Dell PowerConnect Brocade M5424 Brocade 7.1.0 Fabric OS Administrator's Guide
Dell PowerConnect Brocade M5424 Manual
View all Dell PowerConnect Brocade M5424 manuals
Add to My Manuals
Save this manual to your list of manuals |
Dell PowerConnect Brocade M5424 manual content summary:
- Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 1
53-1002745-02 ® 25 March 2013 Fabric OS Administrator's Guide Supporting Fabric OS 7.1.0 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 2
, concerning any equipment, equipment feature, or service offered or to be offered by Brocade. Brocade reserves the right to make changes to this Guide 53-1002745-01 Fabric OS Administrator's Guide 53-1002745-02 Added Fabric OS v7.1.0 software features and support for new hardware platforms: Brocade - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 3
Channel Services 43 Performing Basic Configuration Tasks 55 Performing Advanced Configuration Tasks 79 Routing Traffic 111 Managing User Accounts 133 Configuring Protocols 177 Configuring Security Policies 195 Maintaining the Switch Configuration File 241 Installing and Maintaining Firmware - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 4
Appendix A Appendix B Appendix C Port Indexing 611 FIPS Support 615 Hexadecimal Conversion 627 4 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 5
Supported hardware and software 34 What's new in this document 35 Document conventions 36 Notice to the reader 37 Additional information 38 Getting technical help 38 Document feedback 40 Section I Standard Features Chapter 1 Understanding Fibre Channel Services 51 Principal switch 51 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 6
59 Password modification 61 Default account passwords 61 The switch Ethernet download considerations for fabric names 76 Switch activation and deactivation 76 Disabling a switch 76 Enabling a switch 76 Switch and Backbone shutdown 76 Powering off a Brocade switch 77 Powering off a Brocade - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 7
Chapter 3 Fabric OS Administrator's Guide 53-1002745-02 Performing Advanced Configuration Tasks Port Identifiers Port decommissioning 90 Setting port modes 90 Setting port speeds 92 Setting all ports on a switch to the same speed 92 Setting port speed for a port octet 93 Blade terminology and - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 8
overview 111 Paths and route selection 112 FSPF 112 Fibre Channel NAT 113 Inter-switch links 114 Buffer credits 115 Congestions versus over-subscription 115 Virtual channels 115 Gateway links channel 136 Managing user-defined roles 136 8 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 9
6 Fabric OS Administrator's Guide 53-1002745-02 Local database user accounts 137 Default accounts 138 Local account passwords 139 Local user account database distribution 140 Distributing the local user database 140 Accepting distributed user databases on the local switch . . .140 Rejecting - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 10
fabric domains share policies 200 Creating an FCS policy 201 Modifying the order of FCS switches 201 FCS policy distribution 202 Device Connection Control policies 203 DCC policy restrictions 203 distribution of the authorization policy 217 10 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 11
interactive mode 245 Configuration file restoration 246 Restrictions 246 Configuration download without disabling a switch 248 Configurations across a fabric 250 Downloading a configuration file from one switch to another switch of the same model 250 Security considerations 250 Configuration - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 12
on Backbones 270 Validating a firmware download 273 Managing Virtual Fabrics Virtual Fabrics overview 275 Logical switch overview 276 Default logical switch 276 Logical switches and fabric IDs 277 Port assignment in logical switches 278 Logical switches and connected devices 279 Management - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 13
switch context . . . . . .293 Deleting a logical switch 294 Adding and moving ports on a logical switch 295 Displaying logical switch configuration 296 Changing the fabric ID of a logical switch 296 Changing a logical switch to a base switch logical switch to zones and default zoning mode 312 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 14
Replacing zone members 319 Deleting a zone 320 Viewing a zone in the defined configuration 322 Validating a zone 323 Default zoning mode 326 Setting the default zoning mode 326 Viewing the current default of TI zones over FC routers 356 14 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 15
Deleting a TI zone 369 Displaying TI zones 369 Troubleshooting TI zone routing problems 370 Setting up TI over FCR (sample procedure loss detection and recovery support on Brocade 5300 switches 379 Back-end credit loss detection and recovery support on Brocade 6520 switches 379 Enabling back-end - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 16
a switch 392 NPIV overview 419 Upgrade considerations 420 Fixed addressing mode 420 10-bit addressing mode 420 Configuring NPIV 421 Enabling and disabling NPIV 422 Viewing NPIV port configuration information 423 Viewing virtual PID login information 424 16 Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 17
Gateway 427 Configuring an FA-PWWN for an HBA connected to an edge switch 428 Supported switches and configurations for FA-PWWN 429 Configuration upload and download considerations for FA-PWWN430 Firmware upgrade and downgrade considerations for FA-PWWN .430 Security considerations for FA-PWWN - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 18
different AD context 455 Displaying an Admin Domain configuration 456 Switching to a different Admin Domain context 456 Admin Domain interactions and download in an AD context . . . . . .460 Licensed Features Administering Licensing Licensing overview 463 Brocade 7800 Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 19
Brocade DCX 8510-8 and DCX 8510-4 . .493 ICLs for the Brocade DCX Backbone family 493 ICL trunking on the Brocade DCX and DCX-4S 494 Virtual Fabrics considerations for ICLs 494 Supported frame monitors 508 Clearing frame monitor counters 509 Fabric OS Administrator's Guide 19 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 20
a port (port mode 513 Adding Top Talker monitors on all switches in the fabric (fabric mode 513 Displaying the top n bandwidth- install the Adaptive Networking license 523 Manually disabling QoS on trunked ports traffic prioritization 528 Supported configurations for QoS Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 21
configurations for trunking 535 High Availability support for trunking 536 Supported platforms for trunking 536 Requirements for trunk groups 536 Recommendations for trunk groups 537 Configuring trunk groups 538 Enabling trunking on a port or switch 538 Disabling trunking on a port or - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 22
F_Ports 562 Monitoring buffers in a port group 562 Buffer credits switch or blade model 563 Maximum configurable distances for Extended Fabrics requirements for FC-FC routing 570 Supported platforms for FC-FC routing 570 Supported configurations for FC-FC routing 571 Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 23
608 Upgrade and downgrade considerations for FC-FC routing . . . . . .609 How replacing port blades affects EX_Port configuration. . . .609 Displaying the range of output ports connected to xlate domains 609 Port Indexing FIPS Support FIPS overview 615 Zeroization functions 615 Power-on self tests - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 24
24 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 25
Blade swap with Virtual Fabrics after the swap 100 Principal ISLs 112 New switch added to existing fabric 114 Virtual channels on a QoS-enabled ISL 116 target 130 Windows 2000 VSA configuration 154 Example of a Brocade DCT file 161 Example of the dictiona.dcm file 162 Guide 25 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 26
E_Ports enabled 527 Traffic prioritization in a logical fabric 529 Trunk group configuration for the Brocade 5100 535 Switch in Access Gateway mode without F_Port masterless trunking 544 Switch in Access Gateway mode with F_Port masterless trunking 544 A metaSAN with inter-fabric links 572 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 27
topology 578 Example of setting up Speed LSAN tag 596 LSAN zone binding 599 EX_Ports in a base switch 607 Logical representation of EX_Ports in a base switch 608 Backbone-to-edge routing across base switch using FC router in legacy mode 609 Fabric OS Administrator's Guide 27 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 28
28 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 29
number of simultaneous sessions 136 Default local user accounts 138 LDAP options 151 Authentication configuration options 151 Syntax for VSA-based account roles 153 Entries in dictionary.brocade file 154 Brocade custom TACACS+ attributes 172 Secure protocol support 177 Items needed to deploy - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 30
Example ISL connections 406 Number of supported NPIV devices 420 AD user types 436 Ports and devices in CLI output 455 Admin Domain interaction with Fabric OS features 457 Configuration upload and download scenarios in an AD context 460 Available Brocade licenses 464 License requirements and - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 31
restrictions 617 FIPS and non-FIPS modes of operation 618 Active Directory keys to modify 620 Decimal-to-hexadecimal conversion table 628 Fabric OS Administrator's Guide 31 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 32
32 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 33
your switch configurations. • Chapter 9, "Installing and Maintaining Firmware," provides preparations and procedures for performing firmware downloads. • Chapter 10, "Managing Virtual Fabrics," describes the concepts and provides procedures for using Virtual Fabrics. Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 34
parts of procedures documented here apply to some switches but not to others, this guide identifies exactly which switches are supported and which are not. Although many different software and hardware configurations are tested and supported by Brocade Communications Systems, Inc. for Fabric OS v7 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 35
are supported by this release of Fabric OS: • Fixed-port switches: - Brocade 300 switch - Brocade 5100 switch - Brocade 5300 switch - Brocade 5410 embedded switch - Brocade 5424 embedded switch - Brocade 5430 embedded switch - Brocade 5450 embedded switch - Brocade 5460 embedded switch - Brocade - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 36
Brocade 6520 does require the Trunking license. • In "Buffer credit recovery over an E_Port" on page 566, clarified that for an ISL between a device that supports 16 Gbps and a device that supports of this guide are presented in Command syntax in this manual follows these conventions: command - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 37
following notices and statements are used in this manual. They are listed below in order of increasing to you or cause damage to hardware, firmware, software, or data. DANGER A For definitions specific to Brocade and Fibre Channel, see the Brocade Glossary. For definitions Guide 37 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 38
password. For practical discussions about SAN design, implementation, and maintenance, you can obtain Building SANs with Brocade Fabric Switches through: http://www.amazon.com For additional Brocade documentation, visit the Brocade switch support supplier for hardware, firmware, and software support, - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 39
and messages received • supportSave command output • Detailed description of the problem, including the switch or fabric behavior immediately following the problem, and specific questions • Description of any troubleshooting steps already performed and the results • Serial console and Telnet session - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 40
Document feedback Quality is our first concern at Brocade and we have made every effort to ensure topic needs further development, we want to hear from you. Forward your feedback to: [email protected] Provide the title and version number of the document and as much detail as possible about - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 41
1, "Understanding Fibre Channel Services" •Chapter 2, "Performing the Switch Configuration File" •Chapter 9, "Installing and Maintaining Firmware" NPIV" •Chapter 16, "Dynamic Fabric Provisioning: Fabric-Assigned PWWN" •Chapter 17, "Managing Administrative Domains" Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 42
42 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 43
services overview Fibre Channel services define service address for each service. Services are provided to it to communicate with services on the switch or other nodes in switches in the fabric from either the principal switch or, if configured, the primary fabric configuration server (FCS) switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 44
knowledge of the existing configuration. • It is replicated on every Brocade switch within a fabric. • It provides an unzoned view of the server database. Platform services By default, all management services except platform services are enabled; the MS platform service and topology discovery are - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 45
services: 1. Connect to the switch and log in using an account assigned to the admin role. 2. Enter the msCapabilityShow command to verify that all switches in the fabric support the MS platform service that are running management applications. Fabric OS Administrator's Guide 45 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 46
access to the management server is restricted to only those WWNs listed. NOTE The management server is logical switch-capable. All management server features are supported within a logical switch. Displaying the management server ACL Use the following procedure to display the management server ACL - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 47
to the fabric. Use the following procedure to delete a member from the ACL: 1. Connect to the switch and log in using an account with admin permissions. 2. Enter the msConfigure command. The command becomes the member to be deleted from the ACL. Fabric OS Administrator's Guide 47 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 48
procedure to view the contents of the management server database: 1. Connect to the switch and log in using an account assigned to the admin role. 2. Enter the msPlatShow Associated Management Addresses: [30] "http://java.sun.com/products/1" 48 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 49
is disabled by default. The commands switch:admin> mstdenable Request to enable MS Topology Discovery Service in progress.... *MS Topology Discovery enabled locally. switch:admin> mstdenable ALL Request to enable MS Topology Discovery Service in progress.... Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 50
disabled by default. ATTENTION MS Topology Discovery Service in progress.... *MS Topology Discovery disabled locally. switch:admin> mstddisable Service in progress.... *MS Topology Discovery disabled locally. *MS Topology Discovery Disable Operation Complete!! 50 Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 51
and the class of service supported. 2. PLOGI-Port Login switch, requesting principal switch priority and the domain ID list. Buffer-to-buffer credits for the device and switch ports are exchanged in the SW_ACC command sent to the device in response to the FLOGI. Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 52
If a fabric is detected then it exchanges service parameters with the fabric controller. A successful FLOGI session. To display the contents of a switch's name server, use the nsShow or removed from the fabric. • A zone has changed. • A switch name has changed or an IP address has changed. • Nodes - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 53
-for example, a device on an F_Port, NPIV devices, or devices attached to a switch in Access Gateway mode. High availability of daemon used by manageability applications. Reliability, Availability, and Supportability daemon logs error detection, reporting, handling, and 's Guide 53 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 54
automatically restarted (Continued) Description webd Webserver daemon used for WebTools (includes httpd as well). weblinkerd Weblinker daemon provides an HTTP interface to manageability applications for switch management and fabric discovery. 54 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 55
to configure a SAN: • Web Tools For Web Tools procedures, refer to Web Tools Administrator's Guide. • Brocade Network Advisor For additional information, refer to the Brocade Network Advisor User Manual for the version you have. • A third-party application using the API For third-party application - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 56
supported by Brocade them. The hardware reference manuals for Brocade products describe how to examples in this guide show user input enclosed address or setting the boot PROM password. • Brocade DCX and DCX 8510 Backbone families Connect the serial cable to the serial port on the switch and to an - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 57
these methods: - You can use Web Tools to perform a fast boot. When the switch comes up, the Telnet quota is cleared. (For instructions on performing a fast boot with Web Tools, see the Web Tools Administrator's Guide.) - If you have the required privileges, you can connect through the serial port - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 58
passwords, or press Ctrl+C to skip the password prompts. For more information on system passwords, refer to "Default account passwords" on page 61. 7. Verify the login was successful. The prompt displays the switch you need specific information. 58 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 59
firmware downloads. This command is also supported for standby CPs. The log records the following information whenever a command ins entered in the switch cliHistory command output from root login switch:root> clihistory CLI history Date Thu Sep 27 05:25:45 2012 switch:root> Message root, 10.70.12. - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 60
only to Root, Admin, Factory and Securityadmin RBAC roles. Example cliHistory command output showing username switch:root> clihistory --showuser admin CLI history Date & Time Message Thu Sep 27 10:14:41 --help: Displays the command usage 60 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 61
--showall". • For CLI commands that require a password (Examples: firmwaredownload, configupload/download, supportsave, and so on), only the command passwords, the switch prompts you after each subsequent login until all the default passwords have been changed. NOTE The default account passwords - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 62
default account passwords: 1. Connect to the switch and log in using the default administrative account. 2. At each of the "Enter new password" prompts, either enter a new password and CP1) • Chassis management IP Brocade switches On Brocade switches, you must set the Ethernet Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 63
and log in using an account assigned to the admin role. 2. Enter the ipAddrShow command. ipAddrShow Example output for a Brocade Backbone ecp:admin> ipaddrshow SWITCH Ethernet IP Address: 10.1.2.3 Ethernet Subnetmask: 255.255.240.0 CP0 Ethernet IP Address: 10.1.2.3 Ethernet Subnetmask: 255.255.240 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 64
Ethernet network interface addresses on Brocade DCX and DCX-4S Backbones, and in environments where DHCP service is not available. To you choose not to use DHCP or to specify an IP address for your switch Ethernet interface, you can do so by entering "none" or "0.0.0.0" in 's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 65
255.0.0]: Gateway IP Address [10.1.2.1]: DHCP [OFF]: off Example of setting an IPv6 address on a switch switch:admin> ipaddrset -ipv6 --add 1080::8:800:200C:417A/64 IP address is being changed...Done. For more the Ethernet Subnet mask at the prompt. Fabric OS Administrator's Guide 65 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 66
Brocade switches have DHCP enabled by default. Fabric OS support for DHCP functionality is only provided for Brocade fixed-port switches. These are listed in the Preface. NOTE The Brocade DCX and Brocade DCX-4S Backbones do not support by DHCP; for instructions on setting the FC Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 67
for IPv4 interactively: switch:admin> ipaddrset Ethernet switch:admin> Example of enabling DHCP for IPv4 using a single command: switch:admin> ipaddrset -ipv4 -add -dhcp ON switch:admin> ipaddrshow SWITCH mask of the switch and default gateway address. for IPv4 interactively: switch:admin> ipaddrset - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 68
IPv6 autoconfiguration Use the following procedure to enable IPv6 autoconfiguration: 1. Connect to the switch and log in using an account with admin permissions. 2. Take the appropriate following action all managed entities on the target platform. 68 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 69
troubleshooting, you must set them correctly. In a Virtual Fabric, there can be a maximum of eight logical switches per Backbone. Only the default switch switch the switch and log date switch:admin switch by name. You can specify the setting using country and city or time zone parameters. Switch switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 70
default, all switches are set to Greenwich Mean Time (0,0). If all switches in a fabric are in one time zone, it is possible for you to keep the time zone setup at the default setting. • System services to list all of the time zones supported by the firmware. • Use timeZone_fmt to set the time - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 71
: 1. Connect to the switch and log in using an of the principal and primary FCS switch to a maximum of eight external switches in the fabric maintain the current clock server value in nonvolatile memory. By default, this value is the local clock server (LOCL) of the principal or primary FCS switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 72
switch are propagated to all switches in the fabric. Domain IDs Although domain IDs are assigned dynamically when a switch is enabled, you can change them manually domain ID not used within the fabric. The default domain ID for Brocade switches is 1. Domain ID issues Keep the following restrictions - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 73
Enet IP Addr The switch Ethernet IP address for IPv4- and IPv6-configured switches. For IPv6 switches, only the static IP address displays. FC IP Addr The switch Fibre Channel IP address. Name The switch symbolic or user-created name in quotes. Fabric OS Administrator's Guide 73 53-1002745 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 74
... Done. Switch name has been changed.Please re-login into the switch for the change to be applied. dilbert:FID128:# admin> NOTE The prompt does not change to the new switch name until AFTER you re-login. 3. Record the new switch name for future reference. 74 Fabric OS Administrator's Guide 53 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 75
fabric names are not allowed. • A fabric name can be from 1 through 128 alphanumeric characters. • All switches in a logical fabric must be running Fabric OS v7.1.0. Switches running earlier versions of the firmware can co-exist in the fabric, but do not show the fabric name details. • You must have - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 76
avoid corrupting your file system, you must perform graceful shutdowns of Brocade switches and Backbones. Warm reboot (also known as graceful shutdown) refers to shutting down the switch or platform by way of the following instructions. Cold boot (also known as a hard boot) refers to shutting down - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 77
ide devices: hda Power down. 5. Power off the switch. Powering off a Brocade Backbone Use the following procedure to power off a Brocade Backbone device: 1. From the active CP in a dual is going down for system halt NOW !! 4. Power off the switch. Fabric OS Administrator's Guide 77 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 78
, connect the device, and then use the portEnable command to enable the port. Switch connection See the hardware reference manual of your specific switch for ISL connection and cable management information. The standard or default ISL mode is L0. ISL mode L0 is a static mode, with the following - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 79
switch changes 104 •Audit log configuration 107 •Duplicate PWWN handling during device login 109 Port Identifiers (PIDs) and PID binding overview Port identifiers (PIDs, also called Fabric Addresses) are used by the routing and zoning services creates problems in many Guide 79 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 80
. NOTE The default switch in the Brocade Backbones uses the fixed addressing mode. The 10-bit addressing mode utilizes the 8-bit area ID and the borrowed upper two bits from the AL_PA portion of the PID. Areas 0x00 through 0x8F use only 8 bits for the port address and support up to 256 NPIV devices - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 81
mode is not supported on the default switch. • 48-port cards are supported in port-based addressing mode (mode 2) on both DCX-4S and 8510-4 devices. However, the upper 16 ports of a 64-port card are not supported.The Brocade DCX does not support port-based addressing (mode 2) on the FC8-48 blade - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 82
default must manually default and is supported in the default switch on the Brocade DCX and DCX 8510 Backbone families. This feature is not supported NPIV device has Dynamic Persistent PID set, the same AL_PA value in the PID is used. This guarantees NPIV NPIV, refer to Chapter 15, "NPIV". Enabling - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 83
. Example of activating PID assignments switch: admin> configure Configure... Fabric parameters (yes, y, no, n): [no] y WWN Based persistent PID (yes, y, no, n): [no] y System services (yes, y, no, n): the PID assigned to the device WWN specified. Fabric OS Administrator's Guide 83 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 84
part of a Brocade device: • D_Port - A diagnostic port lets an administrator isolate the inter-switch link (ISL) to diagnose link level faults. This port runs only specific diagnostics tests and does not carry any fabric traffic. Refer to the Fabric OS Troubleshooting and Diagnostics Guide for more - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 85
. • AP blades are used for Fibre Channel Application Services and Routing Services, FCIP, Converged Enhanced Ethernet, and encryption support. NOTE On each port blade, a particular port must be represented by both slot number and port number. The Brocade DCX and DCX 8510-8 each have 12 slots that - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 86
