Q-Logic 5602 User Manual

Download

Simplify

SANbox 5000 Series

Fibre Channel Switch

Command Line Interface Guide

Firmware Version 6.7

59183-01 A Page i

SANbox 5000 Series Fibre Channel Switch Command Line Interface Guide

Information furnished in this manual is believed to be accurate and reliable. However, QLogic Corporation assumes no responsibility for its use, nor for any infringements of patents or other rights of third parties which may result from its use. QLogic Corporation reserves the right to change product specifications at any time without notice. Applications described in this document for any of these products are for illustrative purposes only. QLogic Corporation makes no representation nor warranty that such applications are suitable for the specified use without further testing or modification. QLogic Corporation assumes no responsibility for any errors that may appear in this document.

This SANbox switch is covered by one or more of the following patents: 6697359; other patents pending.

QLogic and SANbox are trademarks or registered trademarks of QLogic Corporation. Microsoft, Windows NT, and Windows 2000/2003, and Internet Explorer are registered trademarks of Microsoft

Corporation. All other brand and product names are trademarks or registered trademarks of their respective owners.

Document Revision History

Release, Revision A, July 25, 2007 Firmware Version 6.7

Enterprise Fabric Suite 2007 version 6.07

QLogic Corporation, 26650 Aliso Viejo Parkway, Aliso Viejo, CA 92656, (800) 662-4471 or (949) 389-6000

Page ii 59183-01 A

First Published: December 2005

Section 1 Introduction

1.1 Switch Models and Examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1-2

1.2 Intended Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1-2

1.3 Related Materials . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1-2

1.4 New in This Release . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1-3

1.5 Technical Support. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1-4

1.5.1 Availability . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1-4

1.5.2 Training . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1-4

1.5.3 Contact Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1-5

Section 2 Command Line Interface Usage

2.1 Logging In to the Switch. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-2

2.2 Opening and Closing an Admin Session . . . . . . . . . . . . . . . . . . . . . . . . . . .2-3

2.3 Entering Commands. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-3

2.4 Getting Help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-4

2.5 Setting Page Breaks. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-4

2.6 Creating a Support File . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-5

2.7 Downloading and Uploading Files . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-7

Section 3 User Account Configuration

3.1 Displaying User Account Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3-2

3.2 Creating User Accounts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3-3

3.3 Modifying User Accounts and Passwords . . . . . . . . . . . . . . . . . . . . . . . . . .3-4

Section 4 Network and Fabric Configuration

4.1 Displaying Name Server Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4-2

4.2 Displaying the Ethernet Network Configuration . . . . . . . . . . . . . . . . . . . . . .4-3

4.3 Configuring the Ethernet Port. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4-4

4.4 Verifying a Switch in the Network. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4-5

4.5 Verifying and Tracing Fibre Channel Connections. . . . . . . . . . . . . . . . . . . .4-5

Section 5 Switch Configuration

5.1 Displaying Switch Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-1

5.1.1 Switch Operational Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-2

5.1.2 System Process Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-3

5.1.3 Elapsed Time Between Resets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-4

59183-01 A Page iii

SANbox 5000 Series Fibre Channel Switch Command Line Interface Guide

5.1.4 Configuration Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-5

5.1.4.1 Switch Configuration Parameters. . . . . . . . . . . . . . . . . . . . . . . .5-5

5.1.4.2 Zoning Configuration Parameters. . . . . . . . . . . . . . . . . . . . . . . .5-6

5.1.4.3 Security Configuration Parameters. . . . . . . . . . . . . . . . . . . . . . .5-6

5.1.5 Hardware Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-7

5.1.6 Firmware Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-8

5.2 Managing Switch Services. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-9

5.3 Managing Switch Configurations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-11

5.3.1 Display a List of Switch Configurations. . . . . . . . . . . . . . . . . . . . . . . .5-11

5.3.2 Activate a Switch Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-11

5.3.3 Copy a Switch Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-12

5.3.4 Delete a Switch Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-12

5.3.5 Modify a Switch Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-12

5.3.6 Back Up and Restore a Switch Configuration . . . . . . . . . . . . . . . . . . .5-14

5.3.6.1 Creating the Backup File . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-14

5.3.6.2 Downloading the Configuration File . . . . . . . . . . . . . . . . . . . . . .5-15

5.3.6.3 Restoring the Configuration File. . . . . . . . . . . . . . . . . . . . . . . . .5-16

5.4 Paging a Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-17

5.5 Setting the Date and Time . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-17

5.6 Resetting a Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-20

5.7 Installing Firmware. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-20

5.7.1 Nondisruptive Activation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-21

5.7.2 One-Step Firmware Installation. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-21

5.7.3 Custom Firmware Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-23

5.8 Managing Switch Feature Upgrades . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-24

5.8.1 Display Feature Licenses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-24

5.8.2 Install a Feature License Key . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-25

Section 6 Port Configuration

6.1 Displaying Port Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-1

6.1.1 Port Configuration Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-2

6.1.2 Port Operational Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-3

6.1.3 Port Threshold Alarm Configuration Parameters. . . . . . . . . . . . . . . . .6-4

6.1.4 Port Performance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-5

6.1.5 Transceiver Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-6

6.2 Modifying Port Operating Characteristics. . . . . . . . . . . . . . . . . . . . . . . . . . .6-7

6.3 Port Binding . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-8

6.4 Resetting a Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-9

6.5 Configuring Port Threshold Alarms . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-10

6.6 Testing a Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-12

Page iv 59183-01 A

SANbox 5000 Series Fibre Channel Switch

6.6.1 Online Tests for Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-12

6.6.2 Offline Tests for Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-13

6.6.3 Display Port Test Results. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-14

6.6.4 Cancel a Port Test. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-14

6.7 Extending Port Transmission Distance. . . . . . . . . . . . . . . . . . . . . . . . . . . . .6-15

Command Line Interface Guide

Section 7 Zoning Configuration

7.1 Displaying Zoning Database Information . . . . . . . . . . . . . . . . . . . . . . . . . . .7-2

7.1.1 Configured Zone Set Information . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-2

7.1.2 Active Zone Set Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-4

7.1.3 Zone Set Membership Information . . . . . . . . . . . . . . . . . . . . . . . . . . .7-5

7.1.4 Zone Membership Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-5

7.1.5 Alias and Alias Membership Information. . . . . . . . . . . . . . . . . . . . . . .7-6

7.1.6 Zoning Modification History. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-7

7.1.7 Zoning Database Limits. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-8

7.2 Configuring the Zoning Database. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-9

7.3 Modifying the Zoning Database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-11

7.4 Resetting the Zoning Database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-12

7.5 Removing Inactive Zone Sets, Zones, and Aliases . . . . . . . . . . . . . . . . . . .7-12

7.6 Managing Zone Sets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-13

7.6.1 Create a Zone Set. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-13

7.6.2 Delete a Zone Set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-13

7.6.3 Rename a Zone Set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-14

7.6.4 Copy a Zone Set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-14

7.6.5 Add Zones to a Zone Set. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-14

7.6.6 Remove Zones from a Zone Set . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-14

7.6.7 Activate a Zone Set. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-14

7.6.8 Deactivate a Zone Set. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-15

7.7 Managing Zones. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-15

7.7.1 Create a Zone . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-15

7.7.2 Delete a Zone . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-15

7.7.3 Rename a Zone. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-16

7.7.4 Copy a Zone . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-16

7.7.5 Add Members to a Zone . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-16

7.7.6 Remove Members from a Zone. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-16

7.8 Managing Aliases. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-17

7.8.1 Create an Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-17

7.8.2 Delete an Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-17

7.8.3 Rename an Alias. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-17

7.8.4 Copy an Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-18

59183-01 A Page v

SANbox 5000 Series Fibre Channel Switch Command Line Interface Guide

7.8.5 Add Members to an Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-18

7.8.6 Remove Members from an Alias. . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-18

Section 8 Connection Security Configuration

8.1 Managing SSL and SSH Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8-1

8.2 Displaying SSL and SSH Services. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8-3

8.3 Creating an SSL Security Certificate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8-3

Section 9 Device Security Configuration

9.1 Displaying Security Database Information . . . . . . . . . . . . . . . . . . . . . . . . . .9-2

9.1.1 Configured Security Set Information . . . . . . . . . . . . . . . . . . . . . . . . . .9-2

9.1.2 Active Security Set Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-4

9.1.3 Security Set Membership Information . . . . . . . . . . . . . . . . . . . . . . . . .9-5

9.1.4 Group Membership Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-5

9.1.5 Security Database Modification History. . . . . . . . . . . . . . . . . . . . . . . .9-6

9.1.6 Security Database Limits. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-6

9.2 Configuring the Security Database. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-7

9.3 Modifying the Security Database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-9

9.4 Resetting the Security Database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-9

9.5 Managing Security Sets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-10

9.5.1 Create a Security Set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-10

9.5.2 Delete a Security Set. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-10

9.5.3 Rename a Security Set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-10

9.5.4 Copy a Security Set. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-10

9.5.5 Add Groups to a Security Set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-11

9.5.6 Remove Groups from a Security Set. . . . . . . . . . . . . . . . . . . . . . . . . .9-11

9.5.7 Activate a Security Set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-11

9.5.8 Deactivate a Security Set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-11

9.6 Managing Groups. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-12

9.6.1 Create a Group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-12

9.6.2 Delete a Group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-12

9.6.3 Rename a Group. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-12

9.6.4 Copy a Group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-13

9.6.5 Add Members to a Group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-13

9.6.6 Modify a Group Member . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-14

9.6.7 Remove Members from a Group. . . . . . . . . . . . . . . . . . . . . . . . . . . . .9-14

Section 10 RADIUS Server Configuration

10.1 Displaying RADIUS Server Information . . . . . . . . . . . . . . . . . . . . . . . . . . . .10-2

10.2 Configuring a RADIUS Server on the Switch. . . . . . . . . . . . . . . . . . . . . . . .10-3

Page vi 59183-01 A

SANbox 5000 Series Fibre Channel Switch

Command Line Interface Guide

Section 11 Event Log Configuration

11.1 Starting and Stopping Event Logging. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .11-1

11.2 Displaying the Event Log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .11-2

11.2.1 Filtering the Event Log Display . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .11-3

11.2.2 Controlling Messages in the Output Stream . . . . . . . . . . . . . . . . . . . .11-3

11.3 Managing the Event Log Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . .11-4

11.3.1 Configure the Event Log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .11-4

11.3.2 Display the Event Log Configuration. . . . . . . . . . . . . . . . . . . . . . . . . .11-5

11.3.3 Restore the Event Log Configuration . . . . . . . . . . . . . . . . . . . . . . . . .11-5

11.4 Clearing the Event Log. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .11-5

11.5 Logging to a Remote Host . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .11-6

11.6 Creating and Downloading a Log File . . . . . . . . . . . . . . . . . . . . . . . . . . . . .11-7

Section 12 Simple Network Management Protocol Configuration

12.1 Managing the SNMP Service. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .12-1

12.2 Displaying SNMP Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .12-3

12.3 Modifying the SNMP Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .12-4

12.4 Resetting the SNMP Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .12-5

Section 13 Command Reference

13.1 Access Authority. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-1

13.2 Syntax and Keywords. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-2

13.3 Notes and Examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-2

13.4 Command Listing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-3

Admin . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-4

Alias. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-5

Config . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-7

Create . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-10

Date. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-13

Exit. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-14

Fcping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-15

Fctrace. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-16

Feature . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-18

Firmware Install. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-20

Group. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-22

Hardreset. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-30

Help. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-31

History . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-32

Hotreset. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-33

Image. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-34

59183-01 A Page vii

SANbox 5000 Series Fibre Channel Switch Command Line Interface Guide

Lip . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-37

Logout . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-38

Passwd . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-39

Ping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-40

Ps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-41

Quit . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-42

Reset. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-43

Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-52

Securityset. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-56

Set Alarm. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-59

Set Beacon . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-60

Set Config Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-61

Set Config Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-67

Set Config Security Portbinding. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-69

