Administrator's Guide Supporting Fabric OS 7.1.0
Page 3
... 9 Chapter 10 Chapter 11 Chapter 12 Chapter 13 Chapter 14 Chapter 15 Chapter 16 Chapter 17 Section II Chapter 18 Chapter 19 Chapter 20 Chapter 21 Chapter 22 Chapter 23 Chapter 24 Fabric OS Administrator's Guide 53-1002745-02 Standard Features Understanding Fibre Channel Services 43 Performing Basic Configuration Tasks 55...
... 9 Chapter 10 Chapter 11 Chapter 12 Chapter 13 Chapter 14 Chapter 15 Chapter 16 Chapter 17 Section II Chapter 18 Chapter 19 Chapter 20 Chapter 21 Chapter 22 Chapter 23 Chapter 24 Fabric OS Administrator's Guide 53-1002745-02 Standard Features Understanding Fibre Channel Services 43 Performing Basic Configuration Tasks 55...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 20
Chapter 21 Top Talker monitors 510 Top Talker monitors and FC-FC routing 511 Limitations of Top Talker monitors 512 Adding a Top Talker monitor to a port (port ...
Chapter 21 Top Talker monitors 510 Top Talker monitors and FC-FC routing 511 Limitations of Top Talker monitors 512 Adding a Top Talker monitor to a port (port ...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 21
... for EX_Port trunking 542 Configuring EX_Port trunking 542 Displaying EX_Port trunking information 542 F_Port trunking 543 F_Port trunking for Access Gateway 543 F_Port trunking for Brocade adapters 545 F_Port trunking considerations 546 F_Port trunking in Virtual Fabrics 548 Displaying F_Port trunking information 549 Disabling F_Port trunking 549 Enabling the DCC policy... limitations 552 Long -distance link modes 552 Configuring an extended ISL 553 Enabling long distance when connecting to TDM devices . . .554 Fabric OS Administrator's Guide 21 53-1002745-02
... for EX_Port trunking 542 Configuring EX_Port trunking 542 Displaying EX_Port trunking information 542 F_Port trunking 543 F_Port trunking for Access Gateway 543 F_Port trunking for Brocade adapters 545 F_Port trunking considerations 546 F_Port trunking in Virtual Fabrics 548 Displaying F_Port trunking information 549 Disabling F_Port trunking 549 Enabling the DCC policy... limitations 552 Long -distance link modes 552 Configuring an extended ISL 553 Enabling long distance when connecting to TDM devices . . .554 Fabric OS Administrator's Guide 21 53-1002745-02
Administrator's Guide Supporting Fabric OS 7.1.0
Page 25
... Figure 8 Figure 9 Figure 10 Figure 11 Figure 12 Figure 13 Figure 14 Figure 15 Figure 16 Figure 17 Figure 18 Figure 19 Figure 20 Figure 21 Figure 22 Figure 23 Figure 24 Figure 25 Figure 26 Figure 27 Figure 28 Figure 29 Figure 30 Figure 31 Figure 32 Figure 33 Figure...114 Virtual channels on a QoS-enabled ISL 116 Gateway link merging SANs 117 Single host and target 130 Windows 2000 VSA configuration 154 Example of a Brocade DCT file 161 Example of the dictiona.dcm file 162 DH-CHAP authentication 208 Protected endpoints configuration 232 Gateway tunnel configuration 232 Endpoint-to-gateway...
... Figure 8 Figure 9 Figure 10 Figure 11 Figure 12 Figure 13 Figure 14 Figure 15 Figure 16 Figure 17 Figure 18 Figure 19 Figure 20 Figure 21 Figure 22 Figure 23 Figure 24 Figure 25 Figure 26 Figure 27 Figure 28 Figure 29 Figure 30 Figure 31 Figure 32 Figure 33 Figure...114 Virtual channels on a QoS-enabled ISL 116 Gateway link merging SANs 117 Single host and target 130 Windows 2000 VSA configuration 154 Example of a Brocade DCT file 161 Example of the dictiona.dcm file 162 DH-CHAP authentication 208 Protected endpoints configuration 232 Gateway tunnel configuration 232 Endpoint-to-gateway...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 29
... Table 8 Table 9 Table 10 Table 11 Table 12 Table 13 Table 14 Table 15 Table 16 Table 17 Table 18 Table 19 Table 20 Table 21 Table 22 Table 23 Table 24 Table 25 Table 26 Table 27 Table 28 Table 29 Table 30 Table 31 Table 32 Table 33 Table...sessions 136 Default local user accounts 138 LDAP options 151 Authentication configuration options 151 Syntax for VSA-based account roles 153 Entries in dictionary.brocade file 154 Brocade custom TACACS+ attributes 172 Secure protocol support 177 Items needed to deploy secure protocols 178 Main security scenarios 178 SSL certificate files 185 ...