Supported devices This feature is available on a CP8 blade when it is installed on a Brocade DCX, Brocade DCX-4S, Brocade DCX 8510-8 or Brocade blade enables eth0 by default. If errors are cable, wait 5 seconds, and then plug it back in. - Perform a HA failover routine. - Take the entire switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 87
a unique identifier in a switch. To select a specific port forth. For 32-port blades (FC8-32, FC8-32E, FC16-32), the numbering . A number of fabric-wide databases supported by Fabric OS (including ZoneDB, the Brocade DCX-4S and DCX 8510-4 Backbones. Fabric OS Administrator's Guide 87 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 88
supported only modes 0 and 1 will not change the existing setting, but switches reset to factory defaults with Fabric OS v6.3.1 or later will be configured to Mode 0 by default. The default If a switch is Brocade DCX and DCX 8510 Backbone families only: You can swap only ports 0 through 15 on the FC8 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 89
switch:admin>portdisable 1 ecp:admin>portdisable 1/2 4. Enter the portSwap command. switch By default, all instructions. CAUTION The fabric will be reconfigured if the port you are enabling or disabling is connected to another switch. The switch 1. Connect to the switch and log in using switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 90
1. Connect to the switch and log in using to port decommissioning: • The local switch and the remote switch on the other end of the E_Port supported for all network interfaces or for all Ethernet network interfaces. On the CP in a Brocade DCX, DCX-4S, DCX 8510-4, or DCX 8510-8, this command supports - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 91
and 100 Mbps: switch:admin> ifmodeset eth3 Exercise care when using this command. Forcing the link to an operating mode not supported by the network 10 Mbps / Half Duplex (yes, y, no, n): [yes] y Committing configuration...done. switch:admin> Fabric OS Administrator's Guide 91 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 92
all ports on the switch to 8 Gbps: switch:admin> switchcfgspeed 8 Committing configuration...done. The following example sets the speed for all ports on the switch to autonegotiate: switch:admin> switchcfgspeed 0 Committing configuration...done. 92 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 93
logical switch. Use the following procedure to set the port speed for a port octet: 1. Connect to the switch and CR16-8 98 CR16-4 99 Yes Yes Brocade DCX and DCX 8510 Backbone family control processor blade. This CP supports all blades used in the DCX and Administrator's Guide 93 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 94
and 8 Gbps port speeds. The Brocade DCX and Brocade DCX 8510 Backbone families support loop devices on 64-port blades in a Virtual Fabric-enabled environment. The loop devices can only be attached to ports on a 64-port blade that is not a part of the default logical switch. Ports are numbered from - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 95
and Maintaining Firmware". Core blades Core blades provide intra-chassis switching and ICL connectivity, between DCX/DCX-4S platforms and between DCX 8510 platforms. • Brocade DCX supports two CORE8 core blades. • Brocade DCX-4S supports two CR4S-8 core blades. • Brocade DCX 8510-8 supports two CR16 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 96
other AP blade, all other AP and FC8-64 blades are faulted. If a non-FCOE10-24 blade is detected first, then any subsequently-detected FCOE10-24 blades are faulted. Blades are powered up starting with slot 1. The maximum number of intelligent blades supported on a Brocade DCX or DCX 8510-8 is eight - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 97
support FL_Ports. Port swapping on an FC8-48, FC8-48E, FC8-64, and FC16-48 is supported only on ports 0-15. For the FC8-32, FC8-32E, and FC16-32 port blades, port swapping is supported on all 32 ports. This means that if you replace Connect to the switch and log in to complete the cable move. Blade - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 98
FC8-32 blade with an FC8-48 port blade. How blades are swapped The bladeSwap command performs the following operations: 1. Blade selection The selection process includes selecting the switch so on). • Port count. Both blades must support the same number of front ports (for example Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 99
logical switches. For example Figure 3 shows the source blade has ports in a logical switch or must be included in the associated logical switch or logical fabric of the source ports. blades can be carved up into different logical switches as long as they are carved the same way. If slot 1 and - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 100
cables from the source blade to the destination blade. 4. Enter the bladeEnable command on the destination blade to enable all user ports. Enabling and disabling switches Switches are enabled by default . In some cases, you may need to disable a switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 101
--help: Displays the command usage. Power management All blades are powered on by default when the switch chassis is powered on. Blades cannot be powered off when POST or AP initialization are powered off, using the powerOffListSet command. Fabric OS Administrator's Guide 101 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 102
By default, the manually switch operation: 1. Connect to the switch and log in using an account with admin permissions. 2. Enter the switchShow command. This command displays a switch summary and a port summary. 3. Check that the switch and ports are online. 102 Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 103
to display the current status of the switch power supplies. Refer to the hardware reference manual of your system to determine the appropriate 1 SW BLADE 55 FC8-32 ENABLED 2 SW BLADE 51 FC8-48 ENABLED 3 SW BLADE 39 FC8-16 ENABLED 4 SW BLADE 51 FC8-48 ENABLED 5 CORE BLADE - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 104
1. Connect to the switch and log in using an devices in the fabric. switch:admin> nsallshow { 010e00 012fe8 and control switch changes The track changes feature allows the system messages log for the switch. Use the errDump or errShow command feature: 1. Connect to the switch and log in using an account - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 105
For more information about setting policy parameters, see the Fabric Watch Administrator's Guide. Use the following procedure to view the switch status policy threshold values: 1. Connect to the switch and log in using an account with admin permissions. 2. Enter the switchStatusPolicyShow command - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 106
Brocade switch, but the quantity and types vary by platform. switch:admin> switchstatuspolicyshow To change the overall switch status policy parameters The current overall switch [2]1 Bad Temperatures contributing to MARGINAL status: (0..4) [1]2 106 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 107
Brocade switch, particularly for security-related event changes. These events include login failures, zone configuration changes, firmware downloads switch. Auditable events are generated by the switch By default, messages from the switch to a remote are generated by the switch, the system message log - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 108
the system error log daemon, refer to the Fabric OS Troubleshooting and Diagnostics Guide. NOTE If an AUDIT message is logged from the CLI running to receive the audit events that will be generated. 2. On the switch where the audit configuration is enabled, enter the syslogdIpAdd command to add the - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 109
disabled). switch:admin> auditcfg --show Audit filter is enabled. 2-SECURITY 4-FIRMWARE 5. Issue over the second. This is the default behavior. Table 8 describes the behavior login Input port First port login is NPIV port First port login is F_Port FLOGI received Guide 109 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 110
NPIV NPIV NPIV port. New login is rejected and the new port is persistently disabled. New FDISC is rejected. Setting the behavior for handling duplicate PWWNs Use the following procedure to set the behavior for handling duplicate PWWNs: 1. Connect to the switch login (default). an NPIV port switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 111
Redirection 130 Routing overview Data moves through a fabric from switch to switch and from storage to server along one or more paths supports unicast Class 2 and 3 traffic, multicast, and broadcast traffic. Broadcast and multicast are supported in Class 3 only. Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 112
ISL from each switch is used as the principal ISL. Figure 5 shows the thick red lines as principal ISLs, and thin green lines as regular ISLs. FIGURE 5 Principal ISLs NOTE FSPF only supports 16 routes in a zone, including Traffic Isolation Zones. 112 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 113
loops because, without loops, there would not be multiple paths between switches, and consequently no redundancy. Without redundancy, if a link goes down network address translation (NAT) tables to replace private network addresses with public addresses when a packet is routed Guide 113 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 114
. If the fabric service is enabled in the fabric, then the switch you are introducing into the fabric must also have it enabled. If you experience a segmented fabric, refer to the Fabric OS Troubleshooting and Diagnostics Guide to fix the problem. 114 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 115
it typically requests from two to sixteen buffer credits from the switch, depending on the device type, driver version, and configuration. be further prioritized to provide higher levels of Quality of Service. P3 is the lowest priority and is used for broadcast and multicast 's Guide 115 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 116
4 Inter-switch links FIGURE 7 Virtual channels on a QoS-enabled ISL 116 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 117
merging SANs By default, switch ports initialize switches connected to both sides of the gateway are included when determining switch-count maximums. • Extended links (those created using the Extended Fabrics licensed feature) are not supported through gateway links. Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 118
Brocade DCX and DCX 8510 Backbone families, routing is handled by the FSPF protocol and either the port-based or exchange-based routing policy. • Each switch can have its own routing policy and different policies can exist in the same fabric. ATTENTION For most configurations, the default routing - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 119
. switch:admin> aptpolicy Current Policy: 3 3 : Default Policy 1: Port Based Routing Policy 2: Device Based Routing Policy (FICON support only more information on VE_Ports, refer to the Fibre Channel over IP Administrator's Guide. Exchange-based routing The choice of routing path is based on the - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 120
the overall switch performance. It is recommended that the default AP Virtual Fabrics support DPS on the dedicated ISLs in a logical switch. The AP policy affecting the switch basis. In-order delivery (IOD) and DLS settings are set per logical switch as well. IOD and DLS settings for the base switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 121
and log in as admin. 2. Enter the switchDisable command to disable the switch. 3. Take the appropriate following action based on the AP route policy you choose to implement: • If the AP Shared Link policy (default) is required, enter the aptPolicy -ap 0 command. • If the AP Dedicated Link policy - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 122
enabled by default and cannot switches. DLS recomputes load sharing when any of the following occurs: • A switch Connect to the switch and log in default with current routing by default. switch:admin> dlsshow DLS is not set switch:admin> dlsset switch:admin> dlsshow DLS is set switch:admin> dlsreset switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 123
switch to exit the switch in the same to exit the switch in the same even one switch in the policy configured on other switches in the fabric. NOTE when the traffic between switches is shared among multiple do not. By default, out-of-order Connect to the switch and log in switch and log - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 124
the following procedure to view frames. 1. Connect to the switch and log in using an account with admin permissions. 2. type option requires an argument; currently only timeout is supported, this specifies that only timeout discards be shown Filtering Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 125
• Brocade FC8-16, FC8-32, FC8-48, and FC8-64 port blades • Brocade DCX 8510 Backbone family and supported blades • Brocade FC16-32 and FC16-48 port blades • Brocade FC8-32E and FC8-48E port blades • Brocade FX8-24 application blades in the Brocade DCX and DCX-4S Backbones On the Brocade 7800 switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 126
configuration of the Brocade DCX 8510-8 and DCX 8510-4 hardware to prevent frame loss during a core blade removal and insertion. This feature is on by default and cannot be disabled. Lossless core has the following limitations: • Only supported with IOD disabled, which means Lossless core cannot - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 127
are supported on the Brocade DCX switch 2: • If logical switch 2 has IOD enabled (iodSet only), IOD is enforced. • If logical switch 2 has Lossless DLS enabled, traffic is paused and resumed. • If logical switch 2 has no IOD (iodReset), traffic is paused and resumed. Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 128
frame or a primitive. FEC is enabled by default, and is supported on E_Ports on 16 Gbps-capable switches and on the N_Ports and F_Ports of an access 16 Gbps-capable switches (Brocade 6505, 6510, 6520, and the Brocade DCX 8510 Backbone family). • FEC is supported only on 1860 's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 129
command. In this example, port 1 already has FEC enabled, and so it remains enabled. switch:admin> portcfgfec --enable 0-8 Same configuration for port 1 Disabling forward error correction To disable the to display the current FEC configuration. Fabric OS Administrator's Guide 129 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 130
out to all other Fabric OS switches in the fabric that support Frame Redirection. Redirection zones exist only in the defined configuration and cannot be added to the effective configuration. NOTE Fabric OS v7.1.0 is not supported on the Brocade 7600 or Brocade SAS blade. However, this hardware can - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 131
virtual target (40:40:40:40:40:40:40:40): switch:admin>zone --rdcreate 10:10:10:10:10:10:10:10 to delete a frame redirect zone: 1. Connect to the switch and log in using an account with admin permissions. a frame redirect zone switch:admin> zone --rddelete 1. Connect to the switch and log in using - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 132
4 Frame Redirection 132 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 133
Password policies 141 •The boot PROM password 145 •Remote authentication 149 User accounts overview In addition to the default permissions assigned to the roles of root, factory, admin, and user, Fabric OS supports Chassis role - Similar to switch-level roles, but applies Guide 133 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 134
• Remote TACACS+ service. Users are managed in a remote TACACS+ server. All switches in the fabric can manually synchronized by means of the distribute command to push a copy of the switch's local user database to all other switches in OS predefined (default) roles. TABLE 12 Default Fabric OS roles - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 135
not be allowed to log in to any switch in the fabric. If no Home Domain is specified for a user, the system provides a default home domain. The default home domain for the predefined account is AD0. permissions that apply to a specific command. Fabric OS Administrator's Guide 135 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 136
for authentication, the total number of sessions on a switch may not exceed 32. TABLE 14 Maximum number of has a unique name that is not the same as any of the Fabric OS default roles, any other user-defined role, or any existing user account name. The OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 137
that is a subset of the account that is making the change. In addition to the default administrative and user accounts, Fabric OS supports up to 252 user-defined accounts in each switch (domain). These accounts expand your ability to track account access and audit administrative activities. Fabric - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 138
switch user database. The password for all default accounts should be changed during the initial installation and configuration of each switch. TABLE 15 Default Connect to the switch and log a switch • 1. Connect to the switch and log in using an through 128 • Default home logical switch to 128 • - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 139
password. • You cannot change passwords by using SNMP. Changing the password for the current login account 1. Connect to the switch and log in using an account with admin permissions. 2. Enter the passwd command. 3. Enter the requested information at the prompts. Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 140
. NOTE If Virtual Fabrics mode is enabled and there are logical switches defined other than the default logical switch, then distributing the password database to switches is not supported. Distributing the password database to switches is not allowed if there are users associated with user defined - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 141
switch user database only. Configured password policies (and all user account attribute and password state information) are synchronized across CPs and remain unchanged after an HA failover. Password policies can also be manually that must appear in the password. The default value is zero. The - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 142
and 24. If the value is set to 0, it means that the new password cannot be set to the current password, but can be set to the most recent password. The default value is 1, which means the current and one previous password cannot be reused. The value 2 indicates that the current and the two previous - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 143
password expiration. • Warning Specifies the number of days prior to password expiration that a warning about password expiration is displayed. Warning values range from 0 through 999. The default value can unlock a locked account at any time. Fabric OS Administrator's Guide 143 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 144
Password policies A failed login attempt counter is maintained for each user on each switch is disabled by default and uses the is manually unlocked an incorrect password before the , and the default value is and the default value is 30 to the switch using an the switch using the switch using - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 145
from a denial of service attack. However, these privileged accounts may then become the target of password guessing attacks. Audit logs 8510 switches, as well as the Brocade Encryption Switch and VA-40FC. If your switch is not listed, please contact your switch support provider for instructions. 1. - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 146
security. The firmware prompts for this password only once. password for future use. The new password is automatically saved. 7. Reboot the switch by typing the reset command at the prompt. Setting the boot PROM password for a Backbone with a recovery string This procedure applies to the Brocade - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 147
firmware only prompts for this password 9. Connect the serial cable to the serial port on switch models. The password recovery instructions provided within this section are only for the switches listed in the Preface. If your switch is not listed, contact your switch support provider for instructions - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 148
password. 8. Reboot the switch by entering the reset command. Setting the boot PROM password for a Backbone without a recovery string This procedure applies to the Brocade CP blade by sliding the On/Off switch on the ejector handle of the standby system. 2 Recovery password. 3 Enter command shell - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 149
completed rebooting. 12. Connect the serial cable to the serial port on the new passwords refer to the Fabric OS Troubleshooting and Diagnostics Guide. Remote authentication Fabric OS supports user authentication through the local user database or one of the following external authentication services - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 150
server. By default, the LDAP service does not require certificates. The configuration applies to all switches. On a Backbone, the configuration replicates itself on a standby CP blade if one is present. It is saved in a configuration upload and applied in a configuration download. Brocade recommends - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 151
and Brocade support for each. TABLE 16 Protocol LDAP options Description Channel type Default port URL Brocade supported? password does not match or the user is not defined, the login fails. Authenticates management connections On Off against any RADIUS databases only. If the RADIUS service - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 152
supported Prevents users from being logged out when n/a n/a you change authentication. Default behavior is to log users out when you change authentication. 1. Fabric OS v5.1.0 and earlier aaaConfig --switchdb setting. Setting the switch authentication mode 1. Connect to the switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 153
the assigned switch role in a Brocade Vendor-Specific Attribute (VSA). If the response does not have a VSA permissions assignment, the user role is assigned. If no Administrative Domain is assigned, then the user is assigned to the default Admin Domain AD0. You can set a user password expiration - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 154
configure a Windows 2000 internet authentication service (IAS) server to use VSA to pass the admin role to the switch in the dial-in profile, the := Local, User-Password == "myPassword" Brocade-Auth-Role = "admin", Brocade-AVPairs1 = "HomeLF=70", 154 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 155
valid HomeLF key-value pair is accepted by the switch, additional HomeLF key-value pairs are ignored. • LFRoleList Valid chassis roles include the default roles and any of the valid permissions through the attribute type Brocade-Auth-Role. The additional attribute values Guide 155 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 156
-Type := Local, User-Password == "password" Brocade-Auth-Role = "ZoneAdmin", Brocade-AVPairs1 = "ADList=1,2,6," Brocade-AVPairs2 = "ADList=4-8;ADList=7,9, switch access permissions. To manage a fabric, one can set these permissions to user, admin, and securityAdmin. Configuring RADIUS server support - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 157
"johnPassword", Brocade-Auth-Role = "admin", Brocade-Passwd-ExpiryDate = "05/28/08", Brocade-Passwd-WarnPeriod = "30" Example of using the local system password to authenticate users The next example uses the local system password file to authenticate users. Fabric OS Administrator's Guide 157 53 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 158
-Passwd-WarnPeriod = "30" When you use network information service (NIS) for authentication, the only way to enable authentication with the password file is to force the Brocade switch to authenticate using password authentication protocol (PAP); this requires the -a pap option with the aaaConfig - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 159
to the appropriate group. 4. Configuring the server For more information and instructions on configuring the server, refer to the Microsoft website. Below is the information you will need to configure the RADIUS server for a Brocade switch. A client is the device that uses the RADIUS server; in this - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 160
Authentication Service window, add additional policies for all Brocade login types for which you want to use the RADIUS server. After this is done, you can configure the switch. NOTE Windows 2008 RADIUS (NPS) support is also available. RSA RADIUS server Traditional password-based authentication - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 161
=%s%] ATTRIBUTE Brocade-Auth-Role ATTRIBUTE Brocade-Passwd-ExpiryDate ATTRIBUTE Brocade-Passwd-WarnPeriod Brocade-VSA(1,string) r Brocade-VSA(6,string) r Brocade-VSA(7,integer) r brocade.dct -- Brocade Dictionary FIGURE 11 Example of a Brocade DCT file Fabric OS Administrator's Guide 161 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 162
LDAP in non-FIPS mode: • There is no password change through Active Directory. • There is no automatic migration of newly created users from the local switch database to Active Directory. This is a manual process explained later. • Only IPv4 is supported for LDAP on Windows 2000 and LDAP on Windows - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 163
switch_role command to map an LDAP server permissions to one of the default roles available on a switch. For more information on RBAC roles, see "Role-Based Access Control" on page 134. NOTE All instructions involving Microsoft Active Directory can be obtained from www.microsoft.com or - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 164
the group. For instructions on how to set to the group corresponding to the switch role. You can choose any other group user must use to log in to the switch. or If you have a user-defined the default roles available on a switch. Adding Service Pack 1 or you can download this utility from the - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 165
;LFRoleList=admin:128,10;ChassisRole=admin In this example, the logical switch that would be logged into by default is 10. If 10 is not available then the lowest FID available or the Microsoft Active Directory service in conjunction with LDAP on the switch. This section discusses authentication and - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 166
group membership. This feature is supported in OpenLDAP through the memberOf one of the default roles available on a switch. For more information Brocade switch), then you must install a Certificate Authority (CA) certificate on the OpenLDAP server. Follow OpenLDAP instructions Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 167