Set Config Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-70

Set Config Threshold. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-72

Set Config Zoning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-74

Set Log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-76

Set Pagebreak. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-80

Set Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-82

Set Setup Radius. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-84

Set Setup Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-87

Set Setup SNMP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-90

Set Setup System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-93

Set Switch State . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-95

Set Timezone . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-96

Show About. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-97

Show Alarm. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-98

Show Broadcast . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-99

Show Chassis . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-100

Show Config Port. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-101

Show Config Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-103

Show Config Security Portbinding. . . . . . . . . . . . . . . . . . . . . . . . . . . .13-104

Show Config Switch. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-105

Show Config Threshold. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-106

Show Config Zoning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-107

Show Domains . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-108

Show Donor. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-109

Show Fabric. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-110

Page viii 59183-01 A

SANbox 5000 Series Fibre Channel Switch

Command Line Interface Guide

Show FDMI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-111

Show Interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-113

Show Log. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-114

Show LSDB. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-117

Show Media. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-118

Show Mem. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-122

Show NS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-123

Show Pagebreak. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-125

Show Perf . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-126

Show Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-129

Show Post Log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-134

Show Setup Mfg . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-135

Show Setup Radius. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-136

Show Setup Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-137

Show Setup SNMP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-138

Show Setup System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-139

Show Steering. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-140

Show Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-141

Show Timezone. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-143

Show Topology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-144

Show Users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-146

Show Version. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-147

Shutdown . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-148

Test Cancel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-149

Test Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-150

Test Status. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-153

Uptime. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-154

User. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-155

Whoami . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-158

Zone . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-159

Zoneset . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-163

Zoning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-166

Index

59183-01 A Page ix

SANbox 5000 Series Fibre Channel Switch Command Line Interface Guide

List of Tables

Table Page

2-1 Command-Line Completion . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-3

3-1 Factory User Accounts. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3-1

5-1 Heartbeat LED Activity. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-7

5-2 Switch Reset Methods . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5-20

13-1 ISL Group Member Attributes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-23

13-2 Port Group Member Attributes. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-24

13-3 MS Group Member Attributes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-25

13-4 Group Member Attributes. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-26

13-5 Switch Configuration Defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-46

13-6 Port Configuration Defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-47

13-7 Port Threshold Alarm Configuration Defaults. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-48

13-8 Zoning Configuration Defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-49

13-9 SNMP Configuration Defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-49

13-10 RADIUS Configuration Defaults. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-50

13-11 Services Configuration Defaults. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-50

13-12 System Configuration Defaults. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-51

13-13 Security Configuration Defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-51

13-14 Port Configuration Parameters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-61

13-15 Security Configuration Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-67

13-16 Port Binding Configuration Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-69

13-17 Switch Configuration Parameters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-70

13-18 Port Alarm Threshold Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-72

13-19 Zoning Configuration Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-74

13-20 RADIUS Service Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-84

13-21 Switch Services Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-87

13-22 SNMP Configuration Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-90

13-23 System Configuration Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-93

13-24 Log Monitoring Components . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-114

13-25 Transceiver Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-118

13-26 Show Port Parameters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-129

13-27 Switch Operational Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-141

13-28 Port Test Parameters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-151

13-29 Zoning Database Limits . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-167

Page x 59183-01A

Section 1

Introduction

This guide describes the features and use of the command line interface for SANbox 5000 Series switches running firmware version 6.7. This guide is organized as follows:

 Section 1 describes switch models and features, the intended audience,

related materials, new items in this release, and technical support.

 Section 2 describes logging on and off of a switch, opening and closing an

Admin session, entering commands, getting help, paging a switch, setting page breaks, and loading and retrieving files.

 Section 3 describes the management of user accounts and passwords.  Section 4 describes configuring the switch network connection.  Section 5 describes managing the switch configuration, setting the date and

time, backing up and restoring the switch configuration, resetting the switch, installing firmware, and installing feature licenses.

 Section 6 describes port configurations, resetting a port, initializing a port

loop, configuring port threshold alarms, and testing ports.

 Section 7 describes managing the zoning database and configuring

interoperability.

 Section 8 describes managing connection security.  Section 9 describes managing device security.  Section 10 describes managing the Remote Authentication Dial-In User

Service (RADIUS) server.

 Section 11 describes events and event logging.  Section 12 describes managing the Simple Network Management Protocol

(SNMP) configuration.

 Section 13 lists the commands in alphabetical order, including the command

syntax, keywords, notes, and examples.

59183-01 A 1-1

An index and a glossary are also provided.

1 – Introduction Switch Models and Examples

1.1

Switch Models and Examples

The commands and displays of the command line interface vary depending on the switch model. All examples in this guide are taken from a SANbox 5600 switch unless stated otherwise.

1.2

Intended Audience

This guide is intended for individuals who are responsible for installing and servicing Fibre Channel equipment using the command line interface.

1.3

Related Materials

The following manuals and materials are referenced in the text and/or provide additional information.

 SANbox 5000 Series Fibre Channel Switch Installation Guide, 59096-04  SANbox 5000 Series QuickTools Switch Management User Guide,

59235-01

 SANbox 5000 Series Enterprise Fabric Suite 2007 User Guide, 59097-04  SANbox Simple Network Management Protocol Reference Guide,

publication number 59047-07

 CIM Agent Reference Guide, 59223-01

 SANbox CLI Quick Reference Guide, 59261-00  QLogic Switch Interoperability Guide v3.0. This PDF document can be

downloaded at http://www.qlogic.com/interopguide/info.asp#inter.

 Fibre Channel-Arbitrated Loop (FC-AL-2) Rev. 7.0.  Fibre Channel-10-bit Interface Rev. 2.3.  Definitions of Managed Objects for the Fabric Element in Fibre Channel

St a ndard (draft-ietf-ipfc-fabric-element-mib-04.txt).

The Fibre Channel Standards are available from:

Global Engineering Documents, 15 Inverness Way East, Englewood, CO 80112-5776 Phone: (800) 854-7179 or (303) 397-7956 Fax: (303) 397-2740.

1-2 59183-01 A

1.4

New in This Release

The following features are new in this release:  The switch is equipped with the QuickTools embedded graphical user

interface. QuickTools is a web applet that provides basic fabric management tools.

 The following optional features are available with the purchase and

installation of a license key:  Enterprise Fabric Suite 2007 is a workstation-based Java® application

that provides a graphical user interface for fabric management. This includes Performance View which graphs port performance. Enterprise Fabric Suite 2007 comes with a free 30-day trial license.

 Fabric Security provides for Secure Socket Layer (SSL) and Secure

Shell (SSH) connection security, device security using Challenge Handshake Authentication Protocol (CHAP), and remote authentication using a Remote Authentication Dial-In User Service (RADIUS) server.

 SANdoctor provides tools for Fibre Channel connection verification

(Fcping command), Fibre Channel route tracing (Fctrace command), and transceiver diagnostic information (Show Media command).

 Port Activation enables additional Fibre Channel ports up to the

20-port maximum.

 You can download firmware image files using Trivial File Transfer Protocol

(TFTP) using the Firmware Install, Image Install, and Image TFTP commands.

1 – Introduction

New in This Release

 The Zoning Delete Orphans command removes inactive zone sets and all

zones and aliases not in the active zone set.

 Implicit hard zoning enforces soft zone boundaries effectively converting

them to hard zones.

 Port binding establishes a list of port/devices that are permitted to log in to a

switch port. Port binding is configured using the

59183-01 A 1-3

Set Config Security Portbinding command.

1 – Introduction Technical Support

1.5

Technical Support

Customers should contact their authorized maintenance provider for technical support of their QLogic switch products. QLogic-direct customers may contact QLogic Technical Support; others will be redirected to their authorized maintenance provider.

Visit the QLogic support Web site listed in Contact Information for the latest firmware and software updates.

1.5.1

Availability

QLogic Technical Support for products under warranty is available during local standard working hours excluding QLogic Observed Holidays.

1.5.2

Training

QLogic offers certification training for the technical professional for both the SANblade™ HBAs and the SANbox switches. From the training link at

www.qlogic.com, you may choose Electronic-Based Training or schedule an

intensive "hands-on" Certification course.

Technical Certification courses include installation, maintenance and troubleshooting QLogic SAN products. Upon demonstrating knowledge using live equipment, QLogic awards a certificate identifying the student as a Certified Professional. The training professionals at QLogic may be reached by email at tech.training@qlogic.com.

