Acl policy distribution to other switches, Fabric-wide enforcement, Distributing the local acl policies – Dell POWEREDGE M1000E User Manual
Page 200: Switches, Acl policy distribution to other, Ns, see, Enabling local switch protection, Disabling local switch protection
160
Fabric OS Administrator’s Guide
53-1001763-02
Policy database distribution
7
DATABASE - Accept/Reject
---------------------------------
SCC - accept
DCC - accept
PWD - accept
FCS - accept
AUTH - accept
IPFILTER - accept
Fabric Wide Consistency Policy:- ""
Enabling local switch protection
1. Connect to the switch and log in using an account assigned to the admin role.
2. Enter the fddCfg
--
localreject command.
Disabling local switch protection
1. Connect to the switch and log in using an account assigned to the admin role.
2. Enter the fddCfg
--
localaccept command.
ACL policy distribution to other switches
This section explains how to manually distribute local ACL policy databases. The distribute
command has the following dependencies:
•
All target switches must be running Fabric OS v6.2.0 or later.
•
All target switches must accept the database distribution (see
“Database distribution settings”
•
The fabric must have a tolerant or no (absent) fabric-wide consistency policy (see
If the fabric-wide consistency policy for a database is strict, the database cannot be manually
distributed. When you set a strict fabric-wide consistency policy for a database, the distribution
mechanism is automatically invoked whenever the database changes.
•
The local distribution setting must be accepted. To be able to initiate the distribute command,
set the local distribution to accept.
Distributing the local ACL policies
1. Connect to the switch and log in using an account assigned to the admin role.
2. Enter the distribute -p command.
Fabric-wide enforcement
The fabric-wide consistency policy enforcement setting determines the distribution behavior when
changes to a policy are activated. Using the tolerant or strict fabric-wide consistency policy ensures
that changes to local ACL policy databases are automatically distributed to other switches in the
fabric.