the Directory, where test.ldif is the file you created in step 1. > ldapadd -D cn=Manager,dc=mybrocade,dc=com -x -w secret -f test.ldif Fabric OS Administrator's Guide 167 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 168
--maprole ldap_role_name switch_role command to map LDAP server permissions to one of the default roles available on a switch. Modifying an entry To modify a directory entry, perform the following steps: =mybrocade,dc=com -x -w secret -f test.ldif 168 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 169
ldif file with contents similar to the following. #######Replacing an attribute value dn: cn=test,cn=Users,dc=mybrocade,dc=com changetype: modify replace: uid uid: test 2. Enter the following ( 1.3.6.1.4.1.8412.100 NAME ( 'brcdAdVfData' ) Fabric OS Administrator's Guide 169 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 170
( 1.3.6.1.4.1.8412.110 NAME 'user' DESC 'Brocade switch specific person' SUP top AUXILIARY MAY ( brcdAdVfData adding Virtual Fabrics In the following example, the logical switch that would be logged into by default is 10. If 10 is not available then the Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 171
.ldif TACACS+ service FabricOS can authenticate Brocade switch becomes a Network Access Server (NAS). The following authentication protocols are supported by the TACACS+ server for user authentication: • Password default timeout value is 5 seconds. Retry is also allowed for each server. The default - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 172
Download the TACACS+ software from http://www.cisco.com and install it. Refer to the Cisco documentation for installation instructions does not exist on the switch, the account is granted user password" service = exec { brcd-role = securityAdmin; } } 172 Fabric OS Administrator's Guide 53-1002745 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 173
value pair is accepted by the switch, and any additional HomeAD key-value = clear "password" chap = clear "password" password = clear "password" service = shell { value pair is accepted by the switch. Additional HomeLF key-value pairs are userVF { pap = clear "password" service = shell { set brcd-role - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 174
user 30 days before the password is due to expire. user = fosuser5 { pap = clear "password" chap = clear "password" password = clear "password" service = shell { set switch instances, the configuration applies to all instances. The configuration is persistent across reboots and firmware downloads - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 175
switch:admin> aaaconfig --authspec "radius;local" --backup Example enabling LDAP switch:admin> aaaconfig --authspec "ldap;local" --backup Example enabling TACACS+ switch Connect to the switch and log in using Connect to the switch and log in contacted for service 1. Connect to the switch and log - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 176
which servers are contacted to provide service. The server names or IPv4 or IPv6 addresses. IPv6 is not supported when using PEAP authentication. The you can log in to the default switch accounts (admin and user) or any user-defined account. You must know the passwords of these accounts. When the - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 177
switches the switch while the switch remains supports the secure protocols shown in Table 21. TABLE 21 Secure protocol support connection. Web Tools supports the use of Hypertext authority (CA). By default, LDAP traffic is transmitted protocol. Configuration upload and download support the use of SCP. - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 178
Secure Socket Layer (SSL) to support HTTPS. A certificate must be generated and installed on each switch to enable SSL. Supports SSLv3, 128-bit encryption by default. Table 22 describes additional software to provide authentication and security. 178 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 179
config Upload/Download (yes, y, no, n): [no]# y Enforce signature validation for firmware (yes, y, no, n): [no]# Secure Shell protocol To ensure security, Fabric OS supports Secure Shell (SSH) encrypted sessions. SSH encrypts all messages, including the client transmission of the password during - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 180
password on passwords for firmware download. Both password and public key authentication can coexist on the switch. Allowed-user For outgoing authentication, the default for host-to-switch (incoming) authentication the switch by logging in to the switch as key to the switch switch:anyuser> sshutil - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 181
in to the switch as the default admin. 2. Change the allowed-user's permissions to admin, if applicable. switch:admin> userconfig switch switch:alloweduser> sshutil exportpubkey Enter IP address:192.168.38.244 Enter remote directory:~auser/.ssh Enter login name:auser Password Guide 181 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 182
Web Tools. SSL support is a standard Fabric OS feature. Switches configured for SSL default. You can display the encryption support (called "cipher strength") using the Internet Explorer Help:About menu option. If you are running an earlier version of Internet Explorer, you may be able to download - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 183
and Java support, refer to the Web Tools Administrator's Guide. SSL configuration overview You configure SSL access for a switch by obtaining, switches, consider using one certificate authority (CA) to sign all management certificates for a fabric. If you use different CAs, management services - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 184
pair Done. Because CA support for the 2048-bit company name):Brocade Organizational Unit switch on which you generated the CSR. Enter the remote directory name of the FTP server to which the CSR is to be sent. Enter your account name and password on the server. 184 Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 185
note of the path name and make sure you have a login name and password on the server. Installing a switch certificate Use the following procedure to install a security certificate on a switch. NOTE You must perform this procedure on each switch. Fabric OS Administrator's Guide 185 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 186
which the switch certificate is saved, and enter your login name and password. Example of installing a switch certificate in interactive mode switch:admin> seccertutil are guides for installing root certificates to Internet Explorer and Mozilla Firefox browsers. For more detailed instructions, refer - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 187
, select nameRoot.crt. 6. Click Open and follow the instructions to import the certificate. Root certificates for the Java plugin For information on Java requirements, refer to "Browser and Java support" on page 182. This procedure is a guide for installing a root certificate to the Java plugin on - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 188
password and RootCert is an example root certificate name. Simple Network Management Protocol The Simple Network Management Protocol (SNMP) is a standard method for monitoring and managing network devices. Using SNMP components, you can program tools to view, browse, and manipulate Brocade switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 189
Brocade SW traps. For information on Brocade switch switch database. SNMPv3 users whose names do not match with any of the existing Fabric OS local users have a default default switch (.1). switch# Switch-level attributes Attributes that are specific to each logical switch belong to the switch switches - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 190
Brocade SNMP instructions, and information about using the Brocade SNMP agent, refer to the Fabric OS MIB Reference. Telnet protocol Telnet is enabled by default. To prevent passing clear text passwords over the network when connecting to the switch a connection with the switch. Blocking Telnet If - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 191
precede the default rule number by typing the ipfilter --activate command. switch:admin> ipfilter --activate BlockTelnet 9. default_ipv4 policy should be displayed as defined). switch:admin> ipfilter --show Name: BlockTelnet, Telnet access. 1. Connect to the switch through a serial port or SSH - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 192
If you are using the FC-FC Routing Service, be aware that the secModeEnable command is not supported. Table 26 lists the defaults for accessing hosts, devices, switches, and zones. TABLE 26 Access defaults Access default Hosts Any host can access the fabric by SNMP. Any host can Telnet - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 193
switches 6 TABLE 26 Access defaults (Continued) Access default Devices Switch access Zoning All devices can access the management server. Any device can connect to any FC port in the fabric. Any switch can join the fabric. All switches Disable the SNMP service on the Guide 193 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 194
6 Ports and applications used by switches 194 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 195
Each supported Access to restrict which switches can change switch ports. • Switch connection control (SCC) policy - Used to restrict which switches can join with a switch Fabric OS v6.2.0 and later switches present, the limit for security switch. • Defined, which means the policy has been - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 196
two sets: • Active policy set, which contains ACL policies being enforced by the switch. • Defined policy set, which contains a copy of all ACL policies on the switch. When a policy is activated, the defined policy either replaces the policy with the same name in the active set or becomes a new - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 197
policies are automatically deleted if the you log out without saving them. 1. Connect to the switch and log in using an account with admin permissions, or an account with O permission for the deletion by entering the secPolicyActivate command. Fabric OS Administrator's Guide 197 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 198
switch Connect to the switch and log in using using the switch WWN: switch:admin> secpolicyadd 44:55:66:77:bb): switch:admin> secpolicyadd "DCC_POLICY_abc", " 1. Connect to the switch and log in using 00:40 from the SCC_POLICY: switch:admin> secpolicyremove "SCC_POLICY", Connect to the switch and log - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 199
be performed on a local switch basis and may be performed on any switch in the fabric. The FCS policy is not present by default, but must be created. Automatic distribution is supported and you can either configure the switches in your fabric to accept the FCS policy or manually distribute the FCS - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 200
based on WWN. By default, DCC and SCC policy members are sorted based on WWN. Switches running earlier Fabric OS switch by using the -legacy option. For more information about using the -legacy option in the secPolicyAdd and secPolicyCreate commands, refer to Fabric OS Command Reference, Supporting - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 201
fabric-wide configurations from the primary FCS. Modifying the order of FCS switches 1. Log in to the Primary FCS switch using an account with admin permissions, or an account with OM permissions for command to activate and save the new order. Fabric OS Administrator's Guide 201 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 202
or it can be manually distributed to the switches using the distribute -p command. Each switch that receives the FCS switch to initiate the distribution. This is to support FCS policy creation specifying a remote switch as Primary. • For other database distributions, only the Primary FCS switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 203
hubs. By default, all device ports are allowed to connect to all switch ports; no DCC from the switch and are not enforced by the DCC policy. This does not create a security problem because these supported on the CEE ports of the Brocade 8000. Fabric OS Administrator's Guide 203 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 204
Switch ports can be identified by the switch WWN, domain ID, or switch switch domain 1: switch switch domain 2, and all currently connected devices of switch domain 2: switch switch domain 3: switch: switch domain 4, and all devices currently connected to ports 1 through 4 of switch domain 4: switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 205
all the NPIV ports, so even if failover occurs the device will be allowed to log in on a different NPIV port. support Configuration WWN seen on Behavior when DCC policy Behavior on portDisable DCC policy list activates and portEnable • FA-PWWN has logged into the switch Guide 205 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 206
switch. TABLE 34 DCC policy behavior when created manually or switch names. Only one SCC policy can be created. By default, any switch is For a logical ISL-based switch, the SCC policy enforcement switch supports an SCC policy. You can configure and distribute an SCC policy on a logical switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 207
defaults to DH-CHAP if both switches are configured to accept the DH-CHAP protocol in authentication. To use FCAP on both switches switches Brocade and third-party certificates between switches that are Fabric OS v6.4.0, but only Brocade-issued certificates (where Brocade to both switches as a switches - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 208
automatic distribution of the AUTH policy is not supported. The default configuration directs the switch to attempt FCAP authentication first, DH-CHAP second. The switch may be configured to negotiate FCAP, DH-CHAP a secret key pair" on page 214. 208 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 209
"Failed to initiate authentication. Authentication is not supported on logical ports ". For more information command again. Example of setting the policy to active mode switch:admin> authutil --policy -sw active Warning: Activating the Fabric OS Administrator's Guide 209 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 210
on the switch. This command does not work on loop, NPIV and FICON supported from Brocade fabric switches in native mode to Access Gateway switches and from Access Gateway switches to HBAs. For more information, refer to the Access Gateway Administrator's Guide, Supporting Fabric OS v7.1.0 By default - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 211
connected to the switch in point-to-point manner and is visible to the entire fabric. The following are not supported: • Public loop devices • Single private devices • Private loop devices • Mixed public and private devices in loop • NPIV devices • FICON channels • Configupload and download will not - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 212
configured shared secrets or certificates, and authentication is checked (for example, you enable the switch), then switch authentication will fail. If the E_Port is to carry in-flight encrypted traffic, the for details about in-flight encryption. 212 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 213
:69:80:07:5c 1 switchA Note about Access Gateway switches Because Domain ID and name are not supported for Access Gateway, secAuthSecret --show output for Access Gateway secret for a switch or device on Access Gateway, only the WWN can be used. Fabric OS Administrator's Guide 213 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 214
switch switch specification, peer secret entry, and local secret entry. To exit the loop, press Enter for the switch switch is configured to do DH-CHAP, it is performed whenever a port or a switch or switch name ( Domain, or switch name (Leave Enter WWN, Domain, or switch name (Leave blank when done - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 215
switch. 3. Store the CSR from each switch supported switch to verify the validity of the switch certificate or switch validation fails. The switch certificate. 5. On each switch, install the CA certificate before installing switch remote switches that will the switch using local switch. switch:admin> - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 216
Log in to the switch using an account with admin command. switch:admin> [email protected]'s password: - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 217
policy The AUTH policy can be manually distributed to the fabric by command; there is no support for automatic distribution. To distribute the AUTH policy, see "Distributing the local ACL policies" on page 227 for instructions. Local Switch configuration parameters are needed to control - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 218
characters. The names default_ipv4 and default_ipv6 are reserved for default IP filter policies. The policy name is case-insensitive and the existing defined or active policy. 1. Log in to the switch using an account with admin permissions, or an account associated with Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 219
replaces the existing active policy of the same type. Activating the default IP Filter policies returns the IP management interface to its default 1. Log in to the switch using an account with admin permissions HTTP, HTTPS. • Protocol: The protocol type. Supported types are TCP or UDP. • Action: - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 220
to affect the management traffic that is initiated from a switch. A valid port number range is represented by a dash, for example 7-30. Alternatively, service names can also be used instead of port number. Table 37 lists the supported service names and their corresponding port numbers. TABLE 37 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 221
IP Filter policy 7 TABLE 37 Supported services (Continued) Service name Port number bootps 67 bootpc 68 allowed to support ICMP echo request and reply on commands like ping and traceroute. Action For the action, only "permit" and "deny" are valid. Fabric OS Administrator's Guide 221 53 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 222
Permit Any 1024-65535 UDP Permit Default policy rules A switch with Fabric OS v6.2.0 or later will have a default IP Filter policy for IPv4 and IPv6. The default IP Filter policy cannot be deleted Permit Permit Permit Permit Permit Permit 222 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 223
still do not match the packet, the default action, which is to deny, is taken. When the IPv4 or IPv6 address for the management interface of a switch is changed through the ipAddrSet command or on the subcommands that would open a new transaction. Fabric OS Administrator's Guide 223 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 224
transaction is aborted. The IPFilter policy can be manually distributed to the fabric by command; there is no support for automatic distribution. To distribute the IPFilter policy, see "Distributing the local ACL policies" on page 227 for instructions. Switches with Fabric OS v6.2.0 or later have - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 225
policies are managed on a per switch basis. For configuration instructions, see "Fabric-wide enforcement" on -wide consistency policy Absent (default) Tolerant Strict Reject Database switch basis. Table 41 lists the databases supported in Fabric OS v6.2.0 and later switches. TABLE 41 Supported - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 226
Supported policy databases (Continued) Database type Database identifier (ID) FCS policy database IP Filter policy database Password switch:admin> fddcfg --showall Local Switch Enabling local switch protection 1. Connect to the switch and log local switch protection 1. Connect to the switch and - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 227
database cannot be manually distributed. When you 1. Connect to the switch and log in using distributed to other switches in the fabric. target switches. Policy switches in the fabric. NOTE FC routers cannot join a fabric with a strict fabric-wide consistency policy. FC routers do not support - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 228
DCC" switch:admin> fddcfg --showall Local Switch Configuration for all Databases:- DATABASE - Accept/Reject SCC - accept DCC - accept PWD - accept FCS - accept AUTH - accept IPFILTER - accept Fabric Wide Consistency Policy:- "SCC:S;DCC" 228 Fabric OS Administrator's Guide 53 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 229
policy. If the tolerant SCC, DCC, or FCS fabric-wide consistency policies do not match, the switch can join the fabric, but an error message flags the mismatch. If the tolerant SCC, DCC, , a warning displays and policy commands are disabled1. Fabric OS Administrator's Guide 229 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 230
manually distribute the database you want to use to the switch 230 shows merges that are not supported. TABLE 44 Examples of strict SCC:S;DCC SCC:S DCC:S Ports connecting switches are disabled. Table 45 has a matrix --fabwideset "policy_ID" from any switch with the desired configuration to - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 231
flows. While the tunnel must have a Brocade switch or Backbone at each end, there a chassis, nor does it support protection of traffic flows on FCIP the use of cryptographic security services. The goal of IP protocol using an automatic or manual key. For more information on Guide 231 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 232
associated with the security gateway so that packets returned to it will go to the security gateway and be tunneled back. 232 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 233
this sliding window to provide protection against replay attacks in which an attacker attempts a denial of service attack by replaying an old sequence of packets. IP sec protocols assign a sequence number to associations of the traffic. IKE uses Fabric OS Administrator's Guide 233 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 234
it is created. Use the IP secConfig --flush manual-sa command to remove all SA entries from the AH, ESP] is the supported combination. Authentication and encryption IP sec policies An IP sec policy determines the security services afforded to a packet and the treatment of a Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 235
supports Internet Key Exchange or Manual manually keyed connections, which means that all parameters needed for the setup of the connection are provided by you. Based on which protocol, algorithm, and key used for the creation of the security associations, the switch Guide 235 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 236
associated IP sec policy in the local policy database. Manual SA entries are persistent across system reboots. Creating the tunnel Each side of the tunnel must be configured in order for the tunnel to come up. Once you are logged into the switch, do not log off as each step requires that - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 237
hmac_md5 -auth psk -dh modp1024 \ -psk IP seckey.psk 8. Create an IP sec transform on each switch using the IP secConfig --add command. Example of creating an IP sec transform This example creates an IP destination addresses than outbound packets. Fabric OS Administrator's Guide 237 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 238
switches. b. Verify that IP traffic is encapsulated. c. Monitor IP sec SAs created using IKE for above traffic flow • Use the IP secConfig --show manual --flush manual-sa are a switch, BROCADE300 switch as Admin. 2. Enable IP sec. a. Connect to the switch use AH01 as SA. switch:admin> IP secconfig - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 239
as Windows XP and 2000 do not support IKEv2. 8. Create an IP sec transform as key management policy. switch:admin> IP secconfig -- manual-sa -a command. 11. Perform the equivalent steps on the remote peer to complete the IP sec configuration. Refer to your server administration guide for instructions - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 240
the specified operands to display IKE policies. • Use the IP secConfig --flush manual-sa command with the specified operands to flush the created SAs in the kernel • As of Fabric OS 7.0.0, IP sec no longer supports null encryption (null_enc) for IKE policies. • IPv6 policies cannot tunnel IMCP - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 241
Managing Administrative Domains". For more information about troubleshooting configuration file uploads and downloads, refer to the Fabric OS Troubleshooting and Diagnostics Guide. There are two ways to view configuration settings for a switch in a Brocade fabric: • Issue the configShow -all command - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 242
or downloading a configuration switch sections for all logical switches. NOTE: Use this parameter when obtaining a complete capture of the switch configuration in a switch switch sections. The following is an example of a configuration file with two logical-switch 52 2011 [Switch Configuration Begin - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 243
chassis components that affect the entire system, not just one individual logical switch. The chassis section is included in non-Virtual Fabric modes only if Licenses configuration • AGWWN_MAPPING_CONF - Access Gateway WWN mapping configuration Fabric OS Administrator's Guide 243 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 244
Brocade recommends keeping a backup configuration file. You should keep individual backup files for all switches in the fabric and avoid copying configurations from one switch to another. The configUpload command, by default, only uploads the switch context configuration for the logical switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 245
). SFTP can be used for the configupload/download, supportsave, and auto FFDC/trace upload (supportftp) commands. Uploading a configuration file in interactive mode 1. Verify that the FTP, SFTP, or SCP service is running on the host computer. 2. Connect to the switch and log in using an account with - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 246
configuration file. CAUTION Make sure that the configuration file you are downloading is compatible with your switch model. Downloading a configuration file from a different switch model or from a different firmware could cause your switch to fail. CAUTION If you have Virtual Fabrics enabled, you - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 247
downloaded to a Virtual Fabric system have a configuration applied only to the default switch. If there are multiple logical switches created in a Virtual Fabric-enabled system, there may be problems parameters. VEX_Port configuration parameters. Fabric OS Administrator's Guide 247 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 248
switch only when necessary. Configuration download without disabling a switch is independent of the hardware platform and supported switch. Use the SFID parameter only when the logical switch has no configuration information you want to save. 1. Verify that the FTP service the switch by entering - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 249