1-4 59183-01 A

1.5.3

Contact Information

Support Headquarters QLogic Corporation

QLogic Web Site www.qlogic.com Technical Support Web Site support.qlogic.com Technical Support Email support@qlogic.com Technical Training Email tech.training@qlogic.com

North American Region

Email support@qlogic.com Phone +1-952-932-4040

1 – Introduction

Technical Support

12984 Valley View Road Eden Prairie, MN 55344-3657 USA

Fax +1 952-974-4910

Europe, Middle East, and Africa Region

Email emeasupport@qlogic.com Phone Numbers by Language +353 1 6924960 - English

+353 1 6924961 - Français +353 1 6924962 - Deutsch +353 1 6924963 - Español +353 1 6924964 - Português +353 1 6924965 - Italiano

Asia Pacific Region

Email apacsupport@qlogic.com Phone Numbers by Language +63-2-885-6712 - English

+63-2-885-6713 - (Mandarin) +63-2-885-6714 - (Japanese) +63-2-885-6715 - (Korean)

Latin and South America Region

Email calasupport@qlogic.com Phone Numbers by Language +52 55 5278 7016 - English

+52 55 5278 7017 - Español +52 55 5278 7015 - Português

59183-01 A 1-5

1 – Introduction Technical Support

Notes

1-6 59183-01 A

Section 2

Command Line Interface Usage

This section describes the following tasks:

 Logging In to the Switch  Opening and Closing an Admin Session  Entering Commands  Getting Help  Setting Page Breaks  Creating a Support File  Downloading and Uploading Files

NOTE: Throughout this document, references in text to commands and

keywords use initial capitalization for clarity. Actual command and keyword entries are case insensitive

59183-01 A 2-1

2 – Command Line Interface Usage Logging In to the Switch

2.1

Logging In to the Switch

To log in to a switch through Telnet, open a command line window on the workstation and enter the Telnet command followed by the switch IP address:

# telnet ip_address

The Telnet window opens prompting you for a login. Enter an account name and password. The default account name is admin, and its password is password.

switch login:admin password: xxxxxxxx

Warning: Your user account password has not been changed It is strongly recommended that you do so before proceeding

To log off, enter the Exit command:

SANbox #> exit

To log in to a switch through the serial port, config ure the workst ation port with the following settings:

 9600 baud  8-bit character  1 stop bit  No parity

Enter an account name and password when prompted.

NOTE: A switch supports a combined maximum of 19 logins or sessions

reserved as follows:  4 logins or sessions for internal applications such as management

server and SNMP

 9 high priority Telnet sessions  6 logins or sessions for Enterprise Fabric Suite 2007 inband and

out-of-band logins, Application Programming Interface (API) inband and out-of-band logins, and Telnet logins. Additional logins will be refused.

2-2 59183-01 A

2.2

Opening and Closing an Admin Session

The command line interface performs monitoring and configuration tasks. Commands that perform monitoring tasks are available to all user accounts. Commands that perform configuration tasks are available only after entering the

Admin Start command to open an Admin session. A user account must have

Admin authority to enter the Admin Start command. The following is an example of how to open and close an Admin session:

SANbox #> admin start SANbox (admin) #> . . . SANbox (admin) #> admin end

2 – Command Line Interface Usage

Opening and Closing an Admin Session

2.3

Entering Commands

The command-line completion feature makes entering and repeating commands easier. Table 2-1 describes the command-line completion keystrokes.

Keystroke Effect

Tab Completes the command line. Enter at least one character and press

Up Arrow Scrolls backward through the list of previously entered commands. Down Arrow Scrolls forward through the list of previously entered commands. Control-A Moves the cursor to the beginning of the command line Control-E Moves the cursor to the end of the command line. Control-U Clears the command line.

Table 2-1. Command-Line Completion

the tab key to complete the command line. If more than one possibility exists, press the Tab key again to display all possibilities.

59183-01 A 2-3

2 – Command Line Interface Usage Getting Help

2.4

Getting Help

To display help for a command, enter the Help command followed by the command. The following is an example of the help that is available for the

Config Edit command.

SANbox #> help config edit config edit [CONFIG_NAME] This command initiates a configuration session and places the current session into config edit mode. If CONFIG_NAME is given and it exists, it gets edited; otherwise, it gets created. If it is not given, the currently active configuration is edited.

Admin mode is required for this command.

Usage: config edit [CONFIG_NAME]

2.5

Setting Page Breaks

Some display commands deliver so much information to the screen that it scrolls off too quickly to read it. You can limit the display to 20 lines by turning on page breaks. By default, page breaks are turned of f.The followin g is an example of ho w to turn page breaks on and how it affects the display.

SANbox #> set pagebreak on SANbox #> zone list

Zone ZoneSet

---- ------ Zone1 alpha beta

Zone2 delta echo

Zone3 sierra tango

Zone4 gamma delta

Press any key to continue, 'q' to quit ...

2-4 59183-01 A

2.6

Creating a Support File

If you contact technical support about a problem with your switch, they may request that you create and send a support file. This support file cont ains all of the switch configuration information which can be helpful in diagnosing the problem. The Create Support command creates the support file (dump_support.tgz) on the switch. If your workstation has an FTP server, you can proceed with the command prompts to send the file from the switch to a remote host. Otherwise, you can use FTP to download the support file from the switch to your workstation.

NOTE: Support files are deleted from the switch during a power cycle or

switch reset.

The following example creates a support file and sends it to a remote host.

SANbox #> create support Log Msg:[Creating the support file - this will take several seconds] FTP the dump support file to another machine? (y/n): y Enter IP Address of remote computer: 10.20.33.130 Login name: johndoe Enter remote directory name: bin/support Would you like to continue downloading support file? (y/n) [n]: y Connected to 10.20.33.130 (10.20.33.130).

220 localhost.localdomain FTP server (Version wu-2.6.1-18) ready. 331 Password required for johndoe.

Password: xxxxxxx

2 – Command Line Interface Usage

Creating a Support File

230 User johndoe logged in. cd bin/support 250 CWD command successful.

lcd /itasca/conf/images Local directory now /itasca/conf/images bin 200 Type set to I.

put dump_support.tgz local: dump_support.tgz remote: dump_support.tgz 227 Entering Passive Mode (10,20,33,130,232,133) 150 Opening BINARY mode data connection for dump_support.tgz. 226 Transfer complete. 43430 bytes sent in 0.292 secs (1.5e+02 Kbytes/sec) Remote system type is UNIX. Using binary mode to transfer files. 221-You have transferred 43430 bytes in 1 files. 221-Total traffic for this session was 43888 bytes in 1 transfers. 221 Thank you for using the FTP service on localhost.localdomain.

59183-01 A 2-5

2 – Command Line Interface Usage Creating a Support File

If your workstation does not have an FTP server, enter the Create Support command to create the support file, and use FTP to download the support file from the switch to your workstation as shown in the following example:

SANbox #> create support Log Msg:[Creating the support file - this will take several seconds] FTP the dump support file to another machine? (y/n): n

To download the support file from the switch to the workstation, do the following:

1. Open a terminal window and move to the directory where you want to download the support file.

2. Enter the FTP command and the switch IP address or symbolic name.

>ftp 10.0.0.1

3. When prompted for a user and password, enter the FTP account name and password (images, images).

user: images password: images

4. Set binary mode and use the Get command to download the file (dump_support.tgz).

ftp>bin ftp>get dump_support.tgz xxxxx bytes sent in xx secs. ftp>quit

2-6 59183-01 A

2.7

Downloading and Uploading Files

There are several files that reside on the switch that you can download to the workstation for examination or for safekeeping. These files include the following:

 Backup configuration file (configdata)  Log files (logfile)  Support files (dump_support.tgz)

You can upload firmware image files or backup configuration files to the switch to reinstall firmware or restore a corrupted configuration. The switch uses FTP to exchange files between the switch and the workstation.

 Refer to “Installing Firmware” on page 5-20 for information about installing

firmware.

 Refer to “Back Up and Restore a Switch Configuration” on page 5-14 for

information about backing up and restoring a switch configuration.

 Refer to “Creating and Downloading a Log File” on page 11 -7 for information

about creating a log file.

 Refer to “Creating a Support File” on page 2-5 for information about creating

a support file.

2 – Command Line Interface Usage

Downloading and Uploading Files

To download a file from the switch to the workstation, do the following:

1. Enter the FTP command and the switch IP address or symbolic name.

>ftp 10.0.0.1

2. When prompted for a user and password, enter the FTP account name and password (images, images).

user: images password: images

3. Set binary mode and use the Get command to download the file (configdata).

ftp>bin ftp>get configdata xxxxx bytes sent in xx secs. ftp>quit

59183-01 A 2-7

2 – Command Line Interface Usage Downloading and Uploading Files

To upload a file from the workstation to the switch, do the following

1. Enter the FTP command and the switch IP address or symbolic name.

>ftp 10.0.0.1

2. When prompted for a user and password, enter the FTP account name and password (images, images).

user:images password: images

3. Set binary mode and use the Put command to upload the file (config_switch_169).

ftp>put config_switch_169 configdata xxxxx bytes sent in xx secs. ftp>quit

2-8 59183-01 A

Section 3

User Account Configuration

User accounts and their respective passwords are the first line of switch security. A user account consists of an account name, an authority level, an d an expira tion date. Switches come from the factory with certain user accounts defined for special purposes. Table 3-1 describes these accounts, their passwords, and their purposes. These accounts cannot be deleted from the switch.

Table 3-1. Factory User Accounts

User Account

Name

admin password This user account provides access to the Telnet

images images This user account provides access to the File Trans-

prom prom This user account provides access to the Mainte-

Password Purpose

server for managing the switch. Admin is the only account name that has permission to create and modify other user accounts. To secure your admin user account, be sure to change the password for this account.

fer Protocol (FTP) server for exchanging files between the switch and the workstation.

nance menu while in Maintenance mode to perform switch recovery tasks. Refer to the SANbox 5000 Series Fibre Channel Switch Installation Guide for information about using Maintenance mode.

This section describes the following user account configuration tasks:

 Displaying User Account Information  Creating User Accounts  Modifying User Accounts and Passwords

59183-01 A 3-1

3 – User Account Configuration Displaying User Account Information

3.1

Displaying User Account Information

You can display all user accounts defined on the switch (User Accounts command) or just those user accounts that are logged on (User List or

Show Users commands).

The following example displays all user accounts defined on the switch. Account information includes account name, authority, and expiration date.

