding Changes |
492 |
| Clearing a Fabric Lock |
492 |
| Displaying CFS Distribution Status |
493 |
| Displaying Pending Changes |
493 |
| Displaying Session Status |
493 |
| About Contiguous Domain ID Assignments |
494 |
| Enabling Contiguous Domain ID Assignments |
494 |
| FC IDs |
494 |
| About Persistent FC IDs |
495 |
| Enabling the Persistent FC ID Feature |
495 |
| About Persistent FC ID Configuration |
496 |
| Configuring Persistent FC IDs |
497 |
| About Unique Area FC IDs for HBAs |
497 |
| Configuring Unique Area FC IDs for an HBA |
497 |
| About Persistent FC ID Selective Purging |
499 |
| Purging Persistent FC IDs |
499 |
| Displaying fcdomain Information |
499 |
| Default Settings |
502 |
| Scheduling Maintenance Jobs |
503 |
| About the Command Scheduler |
503 |
| Scheduler Terminology |
503 |
| Scheduling Guidelines |
504 |
| Configuring the Command Scheduler |
504 |
| Enabling the Command Scheduler |
505 |
| Configuring Remote User Authentication |
505 |
| Defining a Job |
506 |
| Verifying the Job Definition |
507 |
| Deleting a Job |
508 |
| Specifying a Schedule |
508 |
| Specifying a Periodic Schedule |
508 |
| Specifying a One-Time Schedule |
509 |
| Verifying Scheduler Configuration |
510 |
| Deleting a Schedule |
510 |
| Removing an Assigned Job |
510 |
| Deleting a Schedule Time |
511 |
| Verifying the Command Scheduler Execution Status |
511 |
| Execution Logs |
511 |
| About Execution Logs |
511 |
| Configuring Execution Logs |
512 |
| Displaying Execution Log File Contents |
512 |
| Clearing the Execution Log File Contents |
512 |
| Default Settings |
512 |
| Part 4 |
515 |
| Fabric Configuration |
515 |
| Configuring and Managing VSANs |
517 |
| About VSANs |
517 |
| VSANs Topologies |
517 |
| VSAN Advantages |
519 |
| VSANs Versus Zones |
520 |
| VSAN Configuration |
521 |
| About VSAN Creation |
522 |
| Creating VSANs Statically |
522 |
| About Port VSAN Membership |
523 |
| Assigning Static Port VSAN Membership |
523 |
| Displaying VSAN Static Membership |
523 |
| About the Default VSAN |
524 |
| About the Isolated VSAN |
524 |
| Displaying Isolated VSAN Membership |
525 |
| Operational State of a VSAN |
525 |
| About Static VSAN Deletion |
525 |
| Deleting Static VSANs |
526 |
| About Load Balancing |
526 |
| Configuring Load Balancing |
527 |
| About Interop Mode |
527 |
| About FICON VSANs |
527 |
| Displaying Static VSAN Configuration |
527 |
| Default Settings |
528 |
| SAN Device Virtualization |
529 |
| About SDV |
529 |
| Key Concepts |
532 |
| Automatic Failover and Fallback |
532 |
| Configuring SDV |
532 |
| Configuring a Virtual Device |
533 |
| Configuring a Zone for a Virtual Device |
535 |
| Configuring a Virtual Device with a Static FC ID |
537 |
| Linking a Virtual Device with a Physical Device |
538 |
| Configuring LUN Zone Members for SDV Devices |
538 |
| Real Initiator and SDV Virtual Target with LUN |
539 |
| SDV Virtual Initiator and Real Target with LUN |
539 |
| SDV Virtual Initiator and SDV Virtual Target with LUN. |
539 |
| Resolving Fabric Merge Conflicts |
539 |
| SDV Requirements and Guidelines |
540 |
| Discarding Changes |
541 |
| Clearing SDV Changes |
541 |
| Guidelines for Downgrading SDV |
541 |
| Downgrading with Attributes Configured |
542 |
| Downgrading with Virtual Initiators Configured |
542 |
| Downgrading with SDV LUN Zoning Configured |
542 |
| SDV Configuration Example |
542 |
| Displaying SDV Information |
544 |
| Default Settings |
545 |
| Creating Dynamic VSANs |
547 |
| DPVM |
547 |
| About DPVM Configuration |
548 |
| Enabling DPVM |
548 |
| About DPVM Databases |
549 |
| Configuring DPVM Config and Pending Databases |
549 |
| Activating DPVM Config Databases |
550 |
| About Autolearned Entries |
550 |
| Enabling Autolearning |
551 |
| Clearing Learned Entries |
551 |
| DPVM Database Distribution |
552 |
| About DPVM Database Distribution |
552 |
| Disabling DPVM Database Distribution |
552 |
| About Locking the Fabric |
553 |
| Locking the Fabric |
553 |
| Committing Changes |
553 |
| Discarding Changes |
554 |
| Clearing a Locked Session |
554 |
| Database Merge Guidelines |
554 |
| About Copying DPVM Databases |
555 |
| Copying DPVM Databases |
555 |
| Comparing Database Differences |
555 |
| Displaying DPVM Merge Status and Statistics |
556 |
| Displaying DPVM Configurations |
556 |
| Sample DPVM Configuration |
557 |
| Default Settings |
560 |
| Configuring Inter-VSAN Routing |
561 |
| Inter-VSAN Routing |
561 |
| About IVR |
562 |
| IVR Features |
563 |
| IVR Terminology |
563 |
| IVR Limits Summary |
564 |
| Fibre Channel Header Modifications |
564 |
| IVR NAT |
565 |
| IVR NAT Requirements and Guidelines |
565 |
| IVR VSAN Topology |
566 |
| Autonomous Fabric ID |
567 |
| IVR Service Groups |
567 |
| Default Service Group |
567 |
| Service Group Activation |
568 |
| IVR Interoperability |
568 |
| IVR Configuration Task List |
568 |
| Configuring IVR |
568 |
| Enabling IVR |
569 |
| Distributing the IVR Configuration using CFS |
570 |
| Database Implementation |
570 |
| Enabling Configuration Distribution |
570 |
| Locking the Fabric |
571 |
| Committing the Changes |
571 |
| Discarding the Changes |
571 |
| Clearing a Locked Session |
571 |
| About IVR NAT and Auto Topology |
572 |
| Transit VSAN Guidelines |
572 |
| Border Switch Guidelines |
572 |
| Service Group Guidelines |
573 |
| Configuring IVR Topology Automatic Mode |
573 |
| Enabling IVR NAT |
574 |
| About IVR Service Groups |
574 |
| Configuring IVR Service Groups |
574 |
| Copying the Active IVR Service Group Database |
575 |
| Clearing IVR Service Group Database |
575 |
| Verifying IVR Service Group Configuration |
575 |
| About AFIDs |
576 |
| Configuring Default AFIDs |
576 |
| Configuring Individual AFIDs |
577 |
| Verifying the AFID Database Configuration |
577 |
| Configuring IVR Without IVR NAT or Auto Topology |
577 |
| Domain ID Guidelines |
578 |
| Transit VSAN Guidelines |
578 |
| Border Switch Guidelines |
578 |
| Configuring IVR Without NAT |
579 |
| Manually Configuring the IVR Topology |
579 |
| Activating a Manually Configured IVR Topology |
580 |
| Adding an IVR-Enabled Switch to an Existing IVR Topology |
581 |
| Copying the Active IVR Topology |
582 |
| Clearing the Configured IVR Topology Database |
582 |
| Verifying the IVR Topology |
582 |
| Migrating from IVR Auto Topology Mode to Manual Mode |
583 |
| About IVR Virtual Domains |
583 |
| Configuring IVR Virtual Domains |
584 |
| Verifying the IVR Virtual Domain Configuration |
584 |
| Clearing the IVR fcdomain Database |
584 |
| About Persistent FC IDs for IVR |
585 |
| Configuring Persistent FC IDs for IVR |
586 |
| Verifying the Persistent FC ID Configuration |
586 |
| Configuring IVR Logging Levels |
587 |
| Verifying Logging Level Configuration |
587 |
| IVR Zones and IVR Zone Sets |
588 |
| About IVR Zones |
588 |
| Automatic IVR Zone Creation |
589 |
| Configuring IVR Zones and IVR Zone Sets |
590 |
| About Activating Zone Sets and Using the force Option |
591 |
| Activating or Deactivating IVR Zone Sets |
592 |
| Verifying IVR Zone and IVR Zone Set Configuration |
592 |
| About LUNs in IVR Zoning |
