Configuring security profiles – Brocade Network OS NETCONF Operations Guide v4.1.1 User Manual
Page 286

254
Network OS NETCONF Operations Guide
53-1003231-02
Configuring AMPP port-profiles
19
<static>
<mac-address>0050.56bf:0005</mac-address>
</static>
</port-profile>
</port-profile-global>
</config>
</edit-config>
</rpc>
<rpc-reply message-id="1713" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
<ok/>
</rpc-reply>
Configuring security profiles
A security profile defines all the security rules needed for the server port. A typical security profile
contains attributes for MAC-based standard and extended ACLs. Security profiles are applied to the
ACLs based on the profile or PolicyID. Therefore, multiple security profiles can be applied to the
same profiled port.
To configure the security profile, perform the following steps.
1. AMPP profiles cannot be modified while active. Deactivate the port-profile before modifying the
security profile.
<?xml version="1.0" encoding="UTF-8"?>
<rpc message-id="1714" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
<edit-config>
<target>
<running/>
</target>
<config>
<port-profile-global
xmlns="urn:brocade.com:mgmt:brocade-port-profile">
<port-profile>
<name>vm1-port-profile</name>
<activate xmlns="urn:ietf:params:xml:ns:netconf:base:1.0"
operation="delete"/>
</port-profile>
</port-profile-global>
</config>
</edit-config>
</rpc>
<rpc-reply message-id="1714" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
<ok/>
</rpc-reply>
2. Under the <port-profile> node, specify the <security-profile> element and modify the ACL
security attributes.
The following example shows how to apply an ACL to the security profile. Refer to
for details about modifying the ACL security attributes.
<?xml version="1.0" encoding="UTF-8"?>
<rpc message-id="1716" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
<edit-config>
<target>
<running/>
</target>
<config>