SANbox (admin) #> user accounts

Current list of user accounts

-----------------------------

images (admin authority = False, never expires) admin (admin authority = True , never expires) chuckca (admin authority = False, expires in < 50 days) gregj (admin authority = True , expires in < 100 days) fred (admin authority = True , never expires)

The following example displays user accounts that are logged on to the switch:

SANbox (admin) #> user list

User Ethernet Addr-Port Logged in Since

---- ------------------ ---------------

admin@OB-session1 10.20.68.108-1031 day month date time year admin@OB-session2 10.20.68.108-1034 day month date time year snmp@OB-session3 Unknown day month date time year snmp@IB-session4 Unknown day month date time year admin@OB-session5 Unknown day month date time year

3-2 59183-01 A

3.2

Creating User Accounts

A user account consists of an account name, an authority level, an d an expira tion date. The account name can be up to 15 characters and must begin with an alphanumeric character. The authority level grants admin authority (true) or denies it (false). The expiration date sets the date when the user account exp ires. Only the Admin user account can create user accounts.

The following example creates a new user account named user1 with admin authority that expires in 100 days.

SANbox (admin) #> user add Press 'q' and the ENTER key to abort this command. account name (1-15 chars) : user1 account password (8-20 chars) : *******

please confirm account password: *******

set account expiration in days (0-2000, 0=never): [0] 100

3 – User Account Configuration

Creating User Accounts

should this account have admin authority? (y/n): [n] y

OK to add user account 'user1' with admin authority and to expire in 100 days?

Please confirm (y/n): [n] y

59183-01 A 3-3

3 – User Account Configuration Modifying User Accounts and Passwords

3.3

Modifying User Accounts and Passwords

Only the Admin user account can modify a user account, delete a u ser account, or change the password of another user account. However, all user accounts can change their own passwords. The User command modifies and deletes user accounts. The Passwd command changes passwords.

The following example removes the expiration date and admin authority for the user account named user1.

SANbox (admin) #> user edit

Press 'q' and the ENTER key to abort this command.

account name (1-15 chars) : user1 set account expiration in days (0-2000, 0=never): [0] should this account have admin authority? (y/n): [n]

OK to modify user account 'user1' with no admin authority and to expire in 0 days?

Please confirm (y/n): [n]

The following example deletes the user account named user3.

SANbox (admin) #> user delete user3

The user account will be deleted. Please confirm (y/n): [n] y

In the following example, the Admin user account changes the password for the user account named user2.

SANbox #> admin start SANbox (admin) #> passwd user2

Press 'q' and the ENTER key to abort this command.

account OLD password : ******** account NEW password (8-20 chars) : ********

please confirm account NEW password: ******** password has been changed.

3-4 59183-01 A

Section 4

Network and Fabric Configuration

The switch network configuration consists of the following:

 Network discovery method  IP address  Subnet mask  IP gateway address

The network discovery method determines how the switch acquires its IP address. The IP address can come from the IP address that resides on the switch or from a server. The switch supports network discovery from the following server types:

 Bootstrap Protocol (BootP)  Reverse Address Resolution Protocol (RARP)  Dynamic Host Configuration Protocol (DHCP)

This section describes the following network configuration tasks:

 Displaying Name Server Information  Displaying the Ethernet Network Configuration  Configuring the Ethernet Port  Verifying a Switch in the Network

59183-01 A 4-1

4 – Network and Fabric Configuration Displaying Name Server Information

4.1

Displaying Name Server Information

The Show NS command displays the list of WWNs in fabric as shown in the following example:

SANbox #> show ns all Seq Domain Port Port No ID ID Type COS PortWWN NodeWWN

--- ------ ------ ---- --- ------- -------

No entries found for domain ID 1.

Seq Domain Port Port No ID ID Type COS PortWWN NodeWWN

--- ------ ------ ---- --- ------- -------

No entries found for domain ID 4.

Seq Domain Port Port No ID ID Type COS PortWWN NodeWWN

--- ------ ------ ---- --- ------- -------

1 8 (0x8) 0824ba NL 3 22:00:00:20:37:2b:08:00 20:00:00:20:37:2b:08:00 2 8 (0x8) 0824c3 NL 3 22:00:00:20:37:2b:08:78 20:00:00:20:37:2b:08:78 3 8 (0x8) 0824c5 NL 3 22:00:00:20:37:1b:cf:fd 20:00:00:20:37:1b:cf:fd 4 8 (0x8) 0824c6 NL 3 22:00:00:20:37:2b:07:b4 20:00:00:20:37:2b:07:b4 5 8 (0x8) 0824c9 NL 3 22:00:00:20:37:2b:08:57 20:00:00:20:37:2b:08:57 6 8 (0x8) 0824cb NL 3 22:00:00:20:37:1b:cf:f6 20:00:00:20:37:1b:cf:f6 7 8 (0x8) 0824cc NL 3 22:00:00:20:37:2b:0b:ec 20:00:00:20:37:2b:0b:ec 8 8 (0x8) 0824d6 NL 3 22:00:00:20:37:2b:07:e1 20:00:00:20:37:2b:07:e1 9 8 (0x8) 0824da NL 3 22:00:00:20:37:2b:0b:1a 20:00:00:20:37:2b:0b:1a 10 8 (0x8) 0824e0 NL 3 22:00:00:20:37:1b:f0:7d 20:00:00:20:37:1b:f0:7d 11 8 (0x8) 0824e1 NL 3 22:00:00:20:37:2b:02:f6 20:00:00:20:37:2b:02:f6 12 8 (0x8) 0824e2 NL 3 22:00:00:20:37:1b:ea:b7 20:00:00:20:37:1b:ea:b7 13 8 (0x8) 0824e8 NL 3 22:00:00:20:37:1b:cb:e5 20:00:00:20:37:1b:cb:e5

Seq Domain Port Port No ID ID Type COS PortWWN NodeWWN

--- ------ ------ ---- --- ------- -------

No entries found for domain ID 10.

Seq Domain Port Port No ID ID Type COS PortWWN NodeWWN

--- ------ ------ ---- --- ------- -------

No entries found for domain ID 34.

4-2 59183-01 A

4 – Network and Fabric Configuration

4.2

Displaying the Ethernet Network Configuration

The Show Fabric command displays IP addresses (Enet IP Addr) for all switches in the fabric as shown in the following example.

SANbox #> show fabric Domain WWN Enet IP Addr FC IP Addr SymbolicName

------ --- ------------ ---------- ------------

16 (0x10) 10:00:00:c0:dd:00:77:81 10.20.68.11 0.0.0.0 gui sb1 .11 17 (0x11) 10:00:00:c0:dd:00:6a:2d 10.20.68.12 0.0.0.0 sw12 18 (0x12) 10:00:00:c0:dd:00:c3:04 10.20.68.160 0.0.0.0 sw .160 19 (0x13) 10:00:00:c0:dd:00:bc:56 10.20.68.108 0.0.0.0 Sb2 .108

The Show Setup System command displays the switch network configuration as shown in the following example:

SANbox #> show setup system System Information

------------------

EthNetworkEnable True EthNetworkDiscovery Static EthNetworkAddress 10.20.11.32 EthNetworkMask 255.255.252.0 EthGatewayAddress 10.20.8.254 AdminTimeout 30 InactivityTimeout 0 LocalLogEnabled True RemoteLogEnabled False RemoteLogHostAddress 10.0.0.254 NTPClientEnabled True NTPServerAddress 51.68.85.102 EmbeddedGUIEnabled True

59183-01 A 4-3

4 – Network and Fabric Configuration Configuring the Ethernet Port

4.3

Configuring the Ethernet Port

Configure the switch Ethernet port using the Set Setup System command within an Admin session. The following example configures a new IP address, subnet mask, and gateway address.

SANbox (admin) #> set setup system

A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value. If you wish to terminate this process before reaching the end of the list press 'q' or 'Q' and the ENTER key to do so.

EthNetworkDiscovery (1=Static, 2=Bootp, 3=Dhcp, 4=Rarp) [Static ] EthNetworkAddress (dot-notated IP Address) [10.0.0.1 ] 10.20.30.40 EthNetworkMask (dot-notated IP Address) [255.255.255.0] 255.0.0.0 EthGatewayAddress (dot-notated IP Address) [10.0.0.254 ] 10.20.30.254 AdminTimeout (dec value 0-1440 minutes, 0=never) [30 ] InactivityTimeout (dec value 0-1440 minutes, 0=never) [0 ] LocalLogEnabled (True / False) [True ] RemoteLogEnabled (True / False) [False ] RemoteLogHostAddress (dot-notated IP Address) [10.0.0.254 ] NTPClientEnabled (True / False) [False ] NTPServerAddress (dot-notated IP Address) [10.0.0.254 ] EmbeddedGUIEnabled (True / False) [True ]

Do you want to save and activate this system setup? (y/n): [n] y

4-4 59183-01 A

4 – Network and Fabric Configuration

4.4

Verifying a Switch in the Network

You can verify that a switch is communicating in the network using the Ping command. The following example successfully tests the network for a switch with IP address 10.20.11.57.

SANbox #> ping 10.20.11.57 Ping command issued. Waiting for response... SANbox #> Response successfully received from 10.20.11.57.

If the switch was unreachable, you would see the following display.

SANbox #> ping 10.20.11.57 Ping command issued. Waiting for response... No response from 10.20.11.57. Unreachable.

4.5

Verifying and Tracing Fibre Channel Connections

Verifying a Switch in the Network

NOTE: The Fcping and Fctrace commands require the SANdoctor license key .

To purchase a license key, contact your authorized maintenance provider or authorized reseller.

You can verify Fibre Channel connections between the switch and the fabric and display routing information. Enter the Fcping command to verify a Fibre Channel connection to a switch or a device as shown in the following example. The target device can be defined as a Fibre Channel address or a WWN.

SANbox #> fcping 970400 count 3 28 bytes from local switch to 0x970400 time = 10 usec 28 bytes from local switch to 0x970400 time = 11 usec 28 bytes from local switch to 0x970400 time = 119 usec

The following is an example of a connection failure:

SANbox #> fcping 0x113344 count 3 28 bytes from local switch to 0x113344 failed

59183-01 A 4-5

4 – Network and Fabric Configuration Verifying and Tracing Fibre Channel Connections

Enter the Fctrace command to display Fibre Channel routing information between two devices as shown in the following example. The devices can be defined as Fibre Channel addresses or WWNs.