594 |
| Configuring LUNs in IVR Zoning |
594 |
| About QoS in IVR Zones |
595 |
| Configuring the QoS Attribute |
595 |
| Verifying the QoS Attribute Configuration |
595 |
| Renaming IVR Zones and IVR Zone Sets |
596 |
| Clearing the IVR Zone Database |
596 |
| Configuring IVR Using Read-Only Zoning |
596 |
| System Image Downgrading Considerations |
596 |
| Database Merge Guidelines |
596 |
| Resolving Database Merge Failures |
598 |
| Example Configurations |
599 |
| Manual Topology Configuration |
599 |
| Auto-Topology Configuration |
602 |
| Default Settings |
604 |
| Configuring and Managing Zones |
605 |
| About Zoning |
605 |
| Zoning Example |
606 |
| Zone Implementation |
607 |
| Zone Member Configuration Guidelines |
608 |
| Active and Full Zone Set Considerations |
608 |
| Zone Configuration |
610 |
| Configuring a Zone |
611 |
| Zone Sets |
611 |
| Activating a Zone Set |
613 |
| About the Default Zone |
613 |
| Configuring the Default Zone Access Permission |
613 |
| About FC Alias Creation |
614 |
| Creating FC Aliases |
614 |
| Creating Zone Sets and Adding Member Zones |
615 |
| Zone Enforcement |
617 |
| Zone Set Distribution |
617 |
| Enabling Full Zone Set Distribution |
618 |
| Enabling a One-Time Distribution |
618 |
| About Recovering from Link Isolation |
618 |
| Importing and Exporting Zone Sets |
619 |
| Zone Set Duplication |
620 |
| Copying Zone Sets |
620 |
| Restoring Zones |
621 |
| Renaming Zones, Zone Sets, and Aliases |
621 |
| Cloning Zones, Zone Sets, FC Aliases, and Zone Attribute Groups |
622 |
| Clearing the Zone Server Database |
622 |
| Advanced Zone Attributes |
622 |
| About Zone-Based Traffic Priority |
623 |
| Configuring Zone-Based Traffic Priority |
623 |
| Configuring Default Zone QoS Priority Attributes |
624 |
| About Broadcast Zoning |
624 |
| Configuring Broadcast Zoning |
625 |
| About LUN Zoning |
625 |
| Configuring a LUN-Based Zone |
626 |
| Assigning LUNs to Storage Subsystems |
627 |
| About Read-Only Zones |
627 |
| Configuring Read-Only Zones |
627 |
| Displaying Zone Information |
628 |
| Enhanced Zoning |
634 |
| About Enhanced Zoning |
635 |
| Changing from Basic Zoning to Enhanced Zoning |
635 |
| Changing from Enhanced Zoning to Basic Zoning |
636 |
| Enabling Enhanced Zoning |
636 |
| Modifying the Zone Database |
637 |
| Releasing Zone Database Locks |
637 |
| Creating Attribute Groups |
637 |
| Merging the Database |
638 |
| Merge Process |
639 |
| Configuring Zone Merge Control Policies |
639 |
| Preventing Zones From Flooding FC2 Buffers |
639 |
| Default Zone Policies |
639 |
| Broadcasting a Zone |
640 |
| Configuring System Default Zoning Settings |
641 |
| Displaying Enhanced Zone Information |
641 |
| Compacting the Zone Database for Downgrading |
644 |
| Zone and Zone Set Analysis |
644 |
| Default Settings |
645 |
| Distributing Device Alias Services |
647 |
| About Device Aliases |
647 |
| About Device Alias Modes |
647 |
| Changing Mode Settings |
648 |
| Device Alias Mode Distribution |
648 |
| Merging Device Alias |
648 |
| Resolving Merge and Device Alias Mode Mismatch |
649 |
| Device Alias Features |
649 |
| Device Alias Requirements |
649 |
| Zone Aliases Versus Device Aliases |
650 |
| Device Alias Databases |
650 |
| Creating Device Aliases |
651 |
| About Device Alias Distribution |
651 |
| Committing Changes |
652 |
| Discarding Changes |
652 |
| Fabric Lock Override |
653 |
| Disabling and Enabling Device Alias Distribution |
653 |
| Imported a Zone Alias |
654 |
| Device Alias Statistics Cleanup |
655 |
| Database Merge Guidelines |
655 |
| Device Alias Configuration Verification |
655 |
| Default Settings |
657 |
| Configuring Fibre Channel Routing Services and Protocols |
659 |
| About FSPF |
660 |
| FSPF Examples |
660 |
| Fault Tolerant Fabric |
660 |
| Redundant Links |
661 |
| Fail-Over Scenarios for PortChannels and FSPF Links |
661 |
| FSPF Global Configuration |
662 |
| About SPF Computational Hold Times |
662 |
| About Link State Record Defaults |
662 |
| Configuring FSPF on a VSAN |
663 |
| Resetting FSPF to the Default Configuration |
663 |
| Enabling or Disabling FSPF |
664 |
| Clearing FSPF Counters for the VSAN |
664 |
| FSPF Interface Configuration |
664 |
| About FSPF Link Cost |
664 |
| Configuring FSPF Link Cost |
665 |
| About Hello Time Intervals |
665 |
| Configuring Hello Time Intervals |
665 |
| About Dead Time Intervals |
665 |
| Configuring Dead Time Intervals |
666 |
| About Retransmitting Intervals |
666 |
| Configuring Retransmitting Intervals |
666 |
| About Disabling FSPF for Specific Interfaces |
666 |
| Disabling FSPF for Specific Interfaces |
667 |
| Clearing FSPF Counters for an Interface |
667 |
| FSPF Routes |
667 |
| About Fibre Channel Routes |
668 |
| Configuring Fibre Channel Routes |
668 |
| About Broadcast and Multicast Routing |
670 |
| About Multicast Root Switch |
670 |
| Setting the Multicast Root Switch |
670 |
| In-Order Delivery |
671 |
| About Reordering Network Frames |
671 |
| About Reordering PortChannel Frames |
672 |
| About Enabling In-Order Delivery |
672 |
| Enabling In-Order Delivery Globally |
674 |
| Enabling In-Order Delivery for a VSAN |
674 |
| Displaying the In-Order Delivery Status |
674 |
| Configuring the Drop Latency Time |
675 |
| Displaying Latency Information |
675 |
| Flow Statistics Configuration |
676 |
| About Flow Statistics |
676 |
| Counting Aggregated Flow Statistics |
676 |
| Counting Individual Flow Statistics |
677 |
| Clearing FIB Statistics |
677 |
| Displaying Flow Statistics |
677 |
| Displaying Global FSPF Information |
678 |
| Displaying the FSPF Database |
678 |
| Displaying FSPF Interfaces |
680 |
| Default Settings |
680 |
| Managing FLOGI, Name Server, FDMI, and RSCN Databases |
683 |
| FLOGI |
683 |
| Displaying FLOGI Details |
683 |
| Name Server Proxy |
685 |
| About Registering Name Server Proxies |
685 |
| Registering Name Server Proxies |
685 |
| About Rejecting Duplicate pWWN |
685 |
| Rejecting Duplicate pWWNs |
686 |
| About Name Server Database Entries |
686 |
| Displaying Name Server Database Entries |
686 |
| FDMI |
687 |
| Displaying FDMI |
688 |
| RSCN |
689 |
| About RSCN Information |
690 |
| Displaying RSCN Information |
690 |
| About the multi-pid Option |
691 |
| Configuring the multi-pid Option |
691 |
| Suppressing Domain Format SW-RSCNs |
691 |
| Clearing RSCN Statistics |
692 |
| Configuring the RSCN Timer |
692 |
| Verifying the RSCN Timer Configuration |
693 |
| RSCN Timer Configuration Distribution |
693 |
| Enabling RSCN Timer Configuration Distribution |
694 |
| Locking the Fabric |
694 |
| Committing the RSCN Timer Configuration Changes |
695 |
| Discarding the RSCN Timer Configuration Changes |
695 |
| Clearing a Locked Session |
695 |
| Displaying RSCN Configuration Distribution Information |
695 |
| Default Settings |
696 |
| Discovering SCSI Targets |
697 |
| About SCSI LUN Discovery |
697 |
| About Starting SCSI LUN Discovery |
697 |
| Starting SCSI LUN Discovery |
698 |
| About Initiating Customized Discovery |
698 |
| Initiating Customized Discovery |
698 |
| Displaying SCSI LUN Information |
698 |
