Node WWN 100000c0dd07c34d | Q-Logic 64 specs

D

3 – Planning Fabric Security

Device: HBA_1

WWN: 10:00:00:c0:dd:07:c3:4d

Security: Yes

Device: JBOD

Security: No

F_Port	FL_Port

E_Port Device: Switch_1

WWN: 10:00:00:c0:dd:07:e3:4c

Security: Yes

Device: HBA_2

Security: No

F_Port

Device: Switch_2

WWN: 10:00:00:c0:dd:07:e3:4e

Security: No

Figure 3-3. Security Example: Switches and HBAs

1.Create a security set (Security_Set_1) on Switch_1.

2.Create a port group (Group_Port) in Security_Set_1 with Switch_1, and HBA_1 as members. Because the JBOD is a loop device, it is excluded from the port group.

You must specify HBAs by node worldwide name. Switches can be specified by port or node worldwide name. The type of switch worldwide name you use in the switch security database must be the same as that in the HBA security database. For example, if you specify a switch with a port worldwide name in the switch security database, you must also specify that switch in the HBA security database with the same port worldwide name.

For CHAP authentication, create 32-character secrets. The switch secret must be shared with the HBA security database.

	Port Group: Group_Port

Switch_1	Node WWN: 10:00:00:c0:dd:07:e3:4c
	Authentication: CHAP
	Secret: 0123456789abcdef0123456789abcdef
HBA_1	Node WWN: 10:00:00:c0:dd:07:c3:4d
	Authentication: CHAP
	Secret: fedcba9876543210fedcba9876543210fedcba

59043-03 A

3-13

Image 53

Q-Logic 64 manual Node WWN 100000c0dd07c34d, Secret fedcba9876543210fedcba9876543210fedcba