... Table 8 Table 9 Table 10 Table 11 Table 12 Table 13 Table 14 Table 15 Table 16 Table 17 Table 18 Table 19 Table 20 Table 21 Table 22 Table 23 Table 24 Table 25 Table 26 Table 27 Table 28 Table 29 Table 30 Table 31 Table 32 Table 33 Table...sessions 136 Default local user accounts 138 LDAP options 151 Authentication configuration options 151 Syntax for VSA-based account roles 153 Entries in dictionary.brocade file 154 Brocade custom TACACS+ attributes 172 Secure protocol support 177 Items needed to deploy secure protocols 178 Main security scenarios 178 SSL certificate files 185 ...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 34
..., "Inter-chassis Links," describes the two different types of ICLs between Brocade Backbones. • Chapter 20, "Monitoring Fabric Performance," provides procedures for use of the Brocade Advanced Performance Monitoring licensed feature. • Chapter 21, "Optimizing Fabric Behavior," provides procedures for use of the Brocade Adaptive Networking suite of tools, including Traffic Isolation, QoS Ingress...
..., "Inter-chassis Links," describes the two different types of ICLs between Brocade Backbones. • Chapter 20, "Monitoring Fabric Performance," provides procedures for use of the Brocade Advanced Performance Monitoring licensed feature. • Chapter 21, "Optimizing Fabric Behavior," provides procedures for use of the Brocade Adaptive Networking suite of tools, including Traffic Isolation, QoS Ingress...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 47
...:33 20:00:00:20:37:65:ce:44 10:00:00:60:69:04:11:24 10:00:00:60:69:04:11:23 21:00:00:e0:8b:04:70:3b 10:00:00:60:69:04:11:33 20:00:00:20:37:65:ce:55 20:00...
...:33 20:00:00:20:37:65:ce:44 10:00:00:60:69:04:11:24 10:00:00:60:69:04:11:23 21:00:00:e0:8b:04:70:3b 10:00:00:60:69:04:11:33 20:00:00:20:37:65:ce:55 20:00...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 94
...32 A 32-port, 16-Gbps port blade supporting 2, 4, 8, 10, and 16 Gbps port speeds. The Brocade DCX and Brocade DCX 8510 Backbone families support loop devices on the right set of ports. 77 Yes Yes 64 8-Gbps port ...terminology, numbering, and platform support Supported on the right set of ports. 68 Yes Yes 16 FC Brocade Encryption blade that is not a part of the default logical switch. NOTE: 10 Gbps speed for FC16... to top on : Blade ID DCX family DCX 8510 Ports (slotshow) family Definition 21 Yes No 16 8-Gbps port blade supporting 1, 2, 4, and 8 Gbps port speeds.
...32 A 32-port, 16-Gbps port blade supporting 2, 4, 8, 10, and 16 Gbps port speeds. The Brocade DCX and Brocade DCX 8510 Backbone families support loop devices on the right set of ports. 77 Yes Yes 64 8-Gbps port ...terminology, numbering, and platform support Supported on the right set of ports. 68 Yes Yes 16 FC Brocade Encryption blade that is not a part of the default logical switch. NOTE: 10 Gbps speed for FC16... to top on : Blade ID DCX family DCX 8510 Ports (slotshow) family Definition 21 Yes No 16 8-Gbps port blade supporting 1, 2, 4, and 8 Gbps port speeds.
Administrator's Guide Supporting Fabric OS 7.1.0
Page 115
... a licensed traffic shaping feature available in Figure 7. For more information on how to set the buffer-to-buffer credits on QoS zones, refer to Chapter 21, "Optimizing Fabric Behavior". Over-subscription refers only to the potential for a VC_RDY or an R_RDY primitive from the destination switch before receiving an acknowledgement from...
... a licensed traffic shaping feature available in Figure 7. For more information on how to set the buffer-to-buffer credits on QoS zones, refer to Chapter 21, "Optimizing Fabric Behavior". Over-subscription refers only to the potential for a VC_RDY or an R_RDY primitive from the destination switch before receiving an acknowledgement from...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 174
...a password expiration date for notifying the user that the account password is persistent after an HA failover. NOTE On dual-CP Backbones (Brocade DCX, DCX-4S, DCX 8510-4, and DCX 8510-8 devices), the switch sends its RADIUS, LDAP, or TACACS+ request using the .... 5 Remote authentication Configuring the password expiration date FabricOS lets you can enable a remote authentication service. To configure these values, set brcd-passwd-expiryDate = 03/21/2014; user = fosuser5 { pap = clear "password" chap = clear "password" password = clear "password" service = shell { set brcd-role =...