| Configuring FICON |
701 |
| About FICON |
701 |
| FICON Requirements |
702 |
| MDS-Specific FICON Advantages |
703 |
| Fabric Optimization with VSANs |
703 |
| FCIP Support |
704 |
| PortChannel Support |
704 |
| VSANs for FICON and FCP Mixing |
705 |
| Cisco MDS-Supported FICON Features |
705 |
| FICON Cascading |
707 |
| FICON VSAN Prerequisites |
707 |
| FICON Port Numbering |
707 |
| Default FICON Port Numbering Scheme |
708 |
| Port Addresses |
710 |
| Implemented and Unimplemented Port Addresses |
710 |
| About the Reserved FICON Port Numbering Scheme |
710 |
| Installed and Uninstalled Ports |
711 |
| FICON Port Numbering Guidelines |
711 |
| Assigning FICON Port Numbers to Slots |
711 |
| Displaying the FICON Port Number Assignments |
712 |
| About Port Numbers for FCIP and PortChannel |
712 |
| Reserving FICON Port Numbers for FCIP and PortChannel Interfaces |
713 |
| FC ID Allocation |
713 |
| Configuring FICON |
714 |
| About Enabling FICON on a VSAN |
714 |
| Enabling and Disabling FICON on the Switch |
715 |
| Setting Up a Basic FICON Configuration |
715 |
| Manually Enabling FICON on a VSAN |
718 |
| Configuring the code-page Option |
719 |
| Allowing the Host to Move the Switch Offline |
719 |
| Allowing the Host to Change FICON Port Parameters |
720 |
| Allowing the Host to Control the Timestamp |
720 |
| Clearing the Time Stamp |
721 |
| Configuring SNMP Control of FICON Parameters |
721 |
| About FICON Device Allegiance |
722 |
| Clearing FICON Device Allegiance |
722 |
| Automatically Saving the Running Configuration |
722 |
| Configuring FICON Ports |
723 |
| Binding Port Numbers to PortChannels |
724 |
| Binding Port Numbers to FCIP Interfaces |
724 |
| Configuring Port Blocking |
724 |
| Port Prohibiting |
725 |
| Configuring the Default State for Port Prohibiting |
725 |
| Configuring Port Prohibiting |
726 |
| Assigning a Port Address Name |
726 |
| About RLIR |
727 |
| Specifying an RLIR Preferred Host |
727 |
| Displaying RLIR Information |
728 |
| Clearing RLIR Information |
732 |
| FICON Configuration Files |
732 |
| About FICON Configuration Files |
733 |
| Applying the Saved Configuration Files to the Running Configuration |
733 |
| Editing FICON Configuration Files |
733 |
| Displaying FICON Configuration Files |
734 |
| Copying FICON Configuration Files |
735 |
| Port Swapping |
736 |
| About Port Swapping |
736 |
| Swapping Ports |
737 |
| FICON Tape Acceleration |
738 |
| Configuring FICON Tape Acceleration |
739 |
| Moving a FICON VSAN to an Offline State |
740 |
| CUP In-Band Management |
740 |
| Placing CUPs in a Zone |
741 |
| Displaying Control Unit Information |
741 |
| Displaying FICON Information |
742 |
| Receiving FICON Alerts |
742 |
| Displaying FICON Port Address Information |
743 |
| Displaying FICON Configuration File Information |
744 |
| Displaying the Configured FICON State |
746 |
| Displaying a Port Administrative State |
746 |
| Displaying Buffer Information |
747 |
| Displaying FICON Information in the Running Configuration |
747 |
| Displaying FICON Information in the Startup Configuration |
748 |
| Displaying FICON-Related Log Information |
749 |
| Default Settings |
749 |
| Advanced Features and Concepts |
751 |
| Common Information Model |
751 |
| About CIM |
751 |
| SSL Certificate Requirements and Format |
752 |
| Configuring the CIM Server |
752 |
| Installing an SSL certificate for the CIM server |
752 |
| Configuring the transport protocol for the CIM server |
753 |
| Enabling the CIM Server |
753 |
| Displaying CIM Information |
753 |
| Fibre Channel Time Out Values |
755 |
| Timer Configuration Across All VSANs |
756 |
| Timer Configuration Per-VSAN |
756 |
| About fctimer Distribution |
757 |
| Enabling or Disabling fctimer Distribution |
757 |
| Committing fctimer Changes |
757 |
| Discarding fctimer Changes |
758 |
| Fabric Lock Override |
758 |
| Database Merge Guidelines |
758 |
| Displaying Configured fctimer Values |
759 |
| World Wide Names |
759 |
| Displaying WWN Information |
760 |
| Link Initialization WWN Usage |
760 |
| Configuring a Secondary MAC Address |
761 |
| FC ID Allocation for HBAs |
761 |
| Default Company ID list |
761 |
| Verifying the Company ID Configuration |
762 |
| Switch Interoperability |
763 |
| About Interop Mode |
763 |
| Configuring Interop Mode 1 |
766 |
| Verifying Interoperating Status |
767 |
| Default Settings |
770 |
| Part 5 |
773 |
| Security |
773 |
| Configuring FIPS |
775 |
| Configuration Guidelines |
775 |
| Enabling FIPS Mode |
776 |
| Checking for FIPS Status |
776 |
| FIPS Self-Tests |
776 |
| Configuring Users and Common Roles |
777 |
| Role-Based Authorization |
777 |
| About Roles |
778 |
| Configuring Roles and Profiles |
778 |
| Configuring Rules and Features for Each Role |
778 |
| Modifying Profiles |
779 |
| Configuring the VSAN Policy |
779 |
| Modifying the VSAN Policy |
780 |
| Role Distributions |
780 |
| About Role Databases |
781 |
| Locking the Fabric |
781 |
| Committing Role-Based Configuration Changes |
781 |
| Discarding Role-Based Configuration Changes |
781 |
| Enabling Role-Based Configuration Distribution |
782 |
| Clearing Sessions |
782 |
| Database Merge Guidelines |
782 |
| Displaying Role-Based Information |
782 |
| Displaying Roles When Distribution is Enabled |
783 |
| Configuring Common Roles |
784 |
| Mapping of CLI Operations to SNMP |
785 |
| Configuring User Accounts |
786 |
| About Users |
787 |
| Characteristics of Strong Passwords |
787 |
| Configuring Users |
788 |
| Logging Out Users |
789 |
| Displaying User Account Information |
789 |
| Configuring SSH Services |
790 |
| About SSH |
791 |
| Generating the SSH Server Key-Pair |
791 |
| Specifying the SSH Key |
791 |
| Overwriting a Generated Key-Pair |
792 |
| Clearing SSH Hosts |
793 |
| Enabling SSH or Telnet Service |
794 |
| Displaying SSH Protocol Status |
794 |
| SSH Authentication Using Digital Certificates |
795 |
| Recovering the Administrator Password |
795 |
| Using the CLI with Network-Admin Privileges |
795 |
| Power Cycling the Switch |
796 |
| Default Settings |
797 |
| Configuring SNMP |
799 |
| About SNMP Security |
799 |
| SNMP Version 1 and Version 2c |
800 |
| SNMP Version 3 |
800 |
| Assigning SNMP Switch Contact and Location Information |
800 |
| SNMPv3 CLI User Management and AAA Integration |
801 |
| CLI and SNMP User Synchronization |
801 |
| Restricting Switch Access |
802 |
| Group-Based SNMP Access |
802 |
| Creating and Modifying Users |
802 |
| About AES Encryption-Based Privacy |
803 |
| Configuring SNMP Users from the CLI |
803 |
| Enforcing SNMPv3 Message Encryption |
804 |
| Assigning SNMPv3 Users to Multiple Roles |
805 |
| Adding or Deleting Communities |
806 |
| SNMP Trap and Inform Notifications |
806 |
| Configuring SNMPv2c Notifications |
807 |
| Configuring SNMPv3 Notifications |
808 |
| Enabling SNMP Notifications |
808 |
| Configuring the Notification Target User |
810 |
| Configuring LinkUp/LinkDown Notifications for Switches |
811 |
| Configuring Up/Down SNMP Link-State Traps for Interfaces |
812 |
| Scope of Link Up/Down Trap Settings |
813 |
| Displaying SNMP Security Information |