" command. Downloading configuration to an online switch may result in some configuration not being downloaded to that switch. configDownload operation may take several minutes to complete for large files. Do you want to continue [y/n]:y Password: Fabric OS Administrator's Guide 249 53 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 250
can save a configuration file from one switch and download it to other switches of the same model type. Do not download a configuration file from one switch to another switch that is a different model or runs a different firmware version, because it can cause the switch to fail. If you need to reset - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 251
[all]): Password: configUpload complete: All selected config parameters are uploaded Example of configUpload on a logical switch configuration DCX_80: download file is downloaded instead of the regular configuration. After the Virtual Fabrics configuration file is downloaded, the switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 252
the LISL ports are set up correctly. Example of a non-interactive download from a switch with FID = 8 and SFID =10 configdownload -fid 8 -sfid 10 -ftp 10.1.2.3,UserFoo,config.txt,password Example of configDownload on a switch 5100:FID128:admin> configdownload -vf Protocol (scp, ftp, sftp, local - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 253
reference manuals for the Brocade DCX and DCX-4S Backbones, there is a guide for FC port-setting. TABLE 48 Brocade configuration and connection form Brocade configuration settings IP address Gateway address Chassis configuration option Management connections Serial cable tag Ethernet cable tag - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 254
8 Brocade configuration form 254 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 255
between two Brocade DCX 8510-8 Backbones. CR4S-8 blades can be inserted only into slots 3 and 6 on the Brocade DCX 8510-4. NOTE For more information on troubleshooting a firmware download, refer to the Fabric OS Troubleshooting and Diagnostics Guide. Fabric OS Administrator's Guide 255 53 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 256
the secondary partition. ATTENTION The Brocade 8000 does not support a nondisruptive firmware download. The switch reboots once the firmware upgrade or downgrade is complete. In dual-CP systems, the firmware download process, by default, sequentially upgrades the firmware image on both CPs using HA - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 257
details about testing and restoring firmware, refer to "Testing and restoring firmware on Backbones" on page 270. Passwordless firmware download You can download firmware without a password using the sshutil command for public key authentication when SSH is selected. The switch must be configured to - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 258
section. In the unlikely event of a failure or timeout, these preparatory tasks enable you to provide your switch support provider the information required to troubleshoot the firmware download. It is recommended that you use the configUpload command to back up the current configuration before you - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 259
helps to troubleshoot the firmware download process if a problem is encountered. 6. Optional: Enter the errClear command to erase all existing messages in addition to internal messages. Obtaining and decompressing firmware Firmware upgrades are available for customers with support service contracts - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 260
9 Firmware download on switches Firmware download on switches Brocade fixed-port switches maintain primary and secondary partitions for firmware. The firmwareDownload command defaults to an autocommit option that automatically copies the firmware from one partition to the other. NOTE This section - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 261
Firmware download on switches 9 Upgrading firmware for Brocade fixed-port switches 1. Take the following appropriate action based on what service you are using: • If you are using FTP, SFTP, or SCP, verify that the FTP or SSH server is running on the host server and - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 262
the process. The entire firmware download and commit process takes approximately 17 minutes. If there is a problem, wait for the timeout (30 minutes for network problems) before issuing the firmwareDownload command again. Disrupting the process can render the switch inoperable and require you to - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 263
contact your switch service provider. For further troubleshooting, refer to the Fabric OS Troubleshooting and Diagnostics Guide. 8. Enter the firmwareDownload command and respond to the interactive prompts. 9. At the "Do you want to continue [y/n]" prompt, enter y. The firmware is downloaded to one - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 264
(1-auto-select, 2-FTP, 3-SCP, 4-SFTP)) [1]: Password: Checking version compatibility... Version compatibility check passed. switch, and log in again as admin. Using a separate session to connect to the switch, enter the firmwareDownloadStatus command to monitor the firmware download - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 265
300, 5100, 5300, 6505, 6510, 6520, 7800, 8000, and VA-40FC switches and the Brocade DCX, DCX-4S, or DCX 8510 Backbones support a firmware download from a Brocade branded USB device attached to the switch or active CP. Before the USB device can be accessed by the firmwareDownload command, it must - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 266
-U v7.1.0 Downloading from the USB device using the absolute path 1. Log in to the switch using an account assigned to the admin role. 2. Enter the firmwareDownload command with the -U operand. ecp:admin>firmwaredownload -U /usb/usbstorage/brocade/firmware/v7.1.0 FIPS support Federal Information - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 267
attributes Enforce secure config Upload/Download: Select yes. Webtools attributes System Enforce signed firmware download: Select yes. Press Enter to select default setting; default is no. Press Enter to select default setting; default is no. Fabric OS Administrator's Guide 267 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 268
server is running on the host server and that you have a user ID on that server. 2. Obtain the firmware file from the Brocade website at http://www.brocade.com or the switch support provider and store the file on the FTP or SSH server. 3. Unpack the compressed files preserving directory structures - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 269
File Name: /home/userfoo/v7.0.0 Password: Do Auto-Commit after Reboot [Y]: n Reboot system after download [N]: y Firmware is being downloaded to the switch. This step may take up to 30 minutes. Checking system settings for firmwaredownload... The switch performs a reboot and comes up with - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 270
firmware download. This command cannot be used to restore SAS and SA images. NOTE Brocade recommends that, under normal operating conditions, you maintain the same firmware firmware download process overview" on page 262 for details about autoleveling. 270 Fabric OS Administrator's Guide 53-1002745 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 271
firmware is now running on the active CP by entering the firmwareShow command. 9. Update firmware this point the firmware downloads to the firmware on both CPs, which completes the firmware download firmware. b. Enter the firmwareCommit command to update the secondary partition with the new firmware - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 272
firmware on both CPs and you have completed the firmware download procedure. 12. Restore the firmware ends. The Backbone is now running the original firmware. 14. Restore firmware on the "new" standby CP. a. Wait restoring firmware on switches" on page 268. Be aware that upgrading a Backbone - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 273
devices prior to the firmware download. fabricShow Displays all switches in a fabric. Make sure the number of switches in the fabric after the firmware download is exactly the same as the number of attached devices prior to the firmware download. Fabric OS Administrator's Guide 273 53-1002745 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 274
9 Validating a firmware download 274 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 275
switch overview 276 •Logical fabric overview 281 •Management model for logical switches 281 •Account management and Virtual Fabrics 286 •Supported platforms of the following specific features: • Logical switch • Logical fabric • Device sharing Fabric OS Administrator's Guide 275 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 276
Fabrics" on page 606. For information about supported switches and port types, refer to "Supported platforms for Virtual Fabrics" on page 286 switch. Each logical switch functions as an independent self-contained FC switch. NOTE Each chassis can have multiple logical switches. Default logical switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 277
FID 15 in the chassis. The default logical switch is initially assigned FID 128. You can change this value later. NOTE Each logical switch is assigned one and only one FID. The FID identifies the logical fabric to which the logical switch belongs. Fabric OS Administrator's Guide 277 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 278
P1 P3 P5 P7 P9 Logical switch 2 Logical switch 1 (Default logical switch) P0 P1 P7 P8 P2 Logical switch 2 P3 Logical switch 3 P4 P9 Logical switch 3 P5 Logical switch 4 P6 Logical switch 4 FIGURE 20 Assigning ports to logical switches 278 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 279
assign a port to any logical switch, it remains in the default logical switch, as is the case with ports 0, 1, 7, and 8. Refer to "Adding and moving ports on a logical switch" on page 295 for instructions for assigning and moving ports on logical switches. A logical switch can have as many ports as - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 280
chassis Logical switch 1 P1 (Default logical switch) Fabric ID 128 H1 Logical switch 2 P2 Fabric ID 1 P3 D1 P4 Logical switch 3 Fabric ID 15 P5 D2 Logical switch 4 P6 ISL Fabric ID 8 Switch FIGURE 21 Logical switches connected to devices and non-Virtual Fabrics switch Figure 22 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 281
) - Account management (determining which accounts can access which logical switches) - Field-replaceable unit (FRU) management (slot commands, such as slotShow) - Firmware management (firmware upgrade, HA failover) • Logical switch operations These are operations that are limited to the logical - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 282
, with FID 8. Physical chassis 1 Logical switch 1 P1 (Default logical switch) Fabric ID 128 Logical switch 2 P2 Fabric ID 1 P3 P4 Logical switch 3 Fabric ID 15 P5 Physical chassis 2 P1 Logical switch 5 (Default logical switch) Fabric ID 128 P2 Logical switch 6 P3 Fabric ID 1 P4 P5 P7 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 283
because it connects base switches. Physical chassis 1 Logical switch 1 P1 (Default logical switch) Fabric ID 128 Physical chassis 2 P1 Logical switch 5 (Default logical switch) Fabric ID 128 Logical switch 2 P2 Fabric ID 1 P2 Logical switch 6 Fabric ID 1 P4 Logical switch 3 Fabric ID 15 P5 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 284
ports because they are not physical cables. They are a logical representation of the switch connections that are allowed by the XISL. FIGURE 26 Logical ISLs connecting logical switches To use the XISL, the logical switches must be configured to allow XISL use. By default, they are configured to do - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 285
default, the physical ISL path is favored over the logical path (over the XISL) because the physical path has a lower cost. This behavior can be changed by configuring the cost of the dedicated physical ISL to match the cost of the logical ISL. ATTENTION If you disable a base switch not supported on - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 286
. • The default logical switch can also be a base switch. Restrictions on fixed-port switches Brocade 7800- Although it can be divided into four logical switches, you cannot use an XISL on this switch because a base switch is not supported on this device. 286 Fabric OS Administrator's Guide 53 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 287
-8, ports 56-63 of the FC8-64 blade are not supported as E_Ports on the default logical switch. The Brocade DCX-4S and DCX 8510-4 do not have this limitation. 2. In the Brocade DCX and DCX 8510-8, ports 48-63 of the FC8-64 blade are not supported in the base switch. The Brocade DCX-4S and DCX 8510 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 288
platforms and the maximum number of logical switches (including the default logical switch) supported on each. TABLE 52 Platform Maximum number of logical switches per chassis Maximum number of logical switches Brocade DCX 8 Brocade DCX-4S 8 288 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 289
number of logical switches Brocade DCX 8510 family 8 Brocade 5300 4 Brocade 5100 3 Brocade 6510 4 Brocade 6520 4 Brocade 7800 4 Brocade VA-40FC 3 Refer to "Supported port configurations in Brocade Backbones" on page 287 for restrictions on the default logical switch. Restrictions on - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 290
service: iSCSI service: iSNS client service: Virtual Fabric: Ethernet Switch Service: disabled Service not supported on this Platform Service not supported on this Platform disabled Service not supported on this Platform switch enabled on ports in the default switch, the F_Port trunking information - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 291
> fosconfig --show FC Routing service: disabled iSCSI service: Service not supported on this Platform iSNS client service: Service not supported on this Platform Virtual Fabric: enabled Ethernet Switch Service Service not supported on this Platform switch:admin> fosconfig --disable vf - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 292
4. Enter the appropriate value at the Config Index prompt. Contact your switch service provider to determine the appropriate value. Config Index (0 to ignore): (0..1000) [3]: Creating a logical switch or base switch When the logical switch is created, it is automatically enabled and is empty-that is - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 293
:admin> lscfg --create 4 About to create switch with fid=4. Please wait... Logical Switch with FID (4) has been successfully created. Logical Switch has been created with default configurations. Please configure the Logical Switch with appropriate switch and protocol settings before activating the - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 294
FID: 4, Base Switch: No, Default Switch: No, Address switches sw0:FID128:admin> fosexec --fid all -cmd "fabricshow fabricshow" on FID 128: Switch "fabricshow" on FID 4: Switch ID Worldwide Name Enet IP switch from the one you are deleting. Use the following procedure to delete a logical switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 295
manually reinstall them on the port after the move. Notes • If the logical switch to in the default logical switch. Use the following procedure to add or move ports on a logical switch: 1. of the FC8-64 blade to the base switch. These ports are not supported on the base switch. The Brocade DCX-4S - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 296
a list of all logical switches and the ports assigned to switch. The fabric ID indicates in which fabric the logical switch participates. By changing the fabric ID, you are moving the logical switch switch context. NOTE If you are in the context of the logical switch logical switch from the one with - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 297
a logical switch to a base switch Use the following procedure to change a logical switch to a base switch. 1. Connect to the switch and log in Allow XISL Use: ON LS Attributes: [FID: 7, Base Switch: No, Default Switch: No, Address Mode 0] (output truncated) switch_25:FID7:admin> configure - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 298
you like to continue [y/n]?: y Disabling the proposed new base switch... Disabling switch fid 7 Please enable your switches when ready. switch_25:FID7:admin> switchenable Setting up IP addresses for a Virtual Fabric NOTE IPv6 is not supported when setting the IPFC interface for Virtual Fabrics. Use - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 299
switch to use XISLs When you create a logical switch, it is configured to use XISLs by default. Use the following procedure to allow or disallow the logical switch to use XISLs in the base fabric. XISL use is not supported to set the context to the logical switch you want to manage, if you are - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 300
. See "Enabling Virtual Fabrics mode" on page 290 for instructions. Enabling Virtual Fabrics automatically creates the default logical switch, with FID 128. All ports in the chassis are assigned to the default logical switch. c. Create a base switch and assign it a fabric ID that will become the FID - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 301
to use XISLs, if it is not already XISL-capable. See "Configuring a logical switch to use XISLs" on page 299 for instructions. By default, newly created logical switches are configured to allow XISL use. f. Repeat step a through step e in all chassis that are to participate in the logical fabric - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 302
10 Creating a logical fabric using XISLs 302 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 303
overview 304 •Broadcast zones 310 •Zone aliases 312 •Zone creation and maintenance 316 •Default zoning mode 326 •Zone database size 327 •Zone configurations 328 •Zone object maintenance 333 configuration" on page 590 for more information. Fabric OS Administrator's Guide 303 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 304
based service that switch with the highest Fabric OS level to perform zoning tasks. To list the commands associated with zoning, use the zoneHelp command. For detailed information on the zoning commands used in the procedures, see the Fabric OS Command Reference. 304 Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 305
affect the smallest possible number of devices, minimizing the impact of an incorrect zone change. This zoning philosophy is the preferred method. Fabric OS Administrator's Guide 305 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 306
For instance, when a storage port, server HBA, or tape drive is replaced, the change of WWN for the new device is of no consequence. As in a zone, such as: • Physical port number or port index on the switch • Node World Wide Name (N-WWN) • Port World Wide Name (P-WWN) Zone Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 307
the configuration that can be implemented and provide the most generic services. If other configurations are used for specialized purposes, names that configuration are in effect. Several zone configurations can reside on a switch at once, and you can quickly alternate between them. For example, - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 308
in "Default zoning mode" on page 326). This does not mean that the zone database is deleted, however, only that there is no configuration active in the fabric. On power-up, the switch automatically reloads -based hardware enforcement is in effect. 308 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 309
to identify zones and zone types: 1. Connect to the switch and log in using an account with admin permissions. run the Zone Analyzer from Web Tools to isolate any possible problems. This is especially useful as fabrics increase in size. Confirming OS Administrator's Guide 309 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 310
following are recommendations for using zoning: • Always zone using the highest Fabric OS-level switch. Switches with earlier Fabric OS versions do not have the capability to view all the functionality zone) with the sender of the broadcast frame. 310 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 311
because of its membership in the AD2 broadcast zone. When a switch receives a broadcast packet it forwards the packet only to those devices Refer to "Validating a zone" on page 323 for complete instructions. Broadcast zones and FC-FC routing If you create broadcast zones Guide 311 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 312
a switch has broadcast zone-capable firmware on the active CP (Fabric OS v5.3.x or later) and broadcast zone-incapable firmware on , even if it is the only zone in the effective configuration, the default zone setting is not in effect. If the effective configuration has only 's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 313
aliadd "array1", "1,2" switch:admin> aliadd "array2", "21:00:00:20:37:0c:72:51" switch:admin> aliadd "loop1", "5,6" switch:admin> cfgsave WARNING!!! The changes you are attempting to save will render the Effective configuration and the Defined configuration Fabric OS Administrator's Guide 313 53 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 314
alias: 1. Connect to the switch and log in using an account switch is automatically aborted. A message displays on the other switches to indicate that the transaction was aborted. Example switch:admin> aliremove "array1", "1,2" switch switches alias: 1. Connect to the switch and log in using an account - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 315
switch is automatically aborted. A message displays on the other switches to indicate that the transaction was aborted. Example switch:admin> alidelete "array1" switch switches : 1. Connect to the switch and log in using an zone aliases beginning with "arr". switch:admin> alishow "arr*" alias: array1 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 316
zones: 1. Connect to the switch and log in using an account cfgShow command. Example Displaying existing zones switch:admin> cfgshow Defined configuration: zone: create a zone: 1. Connect to the switch and log in using an account with admin NOTE This command supports partial pattern matching - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 317
switch in the fabric when this command is run, the transaction on the other switch is automatically aborted. A message displays on the other switches switch:admin> zonecreate sloth, "b*; 10:00:00:00:01:1e:20:20" switch:admin> cfgsave switch 1. Connect to the switch and log in using command supports - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 318
procedure to remove members from a zone: 1. Connect to the switch and log in using an account with admin permissions. 2. Enter "zonename", "aliasname_pattern*[;members]" NOTE This command supports partial pattern matching ("wildcards") of zone member 318 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 319
procedure to replace members in a zone: 1. Connect to the switch and log in using an account with admin permissions. 2. Enter the zoneObjectReplace command, using the following syntax: zoneobjectreplace old wwn/D,I new wwn/D,I NOTE This command does not support Guide 319 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 320
but an alias itself cannot be directly replaced. To achieve the effect of replacement, create a new alias (with the desired new name) containing the same members, and then delete the old alias. Deleting a zone Use the following procedure to delete a zone: 1. Connect to the switch and log in using an - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 321
with saving the Defined zoning configuration only? (yes, y, no, n): [no] y switch:admin> switch:admin> cfgshow Defined configuration: zone: matt zeus; bond; jeff; 4,8 alias: bawn 3,5 configuration: No Effective configuration: (No Access) Fabric OS Administrator's Guide 321 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 322
a zone in the configuration: 1. Connect to the switch and log in using an account with admin permissions. with A, B, or C, in ascending order: switch:admin> zoneshow --sort "[A-C]*" zone: Blue_zone deleted. Example Displaying existing zone database switch:admin> cfgshow Defined configuration: cfg: - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 323
0c:71:02 1,2 Example Adding a new zone 'red_zone', deleting "1,1" and adding "6,15" to green_zone switch:admin> cfgshow --transdiffs Defined configuration: cfg: fabric_cfg Blue_zone zone: Blue_zone 1,1; array1; 1,2; array2 *zone: :00:20:37:0c:76:28 Fabric OS Administrator's Guide 323 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 324
configuration names are case-sensitive; blank spaces are ignored. switch:admin> zone --validate "White_zone" 4. Enter the mode flag -m can be used to specify the zone database location. Supported mode flag values are: • 0 - zone database from the current OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 325
?" (yes, y, no, n): [no] y Example 'Inconsistent Defined and Effective Zone Database' warning to user switch: admin> zoneShow Defined configuration: cfg: cfg1 zone1; zone2 zone: zone1 10:00:00:00:00:00:00:01 00:00:00:02 zone: zone2 1,1; 1,2 Fabric OS Administrator's Guide 325 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 326
default zone mode applies to the entire fabric, regardless of switch model. The default default zoning mode to No Access. NOTE For switches in large fabrics, the default the default zoning mode NOTE You should not change the default zone mode the default zoning mode: 1. Connect to the switch and - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 327
following procedure to view the current default zone access mode: 1. Connect to the switch and log in using an account with admin permissions. 2. Enter the defZone --show command. NOTE If you perform a firmware download of an older release, then the current default zone access state will appear as - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 328
not exceed the maximum configuration size supported by all switches in the fabric. This is particularly important if you downgrade to a Fabric OS version that supports a smaller zone database than the configuration only? (yes, y, no, n): [no] y 328 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 329
Defined configuration inconsistent. The inconsistency will result in different Effective Zoning configurations for switches in the fabric if a zone merge or HA failover happens. To avoid Defined zoning configuration only? (yes, y, no, n): [no] y Fabric OS Administrator's Guide 329 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 330
switch switch:admin> cfgenable "USA_cfg" You are about to enable a new zoning configuration. This action will replace default zone access mode setting. NOTE If the default switch. In this situation, set the default zoning mode to No Access prior to disabling the zone configuration. See "Default switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 331
