Brocade Fabric OS Command Reference (Supporting Fabric OS v7.3.0) User Manual

Page 1047

Advertising
background image

Fabric OS Command Reference

1017

53-1003131-01

secPolicyCreate

2

EXAMPLES

To create an FCS policy (While creating the FCS policy, the local switch WWN is automatically included
in the list. Switches included in the FCS list are FCS switches and the remaining switches in the fabric
are non-FCS switches. Out of the FCS list, the switch that is in the first position becomes the Primary
FCS switch and the remaining switches become backup FCS switches. If the first switch in the FCS list is
not reachable, the next switch becomes the Primary):

primaryfcs:admin> secpolicycreate "FCS_POLICY", "3; 4"

FCS_POLICY has been created.

To create a device policy to allow two devices to attach to domain 3 ports 1 and 3 (the WWN of first
device is 11:22:33:44:55:66:77:aa and the WWN of second device is 11:22:33:44:55:66:77:bb):

primaryfcs:admin> secpolicycreate "DCC_POLICY_aB_7", \

"11:22:33:44:55:66:77:aa;11:22:33:44:55:66:77:bb;3[1,3]"

DCC_POLICY_abc has been created.

To create a SCC policy in a fabric with three switches:

1.

Check if a policy exists.

switch:admin> secpolicyshow

____________________________________________________

ACTIVE POLICY SET

____________________________________________________

DEFINED POLICY SET

2.

Identify switches in the fabric.

switch:admin> fabricshow

Switch ID Worldwide Name Enet IP Addr FC IP Addr Name

--------------------------------------------------------------

2:fffc02 10:00:00:05:1e:39:5f:67 10.32.69.53 10.20.30.53 "sw1"

fec0:60:69bc:60:260:69ff:fe80:d4a

4:fffc04 10:00:00:05:1e:04:ef:0e 10.32.69.49 10.20.30.49 'sw2"

fec0:60:69bc:54:205:1eff:fe04:ef0e

200: fffcc8 10:00:00:05:1e:35:cd:ef 10.32.69.117 10.20.30.117 \

"nSW4100_98"

3.

Create a SCC policy that includes switches with domain IDs 2 and 4.

switch:admin> secpolicycreate "SCC_POLICY","2;4"

SCC_POLICY has been created.

4.

Activate the policy.

switch:admin> secpolicyactivate

About to overwrite the current Active Policy Set.

ARE YOU SURE (yes, y, no, n): [no] y

secpolicyactivate command was completed successfully.

To create an SCC policy that includes all switches in the fabric:

switch:admin> secpolicycreate "SCC_POLICY",*

SCC_POLICY has been created.

To create a security policy:

switch:admin> secpolicycreate SCC_POLICY,\

"10:00:00:05:1e:a1:ef:b9; 10:00:00:05:1e:a3:00:59; \

10:00:00:05:1e:a2:f9:09" -legacy

SCC_POLICY created as user specified.

switch:admin> secpolicyshow

_______________________________________

ACTIVE POLICY SET

Advertising
Popular Brands
Popular manuals