813 |
| Default Settings |
816 |
| Configuring RADIUS and TACACS+ |
817 |
| Switch Management Security |
817 |
| CLI Security Options |
818 |
| SNMP Security Options |
818 |
| Switch AAA Functionalities |
818 |
| Authentication |
819 |
| Authorization |
819 |
| Accounting |
819 |
| Remote AAA Services |
820 |
| Remote Authentication Guidelines |
820 |
| Server Groups |
820 |
| AAA Service Configuration Options |
820 |
| Error-Enabled Status |
821 |
| AAA Server Monitoring |
821 |
| Authentication and Authorization Process |
822 |
| Configuring RADIUS |
824 |
| Setting the RADIUS Server Address |
824 |
| About the Default RADIUS Server Encryption Type and Preshared Key |
826 |
| Configuring the Default RADIUS Server Encryption Type and Preshared Key |
826 |
| Setting the RADIUS Server Timeout Interval |
827 |
| Setting Transmission Retry Count for the RADIUS Server |
827 |
| Configuring RADIUS Server Monitoring Parameters |
828 |
| Configuring the Test Idle Timer |
828 |
| Configuring Test User Name |
828 |
| Configuring the Dead Timer |
829 |
| Sending RADIUS Test Messages for Monitoring |
829 |
| About Users Specifying a RADIUS Server at Login |
830 |
| Allowing Users to Specify a RADIUS Server at Login |
830 |
| About Vendor-Specific Attributes |
830 |
| VSA Format |
831 |
| Specifying SNMPv3 on AAA Servers |
831 |
| Displaying RADIUS Server Details |
831 |
| Displaying RADIUS Server Statistics |
832 |
| Configuring TACACS+ |
833 |
| About TACACS+ |
833 |
| About TACACS+ Server Default Configuration |
833 |
| About the Default TACACS+ Server Encryption Type and Preshared Key |
834 |
| Enabling TACACS+ |
834 |
| Setting the TACACS+ Server Address |
834 |
| Setting the Global Secret Key |
836 |
| Setting the Timeout Value |
836 |
| About TACACS+ Servers |
837 |
| Configuring TACACS+ Server Monitoring Parameters |
837 |
| Configuring the TACACS+ Test Idle Timer |
837 |
| Configuring Test Username |
838 |
| Configuring the Dead Timer |
838 |
| Sending TACACS+ Test Messages for Monitoring |
840 |
| Password Aging Notification through TACACS+ Server |
840 |
| About Users Specifying a TACACS+ Server at Login |
840 |
| Allowing Users to Specify a TACACS+ Server at Login |
841 |
| Defining Custom Attributes for Roles |
841 |
| Supported TACACS+ Server Parameters |
841 |
| Displaying TACACS+ Server Details |
842 |
| Configuring Server Groups |
843 |
| AAA Server Distribution |
846 |
| Enabling AAA Server Distribution |
846 |
| Starting a Distribution Session on a Switch |
847 |
| Displaying the Session Status |
847 |
| Displaying the Pending Configuration |
848 |
| Committing the Distribution |
848 |
| Discarding the Distribution Session |
848 |
| .Merge Guidelines for RADIUS and TACACS+ Configurations |
849 |
| MSCHAP Authentication |
850 |
| About Enabling MSCHAP |
850 |
| Local AAA Services |
851 |
| Disabling AAA Authentication |
851 |
| Displaying AAA Authentication |
851 |
| Configuring Accounting Services |
852 |
| Displaying Accounting Configuration |
852 |
| Clearing Accounting Logs |
853 |
| Configuring Cisco Access Control Servers |
854 |
| Default Settings |
857 |
| Configuring IPv4 and IPv6 Access Control Lists |
859 |
| IPv4-ACL and IPv6-ACL Configuration Guidelines |
860 |
| About Filter Contents |
860 |
| Protocol Information |
860 |
| Address Information |
861 |
| Port Information |
861 |
| ICMP Information |
862 |
| ToS Information |
863 |
| Configuring IPv4-ACLs or IPv6-ACLs |
863 |
| Creating IPv4-ACLs or IPv6-ACLs |
863 |
| Adding IP Filters to an Existing IPv4-ACL or IPv6-ACL |
865 |
| Removing IP Filters from an Existing IPv4-ACL or IPv6-ACL |
865 |
| Verifying the IPv4-ACL or IPv6-ACL Configuration |
866 |
| Reading the IP-ACL Log Dump |
867 |
| Applying an IP-ACL to an Interface |
867 |
| Applying an IP-ACL to mgmt0 |
869 |
| Verifying Interface IP-ACL Configuration |
869 |
| IP-ACL Counter Cleanup |
870 |
| Configuring Certificate Authorities and Digital Certificates |
871 |
| About CAs and Digital Certificates |
871 |
| Purpose of CAs and Digital Certificates |
872 |
| Trust Model, Trust Points, and Identity CAs |
872 |
| RSA Key-Pairs and Identity Certificates |
872 |
| Multiple Trusted CA Support |
873 |
| PKI Enrollment Support |
874 |
| Manual Enrollment Using Cut-and-Paste Method |
874 |
| Multiple RSA Key-Pair and Identity CA Support |
874 |
| Peer Certificate Verification |
874 |
| CRL Downloading, Caching, and Checking Support |
875 |
| OCSP Support |
875 |
| Import and Export Support for Certificates and Associated Key Pairs |
875 |
| Configuring CAs and Digital Certificates |
875 |
| Configuring the Host Name and IP Domain Name |
876 |
| Generating an RSA Key-Pair |
876 |
| Creating a Trust Point CA Association |
878 |
| Authenticating the CA |
878 |
| Configuring Certificate Revocation Checking Methods |
879 |
| Generating Certificate Requests |
880 |
| Installing Identity Certificates |
881 |
| Ensuring Trust Point Configurations Persist Across Reboots |
882 |
| Monitoring and Maintaining CA and Certificates Configuration |
883 |
| Exporting and Importing Identity Information in PKCS#12 Format |
883 |
| Configuring a CRL |
884 |
| Deleting Certificates from the CA Configuration |
884 |
| Deleting RSA Key-Pairs from Your Switch |
885 |
| Displaying Key-Pair and CA Information |
885 |
| Example Configurations |
885 |
| Configuring Certificates on the MDS Switch |
886 |
| Downloading a CA Certificate |
889 |
| Requesting an Identity Certificate |
893 |
| Revoking a Certificate |
899 |
| Generating and Publishing the CRL |
902 |
| Downloading the CRL |
903 |
| Importing the CRL |
905 |
| Maximum Limits |
907 |
| Default Settings |
908 |
| Configuring IPsec Network Security |
909 |
| About IPsec |
910 |
| About IKE |
911 |
| IPsec Prerequisites |
911 |
| Using IPsec |
912 |
| IPsec Compatibility |
912 |
| IPsec and IKE Terminology |
913 |
| Supported IPsec Transforms and Algorithms |
914 |
| Supported IKE Transforms and Algorithms |
914 |
| IPsec Digital Certificate Support |
915 |
| Implementing IPsec Without CAs and Digital Certificates |
915 |
| Implementing IPsec with CAs and Digital Certificates |
916 |
| How CA Certificates Are Used by IPsec Devices |
917 |
| Manually Configuring IPsec and IKE |
918 |
| About IKE Initialization |
918 |
| Enabling IKE |
919 |
| About the IKE Domain |
919 |
| Configuring the IKE Domain |
919 |
| About IKE Tunnels |
919 |
| About IKE Policy Negotiation |
919 |
| Configuring an IKE Policy |
921 |
| Optional IKE Parameter Configuration |
922 |
| Configuring the Lifetime Association for a Policy |
923 |
| Configuring the Keepalive Time for a Peer |
923 |
| Configuring the Initiator Version |
924 |
| Clearing IKE Tunnels or Domains |
924 |
| Refreshing SAs |
924 |
| Crypto IPv4-ACLs |
924 |
| About Crypto IPv4-ACLs |
925 |
| Crypto IPv4-ACL Guidelines |
925 |
| Mirror Image Crypto IPv4-ACLs |
927 |
| The any Keyword in Crypto IPv4-ACLs |
928 |
| Creating Crypto IPv4-ACLs |
929 |
| About Transform Sets in IPsec |
929 |
| Configuring Transform Sets |
930 |
| About Crypto Map Entries |
931 |
| SA Establishment Between Peers |
931 |
| Crypto Map Configuration Guidelines |