SANbox#> fctrace 970400 970e00 hops 5

36 bytes from 0x970400 to 0x970e00, 5 hops max

Domain Ingress Port WWN Port Egress Port WWN Port

------ ---------------- ---- --------------- ----

97 20:04:00:c0:dd:02:cc:2e 4 20:0e:00:c0:dd:02:cc:2e 14 97 20:0e:00:c0:dd:02:cc:2e 14 20:04:00:c0:dd:02:cc:2e 4

4-6 59183-01 A

Switch Configuration

Switch configuration consists of the following tasks:

 Displaying Switch Information  Managing Switch Services  Managing Switch Configurations  Paging a Switch  Setting the Date and Time  Resetting a Switch  Installing Firmware  Managing Switch Feature Upgrades

5.1

Displaying Switch Information

You can display the following types of the switch information:

 Switch Operational Information  System Process Information

Section 5

 Elapsed Time Between Resets  Configuration Information  Hardware Information  Firmware Information

59183-01 A 5-1

5 – Switch Configuration Displaying Switch Information

5.1.1

Switch Operational Information

The Show Switch command displays a variety of switch operational information. These include the switch WWN, domain ID, firmware version, administrative st ate, and operational state as shown in the following example:

SANbox #> show switch Switch Information

------------------

SymbolicName SANbox SwitchWWN 10:00:00:c0:dd:00:bc:56 BootVersion Vx.x.x.x-0 (day month date time year) CreditPool 0 DomainID 19 (0x13) FirstPortAddress 130000 FlashSize - MBytes 128 LogFilterLevel Critical MaxPorts 20 NumberOfSwitchResets 15 ReasonForLastReset PowerUp ActiveImageVersion - build date Vx.x.x.0 (day month date time year) PendingImageVersion - build date Vx.x.x.0 (day month date time year) ActiveConfiguration default AdminState Online AdminModeActive False Beacon Off OperationalState Online PrincipalSwitchRole False BoardTemp (1) - Degrees Celsius 32 SwitchDiagnosticsStatus Passed SwitchTemperatureStatus Normal

5-2 59183-01 A

5.1.2

System Process Information

The Ps command displays system process information to help you determine what processes are running and CPU usage. The following example displays current system processes.

SANbox #> ps PID PPID %CPU TIME ELAPSED COMMAND 338 327 0.0 00:00:00 3-01:18:35 cns 339 327 0.0 00:00:01 3-01:18:35 ens 340 327 0.0 00:00:21 3-01:18:35 dlog 341 327 0.1 00:05:35 3-01:18:35 ds 342 327 0.2 00:11:29 3-01:18:35 mgmtApp 343 327 0.0 00:00:04 3-01:18:35 fc2 344 327 0.0 00:02:16 3-01:18:35 nserver 345 327 0.0 00:02:44 3-01:18:35 mserver 346 327 0.8 00:35:12 3-01:18:35 util 347 327 0.0 00:00:29 3-01:18:35 snmpservicepath 348 327 0.0 00:02:46 3-01:18:34 eport 349 327 0.0 00:00:21 3-01:18:34 PortApp 350 327 5.6 04:08:24 3-01:18:34 port_mon 351 327 0.0 00:01:38 3-01:18:34 zoning 352 327 0.0 00:00:01 3-01:18:34 diagApp 404 327 0.0 00:00:04 3-01:18:27 snmpd 405 327 0.0 00:00:02 3-01:18:27 snmpmain 406 405 0.0 00:00:00 3-01:18:26 snmpmain

5 – Switch Configuration

Displaying Switch Information

The column titles are as follows:

 PID–Process identifier  PPID–Parent process identifier  %CPU–Percentage CPU usage  TIME–Actual processing time  ELAPSED–Elapsed time since the process started

59183-01 A 5-3

 COMMAND–The command that initiated the process.

5 – Switch Configuration Displaying Switch Information

5.1.3

Elapsed Time Between Resets

The Uptime command displays the elapsed time since the switch was last reset and the reset method. A hot reset or non-disruptive firmware activation does not reset the elapsed time reported by this command. The following example displays the time since the last reset.

SANbox #> uptime Elapsed up time : 0 day(s), 2 hour(s), 28 min(s), 44 sec(s) Reason last reset: NormalReset

5-4 59183-01 A

5.1.4

Configuration Information

The Show Config command displays a variety of configuration information at the port and switch levels. In addition to the basic switch configurations, the Show Config command displays parameters that control how data is maintained in the security and zoning databases. The Show Config command displays the following types of information:

 Switch Configuration Parameters  Zoning Configuration Parameters  Security Configuration Parameters

Refer to “Displaying Port Information” on page 6-1 for information about displaying port configuration information.

5.1.4.1

Switch Configuration Parameters

Enter the Show Config Switch command to display the switch configuration parameters. These parameters determine the operational characteristics of the switch. Refer to Table 13-17 for a description these parameters.

SANbox #> show config switch Configuration Name: default

-------------------

Switch Configuration Information

--------------------------------

AdminState Online BroadcastEnabled False InbandEnabled True FDMIEnabled False FDMIEntries 10 DefaultDomainID 19 (0x13) DomainIDLock True SymbolicName sw108 R_A_TOV 10000 E_D_TOV 2000 PrincipalPriority 254 ConfigDescription Default Config ConfigLastSavedBy admin@OB-session5 ConfigLastSavedOn day month date time year InteropMode Standard

5 – Switch Configuration

Displaying Switch Information

59183-01 A 5-5

5 – Switch Configuration Displaying Switch Information

5.1.4.2

Zoning Configuration Parameters

Enter the Show Config Zoning command to display zoning configuration parameters. These parameters determine how zoning is applied to the switch. Refer to Table 13-19 for a description of these parameters.

SANbox #> show config zoning

Configuration Name: default

-------------------

Zoning Configuration Information

--------------------------------

InteropAutoSave True DefaultZone True DiscardInactive False

5.1.4.3

Security Configuration Parameters

Enter the Show Config Security command to display security configuration and port binding parameters. These parameters determine how security is applied to the switch. Refer to Table 13-15 for a description of the switch security configuration parameters. Refer to Table 13-16 for a description of the port binding parameters.

SANbox #> show config security

Configuration Name: default

-------------------

Switch Security Configuration Information

-----------------------------------------

FabricBindingEnabled False AutoSave True

Port Binding Status WWN

---- -------------- ---

0 Enabled 10:00:00:00:00:00:00:01 2 Disabled 10:00:00:00:00:00:00:01 5 Enabled 10:00:00:00:00:00:00:01 10:00:00:00:00:00:00:02

5-6 59183-01 A

5.1.5

Hardware Information

Enter the Show Chassis command to display the status of the switch hardware including fans, power supplies, internal temperature, and Heartbeat LED status.

The following is an example of the Show Chassis command for model 5602:

SANbox #> show chassis Chassis Information

-------------------

BoardTemp (1) - Degrees Celsius 36 FanStatus (1) Good FanStatus (2) Good FanDirection (1) BackToFront FanDirection (2) BackToFront PowerSupplyStatus (1) Good PowerSupplyStatus (2) Good HeartBeatCode 1 HeartBeatStatus Normal

5 – Switch Configuration

Displaying Switch Information

The HeartBeatCode and HeartBeatStatus entries indicate the Power-on Self Test (POST) results revealed by the Heartbeat LED blink p atterns. The result is normal operation or a blink pattern indicating a critical error as described in Table 5-1. Refer to your Installation Guide for more information about the Heartbeat LED and its blink patterns.

Table 5-1. Heartbeat LED Activity

HeartBeatCode–HeartBeatStatus Description

1–Normal One blink per second–Normal operation 2–AppDied Two blink cluster–Internal firmware failure 3–PostFailed Three blink cluster–Fatal POST error 4–CorruptFilesystem Four blink cluster–Configuration file system error 5–Overheating Five blink cluster– Over temperature

59183-01 A 5-7

5 – Switch Configuration Displaying Switch Information

5.1.6

Firmware Information

Enter the Show Version command to display a summary of switch identity information including the firmware version. The following is an example of the Show Version command:

SANbox #> show version ***************************************************** * * * Command Line Interface SHell (CLISH) * * * *****************************************************

SystemDescription SANbox 5000 FC Switch EthNetworkAddress 10.20.11.192 (use 'set setup system' to update) EthMACAddress 00:c0:dd:00:71:ee WorldWideName 10:00:00:c0:dd:00:71:ed ChassisSerialNumber FAM033100024 SymbolicName SANbox ActiveSWVersion V6.7.x.x.xx.xx ActiveTimestamp day month date time year DiagnosticsStatus Passed LicensedPorts 20

5-8 59183-01 A

5.2

Managing Switch Services

You can configure your switch to suit the demands of your environment by enabling or disabling a variety of switch services. You manage the switch services using the Show Setup Services and Set Setup Services commands. Refer to

Table 13-21 for a description of the switch services.

NOTE: The SSH and SSL services require the Fabric Security license key.

Enter the Show Setup Services command to display the current switch service status as shown in the following example:

SANbox #> show setup services System Services

-----------------------------

TelnetEnabled True SSHEnabled False GUIMgmtEnabled True SSLEnabled False EmbeddedGUIEnabled True SNMPEnabled True NTPEnabled True CIMEnabled True FTPEnabled True MgmtServerEnabled True

5 – Switch Configuration

Managing Switch Services

59183-01 A 5-9

5 – Switch Configuration Managing Switch Services

Enter the Set Setup Services command within an Admin session to configure the switch services as shown in the following example:

SANbox #> admin start SANbox (admin) #> set setup services

PLEASE NOTE:

-----------

* Further configuration may be required after enabling a service.

* If services are disabled, the connection to the switch may be lost.

* When enabling SSL, please verify that the date/time settings on this switch and the workstation from where the SSL connection will be started match, and then a new certificate may need to be created to ensure a secure connection to this switch.

TelnetEnabled (True / False) [True ] SSHEnabled (True / False) [False] GUIMgmtEnabled (True / False) [True ] SSLEnabled (True / False) [False] EmbeddedGUIEnabled (True / False) [True ] SNMPEnabled (True / False) [True ] NTPEnabled (True / False) [False] CIMEnabled (True / False) [False] FTPEnabled (True / False) [True ] MgmtServerEnabled (True / False) [True ]

Do you want to save and activate this services setup? (y/n): [n]

5-10 59183-01 A

5.3

Managing Switch Configurations

The switch configuration determines the basic operational characteristics of the switch. A switch supports up to 10 configurations including the default configuration, named Default Config. The current switch operating characteristics are determined by the active configuration. Only one configuration can be active at one time.

Each switch configuration contains switch, port, port threshold alarm, and zoning configuration components. Managing Switch Configurations describes the following tasks:

 Display a List of Switch Configurations  Activate a Switch Configuration  Copy a Switch Configuration  Delete a Switch Configuration  Modify a Switch Configuration

5 – Switch Configuration

Managing Switch Configurations

 Back Up and Restore a Switch Configuration

5.3.1

Display a List of Switch Configurations

Enter the Config List command to display the configurations stored on the switch as show in the following example. Notice that the Config List command does not require an Admin session.