the switch and switch in the fabric when this command is run, switch is automatically aborted. A message displays on the other switches to indicate that the transaction was aborted. Example switch:admin> cfgdelete "testcfg" switch switch:admin> zoneremove "zone1","3,5" switch the switch switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 332
information Use the following procedure to view the selected zone configuration information: 1. Connect to the switch and log in using an account with admin permissions. 2. Enter the cfgShow command and specify 0c:76:85 21:00:00:20:37:0c:71:df 332 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 333
or a zone. Use the following procedure to copy a zone object: 1. Connect to the switch and log in using an account with admin permissions. 2. Use cfgShow to view the zone any Admin Domain except AD255. switch:admin> zone --copy Test1 US_Test1 Fabric OS Administrator's Guide 333 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 334
or a zone. Use the following procedure to delete a zone object: 1. Connect to the switch and log in using an account with admin permissions. 2. Enter the cfgShow command to view Admin Domain except AD255. switch:admin> zone --expunge "White_zone" 334 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 335
you want the change preserved when the switch reboots, use cfgSave to save it object: 1. Connect to the switch and log in using an to rename. switch:admin> cfgShow Defined Domain except AD255. switch:admin> zoneObjectRename "White_zone the change preserved when the switch reboots, enter the cfgSave - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 336
database" on page 332. If you are adding a switch that is already configured for zoning, clear the zone configuration on that switch before connecting it to the zoned fabric. See "Clearing all zone configurations" on page 333 for instructions. 336 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 337
, it must pass the following criteria: • Before merging To facilitate merging, check the following before merging switches or fabrics: - Default Zone: The switches must adhere to the default zone merge rules, as described in "Zone merging scenarios" on page 339. - Effective and defined zone - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 338
configurations enabled, including the default zone mode. The two the two fabrics cannot join, the ISL between the switches will segment. • Merge conflicts When a merge conflict configuration. If the connections between two fabrics are replaced and no changes have been made to the Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 339
Default access mode • Table 60 on page 342: Mixed Fabric OS versions Zone merging scenarios: Defined and effective configurations Switch A Switch B Expected results Switch A has a defined configuration. Switch : ali3; ali4 effective: none Fabric OS Administrator's Guide 339 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 340
configuration will be a composite of the two, with cfg1 as the effective configuration. Clean merge. Switch A absorbs the defined configuration from the fabric, with cfg1 as the effective configuration. In this due to: Zone Conflict type mismatch 340 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 341
Default access mode Description Switch A Different default zone access mode settings. defzone: allaccess Same default zone access mode settings. Same default segments because all switches in the fabric must be running Fabric OS v6.4.0 or later to support Enhanced TI zones. Switch B Expected - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 342
where both sides have default zone mode No Access set, the merge results vary depending on which switch initiates the merge. to enable a new zoning configuration. This action will replace the old zoning configuration with the current configuration selected. OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 343
| --help] Sample output: switch:admin> cfgtransshow Current transaction token is 0x571010459 It is abortable switch:admin> cfgtransshow --help Usage: list of Domains with Open Transactions cfgTransShow --help : Help switch:admin> cfgtransshow --opentrans Current transaction token is 0x3109 It is - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 344
11 Concurrent zone transactions 344 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 345
for TI zones 356 •Supported configurations for Traffic Isolation Zoning zone 369 •Displaying TI zones 369 •Troubleshooting TI zone routing problems 370 •Setting up TI over FCR zone is activated, the fabric attempts to isolate all inter-switch traffic entering from a member of the zone to only - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 346
347 for additional information about using this feature. Table 61 compares the behavior of traffic when failover is enabled and disabled. 346 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 347
, the specified ISLs will not be able to route any traffic. • If the path between devices in a TI zone is broken, no inter-switch RSCNs are generated. Each switch that is part of the TI zone generates RSCNs to locally attached devices that are part of the TI zone and are registered - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 348
are multiple paths between switches. Disabling failover locks the • Domain controller frames can use any path between switches. Disabling failover does not affect Domain Controller connectivity. the insistent Domain ID feature be enabled; if a switch changes its active domain ID, the route is broken. - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 349
TI zone. If failover is disabled, the TI zone traffic stops until the dedicated path is configured to be the shortest path. Fabric OS Administrator's Guide 349 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 350
1 Domain 2 FIGURE 35 Enhanced TI zones = ETIZ 1 = ETIZ 2 Enhanced TI zones are especially useful in FICON fabrics. See the FICON Administrator's Guide for example topologies using enhanced TI zones. See "Additional configuration rules for enhanced TI zones" on page 358 for more information about - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 351
report of existing and potential problems with TI zone configurations, as described in "Troubleshooting TI zone routing problems" on page 370. Illegal ETIZ (1,1), (1,2), (3,6), (3,8) • ETIZ 2 contains (2,1), (2,2), (1,4), (1,3), (3,7), (3,8) Fabric OS Administrator's Guide 351 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 352
Using FC-FC Routing to Connect Fabrics," for information about FC routers, phantom switches, and the FC-FC Routing Service. Some VE_Port-based features, such as tape pipelining, require the request and can contain one or more FC routers. 352 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 353
path is used. If failover is disabled and the TI path is not available, then devices are not imported. NOTE For TI over FCR, all switches in the backbone fabric and in the edge fabrics must be running Fabric OS v6.1.0 or later. Fabric OS Administrator - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 354
Xlate Domain 4 Proxy Target In the TI zone, when you designate E_Ports between the front and xlate phantom switches, you must use -1 in place of the "I" in the D,I notation. Both the front and xlate domains a TI zone within the backbone fabric. 354 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 355
:00:00:00:02:00:00 (Port WWN for target 1) • 10:00:00:00:00:03:00:00 (Port WWN for target 2) Fabric OS Administrator's Guide 355 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 356
must be enabled in the TI zones in the edge fabrics and in the backbone fabric. • TI over FCR is not supported with FC Fast Write. • For the FC8-16, FC8-32, FC8-48, FC8-64, and FX8-24 blades only: If Virtual Fabrics is disabled, two or more shared area EX_Ports connected to the - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 357
the TI zone was configured incorrectly and E_Port "3,9" was erroneously omitted from the zone. The domain 3 switch assumes that traffic coming from E_Port 9 is not part of the TI zone and so that traffic is not in TI zone: 1 TI Zone Name: operand Fabric OS Administrator's Guide 357 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 358
. • For the FC8-64 blade in the Brocade DCX and DCX 8510-8, ports 48-63 can be in a TI zone only if all switches in that TI zone Brocade DCX-4S and DCX 8510-4 do not have this limitation. • VE_Ports are supported in TI zones. • TI Zoning is not supported in fabrics with switches running firmware - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 359
the TI zone, separated into present and not present, and displayed per TI Zone basis. Sample output switch:admin> zone --showTItrunkerrors TI Zone Name: brackets E-Port Trunks Trunk members in TI zone: 16 18 about TI zones in a backbone fabric. Fabric OS Administrator's Guide 359 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 360
use the same shared area on FC4-48 and FC8-48 port blades. • Ports that are in different with port index greater than 511 are not supported with Fabric OS versions earlier than v6.4.0. If ports in topologies that span more than two switches connected with ICLs. If a user-defined Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 361
fabrics, with the following exceptions: • The disable failover option is not supported in logical fabrics that use XISLs. Although logical switches that use XISLs allow the creation of a TI zone with failover circled ports shown in Figure 43. Fabric OS Administrator's Guide 361 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 362
that the base fabric zone contains a reference to port 1,3 even though the base switch with domain 1 does not have a port 3 in the switch. This number refers to the port in the chassis with port index 3, which actually belongs to LS3 in FID 1. 362 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 363
over the EX_Ports in the base switches. 1 F 2 E LS3, FID1 3 E Domain 3 4 EX 5 EX Base switch Domain 1 6 E 7 E 10 F LS2, FID3 Domain 6 11 E 12 E 15 E 16 E 13 EX Base switch Domain 2 14 EX FIGURE 45 FC routers in logical fabrics Fabric OS Administrator's Guide 363 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 364
you create a TI zone, you can enable or disable failover mode. By default, failover mode is enabled. If you want to change the failover mode TI zone in a base fabric" on page 366. 1. Connect to the switch and log in using an account with admin permissions. 2. Enter the zone Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 365
in the backbone fabric with failover enabled and the state set to activated (default settings): switch:admin> zone --create -t ti backbonezone -p "10:00:00:04:1f switch:admin> cfgenable "USA_cfg" You are about to enable a new zoning configuration. This action will replace 's Guide 365 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 366
zone in a base fabric 1. Connect to the switch and log in using an account with admin f name -p "portlist" The disable failover option is not supported in base fabrics. 4. Perform the following steps if you have 2,8" BS_D1> cfgenable "base_config" 366 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 367
then change the failover type, and finally re-add the overlapping members. 1. Connect to the switch and log in using an account with admin permissions. 2. Enter one of the following commands the TI zones. cfgenable "current_effective_configuration" Fabric OS Administrator's Guide 367 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 368
switch:admin> zone --add bluezone -p "3,4; 3,6" To add port members to the existing TI zone in a backbone fabric: switch switch:admin> zone --add -o f greenzone -p "3,4" To remove ports from the TI zone bluezone: switch state. 1. Connect to the switch and log in using an switch:admin> zone - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 369
zones" on page 367. 1. Connect to the switch and log in using an account with admin permissions. zone bluezone, type: switch:admin> zone --delete effective zone configuration. 1. Connect to the switch and log in using an account with about the TI zone purplezone switch:admin> zone --show purplezone - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 370
Troubleshooting TI zone routing problems Example displaying information about all TI zones in the defined configuration in ascending order switch a problem for devices that join the fabric later. 1. Connect to the switch and in Figure 36 on page 351. switch:admin> zone --showTIerrors My Domain: - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 371
Switch ID Worldwide Name Enet IP Addr FC IP Addr Name 1: fffc01 50:00:51:e3:95:36:7e:04 0.0.0.0 0.0.0.0 "fcr_fd_1" 4: fffc04 10:00:00:60:69:80:1d:bc 10.32.72.4 0.0.0.0 >"E1switch" 6: fffc06 50:00:51:e3:95:48:9f:a0 0.0.0.0 0.0.0.0 "fcr_xd_6_9" Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 372
enable a new zoning configuration. This action will replace the old zoning configuration with the current configuration 10.32.72.9 0.0.0.0 >"E2switch" The Fabric has 3 switches b. Enter the following commands to create and display a TI Enabled 372 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 373
> cfgenable cfg_TI You are about to enable a new zoning configuration. This action will replace the old zoning configuration with the current configuration selected. If the update includes changes to config "cfg_TI" is in effect Updating flash ... Fabric OS Administrator's Guide 373 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 374
12 Setting up TI over FCR (sample procedure) 374 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 375
Supported configurations for bottleneck detection 377 •Credit Loss 379 •Enabling bottleneck detection on a switch have a history of bottlenecks. • Reduce the time it takes to troubleshoot network problems. If you notice one or more applications slowing down, you can Guide 375 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 376
is configured on a per-switch basis, with optional per-port exclusions. • Bottleneck detection is disabled by default. Best practice is to enable bottleneck detection on all switches in the fabric, and cannot be turned on and off independently. 376 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 377
F_Ports - FL_Ports • F_Port and E_Port trunks are supported. • Long distance E_Ports are supported. • FCoE F_Ports are supported. • Bottleneck detection is supported on 4-Gbps, 8-Gbps, and 16-Gbps platforms, for link utilizations above 85%. Fabric OS Administrator's Guide 377 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 378
firmware versions earlier than Fabric OS 7.0.0. If you downgrade and then upgrade back to Fabric OS 7.0.0, the settings revert to their default for bottleneck detection Bottleneck detection is supported in both VF and non-VF enabled on a logical switch with some F_Ports connected Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 379
-end ports and core blades as well as on the Brocade 5300 and 6520 switches, although the support is slightly different on each device. See below for details on these switches, and the Fabric OS Troubleshooting and Diagnostics Guide for more general information. Back-end credit loss detection and - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 380
OS Troubleshooting and Diagnostics Guide for more information. • The bottleneck detection commands are supported on F_Ports, FL_Ports, E_Ports, and EX_Ports. • The credit recovery commands are supported only on back-end ports of 4G, 8G, and 16G Capable FC platforms for blades in the Brocade DCX - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 381
detection on a switch" on page 380 for instructions on enabling bottleneck detection. Example of status output showing that bottleneck detection is enabled for both congestion and latency switch:admin> bottleneckmon --status Bottleneck detection - Enabled Fabric OS Administrator's Guide 381 53 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 382
that only a congestion alert at the switch level has been set switch:admin> bottleneckmon --status Bottleneck detection - Enabled Switch-wide sub-second latency bottleneck criterion: Time 3 seconds are affected by a latency bottleneck. 382 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 383
, respectively. This example uses the default values for these parameters, where - both alerts using the default alert values. Example switch:admin> bottleneckmon --enable -alert switch:admin> bottleneckmon --status Bottleneck detection - Enabled Switch - 50.000 Switch-wide alerting parameters: - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 384
for ports. After you enable bottleneck detection, you can change the alerting parameters for the entire switch or just for individual ports. For example, you can change only the latency threshold for only parameters only on the master port. 384 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 385
2: Changing time window value for an entire switch This changes the time window value to 200 seconds for the entire switch. switch:admin> bottleneckmon --config -alert -time 200 switch:admin> bottleneckmon --status Bottleneck detection - Enabled Fabric OS Administrator's Guide 385 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 386
--status Bottleneck detection - Enabled Switch-wide sub-second latency bottleneck criterion: Time threshold - 0.800 Severity threshold - 50.000 Switch-wide alerting parameters: Alerts - Yes Latency threshold for alert - 0.200 386 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 387
switch:admin> bottleneckmon --config -alert=latency -time 250 47 switch:admin> bottleneckmon --status Bottleneck detection - Enabled Switch 50.000 Switch-wide alerting switch:admin> bottleneckmon --configclear 46-47 switch:admin> bottleneckmon --status Bottleneck detection - Enabled Switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 388
- 150 seconds Adjusting the frequency of bottleneck alerts Depending on the circumstances, a problematic switch or port might be triggering alerts more frequently than desired. The -qtime parameter can be specific F_Ports for this application. 388 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 389
in a second for that second to be considered affected by latency. The default value of 50 means that the observed throughput in a second must be -port basis. You cannot change them on the entire switch, as you can with alerting parameters, unless you disable Administrator's Guide 389 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 390
detection: 1. Connect to the switch to which the target port bottleneck detection on a switch" on page 392 switch:admin> bottleneckmon --exclude 7 switch:admin> bottleneckmon --status Bottleneck detection - Enabled Switch 50.000 Switch-wide alerting switch:admin> bottleneckmon --include 7 switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 391
of bottlenecked ports is any port that had a bottleneck occur during any second in the corresponding interval. switch:admin> bottleneckmon --show -interval 5 -span 30 Wed Jan 13 18:54:35 UTC 2010 List Jan 13 18:54:30 Jan 13 18:54:35 0 Fabric OS Administrator's Guide 391 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 392
all bottleneck configuration details are discarded, including the list of excluded ports and non-default values of alerting parameters. Use the following procedure to disable bottleneck detection: 1. Connect to the switch and log in using an account with admin permissions. 2. Enter the bottleneckmon - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 393
two Brocade switches, and default this feature is initially disabled for all ports on a switch. NOTE The in-flight encryption and compression features are supported for any port speed, but only on 16G-capable E_Ports and EX_Ports on the Brocade 6510 and 6520 switches and the Brocade Brocade switches - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 394
R_CTL = 0x4 are supported. For compression, only R_CTL = 0x1 is supported. Non FCP data frames 0x8) are not supported. NOTE No license number of ports supported for encryption support encryption or compression. ICL ports do not currently support encryption or compression. • Encryption is not supported - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 395
per ASIC limit = numbers above/two 2. For Brocade 6510, one ASIC; per ASIC limit = numbers above/one 3. For Brocade 6520, four edge ASICs; per ASIC limit = -enabled XISL involving a Base switch works correctly. Key Entry limitations The current encryption supports the AES-GCM authenticated encryption - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 396
values. At this time expiry keys are not supported. This means that the keys generated for a port details. Usage: portEncCompShow [slot/]port Example output switch:admin> portStatsShow 16/17 16 16 011000 id :33:13:71:3e "switch16 switch> portenccompshow User Encryption Compression Port - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 397
switch:admin> portcfgcompress --enable 2 Example Disabling the compression configuration on port 2 switch switch:admin> portcfgencrypt --enable 2 Example Disabling the encryption configuration for port 2 switch encryption enabled switch:admin> portshow 10/44 portIndex: 348 portName: - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 398
following points apply to authentication and Key generation on the supported devices: • The Diffie-Hellman - Challenge Handshake Authentication the event of encryption/compression port failures. For Brocade 6510 and 6520 switches, if the two ports are not configured for trunking Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 399
E_Ports and EX_Ports in the user-created logical switch, base switch, or default switch; and EX_Ports on base switches can support encryption and compression. You can configure encryption on occur during port initialization if authentication fails. Fabric OS Administrator's Guide 399 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 400
to enable authentication across a FC router and an edge fabric switch, you must first bring all EX_Ports online without using authentication. . The following topics provide step-by-step instructions for performing encryption and compression tasks: • Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 401
ASIC on the switch, follow these steps: 1. Connect to the switch and log in switches, use the switchShow command to determine the slot number of a specific user port. switch maximum number of ports on a device that can support the encryption and compression feature depends on the port speeds and - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 402
No 4G No 8G No 16G No 16G switch> portcfgspeed 1 0 Configuration for port (1) failed as it exceeds current supported capacity. Compression ratios and encryption/compression enabled ports and the tx values are before compression. 402 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 403
:admin> authutil --set -g 4 DH Group was set to 4. or alternatively: switch:admin> authutil --set -g "*" DH Group was set to 0,1,2,3,4. For additional information about establishing DH-CHAP secrets, see "Secret key pairs for DH-CHAP" on page 213. Fabric OS Administrator's Guide 403 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 404
1. Connect to the switch and log in using 21 on a Brocade 6510 switch: switch:admin> portcfgencrypt -- switch:admin> portcfgencrypt --enable 9/15 4. Enable the port with the portEnable command. After manually Connect to the switch and log in 21 on a Brocade 6510 switch: switch:admin> portcfgcompress - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 405
Connect to the switch and log in 21 on a Brocade 6510 switch: switch:admin> portcfgencrypt enterprise class platform: switch:admin> portcfgencrypt -- to the switch and log in on a Brocade 6510 switch: switch:admin> portcfgcompress an enterprise class platform: switch:admin> portcfgcompress --disable - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 406
port on a blade in an enterprise class platform named 'myDCX' to a port on a Brocade 6510 switch named 'myswitch'. Table 63 identifies each end of the ISL connection by device name, device compression • Disabling encryption • Disabling compression 406 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 407
Brocade 6510 named 'myswitch'. The same commands must also be entered on the peer switch Switch get the WWN of the peer switch. myswitch:admin> secauthsecret --set switch is configured to do DH-CHAP, it is performed whenever a port or a switch peer WWN, Domain, or switch name (Leave blank when done - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 408
myswitch:admin> authutil --show AUTH TYPE HASH TYPE GROUP TYPE dhchap md5 4 Switch Authentication Policy: ON Device Authentication Policy: OFF myswitch:admin> Enabling encryption Next, LOS TOV enable OFF NPIV capability ON QOS E_Port AE Port Auto Disable: OFF 408 Fabric - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 409
Port Credit Recovery F_Port Buffers Fault Delay: NPIV PP Limit: CSCTL mode: Frame Shooter Persistent Disable OFF LOS TOV enable OFF NPIV capability ON QOS E_Port AE Port Auto Port Mirror Port Credit Recovery F_Port Buffers Fault Delay: NPIV PP Limit: CSCTL mode: Frame Shooter Port D-Port - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 410
OFF RSCN Suppressed OFF Persistent Disable OFF LOS TOV enable OFF NPIV capability ON QOS E_Port AE Port Auto Disable: OFF Rate Limit EX Port Mirror Port Credit Recovery F_Port Buffers Fault Delay: NPIV PP Limit: CSCTL mode: Frame Shooter Port D-Port mode: Compression: - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 411
do not match at both ends. Example: If at one end there is a switch that does not support encryption/compression, the port will be disabled. • Encryption or compression configuration is of available ports has reached the bandwidth limitation. Fabric OS Administrator's Guide 411 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 412
Brocade 6510 named 'myswitch' as Fibre Channel Router (FCR) and an edge switch as 'edge'. Example Displaying port numbers on the FCR and Edge switches using the fcrEdgeShow command switch: secret key database myswitch:admin> secauthsecret --set 412 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 413
peer secret: Re-enter peer secret: Enter local secret: Re-enter local secret: Enter peer WWN, Domain, or switch name (Leave blank when done): Are you done? (yes, y, no, n): [no] y Saving data to OFF LOS TOV enable OFF NPIV capability ON Fabric OS Administrator's Guide 413 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 414
OFF RSCN Suppressed OFF Persistent Disable OFF LOS TOV enable OFF NPIV capability ON QOS Port AE Port Auto Disable: OFF Rate the 'edge' switch Use portCfgExPort EX_Port# on the remote FCR to learn the front phantom switch wwn value. 414 Fabric OS Administrator's Guide 53-1002745- - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 415
Principal Switch: : enabled OK core(N) Brocade Native 20 160 50: switch to use DH-CHAP protocol for authentication, setting the DH group to group 4, and activating switch Switch GROUP TYPE dhchap md5 4 Switch Authentication Policy: ON Device switch. Use portCfgExPort EX_Port# on that switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 416