932 |
| Creating Crypto Map Entries |
932 |
| About SA Lifetime Negotiation |
933 |
| Setting the SA Lifetime |
933 |
| About the AutoPeer Option |
934 |
| Configuring the AutoPeer Option |
934 |
| About Perfect Forward Secrecy |
935 |
| Configuring Perfect Forward Secrecy |
935 |
| About Crypto Map Set Interface Application |
935 |
| Applying a Crypto Map Set |
936 |
| IPsec Maintenance |
936 |
| Global Lifetime Values |
936 |
| Displaying IKE Configurations |
938 |
| Displaying IPsec Configurations |
938 |
| Sample FCIP Configuration |
942 |
| Sample iSCSI Configuration |
947 |
| Default Settings |
948 |
| Configuring FC-SP and DHCHAP |
949 |
| About Fabric Authentication |
949 |
| DHCHAP |
950 |
| DHCHAP Compatibility with Existing Cisco MDS Features |
951 |
| About Enabling DHCHAP |
952 |
| Enabling DHCHAP |
952 |
| About DHCHAP Authentication Modes |
953 |
| Configuring the DHCHAP Mode |
953 |
| About the DHCHAP Hash Algorithm |
954 |
| Configuring the DHCHAP Hash Algorithm |
954 |
| About the DHCHAP Group Settings |
955 |
| Configuring the DHCHAP Group Settings |
955 |
| About the DHCHAP Password |
955 |
| Configuring DHCHAP Passwords for the Local Switch |
956 |
| About Password Configuration for Remote Devices |
956 |
| Configuring DHCHAP Passwords for Remote Devices |
957 |
| About the DHCHAP Timeout Value |
957 |
| Configuring the DHCHAP Timeout Value |
957 |
| Configuring DHCHAP AAA Authentication |
957 |
| Displaying Protocol Security Information |
958 |
| Sample Configuration |
959 |
| Default Settings |
961 |
| Configuring Port Security |
963 |
| About Port Security |
963 |
| Port Security Enforcement |
964 |
| About Auto-Learning |
964 |
| Port Security Activation |
965 |
| Port Security Configuration Guidelines |
965 |
| Configuring Port Security with Auto-Learning and CFS Distribution |
965 |
| Configuring Port Security with Auto-Learning without CFS |
966 |
| Configuring Port Security with Manual Database Configuration |
966 |
| Enabling Port Security |
967 |
| Port Security Activation |
967 |
| Activating Port Security |
967 |
| Database Activation Rejection |
968 |
| Forcing Port Security Activation |
968 |
| Database Reactivation |
969 |
| Auto-learning |
969 |
| About Enabling Auto-learning |
969 |
| Enabling Auto-learning |
970 |
| Disabling Auto-learning |
970 |
| Auto-Learning Device Authorization |
970 |
| Authorization Scenarios |
971 |
| Port Security Manual Configuration |
972 |
| About WWN Identification |
972 |
| Adding Authorized Port Pairs |
972 |
| Port Security Configuration Distribution |
973 |
| Enabling Distribution |
974 |
| Locking the Fabric |
974 |
| Committing the Changes |
974 |
| Discarding the Changes |
975 |
| Activation and Auto-learning Configuration Distribution |
975 |
| Database Merge Guidelines |
976 |
| Database Interaction |
976 |
| Database Scenarios |
977 |
| Port Security Database Copy |
978 |
| Port Security Database Deletion |
979 |
| Port Security Database Cleanup |
979 |
| Displaying Port Security Configuration |
980 |
| Default Settings |
982 |
| Configuring Fabric Binding |
983 |
| About Fabric Binding |
983 |
| Licensing Requirements |
983 |
| Port Security Versus Fabric Binding |
983 |
| Fabric Binding Enforcement |
984 |
| Fabric Binding Configuration |
985 |
| Enabling Fabric Binding |
985 |
| Configuring Switch WWN List |
985 |
| Fabric Binding Activation |
986 |
| Forcing Fabric Binding Activation |
987 |
| Saving Fabric Binding Configurations |
987 |
| Clearing the Fabric Binding Statistics |
988 |
| Deleting the Fabric Binding Database |
988 |
| Verifying Fabric Binding Configurations |
988 |
| Default Settings |
991 |
| Part 6 |
993 |
| IP Services |
993 |
| Configuring FCIP |
995 |
| About FCIP |
995 |
| FCIP Concepts |
996 |
| FCIP and VE Ports |
996 |
| FCIP Links |
997 |
| FCIP Profiles |
998 |
| FCIP Interfaces |
998 |
| FCIP High-Availability Solutions |
998 |
| Fibre Channel PortChannels |
999 |
| FSPF |
999 |
| VRRP |
1000 |
| Ethernet PortChannels |
1000 |
| Ethernet PortChannels and Fibre Channel PortChannels |
1001 |
| Configuring FCIP |
1001 |
| Enabling FCIP |
1002 |
| Basic FCIP Configuration |
1002 |
| Creating FCIP Profiles |
1003 |
| Displaying FCIP Profile Information |
1003 |
| Creating FCIP Links |
1004 |
| Advanced FCIP Profile Configuration |
1006 |
| Configuring TCP Listener Ports |
1006 |
| Configuring TCP Parameters |
1007 |
| Minimum Retransmit Timeout |
1007 |
| Keepalive Timeout |
1007 |
| Maximum Retransmissions |
1008 |
| Path MTUs |
1008 |
| Selective Acknowledgments |
1008 |
| Window Management |
1009 |
| Monitoring Congestion |
1009 |
| Estimating Maximum Jitter |
1010 |
| Buffer Size |
1011 |
| Displaying FCIP Profile Configuration Information |
1011 |
| Displaying FCIP Profile Configuration Information |
1012 |
| Advanced FCIP Interface Configuration |
1012 |
| Configuring Peers |
1012 |
| Peer IP Address |
1013 |
| Special Frames |
1013 |
| Active Connections |
1014 |
| Number of TCP Connections |
1014 |
| Time Stamp Control |
1015 |
| B Port Interoperability Mode |
1016 |
| Configuring B Ports |
1017 |
| Quality of Service |
1018 |
| Configuring E Ports |
1018 |
| Displaying FCIP Interface Information |
1019 |
| Advanced FCIP Features |
1021 |
| FCIP Write Acceleration |
1021 |
| Configuring FCIP Write Acceleration |
1023 |
| Displaying Write Acceleration Activity Information |
1023 |
| FCIP Tape Acceleration |
1024 |
| Tape Library LUN Mapping for FCIP Tape Acceleration |
1027 |
| Configuring FCIP Tape Acceleration |
1028 |
| Displaying Tape Acceleration Activity Information |
1029 |
| FCIP Compression |
1031 |
| Configuring FCIP Compression |
1032 |
| Displaying FCIP Compression Information |
1032 |
| Default Settings |
1033 |
| Configuring the SAN Extension Tuner |
1035 |
| About the SAN Extension Tuner |
1035 |
| SAN Extension Tuner Setup |
1036 |
| Data Pattern |
1037 |
| License Prerequisites |
1037 |
| Configuring the SAN Extension Tuner |
1037 |
| Tuning the FCIP Link |
1038 |
| Enabling the Tuner |
1038 |
| Configuring nWWN |
1038 |
| Configuring the Virtual N Port |
1039 |
| Assigning the SCSI Read/Write |
1039 |
| Assigning SCSI Tape Read/Write |
1041 |
| Configuring a Data Pattern |
1042 |
| Verifying the SAN Extension Tuner Configuration |
1043 |
| Default Settings |
1044 |
| Configuring iSCSI |
1045 |
| About iSCSI |
1045 |
| About iSCSI Configuration Limits |
1048 |
| Configuring iSCSI |
1048 |
| Enabling iSCSI |
1048 |
| Creating iSCSI Interfaces |
1049 |
| Presenting Fibre Channel Targets as iSCSI Targets |
1049 |
| Dynamic Mapping |
1050 |
| Static Mapping |
1051 |
| Advertising Static iSCSI Targets |
1051 |
| iSCSI Virtual Target Configuration Examples |
1052 |
| Example 1 |
1052 |
| Example 2 |
1052 |
| Example 3 |
1053 |
| Presenting iSCSI Hosts as Virtual Fibre Channel Hosts |
1053 |
| Initiator Identification |
1053 |
| Initiator Presentation Modes |
1054 |
| Transparent Initiator Mode |
1055 |
| iSCSI Initiator Idle Timeout |
1056 |
| WWN Assignment for iSCSI Initiators |
1056 |
| Proxy Initiator Mode |
1060 |
| VSAN Membership for iSCSI |
1061 |
| VSAN Membership for iSCSI Hosts |