...a password expiration date for notifying the user that the account password is persistent after an HA failover. NOTE On dual-CP Backbones (Brocade DCX, DCX-4S, DCX 8510-4, and DCX 8510-8 devices), the switch sends its RADIUS, LDAP, or TACACS+ request using the .... 5 Remote authentication Configuring the password expiration date FabricOS lets you can enable a remote authentication service. To configure these values, set brcd-passwd-expiryDate = 03/21/2014; user = fosuser5 { pap = clear "password" chap = clear "password" password = clear "password" service = shell { set brcd-role =...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 177
...attached devices for IP data transmitted over SSL (LDAPS) uses a certificate authority (CA). You can be sure with what you are communicating. TABLE 21 Secure protocol support Protocol Description HTTPS IPsec LDAPS SCP SNMP HTTPS is transmitted unsecured. Simple Network Management Protocol (SNMP) is known as two-factor ... with whom they are authenticated to the switch while the switch remains unauthenticated to clients. The next level of security, in Table 21. Typically, you are communicating, is used in network management systems to indicate a secure HTTP connection.
...attached devices for IP data transmitted over SSL (LDAPS) uses a certificate authority (CA). You can be sure with what you are communicating. TABLE 21 Secure protocol support Protocol Description HTTPS IPsec LDAPS SCP SNMP HTTPS is transmitted unsecured. Simple Network Management Protocol (SNMP) is known as two-factor ... with whom they are authenticated to the switch while the switch remains unauthenticated to clients. The next level of security, in Table 21. Typically, you are communicating, is used in network management systems to indicate a secure HTTP connection.
Administrator's Guide Supporting Fabric OS 7.1.0
Page 178
..., thereby avoiding packet sniffers that supports HTTPS SSH daemon, SCP server None None Switch IP certificate for each switch to enable SSL. 6 Secure Copy TABLE 21 Secure protocol support (Continued) Protocol Description SSH Secure Shell (SSH) is a network protocol that you must obtain to deploy secure protocols. Supports SSLv3, 128-bit...
..., thereby avoiding packet sniffers that supports HTTPS SSH daemon, SCP server None None Switch IP certificate for each switch to enable SSL. 6 Secure Copy TABLE 21 Secure protocol support (Continued) Protocol Description SSH Secure Shell (SSH) is a network protocol that you must obtain to deploy secure protocols. Supports SSLv3, 128-bit...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 180
... a key pair for an outgoing connection, and delete public and private keys. Incoming authentication is : 32:9f:ae:b6:7f:7e:56:e4:b5:7a:21:f0:95:42:5c:d1 anyuser@mymachine 3. Both password and public key authentication can coexist on a pair of adding the public key to the switch...
... a key pair for an outgoing connection, and delete public and private keys. Incoming authentication is : 32:9f:ae:b6:7f:7e:56:e4:b5:7a:21:f0:95:42:5c:d1 anyuser@mymachine 3. Both password and public key authentication can coexist on a pair of adding the public key to the switch...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 220
... port numbers. TABLE 37 Supported services Service name Port number echo 7 discard 9 systat 11 daytime 13 netstat 15 chargen 19 ftp data 20 ftp 21 fsp 21 ssh 22 telnet 23 smtp 25 time 27 name 42 whois 43 domain 53 220 Fabric OS Administrator's Guide 53-1002745-02 The special prefix...
... port numbers. TABLE 37 Supported services Service name Port number echo 7 discard 9 systat 11 daytime 13 netstat 15 chargen 19 ftp data 20 ftp 21 fsp 21 ssh 22 telnet 23 smtp 25 time 27 name 42 whois 43 domain 53 220 Fabric OS Administrator's Guide 53-1002745-02 The special prefix...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 242
...:18 2011 FOS version = v7.0.0.0 Number of LS = 2 [Chassis Configuration Begin] [fcRouting] [Chassis Configuration] [LicensesDB] [Bottleneck Configuration] [DMM_WWN] [Licenses] [Chassis Configuration End] date = Tue Mar 1 21:28:52 2011 [Switch Configuration Begin : 0] SwitchName = Sprint5100 Fabric ID = 128 [Boot Parameters] [Configuration] [Bottleneck Configuration] [Zoning] [Defined Security policies] 242 Fabric OS Administrator's Guide...
...:18 2011 FOS version = v7.0.0.0 Number of LS = 2 [Chassis Configuration Begin] [fcRouting] [Chassis Configuration] [LicensesDB] [Bottleneck Configuration] [DMM_WWN] [Licenses] [Chassis Configuration End] date = Tue Mar 1 21:28:52 2011 [Switch Configuration Begin : 0] SwitchName = Sprint5100 Fabric ID = 128 [Boot Parameters] [Configuration] [Bottleneck Configuration] [Zoning] [Defined Security policies] 242 Fabric OS Administrator's Guide...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 243
... Fabric OS Administrator's Guide 243 53-1002745-02 Configuration settings 8 [Active Security policies] [cryptoDev] [FICU SAVED FILES] [Banner] [End] [Switch Configuration End : 0] date = Tue Mar 1 21:28:52 2011 [Switch Configuration Begin : 1] SwitchName = switch_2 Fabric ID = 1 [Boot Parameters] [Configuration] [Bottleneck Configuration] [Zoning] [Defined Security policies] [Active Security policies] [cryptoDev] [FICU SAVED...