SANbox #> config list

Current list of configurations

------------------------------

default config_1 config_2

5.3.2

Activate a Switch Configuration

Enter the Config Activate command to activate a switch configuration (config_1) as shown in the following example:

SANbox (admin) config activate config_1

59183-01 A 5-11

5 – Switch Configuration Managing Switch Configurations

5.3.3

Copy a Switch Configuration

Enter the Config Copy command to create a copy of an existing configuration as shown in the following example:

SANbox (admin) config copy config_1 config_2

5.3.4

Delete a Switch Configuration

Enter the Config Delete command to delete a configuration from the switch as shown in the following example. You cannot delete the active configuration nor the default configuration (Default Config).

SANbox (admin) config delete config_2

5.3.5

Modify a Switch Configuration

To modify a switch configuration, you must open an Admin session with the Admin St art command. An Admin session pre vents oth er account s from making changes at the same time through Telnet, Enterprise Fabric Suite 2007, or another management application. You must also open a Config Edit session with the

Config Edit command and indicate which configuration you want to modify. If you

do not specify a configuration name the active configuration is assumed.

The Config Edit session provides access to the Set Config commands with which you make modifications to the port, switch, port threshold alarm, or zoning configuration components as shown:

SANbox #> admin start SANbox (admin) #> config edit The config named default is being edited. SANbox (admin-config)#> set config port . . . SANbox (admin-config)#> set config switch . . . SANbox (admin-config)#> set config threshold . . . SANbox (admin-config)#> set config zoning . . .

The Config Save command saves the changes you made during the Config Edit session. In this case, changes to the configuration named Default are being saved to a new configuration named config_10132003. However, the new configuration does not take effect until you activate it with the Config Activate command:

SANbox (admin-config)#> config save config_10132003 SANbox (admin)#> config activate config_10132003 SANbox (admin)#> admin end

The Admin End command releases the Admin session for other administrators when you are done making changes to the switch.

5-12 59183-01 A

5 – Switch Configuration

Managing Switch Configurations

The following is an example of the Set Config Switch command. Refer to

Table 13-17 for a description of the switch configuration parameters.

SANbox #> admin start SANbox (admin) #> config edit SANbox (admin-config) #> set config switch

A list of attributes with formatting and default values will follow. Enter a new value or simply press the ENTER key to accept the current value. If you wish to terminate this process before reaching the end of the list press 'q' or 'Q' and the ENTER key to do so.

AdminState (1=Online, 2=Offline, 3=Diagnostics) [Online ] BroadcastEnabled (True / False) [True ] InbandEnabled (True / False) [True ] FDMIEnabled (True / False) [True ] FDMIEntries (decimal value, 0-1000) [1000 ] DefaultDomainID (decimal value, 1-239) [2 ] DomainIDLock (True / False) [False ] SymbolicName (string, max=32 chars) [SANbox ] R_A_TOV (decimal value, 100-100000 msec) [10000 ] E_D_TOV (decimal value, 10-20000 msec) [2000 ] PrincipalPriority (decimal value, 1-255) [254 ] ConfigDescription (string, max=64 chars) [Default Config] InteropMode (0=Standard, 1=Interop_1) [Standard ]

To make temporary changes to the switch administrative state, enter the

Set Switch State command.

59183-01 A 5-13

5 – Switch Configuration Managing Switch Configurations

5.3.6

Back Up and Restore a Switch Configuration

Successful management of switches and fabrics depends on the effective use of switch configurations. Backing up and restoring a configuration is useful to protect your work or for use as a template in configuring other switches. Backing up and restoring the switch configuration involves the following:

 Creating the Backup File  Downloading the Configuration File  Restoring the Configuration File

5.3.6.1

Creating the Backup File

The Config Backup command creates a file on the switch, named configdata. This file can be used to restore a switch configuration only from the command line interface; it cannot be used to restore a switch using Enterprise Fabric Suite 2007.

SANbox #> config backup

The configdata file contains the following switch configuration information:  All named switch configurations including port, switch, port threshold alarm,

and zoning configurations components.

 All SNMP and network information defined with the Set Setup command.  The zoning database includes all zone sets, zones, and aliases.  The security database except the group primary and secondary secrets.

NOTE: Configuration backup files are deleted from the switch during a power

cycle, switch reset, or a transfer of the primary role to the secondary CPU blade.

5-14 59183-01 A

5.3.6.2

Downloading the Configuration File

You use FTP to download the configdata file to your workstation for safe keeping and to upload the file back to the switch for the restore function. To download the configdata file, open an FTP session on the switch and login with the account name images and password images. Transfer the file in binary mode with the Get command as shown in the following example:

>ftp ip_address user:images password: images ftp>bin ftp>get configdata xxxxx bytes sent in xx secs. ftp>quit

You should rename the configdata file on your workstation with the switch name and date, config_switch_169_10112003, for example.

5 – Switch Configuration

Managing Switch Configurations

59183-01 A 5-15

5 – Switch Configuration Managing Switch Configurations

5.3.6.3

Restoring the Configuration File

The restore operation begins with FTP to upload the configuration file from the workstation to the switch, then finishes with a Telnet session and the Config Restore command. To upload the configuration file, config_switch_169_10112003 in this case, open and FTP session with account name images and password images. Transfer the file in binary mode with the Put command as shown:

ftp ip_address user: images password: images ftp> bin ftp> put config_switch_169_10112003 configdata Local file config_switch_169_10112003 Remote file configdata ftp>quit

The restore process replaces all configuration information on the switch and afterwards the switch is automatically reset. If the restore process changes the IP address, all management sessions are terminated. Use the Set Setup System command to return the IP configuration to the values you want. To restore the switch, open a Telnet session (a new IP address may be required), then enter the

Config Restore command from within an Admin session as shown:

SANbox #> admin start SANbox (admin) #> config restore The switch will be reset after restoring the configuration. Please confirm (y/n): [n] y Alarm Msg: [day month date time year][A1005.0021][SM][Configuration is being

restored - this could take several minutes] Alarm Msg: [day month date time year][A1000.000A][SM][The switch will be reset in

3 seconds due to a config restore] SANbox (admin) #> Alarm Msg: [day month date time year][A1000.0005][SM][The switch is being reset]

5-16 59183-01 A

5.4

Paging a Switch

To help you locate a particular switch in a rack of switches, you can turn on the beacon feature with the Set Beacon command. This causes all port Logged-In LEDs to flash in unison. The following is an example of how to turn the beaco n on and off.

SANbox #> set beacon on SANbox $> set beacon off

5.5

Setting the Date and Time

The switch date and time can be set explicitly using the Date command or it can be set automatically through a Network Time Protocol (NTP) server. The Date command also displays the current time. Unlike the Date command, the NTP server also synchronizes the date and time on the switch with the date and time on the workstation. Synchronized date and time is required for Secure Socket Layer (SSL) connections.

5 – Switch Configuration

Paging a Switch

You can also set the time zone using the Set Timezone command. The default time zone is Universal Time (UTC) also known as Greenwich Mean Time. Changing the time zone also converts the current time to the time in the new time zone. For this reason, if you are not using an NTP server, set the time zone first, then set the date and time.

To use an NTP server, you must enable the NTP client on the switch and specify an IP address for the NTP server.

NOTE: To set the date with the Date command, the NTP client must be

disabled.

59183-01 A 5-17

5 – Switch Configuration Setting the Date and Time

Enter the Set Timezone to change the time zone as shown in the following example:

SANbox (admin) #> set timezone Africa America Antarctica Asia Atlantic Australia Europe Indian Pacific UTC Press ENTER for more options or 'q' to make a selection.

America/Grenada America/Guadeloupe America/Guatemala America/Guayaquil America/Guyana America/Halifax America/Havana America/Hermosillo America/Indiana America/Indianapolis . . . America/Monterrey America/Montevideo America/Montreal America/Montserrat America/Nassau America/New_York America/Nipigon America/Nome America/Noronha America/North_Dakota America/Panama America/Pangnirtung

Press ENTER for more options or 'q' to make a selection. q Enter selection (or 'q' to quit): america/north_dakota America/North_Dakota/Center Enter selection (or 'q' to quit): america/north_dakota/center

Enter the Date command to display the date and time as shown in the following example:

SANbox #> date Mon Apr 07 07:51:24 200x

Enter the Date command within an Admin session to set the date and time as shown in the following example:

SANbox #> admin start SANbox (admin) #> date 013110152025 SANbox (admin) #> date Fri Jan 31 10:15:03 UTC 2025

5-18 59183-01 A

5 – Switch Configuration

Setting the Date and Time

To configure the switch to use an NTP server, enter the Set Setup System command to enable the NTP client and to specify the NTP server IP address.

SANbox #> admin start SANbox (admin) #> set setup system

EthNetworkDiscovery (1=Static, 2=Bootp, 3=Dhcp, 4=Rarp) [Static ] EthNetworkAddress (dot-notated IP Address) [10.0.0.1 ] EthNetworkMask (dot-notated IP Address) [255.255.255.0] EthGatewayAddress (dot-notated IP Address) [10.0.0.254 ] AdminTimeout (dec value 0-1440 minutes, 0=never) [30 ] InactivityTimeout (dec value 0-1440 minutes, 0=never) [0 ] LocalLogEnabled (True / False) [True ] RemoteLogEnabled (True / False) [False ] RemoteLogHostAddress (dot-notated IP Address) [10.0.0.254 ] NTPClientEnabled (True / False) [False ] True NTPServerAddress (dot-notated IP Address) [10.0.0.254 ] 10.2.3.4 EmbeddedGUIEnabled (True / False) [True ]

Do you want to save and activate this services setup? (y/n): [n] y System setup saved and activated.

59183-01 A 5-19

5 – Switch Configuration Resetting a Switch

5.6

Resetting a Switch

Table 5-2 describes the methods for resetting a switch, the corresponding

command, and the impact on the switch.