1061 |
| VSAN Membership for iSCSI Interfaces |
1062 |
| Example of VSAN Membership for iSCSI Devices |
1062 |
| Advanced VSAN Membership for iSCSI Hosts |
1063 |
| iSCSI Access Control |
1063 |
| Fibre Channel Zoning-Based Access Control |
1064 |
| iSCSI-Based Access Control |
1065 |
| Enforcing Access Control |
1066 |
| iSCSI Session Authentication |
1067 |
| Authentication Mechanism |
1068 |
| Local Authentication |
1068 |
| Restricting iSCSI Initiator Authentication |
1069 |
| Mutual CHAP Authentication |
1069 |
| iSCSI Immediate Data and Unsolicited Data Features |
1070 |
| iSCSI Interface Advanced Features |
1070 |
| iSCSI Listener Port |
1071 |
| TCP Tuning Parameters |
1071 |
| QoS |
1072 |
| iSCSI Routing Modes |
1072 |
| Displaying iSCSI Information |
1074 |
| Displaying iSCSI Interfaces |
1074 |
| Displaying iSCSI Statistics |
1075 |
| Displaying Proxy Initiator Information |
1077 |
| Displaying Global iSCSI Information |
1078 |
| Displaying iSCSI Sessions |
1078 |
| Displaying iSCSI Initiators |
1080 |
| Displaying iSCSI Virtual Targets |
1083 |
| Displaying iSCSI User Information |
1083 |
| Configuring iSLB |
1083 |
| About iSLB Configuration Limits |
1084 |
| iSLB Configuration Prerequisites |
1085 |
| About iSLB Initiators |
1085 |
| Configuring iSLB Initiators |
1085 |
| Configuring iSLB Initiator Names or IP Addresses |
1086 |
| Assigning WWNs to iSLB Initiators |
1087 |
| Making the Dynamic iSLB Initiator WWN Mapping Static |
1087 |
| Assigning VSAN Membership for iSLB Initiators |
1088 |
| Configuring Metric for Load Balancing |
1089 |
| Verifying iSLB Initiator Configuration |
1089 |
| Configuring iSLB Initiator Targets |
1089 |
| Configuring and Activating Zones for iSLB Initiators and Initiator Targets |
1090 |
| Verifying iSLB Zoning Configuration |
1091 |
| Configuring iSLB Session Authentication |
1092 |
| Restricting iSLB Initiator Authentication |
1092 |
| Mutual CHAP Authentication |
1092 |
| Verifying iSLB Authentication Configuration |
1093 |
| About Load Balancing Using VRRP |
1093 |
| Changing iSCSI Interface Parameters and the Impact on Load Balancing |
1095 |
| VRRP Load Balancing Algorithm For Selecting Gigabit Ethernet Interfaces |
1095 |
| Configuring Load Balancing Using VRRP |
1098 |
| Enabling VRRP for Load Balancing |
1098 |
| Verifying iSLB VRRP Load Balancing Configuration |
1098 |
| Displaying iSLB VRRP Information |
1098 |
| About iSLB Configuration Distribution Using CFS |
1099 |
| Distributing the iSLB Configuration Using CFS |
1099 |
| Enabling iSLB Configuration Distribution |
1100 |
| Locking the Fabric |
1100 |
| Committing Changes to the Fabric |
1100 |
| Discarding Pending Changes |
1100 |
| Clearing a Fabric Lock |
1101 |
| CFS Merge Process |
1101 |
| Displaying Pending iSLB Configuration Changes |
1101 |
| Displaying iSLB CFS Status |
1102 |
| Displaying iSLB CFS Distribution Session Status |
1102 |
| Displaying iSLB CFS Merge Status |
1102 |
| iSCSI High Availability |
1103 |
| Transparent Target Failover |
1103 |
| iSCSI High Availability with Host Running Multi-Path Software |
1103 |
| iSCSI HA with Host Not Having Any Multi-Path Software |
1104 |
| LUN Trespass for Storage Port Failover |
1106 |
| Multiple IPS Ports Connected to the Same IP Network |
1107 |
| VRRP-Based High Availability |
1108 |
| Ethernet PortChannel-Based High Availability |
1109 |
| iSCSI Authentication Setup Guidelines and Scenarios |
1110 |
| No Authentication |
1111 |
| CHAP with Local Password Database |
1111 |
| CHAP with External RADIUS Server |
1111 |
| iSCSI Transparent Mode Initiator |
1112 |
| Target Storage Device Requiring LUN Mapping |
1117 |
| iSNS |
1123 |
| About iSNS Client Functionality |
1123 |
| Creating an iSNS Client Profile |
1124 |
| Verifying iSNS Client Configuration |
1125 |
| About iSNS Server Functionality |
1127 |
| Example Scenario |
1127 |
| Configuring iSNS Servers |
1128 |
| Enabling the iSNS Server |
1129 |
| iSNS Configuration Distribution |
1129 |
| Configuring the ESI Retry Count |
1129 |
| Configuring the Registration Period |
1130 |
| iSNS Client Registration and Deregistration |
1130 |
| Target Discovery |
1130 |
| Verifying the iSNS Server Configuration |
1131 |
| iSNS Cloud Discovery |
1137 |
| About Cloud Discovery |
1137 |
| Configuring iSNS Cloud Discovery |
1138 |
| Enabling iSNS Cloud Discovery |
1138 |
| Initiating On-Demand iSNS Cloud Discovery |
1139 |
| Configuring Automatic iSNS Cloud Discovery |
1139 |
| Verifying Automatic iSNS Cloud Discovery Configuration |
1139 |
| Configuring iSNS Cloud Discovery Distribution |
1139 |
| Configuring iSNS Cloud Discovery Message Types |
1139 |
| Verifying Cloud Discovery Status |
1140 |
| Verifying Cloud Discovery Membership |
1140 |
| Displaying Cloud Discovery Statistics |
1140 |
| Default Settings |
1140 |
| Configuring IP Services |
1143 |
| Traffic Management Services |
1144 |
| Management Interface Configuration |
1144 |
| Default Gateway |
1145 |
| About the Default Gateway |
1145 |
| Configuring the Default Gateway |
1146 |
| Verifying the Default Gateway Configuration |
1146 |
| IPv4 Default Network Configuration |
1146 |
| IPFC |
1148 |
| IPFC Configuration Guidelines |
1148 |
| Configuring an IPv4 Address in a VSAN |
1149 |
| Verifying the VSAN Interface Configuration |
1149 |
| Enabling IPv4 Routing |
1149 |
| Verifying the IPv4 Routing Configuration |
1149 |
| IPFC Configuration Example |
1150 |
| IPv4 Static Routes |
1152 |
| About IPv4 Static Routes |
1153 |
| Configuring IPv4 Static Routes |
1153 |
| Verifying IPv4 Static Route Information |
1153 |
| Displaying and Clearing ARPs |
1154 |
| Overlay VSANs |
1154 |
| About Overlay VSANs |
1154 |
| Configuring Overlay VSANs |
1155 |
| Multiple VSAN Configuration |
1156 |
| Virtual Router Redundancy Protocol |
1158 |
| About VRRP |
1159 |
| Configuring VRRP |
1160 |
| Adding and Deleting Virtual Router |
1161 |
| Virtual Router Initiation |
1161 |
| Adding Virtual Router IP Addresses |
1162 |
| Setting the Priority for the Virtual Router |
1163 |
| Setting the time Interval for Advertisement Packets |
1164 |
| Configuring or Enabling Priority Preemption |
1164 |
| Setting Virtual Router Authentication |
1165 |
| Tracking the Interface Priority |
1166 |
| Displaying IPv4 VRRP Information |
1167 |
| Displaying IPv6 VRRP Information |
1168 |
| Displaying VRRP Statistics |
1169 |
| Clearing VRRP Statistics |
1169 |
| DNS Server Configuration |
1169 |
| Displaying DNS Host Information |
1170 |
| Default Settings |
1171 |
| Configuring IP Storage |
1173 |
| Services Modules |
1173 |
| Module Status Verification |
1174 |
| IPS Module Upgrade |
1175 |
| MPS-14/2 Module Upgrade |
1175 |
| Supported Hardware |
1176 |
| IPS Module Core Dumps |
1176 |
| Configuring Gigabit Ethernet High Availability |
1177 |
| VRRP for iSCSI and FCIP Services |
1177 |
| Configuring VRRP for Gigabit Ethernet Interfaces |
1178 |
| About Ethernet PortChannel Aggregation |
1179 |
| Configuring Ethernet PortChannels |
1180 |
| Configuring CDP |
1181 |
| Displaying Statistics |
1181 |
| Displaying Gigabit Ethernet Interface Statistics |
1181 |
| Displaying Ethernet MAC Statistics |