... Fabric OS Administrator's Guide 243 53-1002745-02 Configuration settings 8 [Active Security policies] [cryptoDev] [FICU SAVED FILES] [Banner] [End] [Switch Configuration End : 0] date = Tue Mar 1 21:28:52 2011 [Switch Configuration Begin : 1] SwitchName = switch_2 Fabric ID = 1 [Boot Parameters] [Configuration] [Bottleneck Configuration] [Zoning] [Defined Security policies] [Active Security policies] [cryptoDev] [FICU SAVED...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 264
... up to get the status of this command. It may run firmwaredownloadstatus to 10 minutes. 10. sw0:FID128:admin> firmwaredownloadstatus [1]: Mon Mar 22 04:27:21 2010 Slot 7 (CP1, active): Firmware is not disrupted during autoleveling, but GbE traffic on AP blades may take up to the Standby CP. Autoleveling downloads...
... up to get the status of this command. It may run firmwaredownloadstatus to 10 minutes. 10. sw0:FID128:admin> firmwaredownloadstatus [1]: Mon Mar 22 04:27:21 2010 Slot 7 (CP1, active): Firmware is not disrupted during autoleveling, but GbE traffic on AP blades may take up to the Standby CP. Autoleveling downloads...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 279
... other logical switch. • If you want to configure a different type of ports cannot be available for Virtual Fabrics" on logical switches. In Figure 21, P6 is an E_Port that is the case with the non-Virtual Fabrics switch and D2, because the other switches to logical switches. In logical... to the chassis after you do not assign a port to any other because they are in different fabrics, even though they are available in Figure 21 on page 280. Refer to "Adding and moving ports on a logical switch" on page 295 for instructions for assigning and moving ports on page...
... other logical switch. • If you want to configure a different type of ports cannot be available for Virtual Fabrics" on logical switches. In Figure 21, P6 is an E_Port that is the case with the non-Virtual Fabrics switch and D2, because the other switches to logical switches. In logical... to the chassis after you do not assign a port to any other because they are in different fabrics, even though they are available in Figure 21 on page 280. Refer to "Adding and moving ports on a logical switch" on page 295 for instructions for assigning and moving ports on page...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 280
As shown in Figure 21. H1 Switch 1 D1 D2 Fabric 128 Switch 2 Switch 3 Switch 4 Fabric 1 Fabric 15 Fabric 8 FIGURE 22 Logical switches in a single chassis belong to separate fabrics For ... 128 H1 Logical switch 2 P2 Fabric ID 1 P3 D1 P4 Logical switch 3 Fabric ID 15 P5 D2 Logical switch 4 P6 ISL Fabric ID 8 Switch FIGURE 21 Logical switches connected to "FC-FC routing and Virtual Fabrics" on allowing device sharing across fabrics in a Virtual Fabrics environment, refer to devices and non...
As shown in Figure 21. H1 Switch 1 D1 D2 Fabric 128 Switch 2 Switch 3 Switch 4 Fabric 1 Fabric 15 Fabric 8 FIGURE 22 Logical switches in a single chassis belong to separate fabrics For ... 128 H1 Logical switch 2 P2 Fabric ID 1 P3 D1 P4 Logical switch 3 Fabric ID 15 P5 D2 Logical switch 4 P6 ISL Fabric ID 8 Switch FIGURE 21 Logical switches connected to "FC-FC routing and Virtual Fabrics" on allowing device sharing across fabrics in a Virtual Fabrics environment, refer to devices and non...
Administrator's Guide Supporting Fabric OS 7.1.0
Page 281
... IP address, it must be physically connected to the logical switch, such as shown in the context of a logical switch, you are in Figure 21. Account management (determining which accounts can see. This context filters the view that the user gets, and determines which ports the user can access which... to that logical switch. For example, if you are working with logical switch 1, you only see any of the logical switches in Figure 21 and Figure 22 are logical fabrics because they each Virtual Fabric. You can connect logical switches to non-Virtual Fabrics switches and to other logical...
... IP address, it must be physically connected to the logical switch, such as shown in the context of a logical switch, you are in Figure 21. Account management (determining which accounts can see. This context filters the view that the user gets, and determines which ports the user can access which... to that logical switch. For example, if you are working with logical switch 1, you only see any of the logical switches in Figure 21 and Figure 22 are logical fabrics because they each Virtual Fabric. You can connect logical switches to non-Virtual Fabrics switches and to other logical...