Table 5-2. Switch Reset Methods

Activates pending firmware ✔✔✔ Disrupts I/O traffic ✔✔ Enterprise Fabric Suite 2007 ses-

sions reconnect afterwards Clears the event log ✔✔✔ Deletes supports files, firmware

image files that have not been unpacked, and configuration backup files

Closes all management sessions ✔✔✔ Power-on self test ✔

5.7

Installing Firmware

New firmware becomes available periodically either on CD-ROM or from the QLogic web site. Installing firmware on a switch involves the following steps:

1. Download the firmware image file to the switch.

Description

Hot Reset

(Hotreset

command)

✔✔✔

Soft Reset

(Reset Switch

command)

✔✔

Hard Reset

(Hardreset

Switch

command)

2. Unpack the firmware image file.

3. Activate the new firmware. The activation can be disruptive or non-disruptive. Refer to “Nondisruptive Activation” on page 5-21 for information about the conditions for a non-disruptive activation.

The Firmware Install and the Image Install commands automate the firmware installation process and perform a disruptive activation as described in “One-Step

Firmware Installation” on page 5-21. To perform a nondisruptive activation, refer to

5-20 59183-01 A

“Custom Firmware Installation” on page 5-23.

5.7.1

Nondisruptive Activation

Y ou can load and activate new firmware on a switch disruptively or no ndisruptively depending on the condition of the fabric and the commands you choose. If you attempt to perform a non-disruptive activation without satisfying the following conditions, the activation will fail. If the non-disruptive activation fails, you will usually be prompted to try again later. Otherwise, the switch will perform a disruptive activation.

 The current firmware version permits the installation and non-disruptive

activation of 6.7 firmware. Refer to the 6.7 Firmware Release Notes for previous compatible firmware versions.

 No changes are being made to switches in the fabric including powering up,

powering down, disconnecting or connecting ISLs, changing switch configurations, or installing firmware.

 No port on the switch is in the diagnostic state.  No Zoning Edit sessions are open on the switch.  No changes are being made to attached devices including powering up,

powering down, disconnecting, connecting, and HBA configuration changes.

 Install firmware on one switch at a time in the fabric. If you are installing

firmware on one switch, wait 120 seconds after the activation is complete before installing firmware on a second switch.

5 – Switch Configuration

Installing Firmware

 For a fabric in which one or more switches are running firmware prior to

version 6.7, only one Enterprise Fabric Suite 2007 session can be open.

Ports that are stable when the non-disruptive activation begins, then change states, will be reset. When the non-disruptive activation is complete, Enterprise Fabric Suite 2007 sessions reconnect automatically. However, Telnet sessions must be restarted manually.

5.7.2

One-Step Firmware Installation

The Firmware Install and Image Install commands download the firmware image file from an FTP or TFTP server to the switch, unpacks the image file, and performs a disruptive activation in one step. The one-step installation process prompts you to enter the following:

 The file transfer protocol (FTP or TFTP)  IP address of the remote host  An account name and password on the remote host (FTP only)

59183-01 A 5-21

5 – Switch Configuration Installing Firmware

 Pathname for the firmware image file

1. Enter the following commands to download the firmware from a remote host to the switch, install the firmware, then reset the switch to activate the firmware.

SANbox #> admin start SANbox #> firmware install The switch will be reset. This process will cause a

disruption to I/O traffic. Continuing with this action will terminate all management

sessions,including any Telnet sessions. When the firmware activation is complete, you may log in to the switch again.

Do you want to continue? [y/n]: y Press 'q' and the ENTER key to abort this command.

2. Enter your choice for the file transfer protocol with which to download the firmware image file. FTP requires an user account and a password; TFTP does not.

FTP or TFTP : ftp

3. Enter your account name on the remote host (FTP only) and the IP address of the remote host. When prompted for the source file name, enter the path for the firmware image file.

User Account : johndoe IP Address : 10.0.0.254 Source Filename : 6.7.00.11_mpc About to install image. Do you want to continue? [y/n] y

4. When prompted to install the new firmware, enter Yes to continue or No to cancel. Entering Yes will disrupt traffic. This is the last opportunity to cancel.

About to install image. Do you want to continue? [y/n] y Connected to 10.20.20.200 (10.20.20.200).

220 localhost.localdomain FTP server (Version wu-2.6.1-18) ready.

5. Enter the password for your account name (FTP only).

331 Password required for johndoe. Password:****** 230 User johndoe logged in.

6. The firmware will now be downloaded from the remote host to the switch, installed, and activated.

5-22 59183-01 A

5.7.3

Custom Firmware Installation

A custom firmware installation downloads the firmware image file from a remote host to the switch, unpacks the image file, and resets the switch in separate step s. This allows you to choose the type of switch reset and whether the activation will be disruptive (Reset Switch command) or nondisruptive (Hotreset command). The following example illustrates a custom firmware installation with a nondisruptive activation.

1. Download the firmware image file from the workstation to the switch.  If your workstation has an FTP server, you can enter the Image Fetch

command:

SANbox #> admin start SANbox (admin) #> image fetch account_name ip_address filename

 If your workstation has a TFTP server, you can enter the Image TFTP

command to download the firmware image file.

SANbox (admin) #> image tftp ip_address filename

 If your workstation has neither an FTP nor a TFTP server, open an

FTP session and download the firmware image file by entering FTP commands:

>ftp ip_address or switchname user:images password: images ftp>bin ftp>put filename ftp>quit

2. Display the list of firmware image files on the switch to confirm that the file was loaded.

SANbox #> admin start SANbox (admin) $> image list

3. Unpack the firmware image file to install the new firmware in flash memory.

SANbox (admin) $> image unpack filename

4. Wait for the unpack to complete.

Image unpack command result: Passed

5. A message will prompt you to reset the switch to activate the firmware. Use the Hotreset command to attempt a non-disruptive activation.

SANbox (admin) $> hotreset

5 – Switch Configuration

Installing Firmware

59183-01 A 5-23

5 – Switch Configuration Managing Switch Feature Upgrades

5.8

Managing Switch Feature Upgrades

The following features are available to upgrade your switch through the purchase and installation of a license key:

 Enterprise Fabric Suite 2007 is a workstation-based Java® application that

provides a graphical user interface for fabric management. This includes Performance View which graphs port performance. Enterprise Fabric Suite 2007 comes with a free 30-day trial license.

 Fabric Security provides for Secure Socket Layer (SSL) and Secure Shell

(SSH) connection security, device security using Challenge Handshake Authentication Protocol (CHAP), and remote authentication using a Remote Authentication Dial-In User Service (RADIUS) server.

 SANdoctor provides tools for Fibre Channel connection verification (Fcping

command), Fibre Channel route tracing (Fctrace command), and transceiver diagnostic information (Show Media command).

 Port Activation enables additional Fibre Channel ports up to the 20-port

maximum.

Installing a feature license key is not disruptive, nor does it require a switch reset. To order a license key, contact your switch distributor or your authorized reseller.

5.8.1

Display Feature Licenses

Enter the Feature Log command to display the license keys that are installed on your switch as shown in the following example:

SANbox #> feature log Mfg Feature Log:

----------------

Switch Licensed for 8 ports Customer Feature Log:

---------------------

1) day month date 19:39:24 year - Switch Licensed for 20 ports

1-LCVXOWUNOJBE6

5-24 59183-01 A

5.8.2

Install a Feature License Key

Enter the Feature Add command to install a license key on your switch as shown in the following example:

SANbox #> admin start SANbox (admin) #> feature add 1-LCVXOWUNOJBE6 License upgrade to 20 ports

Do you want to continue with license upgrade procedure? (y/n): [n] y Alarm Msg:[day mon date time year][A1005.0030][SM][Upgrading Licensed Ports to 20]

5 – Switch Configuration

Managing Switch Feature Upgrades

59183-01 A 5-25

5 – Switch Configuration Managing Switch Feature Upgrades

Notes

5-26 59183-01 A

Port Configuration

This section describes the following topics:

 Displaying Port Information  Modifying Port Operating Characteristics  Port Binding  Resetting a Port  Configuring Port Threshold Alarms  Testing a Port  Extending Port Transmission Distance

6.1

Displaying Port Information

You can display the following port information:

 Port Configuration Parameters  Port Operational Information  Port Threshold Alarm Configuration Parameters

Section 6

 Port Performance

59183-01 A 6-1

6 – Port Configuration Displaying Port Information

6.1.1

Port Configuration Parameters

Enter the Show Config Port command to display the port configuration parameters. These parameters determine the operational characteristics of the port. Refer to Table 13-14 for a description of these parameters.

SANbox #> show config port 3

Configuration Name: default

-----------------------------

Port Number: 3

------------

AdminState Offline LinkSpeed Auto PortType GL SymbolicName Port3 ALFairness False DeviceScanEnabled True ForceOfflineRSCN False ARB_FF False InteropCredit 0 ExtCredit 0 FANEnabled True AutoPerfTuning False LCFEnabled False MSEnabled True NoClose False IOStreamGuard Disabled VIEnabled False MFSEnabled True PDISCPingEnable True

6-2 59183-01 A

6.1.2

Port Operational Information

Enter the Show Port command to display port operational information.

SANbox #> show port 1 Port Number: 1

------------

AdminState Online OperationalState Offline AsicNumber 0 PerfTuningMode Normal AsicPort 0 PortID 220000 ConfigType GL PortWWN 20:00:00:c0:dd:07:20:58 DiagStatus Passed RunningType Unknown EpConnState None MediaPartNumber PL-XPL-VC-SG3-22 EpIsoReason NotApplicable MediaRevision 1 IOStreamGuard Disabled MediaType 400-M5-SN-I LinkSpeed Auto MediaVendor PICOLIGHT LinkState Inactive MediaVendorID 00000485 LoginStatus NotLoggedIn SymbolicName Port0 MaxCredit 16 SyncStatus SyncLost MediaSpeeds 1Gb/s, 2Gb/s, 4Gb/s XmitterEnabled True

6 – Port Configuration

Displaying Port Information

ALInit 2 LIP_F8_F7 0 ALInitError 0 LinkFailures 0 BadFrames 0 Login 0 BBCR_FrameFailures 0 Logout 0 BBCR_RRDYFailures 0 LongFramesIn 0 Class2FramesIn 0 LoopTimeouts 0 Class2FramesOut 0 LossOfSync 0 Class2WordsIn 0 LostFrames 0 Class2WordsOut 0 LostRRDYs 0 Class3FramesIn 0 PrimSeqErrors 0 Class3FramesOut 0 RxLinkResets 0 Class3Toss 0 RxOfflineSeq 0 Class3WordsIn 0 ShortFramesIn 0 Class3WordsOut 0 TotalErrors 0 DecodeErrors 0 TotalLinkResets 0 EpConnects 0 TotalLIPsRecvd 0 FBusy 0 TotalLIPsXmitd 4 FlowErrors 0 TotalOfflineSeq 3 FReject 0 TotalRxFrames 0 InvalidCRC 0 TotalRxWords 0 InvalidDestAddr 0 TotalTxFrames 0 LIP_AL_PD_AL_PS 0 TotalTxWords 0 LIP_F7_AL_PS 0 TxLinkResets 0 LIP_F7_F7 0 TxOfflineSeq 3 LIP_F8_AL_PS 0

59183-01 A 6-3

6 – Port Configuration Displaying Port Information

6.1.3

Port Threshold Alarm Configuration Parameters

Enter the Show Config Threshold command to display the port threshold alarm parameters. These parameters determine the error th resholds at which the switch issues alarms. Refer to Table 13-18 for a description of these parameters.