1182 |
| Displaying DMA-Bridge Statistics |
1182 |
| Displaying TCP Statistics |
1183 |
| Default Settings |
1185 |
| Configuring IPv4 for Gigabit Ethernet Interfaces |
1187 |
| About IPv4 |
1187 |
| Basic Gigabit Ethernet Configuration for IPv4 |
1188 |
| Configuring Interface Descriptions |
1189 |
| Configuring Beacon Mode |
1189 |
| Configuring Autonegotiation |
1189 |
| Configuring the MTU Frame Size |
1189 |
| Configuring Promiscuous Mode |
1190 |
| Verifying Gigabit Ethernet Connectivity |
1190 |
| VLANs |
1191 |
| About VLANs for Gigabit Ethernet |
1191 |
| Configuring the VLAN Subinterface |
1192 |
| Interface Subnet Requirements |
1192 |
| Configuring Static IPv4 Routing |
1193 |
| Displaying the IPv4 Route Table |
1193 |
| IPv4-ACLs |
1193 |
| Gigabit Ethernet IPv4-ACL Guidelines |
1193 |
| Applying IPv4-ACLs on Gigabit Ethernet Interfaces |
1194 |
| ARP Cache |
1194 |
| Displaying ARP Cache |
1195 |
| Clearing ARP Cache |
1195 |
| Displaying IPv4 Statistics |
1195 |
| Default Settings |
1196 |
| Configuring IPv6 for Gigabit Ethernet Interfaces |
1197 |
| About IPv6 |
1197 |
| Extended IPv6 Address Space for Unique Addresses |
1198 |
| IPv6 Address Formats |
1198 |
| IPv6 Address Prefix Format |
1199 |
| IPv6 Address Type: Unicast |
1199 |
| Global Addresses |
1199 |
| Link-Local Address |
1200 |
| IPv6 Address Type: Multicast |
1201 |
| ICMP for IPv6 |
1202 |
| Path MTU Discovery for IPv6 |
1203 |
| IPv6 Neighbor Discovery |
1203 |
| IPv6 Neighbor Solicitation and Advertisement Messages |
1203 |
| Router Discovery |
1205 |
| IPv6 Stateless Autoconfiguration |
1205 |
| Dual IPv4 and IPv6 Protocol Stacks |
1206 |
| Configuring Basic Connectivity for IPv6 |
1207 |
| Configuring IPv6 Addressing and Enabling IPv6 Routing |
1207 |
| Configuring IPv4 and IPv6 Protocol Addresses |
1209 |
| Verifying Basic IPv6 Connectivity Configuration and Operation |
1209 |
| Example Output for the show ipv6 interface Command |
1210 |
| Example Output for the show ipv6 neighbours Command |
1210 |
| Example Output for the show ipv6 traffic Command |
1210 |
| Clearing IPv6 Neighbor Discovery Cache |
1211 |
| Configuring Neighbor Discovery Parameters |
1211 |
| Duplicate Address Detection Attempts |
1211 |
| Reachability Time |
1212 |
| Retransmission Time |
1212 |
| Verifying Neighbor Discovery Parameter Configuration |
1212 |
| Configuring IPv6 Static Routes |
1213 |
| Configuring a IPv6 Static Route |
1213 |
| Verifying IPv6 Static Route Configuration and Operation |
1213 |
| Gigabit Ethernet IPv6-ACL Guidelines |
1214 |
| Transitioning from IPv4 to IPv6 |
1215 |
| Displaying IPv6 Information |
1215 |
| Default Settings |
1216 |
| Part 7 |
1217 |
| Intelligent Storage Services |
1217 |
| Configuring SCSI Flow Services and Statistics |
1219 |
| SCSI Flow Services |
1219 |
| About SCSI Flow Services |
1219 |
| SCSI Flow Manager |
1220 |
| SCSI Flow Configuration Client |
1221 |
| SCSI Flow Data Path Support |
1221 |
| Configuring SCSI Flow Services |
1221 |
| Enabling SCSI Flow Services |
1221 |
| Enabling SCSI Flow Configuration Distribution |
1222 |
| Configuring SCSI Flow Identifiers |
1223 |
| SCSI Flow Statistics |
1223 |
| About SCSI Flow Statistics |
1223 |
| Configuring SCSI Flow Statistics |
1224 |
| Enabling SCSI Flow Statistics |
1224 |
| Clearing SCSI Flow Statistics |
1224 |
| Displaying SCSI Flow Services Information |
1225 |
| Default Settings |
1228 |
| Configuring Fibre Channel Write Acceleration |
1229 |
| Fibre Channel Write Acceleration |
1229 |
| About Fibre Channel Write Acceleration |
1229 |
| Enabling Fibre Channel Write Acceleration |
1230 |
| Displaying Fibre Channel Write Acceleration Information |
1230 |
| Default Settings |
1232 |
| Part 8 |
1233 |
| Network and Switch Monitoring |
1233 |
| Configuring RMON |
1235 |
| About RMON |
1235 |
| Configuring RMON |
1235 |
| RMON Alarm Configuration |
1236 |
| RMON Event Configuration |
1236 |
| RMON Verification |
1238 |
| Default Settings |
1238 |
| Monitoring Network Traffic Using SPAN |
1241 |
| About SPAN |
1242 |
| SPAN Sources |
1242 |
| IPS Source Ports |
1243 |
| Allowed Source Interface Types |
1243 |
| VSAN as a Source |
1244 |
| Guidelines to Configure VSANs as a Source |
1244 |
| SPAN Sessions |
1245 |
| Specifying Filters |
1245 |
| Guidelines to Specifying Filters |
1245 |
| SD Port Characteristics |
1245 |
| Guidelines to Configure SPAN |
1246 |
| Configuring SPAN |
1246 |
| Configuring SPAN |
1246 |
| Configuring SPAN max-queued-packets |
1249 |
| Configuring SPAN for Generation 2 Fabric Switches |
1249 |
| Suspending and Reactivating SPAN Sessions |
1251 |
| Encapsulating Frames |
1251 |
| SPAN Conversion Behavior |
1251 |
| Monitoring Traffic Using Fibre Channel Analyzers |
1252 |
| Without SPAN |
1252 |
| With SPAN |
1253 |
| Configuring Fibre Channel Analyzers Using SPAN |
1254 |
| Single SD Port to Monitor Traffic |
1255 |
| Displaying SPAN Information |
1255 |
| Remote SPAN |
1257 |
| Advantages to Using RSPAN |
1258 |
| FC and RSPAN Tunnels |
1258 |
| RSPAN Configuration Guidelines |
1259 |
| ST Port Characteristics |
1259 |
| Configuring RSPAN |
1260 |
| RSPAN Configuration Example |
1260 |
| Configuration in the Source Switch |
1260 |
| Creating VSAN Interfaces |
1261 |
| Enabling FC Tunnels |
1261 |
| Initiating the FC Tunnel |
1262 |
| Configuring the ST Port |
1262 |
| Configuring an RSPAN Session |
1263 |
| Configuration in All Intermediate Switches |
1263 |
| Configuring VSAN Interfaces |
1263 |
| Enabling FC Tunnels |
1264 |
| Enabling IP Routing |
1264 |
| Configuration in the Destination Switch |
1264 |
| Configuring VSAN Interfaces |
1264 |
| Enabling FC Tunnels |
1265 |
| Configuring the SD Port |
1265 |
| Mapping the FC Tunnel |
1266 |
| Explicit Paths |
1266 |
| Monitoring RSPAN Traffic |
1268 |
| Sample Scenarios |
1268 |
| Single Source with One RSPAN Tunnel |
1268 |
| Single Source with Multiple RSPAN Tunnels |
1269 |
| Multiple Sources with Multiple RSPAN Tunnels |
1269 |
| Displaying RSPAN Information |
1270 |
| Default SPAN and RSPAN Settings |
1272 |
| Configuring System Message Logging |
1275 |
| About System Message Logging |
1275 |
| System Message Logging Configuration |
1277 |
| Message Logging Initiation |
1278 |
| Console Severity Level |
1278 |
| Monitor Severity Level |
1278 |
| Module Logging |
1279 |
| Facility Severity Levels |
1279 |
| Log Files |
1280 |
| System Message Logging Servers |
1280 |
| Outgoing System Message Logging Server Facilities |
1281 |
| System Message Logging Configuration Distribution |
1282 |
| Fabric Lock Override |
1283 |
| Database Merge Guidelines |
1284 |
| Displaying System Message Logging Information |
1284 |
| Default Settings |
1289 |
| Configuring Call Home |
1291 |
| Call Home Features |
1292 |
| About Smart Call Home |
1292 |
| Obtaining Smart Call Home |
1295 |
| Configuring Call Home |
1295 |
| Configuring Contact Information |
1296 |
| Destination Profiles |
1297 |
| Configuring Destination Profiles Using the CLI |
1297 |
| Alert Groups |
1299 |
| Associating an Alert Group Using the CLI |
1299 |
| Customized Alert Group Messages |
1301 |
| Verifying Alert Group Customization |
