Q-Logic 5800V Internet Protocol Support, Security

2–Planning

Internet Protocol Support

2-18 59265-02 B

Internet Protocol Support

The switch supports IP version 4 (IPV4), IP version 6 (IPV6), and DNS host

names. IPV4 and IPV6 are enabled by default. Consider your IP version

requirements and the availability of a DNS server.

Security

Security is available at the following levels:

User Account Security

IP Security

Port Binding

Connection Security

Device Security

User Account Security

User account security consists of the administration of account names,

passwords, expiration dates, and authority levels. If an account has Admin

authority, all management tasks can be performed by that account in the CLI,

QuickTools, and Enterprise Fabric Suite. Otherwise, only monitoring tasks are

available. The Admin account name is the only account that can create or add

account names, and change passwords of other accounts. All users can change

their own passwords. Account names and passwords are always required when

connecting to a switch.

Authentication of the user account and password can be performed locally using

the switch’s user account database or it can be performed remotely using a

RADIUS server such as Microsoft® RADIUS. Authenticating user logins on a

RADIUS server requires a secure management connection to the switch. For

information about securing the management connection, refer to “Connection

Security” on page 2-20. A RADIUS server can also authenticate devices and other

switches as described in “Device Security” on page 2-20.

Consider your management needs, and determine the number of user accounts,

their authority needs, and expiration dates. Also consider the advantages of

centralizing user administration and authentication on a RADIUS server.

NOTE:

If the same user account exists on a switch and its RADIUS server, that user

can log in with either password, but the authority and account expiration

always come from the switch database.

Contents

Main Document Revision History Table of Contents Preface 1 General Description 2 Planning 3 Installation 4 Diagnostics/Troubleshooting 5 Removal/Replacement A Specifications Glossary Index List of Figures List of Tables Preface Intended Audience Related Materials Whats New in this Release Safety Notices Sicherheitshinweise Notes informatives relatives la scurit Advertencias de seguridad Communications Statements Federal Communications Commission (FCC) Class A Statement Canadian Department of Communications Class A Compliance Statement Avis de conformit aux normes du ministre des Communications du Canada CE Statement VCCI Class A Statement Laser Safety Information Electrostatic Discharge Sensitivity (ESDS) Precautions Accessible Parts Pices Accessibles Zugngliche Teile General Public License Preamble Terms and Conditions for Copying, Distribution and Modification Page Page Page How to Apply These Terms to Your New Programs Page qfsApp Program License Technical Support Training Contact Information Page Page 1 Figure 1-1. QLogic 5802V Stackable Fibre Channel Switch Chassis Controls and LEDs Figure 1-2. Chassis LEDs and Controls Input Power LED (Green) Heartbeat LED (Green) System Fault LED (Amber) Maintenance Button Resetting a Switch Placing the Switch in Maintenance Mode Fibre Channel Ports Figure 1-3. Fibre Channel Ports Port LEDs Figure 1-4. Port LEDs Port Logged-In LED (Green) Port Activity LED (Green) Transceivers Port Types Table 1-1. Fibre Channel Port Types Ethernet Port Figure 1-5. Ethernet Port Serial Port Figure 1-6. Serial Port and Pin Identification Table 1-2. Serial Port Pin Identification Power Supplies and Fans Model 5800V Model 5802V Figure 1-7. Model 5802V Power Supplies Switch Management QuickTools Web Applet Enterprise Fabric Suite Command Line Interface Application Programming Interface Simple Network Management Protocol Storage Management InitiativeSpecification File Transfer Protocols 2 Devices Device Access Table 2-1. Zoning Database Limits Performance Distance Table 2-2. Port Transmission Distances Bandwidth Table 2-3. Extended Credit Distances and Cable Lengths Latency Feature Licensing Table 2-4. Port-to-Port Latency Multiple Chassis Fabrics Optimizing Device Performance Domain ID, Principal Priority, and Domain ID Lock Stacking Figure 2-1. Two-Switch Stack Figure 2-2. Three-Switch Stack Page Figure 2-5. Six Switch Stack Common Topologies Cascade Topology Figure 2-6. Cascade-with-a-Loop Topology Mesh Topology Figure 2-7. Mesh Topology MultiStage Topology Figure 2-8. Multistage Topology Transparent Routing Page Page Switch Services Page Internet Protocol Support Security User Account Security IP Security Port Binding Connection Security Device Security Page 2Planning Security 2-22 59265-02 B Security Example: Switches and Adapters with Authentication Figure 2-9. Security Example: Switches and Adapters Page Page Security Example: RADIUS Server Figure 2-10. Security Example: RADIUS Server Page Page Page 2Planning Security 59265-02 B 2-29 Security Example: Host Authentication Figure 2-11. Security Example: Management Server Page Fabric Management Page 3 Site Requirements Fabric Management Workstation Switch Power Requirements Environmental Conditions Table 3-1. Management Workstation Requirements Installing a Switch Figure 3-1. QLogic 5802V Fibre Channel Switch Mount the Switch Install the Transceivers Page Configure the Workstation Configuring the Workstation IP Address for Ethernet Connections Windows Workstation Linux or Solaris Workstation Mac OS X Workstation Configuring the Workstation Serial Port Connect the Switch to AC Power Page Connect the Workstation to the Switch Figure 3-4. Workstation Cable Connections Configure the Switch QuickTools Switch Configuration CLI Switch Configuration Cable Devices to the Switch Installing Firmware Using QuickTools to Install Firmware Using the CLI to Install Firmware One-Step Firmware Installation Page Custom Firmware Installation Adding a Switch to an Existing Fabric Installing Feature License Keys Page 4 Chassis Diagnostics Figure 4-1. Chassis LEDs Input Power LED Is Not Lit System Fault LED Is Lit Power-On Self Test Diagnostics Heartbeat LED Blink Patterns Page Configuration File System Error Blink Pattern Figure 4-4. Configuration File System Error Blink Pattern Over-Temperature Blink Pattern Figure 4-5. Over-Temperature Blink Pattern Logged-In LED Indications Figure 4-6. Logged-In LED E_Port Isolation Page Excessive Port Errors Transceiver Diagnostics Power Supply Diagnostics Figure 4-7. Model 5802V Power Supply LEDs Recovering a Switch Using Maintenance Mode Exiting the Maintenance Menu (Option 0) Unpacking a Firmware Image File in Maintenance Mode (Option 1) Page Remaking the File System in Maintenance Mode (Option 6) Resetting the Switch in Maintenance Mode (Option 7) Updating the Boot Loader in Maintenance Mode (Option 8) 5 Transceiver Removal and Replacement Power Supply Removal and Replacement Figure 5-1. Power Supply Removal Figure 5-2. Power Supply Installation Page A Fabric Specifications Page Maintainability Fabric Management Dimensions Electrical Power Cord Specifications Table A-1. Available Power Cords Table A-1. Available Power Cords (Continued) Region/Country Specification QLogic SKU Number Environmental Regulatory Certifications Glossary Page Page Page Page Page Page Page Index Numerics A B C D E F G H I L M N Q R S T U V W X Z