switch is configured to do DH-CHAP, it is performed whenever a port or a switch peer WWN, Domain, or switch name (Leave blank when done local secret: Enter peer WWN, Domain, or switch name (Leave blank when done): Are you of the 'edge' switch As with the FCR switch ('myswitch') there are NPIV - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 417
E_Port OFF ISL R_RDY Mode OFF RSCN Suppressed OFF Persistent Disable OFF LOS TOV enable OFF NPIV capability ON QOS Port AE Port Auto Disable: OFF Rate Limit OFF EX Port OFF commands. See the following section for details. Fabric OS Administrator's Guide 417 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 418
parameters switch:admin> portcfgexport 47 Port 47 info Admin: enabled State: OK Pid format: core(N) Operate mode: Brocade Native Firmware downgrading is blocked if one or more EX_Ports has the Encryption/Compression feature enabled. 418 Fabric OS Administrator's Guide 53-1002745 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 419
services of the fabric. This chapter does not discuss the Access Gateway feature. For more information on the Access Gateway feature, refer to the Access Gateway Administrator's Guide. Each NPIV not blocked by the switch; rather, it is delivered to the device attached to the NPIV port. In cases - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 420
all platforms that do not have Virtual Fabrics enabled. When Virtual Fabrics is enabled on the Brocade DCX and DCX-4S, fixed addressing mode is used only on the default logical switch. The number of NPIV devices supported on shared area ports (48-port blades) is reduced to 64 from 128 when Virtual - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 421
Fabrics Logical switch type NPIV support DCX-4S Enabled Logical switch Yes, 255 virtual device limit.3 DCX-4S Enabled Base switch No. 1. Maximum limit support takes precedence if user-configured maximum limit is greater. This applies to shared areas on the FC4-48, FC8-48, and FC8-64 port - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 422
, 5450, 5460, 5470, and 5480 embedded switches, Brocade DCX and DCX 8510 Backbone families, and the FA4-18 blade, NPIV is enabled for every port. NOTE NPIV is a requirement for FCoE. The CEE/FCoE ports on the Brocade 8000 have NPIV enabled by default, but NPIV cannot be enabled or disabled on these - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 423
log in using an account assigned to the admin role. 2. Enter the portCfgShow command to view the switch ports information. The following example shows whether a port is configured for NPIV: switch:admin> portcfgshow Ports of Slot 0 0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 Speed AN AN AN AN AN - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 424
NPIV port configuration information switch:admin> portshow 2 portName: 02 portHealth: HEALTHY Authentication: None portDisableReason: None portCFlags: 0x1 portFlags: 0x24b03 PRESENT ACTIVE F_PORT G_PORT NPIV =3 scr=3 scr=3 d_id=FFFFFC d_id=FFFFFC 424 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 425
Supported switches and configurations for FA-PWWN 429 •Configuration upload and download considerations for FA-PWWN 430 •Firmware allows you to perform the following tasks: • Replace one server with another server, or replace failed HBAs or adapters within a server, without Guide 425 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 426
it must be using a Brocade HBA or adapter. Refer to the release notes for the HBA or adapter versions that support this feature. Some configuration of is created by default when you enable the feature without explicitly providing a virtual PWWN. Each switch port and Access Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 427
. • An FA-PWWN for an HBA device that is connected directly to an edge switch. These topologies are shown in Figure 51. Access Gateway Switch running FOS 7.0.0 F-Port N-Port Edge Switch running FOS 7.0.0 NPIV F-Port HBA Scenario 1 An FA-PWWN is configured for an HBA device connected to an - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 428
port -faa port_id --query Once the Brocade HBA has been assigned the FA-PWWN, the HBA retains This means you cannot unplug and plug the cable into a different port on the Access Gateway to the edge switch to which the device is connected. 2. Assign the FA-PWWN. • If you are manually assigning a WWN - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 429
is supported on the following platforms: • Switch platforms running Fabric OS v7.0.0 or later: - Brocade DCX, DCX-4S, and DCX 8510 family - Brocade 300 - Brocade 5100 - Brocade 5300 - Brocade 6505 - Brocade 6510 - Brocade 6520 - Brocade 7800 - Brocade VA-40FC Fabric OS Administrator's Guide 429 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 430
Brocade recommends you delete all FA-PWWNs from the switch with the configuration being replaced before you upload or download a modified configuration. This is to ensure no duplicate FA-PWWNs in the fabric. Firmware to a specific switch port. 430 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 431
the portswap command) - Cascaded Access Gateway topologies - FICON/FMS mode - With F_Port trunking on directly attached Brocade HBAs/adapters NOTE FA-PWWN is supported with F_Port trunking on the supported Access Gateway platforms. Access Gateway N_Port failover with FA-PWWN If an FA-PWWN F_Port on - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 432
16 Access Gateway N_Port failover with FA-PWWN 432 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 433
those resources. Admin Domains and Virtual Fabrics are mutually exclusive and are not supported at the same time on a switch. Do not confuse Admin Domains with zones: • Zones define which devices and degradation and unpredictable system behavior. Fabric OS Administrator's Guide 433 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 434
Admin Domain and has a range from 0 through 255. The domain ID identifies a switch in the fabric and has a range from 1 through 239. Figure 52 shows a 53, users can see all switches and E_Ports in the fabric, regardless of their Admin Domain; however, the switch ports and end devices are filtered - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 435
switch cable supported on the Brocade 8000. The Brocade 8000 can be in AD0 only. • The default zone mode setting must be set to No Access before you create Admin Domains (refer to "Setting the default zoning mode for Admin Domains" on page 443 for instructions Routing Service Guide 435 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 436
other administrators or users to each Admin Domain. The default admin account is the first physical fabric administrator. Only . • The implicit membership list contains all devices, switch ports, and switches that have not been assigned to any other Admin Domain Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 437
Admin Domain. AD0 is useful when you create Admin Domains because you can see which devices, switch ports, and switches are not yet assigned to any Admin Domains. AD0 owns the root zone database (legacy zone encompasses the entire physical fabric. Fabric OS Administrator's Guide 437 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 438
switch to a different Admin Domain (refer to "Switching to a different Admin Domain context" on page 456 for instructions). • For default accounts such as admin and user, the home Admin Domain defaults list for the default user account is AD0 only. 438 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 439
defaults respectively: switch:admin> switch:AD1:admin> switch:AD255:admin> can be devices, switch ports, or switches. Defining these member switch port to which the device is attached. • A device member provides a pure virtual view. The cabling and switch membership. • A switch port member allows you - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 440
list. NOTE If the switch domain ID changes, switch. • A switch member allows switch administrative operations such as disabling and enabling a switch, rebooting, and firmware downloads. • A switch member does not provide zoning rights for the switch switch WWNs. The switch WWN has the following - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 441
56 shows the filtered view of the fabric as seen from AD3 and AD4. The switch WWNs are converted to the NAA=5 syntax; the device WWNs and domain IDs remain the 10:00:00:00:c8:3a:fe:a2 FIGURE 56 Filtered fabric views showing converted switch WWNs Fabric OS Administrator's Guide 441 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 442
service for Fabric OS features and operate in mixed-release Fabric OS environments. High availability is supported with some backward compatibility. When an E_Port comes online, the adjacent switches merge their AD databases. The receiving switch switches in the fabric, replacing Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 443
default zoning mode to No Access. You must be in AD0 to change the default zoning mode. 1. Log in to the switch one member (switch, switch port, or switch default zone mode to No Access, if you have not already done so. Refer to "Setting the default zoning mode" on page 326 for instructions. 4. Switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 444
instructions. Example of creating Admin Domains The following example creates Admin Domain AD1, consisting of two switches, which are designated by domain ID and switch WWN. switch Domains as the home Admin Domain, which is the default Admin Domain context after login. • If you do Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 445
it. This example also assigns blue_ad1 as the user's home Admin Domain. switch:admin> userconfig --add ad1admin -r admin -h blue_ad1 -a "blue_ad1" The fabric administrator. switch:admin> userconfig --add pfa_admin1 -r admin -h 255 -a "0-255" Fabric OS Administrator's Guide 445 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 446
remaining list. Example of removing Admin Domain green_ad2 from the user account adm1 switch:admin> userconfig --deletead adm1 -a "green_ad2" Broadcast message from root (pts/0) Wed Jan 27 20:57:14 2010... Security Policy, Password or Account Attribute Change: adm1 will be logged out Ads for account - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 447
switch and log in cfgdisable 3. Switch to the switch switch:AD255:admin> Adding members to an existing Admin Domain 1. Connect to the switch and log in using an account with admin permissions. 2. Switch switch port members and the -s option to specify switch list of switch WWNs or - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 448
and log in using an account with admin permissions. 2. Switch to the AD255 context, if you are not already in that context. ad --select 255 3. Enter the ad --rename command with the present name and the new name. ad --rename present_name new_name 448 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 449
Admin Domain Eng_AD to Eng_AD2 switch:AD255:admin> ad --rename to the switch and log in using an account with admin permissions. 2. Switch to the nonvolatile memory, enter cfgsave. 4. Switch to the AD255 context. ad . Example of deleting Admin Domain AD_B3 switch:AD255:admin> ad --delete AD_B3 You - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 450
fabric resources (switches, ports, and instructions. 2. Connect to the switch and log in using an account with admin permissions. 3. Switch definitions to the fabric. Example switch:AD255:admin> ad --clear no, n): [no] y switch:AD255:admin> Deleting all user 1. Connect to the switch and log in using - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 451
cfgadd "cfgName", "member[;member]" 5. Enable the configuration to complete the transaction. cfgenable cfgName 6. Switch to the AD255 context. ad --select 255 7. Explicitly add devices that are present in the device WWN2 is in both AD0 and AD1. Fabric OS Administrator's Guide 451 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 452
:02:00:00:00 Zone CFG Info for AD_ID: 1 (AD Name: AD1, State: Active) : Defined configuration: cfg: AD1_cfg AD1_BlueZone zone: AD1_BlueZone 452 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 453
configuration. This action will replace the old zoning configuration with saved AD configuration. This action will trigger AD apply to all switches in the fabric Do you want to apply all admin domains ( trigger AD apply to all switches in the fabric Do you want to apply all admin domains (yes, - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 454
switch switches and their devices. 1. Connect to the switch and log in using an account with admin permissions. 2. Switch transaction buffer switch:AD255:admin> Name: ad2 State: Active Switch port members: 1,1; 1,3; looks like a virtual switch or fabric to a Any devices and switch ports that are not - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 455
to the switch and log in. 2. Enter the ad --exec command, specifying the Admin Domain and the command you want to execute. ad --exec ad_id "command" Example of executing the switchShow command in the AD7 context switch:AD255:admin> ad --exec 7 "switchshow" Fabric OS Administrator's Guide 455 53 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 456
and switch list members are categorized into implicit and explicit member lists. 1. Connect to the switch and AD1 switch:AD1:admin :be:99:01; Switching to a different Admin Domain context You can switch between different Admin Domain fails. 1. Connect to the switch and log in as any user type. - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 457
download Refer to "Configuration upload and download in an AD context" on page 460 for details. Fabric Watch Fabric Watch configuration operations are allowed only if the local switch is part of the current Admin Domain. FC-FC Routing Service LSAN zone. To support legacy applications, WWNs are - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 458
hosts. Virtual Fabrics Virtual Fabrics and Admin Domains are mutually exclusive and are not supported at the same time on a switch. To use Admin Domains, you must first disable Virtual Fabrics; to use Virtual are present in that Admin Domain. 458 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 459
current Admin Domain. Refer to "Validating a zone" on page 323 for instructions on using the zone --validate command. NOTE AD zone databases do not have members are added to AD0), AD0 supports both All Access and No Access default zone modes. Admin Domains and LSAN zones Guide 459 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 460
Device discovery problems might occur download switch is a member of the Admin Domain, all switch download these sections. Refer to Chapter 8, "Maintaining the Switch Configuration File," for additional information about uploading and downloading switch membership No No Yes3 No Yes Without switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 461
Licensed Features Section II This section describes optionally licensed Brocade Fabric OS features and includes the following chapters: • Chapter 18, "Administering Licensing" • Chapter 19 " • Chapter 24, "Using FC-FC Routing to Connect Fabrics" Fabric OS Administrator's Guide 461 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 462
462 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 463
In this chapter •Licensing overview 463 •Brocade 7800 Upgrade license 470 •ICL licensing downgrade Fabric OS. Fabric OS includes basic switch and fabric support software, and support for optionally licensed software that is enabled a switch. Fabric OS Administrator's Guide 463 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 464
Supports up to eight FCIP tunnels instead of two. • Supports advanced capabilities such as tape read/write pipelining. NOTE: The Brocade 7800 switch The Brocade 6520 default on the Brocade and failover resiliency. - Support for up to 4 Brocade 7800 switch, and the Brocade DCX and DCX-4S and the Brocade - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 465
that support Access Gateway deployment. Brocade Ports Brocade 8G and 16G FC platforms. NOTE: This license is enabled by default on all 16G FC platforms, and on DCX and DCX-4S platforms that are running Fabric OS v7.0.0 or later. This license is not included by default on 8G FC fixed port switches - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 466
Enables host-control of switches in mainframe environments. (Also known as Control Unit Port or "CUP") High Performance Extension over FCIP/FC Includes the IPsec capabilities. (formerly known as "FC-IP Services") ICL 8-Link Activates all eight links on ICL ports on a Brocade DCX-4S chassis or - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 467
infrastructure. This license is not supported on the Brocade 8000. NOTE: The Brocade 6520 does not require an SAO default and you should not remove them. Brocade Network Advisor No license required for base use. Local switch. Brocade 8000 only. See also the Brocade Network Advisor User Manual - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 468
Tunnel FICON XRC Sequence Emulation over an FCIP Tunnel FIPS Firmware download Full fabric connectivity In-flight encryption and compression Inband Management FICON Acceleration license on Brocade 7800 Local switch. Local and attached switches. Local and attached switches. No license required. - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 469
switch No license required. N/A Long distance Extended Fabrics Local and attached switches. NOTE: License is needed on both sides of connection. NPIV Local switch. Local switch. QoS Adaptive Networking with QoS Local switch and attached switches. (Brocade 6520 's Guide 469 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 470
(Continued) License Where license should be installed Speed 8 Gbps license needed to support 8 Gbps on the Brocade 300, 5100, 5300, and VA-40FC switches and embedded switches only. NOTE: The 8 Gbps license is installed by default, and you should not remove it. A 10-Gb FCIP/Fibre Channel license - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 471
between a Brocade DCX 8510-8 and a DCX 8510-4, as the latter supports half the Brocade DCX 8510-8 platform must have the ICL 2nd POD license installed to enable the full number of ICL connections possible. This license is available for the Brocade DCX 8510-8 only. Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 472
a Brocade DCX and a DCX-4S, as the latter cannot support more than eight links on an ICL port. This license is available on the Brocade DCX- ICLs depends only on the physical chassis and not on the logical switches. • If the maximum number of ICL-connected chassis exceeds the Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 473
of supported chassis by default and Brocade 300, 5100, 5300, and VA-40FC switches and the 8 Gbps embedded switches; this license does not apply to the Brocade switch is rebooted. The switch ports return to their pre-licensed state maximum speed of 4 Gbps. Fabric OS Administrator's Guide 473 53- - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 474
Brocade DCX and DCX 8510 Backbone families to support the FX8-24 blade, and on the Brocade DCX 8510 Backbone family to support manually assigned, the assignment will remain until you manually slot-based license is present on the switch, firmware downgrade to pre-Fabric OS v6.3.0 Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 475
access on the 16 Gbps FC ports on Brocade 6510 or 6520 switches, and FC16-32 and FC16-48 port blades manually, as for any slot-based license. Automatic assignment is done sequentially by slot number, beginning with the lowest numbered slot with an enabled blade that supports Guide 475 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 476
licensed and configured to operate at 10 Gbps on a Brocade 6510 or 6520 switch or 16 Gbps FC port blade cannot interoperate with 10 set the combination speed for the first port octet to a setting that supports 10 Gbps operations. Valid settings for 10 Gbps operations include: • Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 477
a Brocade 6510 switch and enables 10 Gbps operation on port 2. 6510-switch:admin> licenseadd aTFPNFXGLmABANMGtT4LfSBJSDLWTYD3EFrr4WGAEMBA 6510-switch:admin> > licenseadd aTFPNFXGLmABANMGtT4LfSBJSDLWTYD3EFrr4WGAEMBA 8510-4switch:admin> licenseshow Fabric OS Administrator's Guide 477 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 478
on a per-switch basis. • A universal temporary license can be installed on a switch, but can be applied to multiple switches. The following licenses -based) • Adaptive Networking with QoS license (not required for Brocade 6520) • Advanced Performance Monitoring license • Enterprise ICL license • - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 479
use the same slot assignments, then replacing the temporary license with a permanent switches or Backbones, then do not attempt to change the system date and time when a temporary license is installed. Configupload and download considerations The configDownload and configUpload commands download - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 480
. An expired license may become unusable after a reboot, failover, firmware download, or a port or switch disable or enable operation. Removing an expired license CAUTION This procedure is licensed feature can no longer be used on the switch. 480 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 481
instructions. Adding a licensed feature To enable a feature, go to the feature's appropriate section in this manual. Enabling a feature on a switch may be a separate task from adding the license. For the Brocade one CP blade at a time, or replace a single CP blade, then the Guide 481 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 482
license 2 Domain Fabric license Integrated Routing license Storage Application Services license FICON Tape license FICON XRC license Adaptive Networking is disabled when the switch is rebooted or when a switch disable and enable is performed. 482 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 483
For example, if you bought a POD license for a Brocade 300, you cannot use that license on a Brocade 5100 or VA-40FC. The licenses are based on the switch License Identifiers and are not interchangeable. Table 72 shows the ports that are enabled by default and the ports that can be enabled after you - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 484
from your switch vendor. You may need to generate a license key from a transaction key supplied with your purchase. If so, launch an Internet browser and go to the Brocade website at http://www.brocade.com. Click Products > Software Products > Software License Keys and follow the instructions to - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 485
or switch installation. The following platforms support Dynamic POD: • Switches: - Brocade 6505 - Brocade 6510 - Brocade 6520 • Embedded switch modules for bladed servers: - Brocade 5410 - Brocade 5424 - Brocade 5450 - Brocade 5460 - Brocade 5470 - Brocade 5480 Fabric OS Administrator's Guide 485 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 486
blade switches, If the switch detects more manually assigned POD licenses switch:admin> licenseport --show 24 ports are available in this switch switch: 12 port assignments are provisioned by the base switch switch is in the static POD mode, then activating the Dynamic POD will switch switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 487
by a full POD license 24 ports are assigned to installed licenses: 12 ports are assigned to the base switch license 12 ports are assigned to the full POD license Ports assigned to the base switch license: 1, 2, 3, 4, 5, 6, 7, 8, 17, 18, 19, 20 Fabric OS Administrator's Guide 487 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 488
reserve a license for the port. switch:admin> licenseport -reserve 0 • If all port reservations are assigned, select a port to release its POD license. Follow the instructions in "Releasing a port from a disable the port and release the license. 488 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 489
to the POD set, the port is licensed until it is manually removed from the POD port set. When a port is 20 6. Enter the switchEnable command to bring the switch back online. 7. Enter the switchShow command to verify the switch state is now online. Fabric OS Administrator's Guide 489 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 490
18 Ports on Demand 490 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 491
Brocade DCX 8510 Backbone family supports optical ICL QSFPs. • The Brocade DCX Backbone family supports proprietary copper ICL connectors. When two Brocade Backbones are interconnected by ICLs, each chassis requires a unique domain and is managed as a separate switch on the switch for and cables is - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 492
. Refer to the specific hardware reference manuals for additional information about LED status meanings and ICL connections, including instructions on how to cable ICLs. ICLs for the Brocade DCX 8510 Backbone family Each ICL connects the core blades of two Brocade DCX 8510 chassis and provides up to - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 493
100-meter-capable QSFPs over OM4 cable only. NOTE QSFP ICLs and ISLs in the same switch and connected to the same neighboring switch are not supported. This is a topology restriction with 16 Gbps ICLs and any ISLs that are E_Ports or VE_Ports. ICL trunking on the Brocade DCX 8510-8 and DCX 8510 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 494
the Brocade DCX-4S, each ICL is managed as one 8-port ISL trunk. Follow the guidelines in the specific hardware reference manuals for connecting the ICL cables. Virtual Fabrics considerations for ICLs In Virtual Fabrics, the ICL ports can be split across the logical switch, base switch, and default - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 495
form is the full nine-mesh topology shown in Figure 62. This topology is supported by DCX 8510-8 Backbones only. (You can use DCX 8510-4 Backbones for a five-mesh topology.) FIGURE 61 ICL triangular topology with Brocade DCX 8510-8 chassis Fabric OS Administrator's Guide 495 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 496
Supported or greater than the ICL path between the two switches. Core-edge topology You can also connect the Brocade DCX 8510 Backbones in a core-edge topology. For cables. The cabling scheme should follow the parallel example shown in Figure 59. 496 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 497
Supported topologies for ICL connections 19 FIGURE 63 64 Gbps ICL core-edge topology Fabric OS Administrator's Guide 497 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 498
19 Supported topologies for ICL connections 498 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 499
Web Tools and Brocade Network Advisor. Refer to the Web Tools Administrator's Guide and Brocade Network Advisor User Manual for information about this chapter use the slot/port syntax required by Backbones. For fixed-port switches, use only the port number where needed in the commands. Types of - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 500