Contents

SANbox2-64 Fibre Channel Switch Installation Guide Document Revision History SANbox2-64 Fibre Channel Switch Installation Guide Table of Contents Section Planning Section InstallationDevices Multiple Chassis Fabrics Site Requirements Fabric Management Workstation Section Diagnostics/Troubleshooting Appendix a Specifications Section Removal/Replacement Command Syntax Appendix B Command Line Interface Glossary Index Zone Command Zoneset Command 101 Zoning Command 104 Serial Port Pin Identification TablesPage Intended Audience Introduction Related Materials Sicherheitshinweise Safety Notices Federal Communications Commission FCC Class a Statement Communications Statements CE Statement Bsmi Class a Statement Vcci Class a Statement Electrostatic Discharge Sensitivity Esds Precautions Laser Safety Information Zugängliche Teile Accessible PartsPièces Accessibles Preamble General Public License 12.2 Introduction General Public License Introduction General Public License Introduction General Public License No Warranty How to Apply These Terms to Your New Programs Copyright C yyyy name of author Availability Technical SupportTraining Contact Information General Description Chassis Hardware SANbox2-64 64-Port Fibre Channel Switch Slot and Fibre Channel Port Numbering Chassis Controls and LEDs Maintenance Button Placing the Switch in Maintenance Mode Resetting a Switch Fan Fail LED Amber Over Temperature LED AmberChassis LEDs Fibre Channel Ports Input Power LED GreenHeartbeat LED Amber Small Form-Factor Pluggable SFP Transceivers Port Status LED Fabric Ports Port ModesExpansion Port Ethernet Port Ethernet Port Serial Port Pin Number Description Serial Port Pin Identification Power Supply Components Power Supply Modules 10. Fans Fans Switch Management Devices Planning Single Switch Fabric with Initiators and Targets Dual Switch Fabric with Initiators and Targets Domain ID, Principal Priority, and Domain ID Lock Multiple Chassis Fabrics Common Topologies Distance Performance Latency BandwidthPort-to-Port Transmission Combinations Port-to-Port Latency Device Access Soft Zones Access Control List Hard Zones Virtual Private Fabric Hard Zones User Account Security Fabric Security Device Security Security Example Switches and HBAs Secret fedcba9876543210fedcba9876543210fedcba Node WWN 100000c0dd07c34d Node WWN 100000c0dd 07e34e Create a security set SecuritySet2 on Switch2 Security Example Host Authentication MS Group Group1 Fabric Management Fabric Services Planning Fabric Management 59043-03 a Site Requirements Switch Power RequirementsFabric Management Workstation Management Workstation Requirements Environmental Conditions Installing a Switch Avertissement Mount the Switch „ If the switch is mounted in a closed or multi-unit rack Locked prior to applying power to the switchAssembly, make sure that the operating temperature inside Rack for service access and ventilation SANbox2-64 Rail Kit Connect the Switch to AC Power Install SFP Transceivers Avertissement Appendix a Specifications Ethernet and Serial Cable Connections Connect the Management Workstation to the Switch Serial Connection Ethernet Connection Enter the following command at the Solaris prompt Install SANbox Manager SANsurfer Management Suite Disk Linux Installation SANsurfer Management Suite Disk Windows Installation Enter the following command SANsurfer Management Suite Disk Solaris Installation SANbox2 Installation Disk Windows Installation Configure the Switch SANbox2 Installation Disk Linux InstallationSANbox2 Installation Disk Solaris Installation Cable Devices to the Switch Configure the Ports Using SANbox Manager to Install Firmware Install Firmware Enter the following command to install the new firmware Using the CLI to Install FirmwareTo start an admin session, enter the following Close the FTP session Using FTP and the CLI to Install Firmware Powering Down a Switch Normal all pass Post DiagnosticsHeartbeat LED Blink Patterns Fatal Error Blink Pattern Maintenance Mode PatternConfiguration File System Error Blink Pattern To recreate the configuration file, do the following Ftp Ftp switchname Reset the switch and close the Telnet session Enter the following account name and password userimagesRestore the configuration file Port Status LED Indications Logging Error EPort Isolation Excessive Port Errors Diagnostics/Troubleshooting Post Diagnostics Chassis and Power Supply LEDs Chassis Diagnostics Fan Fail LED is Illuminated Over Temperature LED is IlluminatedInput Power LED Is Extinguished Power Supply Fault LED is Illuminated Output Power LED Is Extinguished Recovering a Switch Maintenance Image Unpack Maintenance Exit Maintenance Reset Password File Maintenance Reset Network ConfigMaintenance Copy Log Files Maintenance Remove Switch Config Maintenance Set Active Image Maintenance Show Firmware Versions Diagnostics/Troubleshooting Recovering a Switch 59043-03 a SFP Transceivers Marginal Operating Configurations Removing the CPU Module CPU Module Removal/Replacement CPU Module Removing the CPU Module Installing the CPU Module Ftp put imagefile Removal/Replacement CPU Module Choose the Replace task Blades Disconnect all cables from the selected I/O blade Choose the slot number 6 for example Removing an I/O Blade To install a new I/O blade, enter y Removal/Replacement I/O Blades CC Blade Slots Cross-Connect Blades Removing a CC Blade Switch Cover Removal Installing a CC Blade Installing a CC Blade Avertissement Removing a Power Supply Module Removing a Power Supply Module Installing a Power Supply Module Removing a Fan Removing a Fan Installing a Fan Installing a Fan Fabric Specifications Maintainability Electrical Dimensions Environmental Regulatory Certifications Shortwave Laser SFP 1G/2G multi-mode Longwave Laser SFP 1G/2G single-mode Page Logging On to a Switch Command Line Interface Table B-1. Command-Line Completion Command Syntax Table B-2. Commands Listed by Authority Level Commands Authority Admin CommandSyntax Keywords Syntax alias Alias Command Rename aliasold aliasnew Members aliasRemove alias memberlist Syntax config Config CommandKeywords activate config Edit config Archive function are not compatible with the Config Restore RestoreCommand Save config # ftp symbolicname or ipaddress Keywords MMDDhhmmCCYY Date CommandSyntax date Fallback Fallback Command Syntax group Group CommandKeywords add group Table B-3. Group Member Attributes Create group type Copy groupsource groupdestinationEdit group member Table B-4. Group Member Attributes Following is an example of the Group List command Following is an example of the Group Edit commandMembers group Remove group members Following is an example of the Group Members command Pending firmware and disrupts traffic Hardreset CommandHardreset Keywords command Help CommandSyntax help command keyword Authority None Following is an example of the Help Set Beacon command Authority None Syntax history History Command Hotreset Hotreset CommandFabric is in the diagnostic operational state This command clears the event log and all counters Hotswap Hotswap Command To replace? 