1302 |
| Call Home Message Level Feature |
1302 |
| Setting the Call Home Message Levels Using the CLI |
1302 |
| Syslog-Based Alerts |
1302 |
| Configuring the Syslog-Based Alerts Using the CLI |
1303 |
| RMON-Based Alerts |
1303 |
| Configuring RMON Alerts Using the CLI |
1303 |
| E-Mail Options |
1304 |
| Configuring General E-Mail Options Using the CLI |
1304 |
| HTTPS Support |
1304 |
| Configuring HTTPS Support |
1304 |
| Configuring SMTP Server and Ports |
1305 |
| Periodic Inventory Notification |
1306 |
| Enabling Periodic Inventory Notifications Using the CLI |
1306 |
| Duplicate Message Throttle |
1306 |
| Enabling Message Throttling Using the CLI |
1307 |
| Call Home Enable Function |
1307 |
| Enabling Call Home Using the CLI |
1307 |
| Call Home Configuration Distribution |
1307 |
| Enabling Call Home Fabric Distribution Using the CLI |
1308 |
| Fabric Lock Override |
1308 |
| Database Merge Guidelines |
1309 |
| Call Home Communications Test |
1309 |
| Testing Call Home Using the CLI |
1309 |
| Displaying Call Home Information |
1310 |
| Clearing Call Home Name Server Database |
1311 |
| Verifying the Number of Name Server Database Entries Using the CLI |
1312 |
| Configuring EMC E-mail Home Delayed Traps |
1313 |
| Configuring Delayed Traps Using the CLI |
1313 |
| Displaying Delayed Traps Information |
1313 |
| Sample Syslog Alert Notification in Full-txt Format |
1314 |
| Sample Syslog Alert Notification in XML Format |
1314 |
| Sample RMON Notification in XML Format |
1317 |
| Event Triggers |
1320 |
| Call Home Message Levels |
1322 |
| Message Contents |
1323 |
| Default Settings |
1330 |
| Configuring the Embedded Event Manager |
1333 |
| About EEM |
1333 |
| EEM Overview |
1333 |
| Policies |
1334 |
| Event Statements |
1335 |
| Action Statements |
1336 |
| VSH Script Policies |
1336 |
| Environment Variables |
1336 |
| High Availability |
1337 |
| Licensing Requirements for EEM |
1337 |
| Prerequisites for EEM |
1337 |
| Configuration Guidelines and Limitations |
1337 |
| Configuring EEM |
1337 |
| Defining a User Policy Using the CLI |
1338 |
| Configuring Event Statements |
1338 |
| Configuring Action Statements |
1340 |
| Defining a Policy Using a VSH Script |
1342 |
| Registering and Activating a VSH Script Policy |
1342 |
| Overriding a Policy |
1342 |
| Defining an Environment Variable |
1343 |
| Verifying EEM Configuration |
1343 |
| EEM Example Configuration |
1344 |
| Default Settings |
1344 |
| Configuring Fabric Configuration Servers |
1345 |
| About FCS |
1345 |
| Significance of FCS |
1346 |
| FCS Name Specification |
1347 |
| Displaying FCS Discovery |
1348 |
| Displaying FCS Elements |
1348 |
| Default Settings |
1351 |
| Part 9 |
1353 |
| Traffic Management |
1353 |
| Configuring Fabric Congestion Control and QoS |
1355 |
| FCC |
1355 |
| About FCC |
1355 |
| FCC Process |
1356 |
| Enabling FCC |
1356 |
| Assigning FCC Priority |
1357 |
| Displaying FCC Settings |
1357 |
| QoS |
1357 |
| About Control Traffic |
1358 |
| Enabling or Disabling Control Traffic |
1358 |
| Displaying Control Traffic Information |
1358 |
| About Data Traffic |
1359 |
| VSAN Versus Zone-Based QoS |
1360 |
| Configuring Data Traffic |
1360 |
| QoS Initiation for Data Traffic |
1361 |
| About Class Map Creation |
1361 |
| Creating a Class Map |
1361 |
| About Service Policy Definition |
1362 |
| Specifying Service Policies |
1363 |
| About Service Policy Enforcement |
1363 |
| Applying Service Policies |
1363 |
| About the DWRR Traffic Scheduler Queue |
1363 |
| Changing the Weight in a DWRR Queue |
1364 |
| Displaying Data Traffic Information |
1364 |
| Example Configuration |
1366 |
| Ingress Port Rate Limiting |
1368 |
| Default Settings |
1368 |
| Configuring Port Tracking |
1369 |
| About Port Tracking |
1369 |
| Port Tracking |
1370 |
| About Port Tracking |
1371 |
| Enabling Port Tracking |
1371 |
| About Configuring Linked Ports |
1371 |
| Operationally Binding a Tracked Port |
1371 |
| About Tracking Multiple Ports |
1372 |
| Tracking Multiple Ports |
1372 |
| About Monitoring Ports in a VSAN |
1373 |
| Monitoring Ports in a VSAN |
1373 |
| AboutForceful Shutdown |
1373 |
| Forcefully Shutting Down a Tracked Port |
1374 |
| Displaying Port Tracking Information |
1374 |
| Default Port Tracking Settings |
1376 |
| Part 10 |
1377 |
| Troubleshooting |
1377 |
| Troubleshooting Your Fabric |
1379 |
| fctrace |
1379 |
| fcping |
1381 |
| Verifying Switch Connectivity |
1382 |
| Cisco Fabric Analyzer |
1382 |
| About the Cisco Fabric Analyzer |
1383 |
| Local Text-Based Capture |
1384 |
| Remote Capture Daemon |
1384 |
| GUI-Based Client |
1384 |
| Configuring the Cisco Fabric Analyzer |
1384 |
| Capturing Frames Locally |
1385 |
| Sending Captures to Remote IP Addresses |
1386 |
| Clearing Configured fcanalyzer Information |
1387 |
| Displaying Configured Hosts |
1387 |
| Displaying Captured Frames |
1387 |
| Defining Display Filters |
1388 |
| Examples of Display Filters |
1388 |
| Capture Filters |
1391 |
| Permitted Capture Filters |
1391 |
| Loop Monitoring |
1392 |
| About Loop Monitoring |
1392 |
| Enabling Loop Monitoring |
1393 |
| Verifying Loop Monitoring Configuration |
1393 |
| The show tech-support Command |
1393 |
| The show tech-support brief Command |
1394 |
| The show tech-support zone Command |
1396 |
| The show tech-support port-channel Command |
1397 |
| The show tech-support vsan Command |
1398 |
| The show tech-support fcdomain Command |
1399 |
| IP Network Simulator |
1400 |
| Enabling the IP Network Simulator |
1402 |
| Simulating Network Delays |
1402 |
| Simulating Maximum Bandwidth |
1403 |
| Simulating a Finite Queue Size |
1404 |
| Simulating Packet Drops |
1404 |
| Simulating Packet Reordering |
1405 |
| Displaying IP Network Simulator Statistics |
1406 |
| IP Network Simulator Configuration Example |
1407 |
| Default Settings |
1408 |
| Monitoring System Processes and Logs |
1411 |
| Displaying System Processes |
1411 |
| Displaying System Status |
1414 |
| Core and Log Files |
1415 |
| Displaying Core Status |
1416 |
| Saving Cores |
1417 |
| Saving the Last Core to Bootflash |
1418 |
| Clearing the Core Directory |
1418 |
| First and Last Core |
1418 |
| First and Last Core Verification |
1419 |
| Online System Health Management |
1419 |
| About Online System Health Management |
1420 |
| System Health Initiation |
1420 |
| Loopback Test Configuration Frequency |
1421 |
| Loopback Test Configuration Frame Length |
1421 |
| Hardware Failure Action |
1422 |
| Test Run Requirements |
1422 |
| Tests for a Specified Module |
1423 |
| Clearing Previous Error Reports |
1424 |
| Performing Internal Loopback Tests |
1424 |
| Performing External Loopback Tests |
1425 |
| Performing Serdes Loopbacks |
1426 |
| Interpreting the Current Status |
1426 |
| Displaying System Health |
1427 |
| On-Board Failure Logging |
1430 |
| About OBFL |
1430 |
| Configuring OBFL for the Switch |
1431 |
| Configuring OBFL for a Module |
1432 |
| Displaying OBFL Logs |
1433 |
| Clearing the Module Counters |
1433 |
| Default Settings |
1434 |
1
874
875
876
877
878
879
880
881
882
883
884