4 Brocade 5100 3 3 Brocade VA-40FC Brocade 5300 4 3 Each logical switch can have its own set of performance monitors. The installation of monitors is restricted to the ports that are present in the respective logical switch. • Top Talker monitors and EE monitors are supported on the default - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 501
supported on these switches. EE monitors must be installed on F_Ports. Frame monitors can be installed on F_Ports or N_Ports. Refer to the Access Gateway Administrator's Guide maximum number of end-to-end monitors supported varies depending on the switch model: • The Brocade DCX 8510, 6505, 6510, and - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 502
on the switch model, on E_Ports. The following platforms support EE monitors on E_Ports: • Brocade 6505 • Brocade 6510 • Brocade 6520 • Brocade DCX 8510 monitor to the F_Port, as follows: switch:admin> perfaddeemonitor 2/2 "0x011200" "0x021e00" 502 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 503
: switch:admin default default EE mask value is ff:ff:ff. NOTE Only one mask per port can be set. When you set a mask, all existing end-to-end monitors are deleted. ATTENTION End-to-end masks are supported only on the Brocade 8000 and the Brocade Encryption Switch. 1. Connect to the switch switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 504
to-end monitors Deleting EE monitors 1. Connect to the switch and log in using an account with admin permissions. and deletes monitor number 2 on port 0: switch:admin> perfmonitorshow --class EE 0 There are .7.179 switch:admin> 1. Connect to the switch and log in using an account with - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 505
4.5m 53m 4.5m 53m 4.5m 53m 4.5m 53m 0 Example of displaying EE monitors on a port switch:admin> perfMonitorShow --class EE 4/5 There are 7 end-to-end monitor(s) defined on port 53. KEY command description in the Fabric OS Command Reference. Fabric OS Administrator's Guide 505 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 506
. Refer to the Fabric Watch Administrator's Guide for more information about using Fabric Watch. Brocade Encryption Switch 1. For switches in Access Gateway mode, the maximum number of offsets per port is 7. 2. For switches in are not supported on logical ISLs (LISLs), but are supported on ISLs - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 507
the custom values, use the thconfig --apply command. Refer to the Fabric Watch Administrator's Guide for more information about using this command. Example of creating a user-defined frame type switch:admin> fmmonitor --create myframemonitor -pat "17,0xFF,0x07;7,0x4F,0x01;" -action email Example of - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 508
to the switch and log in switch:admin> fmmonitor --addmonitor SCSI -port 3-12 Removing frame monitors from a port 1. Connect to the switch switch switch switch:admin> fmmonitor --addmonitor SCSI -port 3-12 -nosave switch:admin> fmmonitor --save SCSI Displaying frame monitors 1. Connect to the switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 509
55 000005| 48.6k (output truncated) Clearing frame monitor counters 1. Connect to the switch and log in using an account with admin permissions. 2. Enter the fmMonitor --clear command 7 through 10. switch:admin> fmmonitor --clear ABTS -port 7-10 Fabric OS Administrator's Guide 509 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 510
most bandwidth and can then configure them with certain Quality of Service (QoS) attributes so they get proper priority. Refer to switch model, on E_Ports. The following platforms support Top Talker monitors on E_Ports: - Brocade 6505 - Brocade 6510 - Brocade 6520 - Brocade Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 511
the same logical switch. Admin Domain considerations: Top Talker monitors are always installed in AD255. NPIV considerations: Top Talker monitors take NPIV devices into consideration when calculating the top talking flows. Top Talker monitors are not supported on the embedded platforms: Brocade 5410 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 512
port. • Top Talker monitors can monitor only 10,000 flows at a time. • Top Talker monitors are not supported on VE_Ports, EX_Ports, and VEX_Ports. • The maximum number of all port mode Top Talker monitors on an ASIC is egress port, but not both. 512 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 513
switch all switches in to the switch and log switch switches, the command succeeds; however, on the remote switches, fabric mode fails and a raslog message is displayed on those switches. If a new switch switch. Displaying the top n bandwidth-using flows on a port (port mode) 1. Connect to the switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 514
flows on for domain 1 in WWN (default) format: perfttmon --show dom 1 5 The following example display the top flows on domain 2 in PID format: switch:admin> perfttmon --show dom 2 pid on slot 2, port 4 on a Backbone: perfttmon --delete 2/4 514 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 515
are supported for ISLs only on the Brocade 6505 Brocade 300, which supports 8 frame monitors for trunks. • For the Brocade 8000, trunk monitoring is supported only on the FC ports and not on the CEE ports. Saving and restoring monitor configurations To prevent the switch monitors per switch is limited - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 516
use the perfCfgSave command. switch:admin> perfcfgsave This will switch is rebooted. Using the Brocade Network Advisor Enterprise Edition, you can store performance data persistently. For details on this feature, refer to the Brocade Network Advisor User Manual. 516 Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 517
source ports (F_Ports). Traffic Isolation Zoning does not require a license. See Chapter 12, "Traffic Isolation Zoning," for more information about this feature. Fabric OS Administrator's Guide 517 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 518
from a particular device to the switch port. Ingress Rate Limiting requires an about this feature. • Quality of Service (QoS) SID/DID Traffic Prioritization Brocade 6520 does not require licenses for the Ingress Rate Limiting and QoS SID/DID features. They are enabled by default Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 519
enabled, the rate limit configuration on a port is on a per-logical switch basis. That is, if a port is configured to have a certain as having a high, medium, or low priority. Fabric OS supports two types of prioritization: • Class Specific Control (CS_CTL)-based 's Guide 519 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 520
every switch that is in the path between a configured device pair. NOTE The Brocade default. When you install the Adaptive Networking license, QoS zone-based traffic prioritization is automatically enabled on the E_Ports, except for long-distance E_Ports. For long-distance E_Ports, you must manually - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 521
hosts) and then honored by the switch, which assigns the frame, based default to ensure backward compatibility in CS_CTL default mode CS_CTL Supported configurations for CS_CTL-based frame prioritization • CS_CTL-based frame prioritization is supported on all 8-Gbps and 16-Gbps platforms. • All switches - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 522
the chassis-wide default mode (see Table 77 on page 521), as in the following example. switch:admin> configurechassis Configure... cfgload attributes (yes, y, no, n): [no] y Enforce secure config Upload/Download (yes, y, no, n): [no] Enforce signature validation for firmware (yes, y, no, n): [no - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 523
choice results in the default mode. 2. In either case, ensure that the switch port connected to the initiator host and the switch port connected to the target you have not manually disabled QoS, as the ports in the trunk group are set to QoS enabled by default. Adding the Guide 523 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 524
524. Manually disabling QoS on trunked ports NOTE QoS is disabled by default on long-distance 8-Gbps and 16-Gbps ports. The following procedure does not apply to these ports. 1. Connect to the switch and log 30 B5300 sp: 8.000G bw: 16.000G TRUNK 524 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 525
LOS TOV enable NPIV capability ON ON ON ON ON ON ON ON ON ON ON ON ON ON ON ON NPIV PP Limit 126 mode where AE:QoSAutoEnable, AN:AutoNegotiate, ..:OFF, NA:NotApplicable, ??:INVALID, switch:admin> portcfgqos --disable 19 QoS zones You assign high or low priority Guide 525 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 526
21 QoS zones The switch automatically sets the priority for the S3 and between H2 and S3 is low priority. • All other traffic is medium priority, which is the default. H1 Domain 1 Domain 3 S1 1 9 H2 14 3 13 12 S2 15 = Low priority 87 526 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 527
from the hosts to domain 3, but would switch to the default (medium) priority from domain 3 to the target ," for information about FC routers, phantom switches, and the FC-FC Routing Service. To establish QoS over FC routers, you instructions. Fabric OS Administrator's Guide 527 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 528
supported on all platforms. - Backbone-to-edge fabric configuration: supported on 16-Gbps-capable platforms only (Brocade 6510, 6520, and Brocade is supported on both EX_Ports and VEX_Ports. • The EX_Ports (or VEX_Ports) in the path between the QoS devices must be on switches Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 529
Base switch Domain 9 17 Chassis 2 Supported configurations firmware version earlier than Fabric OS v6.0.0, the frames are dropped. • By default, all devices are assigned medium priority. - To be assigned high or low priority, hosts and targets must be connected to a Brocade 8-Gbps or 16-Gbps switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 530
Guide for information about redirection zones. • Traffic prioritization is not supported are not supported for QoS over FCR. • QoS zones that use D,I notation should not be used for loop or NPIV ports. • zone-based traffic prioritization 1. Connect to the switch and log in using an account with admin - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 531
QoS priority traffic. NOTE QoS is enabled by default on all ports (except long-distance ports). re-enabled, merging new switches into the fabric is not enable a new zoning configuration. This action will replace the old zoning configuration with the current configuration Guide 531 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 532
FC routers 1. Connect to the switch in the edge fabric and log page 530 for instructions. 3. Create LSAN zones in the edge fabric. with the LSAN" on page 591 for instructions. 4. Enter the portCfgQos command to enable based traffic prioritization 1. Connect to the switch and log in using an account with - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 533
Supported configurations for trunking 535 •Supported platforms for trunking 536 •Requirements for trunk groups 536 •Recommendations for trunk groups 537 •Configuring trunk groups 538 •Enabling trunking on a port or switch and must be installed on each switch that participates in trunking. For - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 534
switch). For more information, see "Configuring F_Port trunking for a Brocade adapter" on page 545, the Access Gateway Administrator's Guide, and the Brocade Adapters Administrators Guide and then come back online. Masterless trunking is supported for most platforms and trunking types: • All F_Port - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 535
the hardware reference manual for your switch for information about which ports can be used in the same port group for trunking. FIGURE 71 Trunk group configuration for the Brocade 5100 Supported configurations for trunking front of the product. Fabric OS Administrator's Guide 535 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 536
. • Trunk groups must be between Brocade switches (or Brocade adapters, in the case of F_Port trunking). Brocade trunking is proprietary and is not supported on M-EOS or third-party switches. • There must be a direct connection between participating switches. • Trunking cannot be done if ports - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 537
group to form. • Determine the optimal number of trunk groups between each set of linked switches, depending on traffic patterns and port availability. The goal is to avoid traffic congestion without failures do not disrupt business operations. Fabric OS Administrator's Guide 537 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 538
F_Port trunking for a Brocade adapter" on page 545 for information. Enabling trunking on a port or switch You can enable trunking for a single port or for an entire switch. Because trunking is to remove the TA before disabling trunking. 538 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 539
in a switch. Use the portPerfShow command to monitor problem areas where there are congested paths or dropped links, to determine whether you need to adjust the fabric design by adding, removing, or reconfiguring ISLs and trunking groups. For additional information on using the Brocade - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 540
setting it to autonegotiate. In addition to the criteria listed in "Supported configurations for trunking" on page 535, observe the following criteria for trunking over extended fabrics: • It is supported only on switches running Fabric OS v6.1.0 and later. • Extended Fabrics and Trunking licenses - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 541
8-port trunks) LD 200 km 4 (one 2-port trunk per switch) 0 LD 250 km 4 (one 2-port trunk per switch) 0 LD 500 km 0 0 LS Static See note below NOTE The L0 mode supports up to 5 km at 2 Gbps, up to 2 km about EX_Ports and the FC router. Fabric OS Administrator's Guide 541 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 542
and all previously supported Brocade switches in the backbone fabric or Brocade edge fabric. Configuring EX_Port trunking With EX_Port trunking, you use the same CLI commands as you do for E_Port trunking. See "Configuring trunk groups" on page 538 for instructions. Displaying EX_Port trunking - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 543
Likewise, after you remove a TA from a port, the port immediately acquires the default area as its PID. F_Port trunking prevents reassignments of the Port ID (also referred on the switch. See the Access Gateway Administrator's Guide and the Brocade Adapters Administrator's Guide for information - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 544
73 Switch in Access Gateway mode with F_Port masterless trunking NOTE You do not need to map the host to the master port manually, because the Access Gateway will perform a cold failover to the master port. See "Configuring F_Port trunking for an Access Gateway" on page 544 for instructions on - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 545
HBAs. This section describes the configuration steps you do on the switch. See the Brocade Adapters Administrator's Guide for a detailed description and requirements of N_Port trunking on the adapters. 1. On the switch side, perform the following steps: a. Configure both ports for trunking by - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 546
3/41. 2. On the host side, enable trunking as described in the Brocade Adapters Administrator's Guide. 3. On the switch side, enable the ports by using the portEnable command. switch:admin> portenable 3/40 switch:admin> portenable 3/41 F_Port trunking considerations Table 80 describes the F_Port - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 547
Default firmware NPIV Supported on F_Port master trunk. PID format F_Port trunking is supported only in the CORE PID format. Port mirroring Port mirroring is not supported on Trunk Area ports or on the PID of an F_Port trunk port. Port mirroring is not supported on the Brocade Encryption Switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 548
for the Brocade DCX and DCX 8510-8. Fabric OS uses a 10-bit addressing model, which is the default mode for all dynamically created logical switches in 0-447 are reserved for assigning to NPIV/Loop ports to support 112 (448/4) NPIV/Loop ports in a logical switch with 256 devices each. The following - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 549
Displaying F_Port trunking information 22 • If F_Port trunking is enabled on some ports in the default switch, and you disable Virtual Fabrics, all of the F_Port trunking information is lost. • in the trunk group are specified to be unassigned. Fabric OS Administrator's Guide 549 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 550
22 Enabling the DCC policy on a trunk area switch:admin> portdisable 0-2 switch:admin> porttrunkarea --disable 0-2 Trunk index 2 disabled a DCC security policy violation. You can configure authentication on all Brocade trunking configurations. For more information on authentication, see Chapter 7, - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 551
switch handles local interconnectivity and multiplexes traffic across long-distance dark fiber or wave division multiplexing (WDM) links, while the Brocade Extended Fabrics software enables SAN management over long distances. Brocade . Fabric OS Administrator's Guide 551 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 552
Brocade 8000 FCoE switch Extended Fabrics is not supported on this platform. • FC8-64 port blade Brocade recommends that you do not use the FC8 across switch reboots and power cycles. This command supports the following long-distance link modes: • Normal Mode (LO) - L0 is the normal (default) mode - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 553
trunking concepts and configurations, refer to Chapter 22, "Managing Trunking Connections". • Only qualified Brocade SFPs are used. Only Brocade-branded or certain Brocade-qualified SFPs are supported. 1. Connect to the switch and log in using an account assigned to the admin role. 2. Enter the - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 554
example configures slot 1, port 2 to support a 100-km link in LS mode and an 8-Gbps platform. switch:admin> portcfgfillword 1/2 3 switch:admin> portcfglongdistance 1/2 LS on port speed. switch:admin> portshow 1/2 portName devices and your Brocade switch has QoS and buffer credit recovery enabled - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 555
to perform a link reset. switch:admin> portcfgcreditrecovery --disable [slot/]port 4. Configure the port to support long-distance links. switch:admin> portcfglongdistance [slot/]port,LS , each side may have a different number of buffer credits. Fabric OS Administrator's Guide 555 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 556
buffer credits are used by Class 2 and Class 3 services and rely on the Fibre Channel Receiver-Ready (R_RDY) at the other end. As the distance between switches and the link speed increases, additional buffer credits available to a group of ports on a switch. The buffer credit can be changed for specific - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 557
follow for calculating how many ports can be configured for long distance on all Fabric OS v7.x-capable switch modules: • Each port is part of a port group that includes a pool of buffer credits . Table 82 describes Fibre Channel data frames. Fabric OS Administrator's Guide 557 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 558
Table 84 on page 564 to get the total ports in a switch or blade, the number of user ports in a port group, The values reflect an estimate, and may differ from the supported values in Table 84. Calculating the number of buffers required 6 + 14 558 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 559
(50 km * 16 Gbps / 2) + 6 = 406 buffers Example Consider the Brocade 300, which has a single 24-port port group and a total of 676 buffer distance supported: Maximum Distance X (in km) = (BufferCredits + 6) * 2 / LinkSpeed 498 km = (492 + 6 buffers for Fabric Services) * Guide 559 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 560
the data size entered, regardless of the distance. If buffer credit recovery is enabled, Fabric OS supports a BB_SC_N range of 1 to 15; therefore, it is impossible for the desired_distance value to be desired_distance are permitted by Fabric OS. 560 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 561
size of 2048. The -frameSize option value is persistent across reboots and HA failover. Example switch:admin> portcfglongdistance 2/35 LS 1 -distance 100 -framesize 1024 Calculating the number of buffers when using the portCfgLongDistance command. Fabric OS Administrator's Guide 561 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 562
switch default default buffer allocation, use the --disable option switch :admin> portcfgfportbuffers --disable 2/44 NOTE The configured number of buffers for a given port is stored in the configuration database and is persistent across reboots. The F_Port buffer feature does not support switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 563
24 24 484 6505 24 24 7952 6510 48 48 7760 6520 96 48 4256 7800 16 16 408 8000 *** Extended Fabrics is not supported on this switch *** VA-40FC 40 40 1692 Brocade Encryption Switch 32 16 1392 FC8-16 16 16 1292/508 Fabric OS Administrator's Guide 563 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 564
4064 2032 1016 812 508 7800 410 205 102 N/A N/A 8000 *** Extended Fabrics is not supported on this switch *** VA-40FC 1694 847 423 N/A N/A Brocade Encryption Switch 1392 696 348 N/A N/A FC8-16 1294 647 323 N/A N/A 564 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 565
at speed X by n. For example, for three ports running at 2 Gbps on a Brocade 300 switch, the maximum equally distributed distance is calculated as 486 / 3 = 164 km. Downgrade considerations When Fabric OS firmware is downgraded from version 7.1 to an earlier version, the effect depends on whether - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 566
(VC_RDY) • Extended VC (EXT_VC_RDY) Buffer credit recovery over an F_Port Buffer credit recovery for F_Ports is supported for F_Port-to-N_Port links between a Brocade switch and Access Gateway, between a Brocade switch and an adapter, and between an Access Gateway and an adapter. For an F_Port on - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 567
Brocade switch or Access Gateway must run Fabric OS v7.1 or later. • Fabric OS must support buffer credit recovery at both ends of the link. • The adapter must be running HBA v3.2 firmware is not supported for EX_Ports when and blades that support 16 Gbps and the switch and switch the switch and log - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 568
switch:admin> portcfgcreditrecovery 1/20 -enable Forward error correction on long-distance links Forward error correction (FEC) on user ports is supported Connect to the switch and log in . Example switch:admin> speed. switch:admin> to the switch and log . Example switch:admin> . switch:admin - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 569
problems, such as change management, network management, scalability, reliability, availability, and serviceability, supports connectivity between the following types of fabrics: • Fabric OS and Fabric OS • Fabric OS and Brocade Network OS • Fabric OS and M-EOS Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 570
is supported on the following platforms: • Brocade DCX and DCX 8510 Backbone families: - 8-Gbps port blades (FC8-16, FC8-32, FC8-32E, FC8-48, FC8-48E, FC8-64) - 16-Gbps port blades (FC16-32, FC16-48) - FX8-24 DCX Extension Blade • Brocade 5100 switch • Brocade 5300 switch • Brocade 6510 switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 571
platforms for FC-FC routing" on page 570 support FC-FC routing to a Brocade Network OS fabric, except for the Brocade Encryption Switch. • VEX_Ports do not support Network OS connectivity. • FCoE devices connected to a Brocade 8000 switch or FCOE10-24 blade cannot communicate with FCoE devices - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 572
: • Fibre Channel router (FC router) A switch running the FC-FC routing service. Refer to "Supported platforms for FC-FC routing" on page 570 for a Brocade DCX with inter-fabric links. Host Edge fabric 1 E_Port Target Edge fabric 2 E_Port Target Edge fabric 3 E_Port Fibre Channel switch IFL IFL - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 573
is assigned a valid port ID. The port ID is relevant only on the fabric in which the proxy device has been created. Fabric OS Administrator's Guide 573 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 574
shows a metaSAN consisting of a host in Edge SAN 1 connected to storage in Edge SAN 2 through a backbone fabric connecting two FC routers. 574 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 575
to which they are attached and, correspondingly, imported into the edge SAN reached through Fibre Channel routing. Figure 77 illustrates this concept. Fabric OS Administrator's Guide 575 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 576
to contact the shared physical devices in the edge. The FC-FC routing service receives the frames from the backbone switches destined to the proxy devices, and redirects the frames to the actual physical " on page 590 for more information. 576 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 577
Fabric 4 because there are no LSAN devices in Fabric 4. • Target 1', Target 2', and Target 3' are proxy devices for Target 1, Target 2, and Target 3, respectively. Fabric OS Administrator's Guide 577 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 578
edge fabric use the same xlate domain ID for an imported edge fabric; this value persists across switch reboots and fabric reconfigurations. If you lose connectivity to the edge fabric because of link failures for more details about this command. 578 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 579
stalexd 12 2 Xlate domain 2 is deleted FCR authentication A Brocade Fabric OS router (FCR) is capable of forming a secure link NOTE Changing the switch auth policy mode does not affect online EX_Port, so it is acceptable to leave the default Passive policy configured 's Guide 579 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 580
you want to change from the default settings. (Refer to "FC options for Brocade Backbones. Verifying switch:admin> slotshow -m Slot Blade Type ID Model Name Status 1 SW BLADE 37 FC8-16 ENABLED 2 SW BLADE 37 FC8-16 ENABLED 3 SW BLADE 37 FC8-16 ENABLED 4 SW BLADE 39 FC8 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 581
" on page 515 for instructions. FC-FC routing and fabric mode Top Talker monitors are not concurrently supported on 8-Gbps platforms. FC-FC routing and fabric mode Top Talker monitors are concurrently supported only on the Brocade 6510 and 6520 switches, and on the Brocade DCX Backbone family with - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 582