1,2,3,4,6,7,8,9 1 Cleanup Image CommandImage Fetch accountname ipaddress filesource filedestination Lip Command Changes a user account’s password Passwd CommandPasswd accountname Accountname Authority None Syntax Ping Ping CommandIpaddress Keywords ipaddress Following is an example of the Ps command Ps CommandSyntax Examples Displays current system process information Syntax quit, exit, or logout Quit CommandCloses the Telnet session Config configname Reset Command Table B-5. Switch Configuration Defaults SwitchSystem Zoning Mfstov Table B-6. Port Configuration Defaults Table B-8. Zoning Configuration Defaults Table B-7. Alarm Threshold Configuration Defaults Table B-9. Snmp Configuration Defaults Table B-11. Security Configuration Defaults Table B-10. System Configuration Defaults Keywords active Security CommandClear Edit History Following is an example of the Security History commandLimits Save Following is an example of the Security List command Following is an example of the Security Limits command Securityset Command Groups securityset Delete securitysetRemove securityset group Rename securitysetold securitysetnew Syntax set Set Command Switch state Setup optionLog option Pagebreak state Table B-12. Set Config Port Parameters Set Config CommandKeywords blade slotnumber Port portnumber Send Arbff True instead of IDLEs Table B-12. Set Config Port Parameters Table B-13. Security Configuration Parameters Table B-14. Set Config Switch Parameters Threshold Table B-15. Set Config Threshold Parameters Memory. Refer to FC-SW-2 Compliant Table B-16. Set Config Zoning Parameters Arbff Following is an example of the Set Config Port command Following is an example of the Set Config Switch command Following is and example of the Set Config Security command Following is an example of the Set Config Threshold command This Following is an example of the Set Config Zoning command Set log Set Log CommandArchive Component list Port portlist Level level Stop StartStops logging of events Level keyword to Info at the same time Set Port Command Snmp configuration and one system configuration Set Setup CommandSet setup Table B-17. Snmp Configuration Settings Table B-18. System Configuration Settings SANbox2 admin # set setup snmp Trap1Severity See SANbox2 admin # set setup system Following is an example of the Set Setup System command Alarm Show CommandKeywords about Blade Ns option Fdmi nodewwnLog option Panel PagebreakPerf option Table B-19. Show Port Parameters LIP Alpd Alps Slot slotnumber Post log Support Steering domainidTopology Users Following is an example of the Show Chassis command Following is an example of the Show Panel command Following is an example of the Show Domains commandFollowing is an example of the Show Fabric command Following is an example of the Show NS local domain command Following is an example of the Show Fdmi commandFollowing is an example of the Show Fdmi WWN command Following is an example of the Show Interface command Following is an example of the Show NS domainID commandFollowing is an example of the Show NS portID command LIPF8F7 Following is an example of the Show Port command Following is an example of the Show Slot command Following is an example of the Show Topology command Following is an example of the Show Switch command Command Line Interface Show Command Following is an example of the Show Version command Blade slotnumber Show Config CommandShow config Following is an example of the Show Config Threshold command Following is an example of the Show Config Switch command Following is an example of the Show Config Zoning command Keywords component Show Log Command Following is an example of the Show Log command Following is an example of the Show Log Options command Show Perf Command Following is an example of the Show Perf Byte command Errors portnumber Mfg Show Setup CommandShow setup Following is an example of the Show Setup Snmp command Following is an example of the Show Setup System command Shutdown Shutdown CommandPower from the switch Test Test CommandPort portnumber testtype Status Test port x internal Command Line Interface Test Command Authority None Syntax uptime Uptime CommandExamples The following is an example of the Uptime command Keywords accounts User CommandAdd Delete accountname Following is an example of the User Edit command Following is an example of the User Add command Following is an example of the User List command Following is an example of the User Delete command Whoami Whoami CommandFollowing is an example of the Whoami command Syntax zone Zone Command Remove zone memberlist Members zoneRename zoneold zonenew Type zone zonetype Following is an example of the Zone Members command Following is an example of the Zone Zonesets command Syntax zoneset Zoneset Command Remove zoneset zonelist Following is an example of the Zoneset List commandRename zonesetold zonesetnew Zones zoneset Following is an example of the Zoneset Zones command Opens a Zoning Edit session Zoning Command Following is an example of the Zoning Limits command E2JBOD2 Following is an example of the Zoning List command 59043-03 a 107 Command Line Interface Zoning Command 108 59043-03 a Administrative State Access Control List ZoneBootP Class 2 Service Configured Zone Sets Class 3 ServiceDefault Visibility Fabric Management Switch Inter-Switch Link Input Power LEDMaintenance Button Maintenance Mode Over Temperature LED Output Power LEDPower On Self Test Post Principal Switch Virtual Private Fabric Zone User Account SecurityWorldwide Name WWN ZonePage Numerics Index Index-2 59043-03 a 59043-03 a Index-3 Index-4 59043-03 a 59043-03 a Index-5 Index-6 59043-03 a 59043-03 a Index-7