the switch or Backbone. 2. Enter the switchDisable command if EX_Ports are online. 3. Enter the fosConfig --disable fcr command to disable the FC-FC routing service. The default state and does not apply to Brocade Network OS or M-EOS fabrics. 582 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 583
Administrator's Guide for instructions on the port prior to inserting the cable. If you are configuring an to the Fabric OS switch) by issuing the portDisable command. switch:admin> portdisable 7/10 the default IDs for backbone connections). • Configure an EX_Port to connect to a Brocade Network - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 584
Brocade 7800 switches and FX8-24 blades are configured as persistently disabled by default, to avoid inadvertent fabric merges when installing a new FC router. switch: OFF NPIV capability ON EX Port ON Mirror Port ON FC Fastwrite ON 584 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 585
the portCfgEXPort or portShow command to verify that each port is configured correctly. switch:admin> portcfgexport 7/10 Port 7/10 info Admin: enabled State: NOT OK Pid format: Not Applicable Operate mode: Brocade Native Edge Fabric ID: 30 Preferred Domain ID: 160 Front WWN: 50:06 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 586
command displays the static IPv6 addresses for each FC router and each edge fabric switch connected to the EX_Ports. switch:admin> fcrfabricshow FCR WWN: 10:00:00:05:1e:13:59:00, 64 "fcr_5300" EX_Port FID Neighbor Switch Info (WWN, enet IP, name) 586 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 587
" EX_Port FID Neighbor Switch Info (WWN, enet IP, name 4 95 10:00:00:05:1e:37:00:45 10.32.156.31 "Brocade 5300" 5 95 directing the traffic to a link with a smaller cost. Every IFL has a default cost. The default router port cost values are: • 1000 for a legacy (v5.1 or XPath Guide 587 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 588
EX_Port or VEX_Port mode with the portCfgEXPort or portCfgVEXPort command. switch:admin> portcfgexport 7/10 -a 1 3. Enter the fcrRouterPortCost command to display the router port cost for each EX_Port. switch:admin> fcrrouterportcost Port Cost 588 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 589
single EX_Port, enter the command with a port and slot number and a specific cost: switch:admin> fcrrouterportcost 7/10 10000 • To set the cost of the EX_Port back to the default, enter a cost value of 0: switch:admin> fcrrouterportcost 7/10 0 5. Enter the portEnable command to enable the ports that - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 590
switch management interfaces. You can define and manage LSANs using Brocade Advanced Zoning. NOTE For performance reasons, Brocade zones and both devices are online, FCR triggers a device import. To support legacy applications, WWNs are reported based on the Admin Domain context. Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 591
zone status of a device, the port WWN, and the node WWN; the port WWN must be used for LSANs. switch:admin> nsshow { Type Pid COS PortName NodeName TTL(sec) N 060f00; 2,3; 10:00:00:00:c9:2b:c9: LSAN: Yes The Local Name Server has 1 entry } Fabric OS Administrator's Guide 591 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 592
switch switch:admin> cfgadd "zone_cfg", "lsan_zone_fabric75" switch:admin> cfgenable "zone_cfg" You are about to enable a new zoning configuration. This action will replace 20:b4). switch:admin> nsshow Target B. switch:admin> zonecreate switch switch:admin> cfgadd "zone_cfg", "lsan_zone_fabric2" switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 593
zone configuration 24 This action will replace the old zoning configuration with the Total devices displayed: 3 • fcrProxyDevShow shows the proxy devices in the LSAN. switch:admin> fcrproxydevshow Proxy WWN Proxy Device Physical State Created PID Exists PID in Guide 593 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 594
default, the maximum LSAN count is set to 3000. You can increase the maximum LSAN count to 5000 without disabling the switch. The maximum number of LSAN devices supported and firmware downgrades: • The LSAN zone matrix is synchronized to the standby CP. • On a dual CP switch, both Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 595
to be imported or exported faster than other LSANs. The LSAN tags are persistently saved and support configupload and configdownload. Enforce tag The Enforce tag reduces the resources used in an FC ". 2. In Edge fabric 2, configure two LSANs: Fabric OS Administrator's Guide 595 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 596
configure the tags on the FC router, and not on the edge switches. If Virtual Fabrics is enabled, you configure the tags on the base switch on which the EX_Ports and VEX_Ports are located. You then must ensure to trigger the fast import process. 596 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 597
tags (Enforce and Speed) on an FC router is eight. • Up to 500 Speed LSAN tags are supported. Configuring an Enforce LSAN tag 1. Log in to the FC router as admin. 2. Enter the following LSAN zones. You must disable the switch before removing an Enforce LSAN tag. You do not need to disable the - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 598
tag. If you remove an Enforce LSAN tag, you must disable the switch first. Example of removing an Enforce LSAN tag sw0:admin> switchdisable sw0: LSAN zone binding is supported only on FC routers with Fabric OS v5.3.0 and later. The FC router matrix feature is supported only on FC Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 599
zone entries of the remote edge fabrics that can access its local edge fabrics. The LSAN zone limit supported in the backbone fabric is not limited by the capability of one FC router. In addition, due to and after LSAN zone binding is in effect. Fabric OS Administrator's Guide 599 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 600
metaSAN can import more than 10,000 devices and the backbone fabric can support more FC routers. • With LSAN zone binding, CPU consumption by an from this FC router to other FC routers. • You must manually configure the LSAN fabric matrix on these FC routers to match the Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 601
--add -lsan 4 5 fcrlsanmatrix --add -lsan 5 6 Fabrics that are not specified are part of the default binding and can access other edge fabrics that are not specified. Thus, fabrics 7, 8, and 9 can access matrix providing more specific binding. Fabric OS Administrator's Guide 601 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 602
:60:69:c3:12:b3 (unknown) FCR:Admin> fcrlsanmatrix --fabricview -lsan LSAN MATRIX is activated Fabric ID Fabric ID 4 5 4 7 10 19 602 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 603
PID is when you replace a switch. If you replace the switch and want to continue default, EX_Ports and VEX_Ports detect, autonegotiate, and configure the fabric parameters without user intervention. You can optionally configure these parameters manually. • To change the fabric parameters on a switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 604
frame forwarding is not supported in an FCR fabric with a Brocade 8000. By default, broadcast frame forwarding is disabled on an FC router. If your edge fabric includes a Brocade 8000, do not enable described in the Fabric OS Message Reference. 604 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 605
into multiple edge fabrics counts multiple times. The default maximum number of LSAN zones is 3000. Refer (EX_Port) resources. switch:admin> fcrresourceshow Daemon 6 34 14 | 6 34 15 | 6 34 16 | 8 34 17 | 8 34 18 | 8 34 19 | 8 34 Fabric OS Administrator's Guide 605 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 606
switch in the edge fabric allows XISL use, then the EX_Port or VEX_Port is disabled. Refer to "Configuring a logical switch to use XISLs" on page 299 for instructions however, this configuration is not supported. • Backbone-to-edge routing is not supported in the base switch. Refer to "Backbone-to- - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 607
FC-FC routing and Virtual Fabrics 24 • Although the Brocade 6510 and 6520 supports up to four logical switches, if you are using FC-FC routing, they can have a maximum of three logical switches. Logical switch configuration for FC routing Figure 82 shows an example of two chassis partitioned - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 608
not supported in the base switch, unless you use a legacy FC router. A legacy FC router is an FC router configured on a Brocade 7500 switch. Base switches can device C, however, because the base switches do not support backbone-to-edge routing. 608 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 609
router operations on the switch. Brocade recommends that you save your FC-FC routing configuration (using the configUpload command) before performing any downgrades. For further instructions on downgrading, refer to Chapter 9, "Installing and Maintaining Firmware". How replacing port blades affects - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 610
range of output ports connected to xlate domains 1. Log in to a switch in the edge fabric. 2. Enter the lsDbShow command on the edge cost = 10000, costCnt = 0, type = 1 LinkId = 1, out port = 32, rem port = 2, cost = 10000, costCnt = 0, type = 1 610 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 611
the 24-bit port ID (PID) on any Brocade Backbone. Enter the switchShow command without parameters to show Use: OFF LS Attributes: [FID: 128, Base Switch: No, Default Switch: Yes, Address Mode 0] Index Slot Port QSFP Address -- 16G No_Module FC Fabric OS Administrator's Guide 611 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 612
No, Default Switch: Yes, Address Mode 0] Index Slot Port Address Media Speed State Proto 0 1 0 500000 -- N16 No_Module FC 1 1 1 500100 -- N16 No_Module FC 2 1 2 500200 -- N16 No_Module FC (output truncated) Example of port index mapping on an FC8-64 blade on a Brocade - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 613
FC8-64 blade on a Brocade DCX-4S Backbone. The Brocade DCX-4S does not need a mapping of ports on port blades because it is a one-to-one mapping. The order is sequential starting at slot 1 port 0 all the way through slot 8 port 255 for the FC8 number. switch:FID128:admin Guide 613 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 614
output for an FS8-18 encryption blade on the Brocade DCX 8510-8 Backbone. The assignment of port index numbers to PIDs depending on blade type, platform type, and slot number. switch:FID128:admin> switchshow -slot 2 switchName: myswitch (output truncated Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 615
Support Appendix B In this appendix •FIPS overview 615 •Zeroization functions 615 •FIPS mode configuration 617 •Preparing a switch to protect sensitive information in the switch. As part of FIPS 140-2 level 2, compliance passwords, shared secrets, and the private keys Guide 615 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 616
. The passwdDefault command removes user-defined accounts in addition to default passwords for the root, admin, and user default accounts. However, only the root account has permissions for this . Automatically zeroized on session termination. 616 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 617
logging both passing and failing results. Refer to the Fabric OS Troubleshooting and Diagnostics Guide for instructions on how to recover if your system cannot get out of the conditional test mode. FIPS mode configuration By default, the switch comes up in non-FIPS mode. You can run the fipsCfg - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 618
supported HTTPS authentication Radius auth protocols PEAP-MSCHAPv2 Root account Disabled Secure RPC protocols TLS/AES128 cipher suite Signed firmware download Mandatory firmware the switch and the switch. the switch. switch switch switch is in non-FIPS mode, switch then user authentication - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 619
CONFIGURATIONS RADIUS configuration does not exist. adldap.local LDAP CONFIGURATIONS Position Server Port Domain Timeout(s) : 1 : GEOFF5.ADLDAP.LOCAL : 389 : adldap.local : 3 Primary AAA Service: LDAP Secondary AAA Service: Switch database Fabric OS Administrator's Guide 619 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 620
instructions in "LDAP configuration and Microsoft Active Directory" on page 162, and then perform the following additional Microsoft Active Directory settings a. To support services for FIPS between the switch switch: Password: Success: imported certificate [LDAPTestCa.cer]. - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 621
): swLdapca.pem Password: Success: exported LDAP certificate Deleting an LDAP switch certificate This procedure deletes the LDAP CA certificate from the switch. 1. Connect to the switch and log in admin permissions to enable FIPS mode. Fabric OS Administrator's Guide 621 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 622
the boot PROM access. 8. Configure the switch for signed firmware. 9. Disable in-flight encryption. 10. Disable supported, only Windows 2000-, Windows 2003, and Windows 2008-based RADIUS servers may be used in a FIPS-compliant configuration. • If the switch is set for LDAP, refer to the instructions - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 623
to set the DH group to 1, 2, 3, or 4. 5. Install the LDAP CA certificate on the switch and Microsoft Active Directory server. Refer to "LDAP certificates for FIPS mode" on page 620. 6. Enter to the following prompts to enable signed firmware: Fabric OS Administrator's Guide 623 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 624
for FIPS • System services: No • cfgload attributes: Yes • Enforce secure config Upload/Download: Press Enter to accept the default. • Enforce firmware signature validation: Yes Example switch:admin> configure Not all options will be available on an enabled switch. To disable the switch, use the - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 625
for FIPS B NOTE Passwords of the default accounts (admin and user) should be changed after every zeroization operation to maintain FIPS 140-2 compliance. 3. Power-cycle the switch. Displaying FIPS configuration 1. Log in to the switch using an account with admin or securityadmin permissions, or - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 626
B Preparing a switch for FIPS 626 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 627
Notice the PID (610600 - bolded) in the nsShow output is in hexadecimal. switch:admin> nsshow { Type Pid COS PortName NodeName TTL(sec) N 610600; shared areas in PID assignments on blades, NPIV, and Access Gateway devices) Result: hexadecimal triplet 610600 = decimal triplet 97,06,00 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 628
a1 a2 a3 a4 a5 a6 a7 a8 a9 aa Decimal 171 172 173 174 175 176 177 178 179 180 628 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 629
f1 f2 f3 f4 f5 f6 f7 f8 f9 fa Decimal 251 252 253 254 255 Hex fb fc fd fe ff Fabric OS Administrator's Guide 629 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 630
C Hexadecimal Conversion 630 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 631
access API, 192 browser security support, 182 changing account parameters, 139 password, changing, 62 remote access policies, 159 secure using SSL, 182 serial, 193 SNMP, 192 SNMP access control list, 188 switch defaults denial of service implications, 145 managing passwords, 140 password policies, - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 632
for trunking, 523 overview, 517-518 Quality of Service, 518 SID/DID traffic prioritization, 518 Top Talkers, switches, 295 public key to switch, 180 rules to an IP Filter policy, 223 switch or fabric to a zone, 336 switches to a zone, 336 Top Talker monitors on all switches Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 633
switch members, 440 switch port members, 439 switch WWN, 440 switching context, 456 system-defined, 436 TACACS+ service, 173 TI zone considerations, 360 transaction model, 442 trunk area, 540 user authUtil command, 209, 210, 211, 212, 217, 403, 623 Fabric OS Administrator's Guide 633 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 634
supported, 287 port restrictions, 287 shutdown, 77 upgrading firmware, 263 Backbone fabric, and TI zones, 355 Backbone firmware, 262-265 download, 262 download PROM password, 145-149 Backbone with recovery string, 146 Backbone without recovery string, 148 switch with recovery string, 145 switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 635
Brocade FC8-48 port blade enabling exceptions, 97 Brocade FC8-48E port blade enabling exceptions, 97 Brocade FC8-64 port blade enabling exceptions, 97 Brocade fixed-port switches, upgrading firmware, 261 Brocade logical switch to base switch, 297 passwords, 61 CHAP, 616 alternatives, 159 password - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 636
CIDR block notation, 64 class 2 and 3 traffic support, 111 classConfig command, 135 classless inter-domain routing. 56 command history, 59 commands to display switch configuration, 247 commands to modify switch configuration, 247 Fabric OS, 56-59 636 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 637
, 516 perfCfgSave, 516 perfMonitorClear, 505 perfMonitorShow, 504 perfSetPortEEMask, 503 perfTTmon, 513, 514, 515 portBufferCalc, 399 Fabric OS Administrator's Guide 53-1002745-02 portBufferShow, 402, 562, 399 portCfg, 624 portCfgCompress, 397, 404, 405 portCfgEncrypt, 397, 404, 405, 624 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 638
FA-PWWN upload and download considerations, 430 format of configuration file, 242 in fabrics, 250 modifying for switches, 247 restoring, 248 saving for frame monitors, 508 security considerations, 250 setup form, 253 supported for FA-PWWN, 429 without disabling a switch, 248 zones, 336 configuration - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 639
SSL, 182, 183-187 TACACS+ service, 171 zone, rules for, 309 supported configurations, 521 CSR defined, 620 exporting for FCAP, 216 generating and storing, 184 generating for FCAP, 215 obtaining certificates, 185 customizing the switch name, 72 cut-through routing, 113 Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 640
default account passwords, 61 accounts, listed, 61 Fabric OS roles, 134 IP Filter policy names, 218 IP Policy Rules, 222 logical switch configuration, 85 CP8 blade dual port support, 86 limiting traffic from, 519 login port. See: D_Port. dictionary.brocade, 154 Diffie Hellman-Challenge Handshake - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 641
ISL trunking, 538 local switch protection, 226 NPIV, 422 port, 90 QoS manually on trunked ports, 524 on other logical switches, 127 Fabric OS Administrator's Guide 53-1002745-02 downgrading firmware, 257 download configuration file, 460 DPS described, 119 device-based routing, 120 support on - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 642
setting a mask for, 503 supported port configurations for, 502 effective local switch protection, 226 NPIV, 422 port, 89 remote authentication, 175 switches, 76 ethernet address, static, 64 ethernet interface on switch, 62 Virtual Fabrics, 63 ethernet IP address, 411 supported trunking configurations - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 643
on an Access Gateway, 544 F_Port trunking, 543-550 Fabric OS Administrator's Guide 53-1002745-02 and Virtual Fabrics, 548 configuring for Brocade adapters, 545 considerations, 546 for access gateways, 543 for Brocade adapters, 545 fabric access, 192 adding Top Talker monitors, 513 addresses. See - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 644
FCIP and FC-FC routing, 582 tunnel configuration, 582 tunnel hop support, 287 FC-NAT, defined, 113 fcoe command, 422 FCoE, NPIV required, 422 FCR and traffic isolation, 352 authentication, 579 Brocade 7800 logical switches, 570 fcrConfigure command, 581, 582 fcrEdgeShow command, 400, 412, 418 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 645
Channel services, 43 support, 182 firmware, 255-273 Backbone, 262-265 Backbone download process overview, 262 Backbone version testing, 270 downgrading, 257 download process, 255 downloading without a password, 257 FA-PWWN upgrade and downgrade considerations, 430 finding version, 259 for switches - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 646
hexadecimal to decimal conversion table, 628 High Availability daemon processes, 53 failover and passwords, 141 failover on RADIUS server, 156 QoS zone-based traffic prioritization considerations, 528 support for trunking, 536 synchronization, 257 verifying features, 103 history of CLI commands, 59 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 647
encryption support, 240 implementing Admin Domains, 443 Fabric OS Administrator's Guide 53- IFL. Internet Explorer and SSL support, 182 Internet Explorer. See: IE. inter-switch link. See: ISL. policy, 218 creating policy, 218 default policy names, 218 default policy rules, 222 deleting policy, - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 648
service names, 220 saving policy, 218 supported actions, 221 supported protocols, 221 supported services manual key entry, 236 null encryption support , 180 manual key entry and IP sec, 236 PKI key pair generation on switch, 181 pre Active Directory LDAP versions supported, 163 authentication, non- - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 649
support, 162 non-FIPS mode restrictions, 162 role mapping and OpenLDAP, 168 role mapping, and Microsoft Active Directory, 163 secure service, 150 LDAP server adding, 175 deleting, 175 reordering, 175 LDAP service features, 481 Brocade 7800 upgrade 471 Fabric OS Administrator's Guide 53-1002745-02 ICL - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 650
299 650 basic configuration values, 291 changing to a base switch, 297 commanding in a different context, 293 connected devices and 251 Top Talkers and, 295 unique names for, 74 login changing password, 139 command for fabric, 51 fails, 57 process for fabric, OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 651
fabric, 333 manually distributing ACL policy service configuring, 163 Microsoft Active Directory service NPIV. N_Port, Access Gateway failover with FA-PWWN, 431 name chassis, 75 fabric, 75-76 security certificate name, 236 switch time protocol, 71 NPIV, 419-424 information, 423 NPIV ports DCC policy - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 652
supported password strength policy, 141 652 passwordless firmware download, 257 passwords boot PROM, 145-149 Backbone with recovery string, 146 Backbone without recovery string, 148 switch with recovery string, 145 switch and NPIV, 82 services, 44-45 Fabric OS Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 653
, 205 DCC restrictions, 203 default IP Filter policy rules, 222 password strength, 141 rules for IP Filter, 219 saving IP Filter, 218 using service supported for Backbones, 287 configurations supported for fixed-port switches, 286 configuring E_Port authentication, 209 Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 654
316 logical in ISL, 285 lossless dynamic load sharing, 125-128 manually disabling QoS on trunked ports, 524 moving, 279 naming, 86 port process, 52 port types, 84 ports and applications used by switches, 192 re-authenticating an E_Port, 210 releasing from a POD Administrator's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 655
supported 617 preparing a switch for FIPS, switch defined, 51 principal switch, capabilities, 51 priority groups, for virtual channels, 115 private key deleting from switch for authentication, 212 supported for IP Filter, 221 switch, 180 authentication, 180 deleting from switch enabled by default, 531 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 656
supported chassis, 492 Quality of Service. See: QoS. support with Linux, 156 configuring support with Windows 2000, 158 deleting, 175 High Availability failover on, 156 reordering, 175 RSA setup, 160 setup, 156-162 RADIUS service switch from logical switches, 295 zone switch -port switch ports, - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 657
user-defined, 136 default, 134 managing user defined, 112 routes, number supported using FSPF, 112 routing AP generation, 180 Fabric OS Administrator's Guide 53-1002745-02 RSA RADIUS Filter policy, 223 passwords, 139 rusers listener configuration for uploads and downloads, 179 described, 178 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 658
on switch, 39 serial port connection, 56 serial port, console session, 56 Server Application Optimization. See: SAO. sessions, maximum allowed, 136 setContext command, 121, 299 setting changing passwords, 62 chassis configurations, 93 chassis management IP interface, 65 date, 69 default zone - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 659
PIDs, NPIV, 82 statistics, bottleneck, 391 status of equipment, 102 status policy threshold values, setting, 106 status policy threshold values, viewing, 105 Fabric OS Administrator's Guide 53-1002745-02 supported browsers, 182 supportSave command, 39 swapping blades, 97-100 SW-EXTTRAP, 189 switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 660
Connection Control. See: SCC. switch firmware, 260-261 switch WWN in Admin Domains, 440 switchCfgPersistentDisable command, 100 switchCfgSpeed command, 92 switchCfgTrunk command, 538, 539 switchDisable command, 76, 110, 121, 489 switchEnable command, 76, 110, 301 switches supported for FA-PWWN, 429 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 661
on all switches in support, 111 traffic, limiting from a device, 519 Fabric OS Administrator's Guide manually disabling QoS on, 524 trunking Adaptive Networking license considerations, 523 configuring F_Port for Brocade Brocade adapters, 545 F_Ports and Virtual Fabrics, 548 High Availability support - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 662
restoring, 123 upgrading firmware, 257 upgrading temporary 133 password policies, 141-145 password rules, 401 current default zone access mode pairs, 213 NPIV port configuration switch about, 283 creating, 292 changing logical switch to base switch, 297 662 Fabric OS Administrator's Guide - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 663
DPS support, 120 switch creating, 292 default, 276 deleting, 294 displaying configuration, 296 overview, 276 lossless dynamic load sharing, 127 Microsoft Active Directory service, 164 OpenLDAP server, 169 overview, 275 password (NPS) support, 160 Brocade 7800 restriction, 286 default logical switch - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 664
mode, viewing current, 327 accessing, 192 adding a new switch or fabric, 336 adding members, 317 administering security, 336 318 from a configuration, 329 replacing member, 319 saved zone configuration, defined, 308 schemes, 307 setting default zoning mode, 326 special, 303 's Guide 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 665
zoneRemove command, 318 zoneShow command, 322 zoning advanced, 303-342 advanced commands, 304 defined, 304 enforcement, 308 on logical ports, 316 overview, 304 Fabric OS Administrator's Guide 665 53-1002745-02 - Dell PowerConnect Brocade M5424 | Brocade 7.1.0 Fabric OS Administrator's Guide - Page 666
666 Fabric OS Administrator's Guide 53-1002745-02
53-1002745-02
25 March 2013
®
Fabric OS
Administrator’s Guide
Supporting Fabric OS 7.1.0