SANbox #> show config threshold Configuration Name: default

------------

Threshold Configuration Information

-----------------------------------

ThresholdMonitoringEnabled False CRCErrorsMonitoringEnabled True RisingTrigger 25 FallingTrigger 1 SampleWindow 10 DecodeErrorsMonitoringEnabled True RisingTrigger 25 FallingTrigger 0 SampleWindow 10 ISLMonitoringEnabled True RisingTrigger 2 FallingTrigger 0 SampleWindow 10 LoginMonitoringEnabled True RisingTrigger 5 FallingTrigger 1 SampleWindow 10 LogoutMonitoringEnabled True RisingTrigger 5 FallingTrigger 1 SampleWindow 10 LOSMonitoringEnabled True RisingTrigger 100 FallingTrigger 5 SampleWindow 10

6-4 59183-01 A

6.1.4

Port Performance

Enter the Show Perf command to display port performance in terms of the volume of data transmitted, data received, or errors. You can display continuous live performance information for one or more ports, or an instant aneous summary . The following example displays an instantaneous summary in bytes and frames. Values are expressed in thousands (K) and millions (M) of bytes or frames per second.

SANbox #> show perf Port Bytes/s Bytes/s Bytes/s Frames/s Frames/s Frames/s Number (in) (out) (total) (in) (out) (total)

------ ------- ------- ------- -------- -------- --------

0 7K 136M 136M 245 68K 68K 1 58K 0 58K 1K 0 1K 2 0 0 0 0 0 0 3 0 0 0 0 0 0 4 0 0 0 0 0 0 5 0 0 0 0 0 0 6 0 7K 7K 0 245 245 7 136M 58K 136M 68K 1K 70K 8 7K 136M 136M 245 68K 68K 9 58K 0 58K 1K 0 1K 10 0 0 0 0 0 0 11 0 0 0 0 0 0 12 0 0 0 0 0 0 13 0 0 0 0 0 0 14 0 7K 7K 0 245 245 15 136M 58K 136M 68K 1K 70K 16 47M 23K 47M 23K 726 24K 17 0 0 0 0 0 0 18 23K 47M 47M 726 23K 24K 19 0 0 0 0 0 0

6 – Port Configuration

Displaying Port Information

59183-01 A 6-5

6 – Port Configuration Displaying Port Information

6.1.5

Transceiver Information

NOTE: The Show Media command requires the SANdoctor license key. To

purchase a license key, contact your authorized maintenance provider or authorized reseller.

Enter the Show Media command to display operational information about one or more transceivers as shown in the following example. Refer to Table 13-25 for a description of the transceiver information in the Show Media display.

SANbox #> show media 4 Port Number: 4

-------------

MediaType 400-M5-SN-I MediaVendor FINISAR CORP. MediaPartNumber FTRJ8524P2BNL MediaRevision A MediaSerialNumber P6G22RL MediaSpeeds 1Gb/s, 2Gb/s, 4Gb/s

Temp Voltage Tx Bias Tx Pwr Rx Pwr (C) (V) (mA) (mW) (mW)

----------- ----------- ------------ ----------- -----------

Value 37.32 3.33 7.30 0.373 0.000 Status Normal HighWarning Normal Normal LowAlarm HighAlarm 95.00 3.90 17.00 0.637 1.264 HighWarning 90.00 3.70 14.00 0.637 0.791 LowWarning -20.00 2.90 2.00 0.082 0.028 LowAlarm -25.00 2.70 1.00 0.073 0.019

6-6 59183-01 A

6.2

Modifying Port Operating Characteristics

You can make permanent or temporary changes to port operating characteristics. You make permanent port configuration changes using the Set Config Port command. These changes are saved in the active configuration and are preserved across switch or port resets. The Set Port command makes temporary changes that apply until the next port or switch reset, or until you activate a configuration.

The following example permanently changes the port 1 administrative state:

SANbox #> admin start SANbox (admin) #> config edit SANbox (admin-config) #> set config port 1 A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value. If you wish to terminate this process before reaching the end of the list press 'q' or 'Q' and the ENTER key to do so.

Configuring Port Number: 1

------------------------

AdminState (1=Online, 2=Offline, 3=Diagnostics, 4=Down) [Online] offline LinkSpeed (1=1Gb/s, 2=2Gb/s, 4=4Gb/s, A=Auto) [Auto ] PortType (GL / G / F / FL / Donor) [GL ] SymPortName (string, max=32 chars) [Port1 ] ALFairness (True / False) [False ] DeviceScanEnable (True / False) [True ] ForceOfflineRSCN (True / False) [False ] ARB_FF (True / False) [False ] InteropCredit (decimal value, 0-255) [0 ] ExtCredit (dec value, increments of 15, non-loop only) [0 ] FANEnable (True / False) [True ] AutoPerfTuning (True / False) [False ] LCFEnable (True / False) [False ] MFSEnable (True / False) [False ] VIEnable (True / False) [False ] MSEnable (True / False) [True ] NoClose (True / False) [False ] IOStreamGuard (Enable / Disable / Auto) [Disable] PDISCPingEnable (True / False) [True ]

6 – Port Configuration

Modifying Port Operating Characteristics

Finished configuring attributes. This configuration must be saved (see config save command) and activated (see config activate command) before it can take effect. To discard this configuration use the config cancel command. SANbox (admin-config) #> config save SANbox (admin-config) #> config activate

59183-01 A 6-7

6 – Port Configuration Port Binding

You can configure all ports based a specified source port using the Set Config Ports command. The following example configures ports 0–20 based on port 3.

SANbox #> admin start SANbox (admin) config edit SANbox (admin) #> set config ports 3 . . . SANbox (admin-config)#> config save SANbox (admin)#> config activate SANbox (admin)#> admin end

The following example temporarily changes the port 1 administrative state to Down:

SANbox #> admin start SANbox (admin) #> set port 1 state down

6.3

Port Binding

Port binding establishes up to 32 switches or devices that are permitted to log in to a particular switch port. Switches or devices that are not among the 32 are refused access to the port. Enter the Show Config Security Portbinding command to display the port binding configuration for all ports as shown in the following example.

SANbox #> show config security portbinding

Configuration Name: default

-------------------

Port Binding Status WWN

---- -------------- -----------------------

0 Enabled 10:20:30:40:50:60:70:80 1 Enabled 10:20:30:40:50:60:70:80 2 Disabled 10:20:30:40:50:60:70:80 3 Enabled 10:20:30:40:50:60:70:80 4 Enabled 10:20:30:40:50:60:70:80 5 Disabled 10:20:30:40:50:60:70:80 6 Enabled 10:20:30:40:50:60:70:81 7 Disabled 10:20:30:40:50:60:70:82 8 Enabled 10:20:30:40:50:60:70:80

6-8 59183-01 A

6 – Port Configuration

Resetting a Port

Enter the Set Config Security Portbinding command to enable port binding for the selected port and to specify the world wide names of the authorized port s/devices. The following example enables port binding on port 1 and specifies two device world wide names.

SANbox #> admin start SANbox (admin) #> config edit SANbox (admin-config) #> set config security port 1

PortBindingEnabled (True / False)[False] true WWN (N=None / WWN)[None ] 10:00:00:c0:dd:00:b9:f9 WWN (N=None / WWN)[None ] 10:00:00:c0:dd:00:b9:f8 WWN (N=None / WWN)[None ] n

6.4

Resetting a Port

Enter the Reset Port command to reinitialize one or more ports and to discard any temporary changes that have been made to the administrative state or link speed. The following example reinitializes port 1:

SANbox #> reset port 1

59183-01 A 6-9

6 – Port Configuration Configuring Port Threshold Alarms

6.5

Configuring Port Threshold Alarms

The switch can monitor a set of port errors and generates alarms based on user-defined sample windows and thresholds. These port errors include the following:

 Cyclic Redundancy Check (CRC) errors  Decode errors  ISL connection count  Device login errors  Device logout errors  Loss-of-signal errors

You make changes to the port threshold alarms by modifying the switch configuration as described in “Modify a Switch Configuration” on page 5-12. Refer to Table 13-18 for a description of the port alarm threshold parameters.

The switch will down a port if an alarm condition is not cleared within three consecutive sampling windows (by default 30 seconds). Reset the port to bring it back online. An alarm is cleared when the threshold monitoring detects that the error rate has fallen below the falling trigger.

6-10 59183-01 A

6 – Port Configuration

Configuring Port Threshold Alarms

Enter the Set Config Threshold command to enable and configure port threshold monitoring on the switch:

SANbox #> admin start SANbox (admin) #> config edit SANbox (admin-config) #> set config threshold A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value. If you wish to terminate this process before reaching the end of the list press 'q' or 'Q' and the ENTER key to do so.

ThresholdMonitoringEnabled (True / False) [False ] CRCErrorsMonitoringEnabled (True / False) [True ] RisingTrigger (decimal value, 1-1000) [25 ] FallingTrigger (decimal value, 0-1000) [1 ] SampleWindow (decimal value, 1-1000 sec) [10 ] DecodeErrorsMonitoringEnabled (True / False) [True ] RisingTrigger (decimal value, 1-1000) [25 ] FallingTrigger (decimal value, 0-1000) [0 ] SampleWindow (decimal value, 1-1000 sec) [10 ] ISLMonitoringEnabled (True / False) [True ] RisingTrigger (decimal value, 1-1000) [2 ] FallingTrigger (decimal value, 0-1000) [0 ] SampleWindow (decimal value, 1-1000 sec) [10 ] LoginMonitoringEnabled (True / False) [True ] RisingTrigger (decimal value, 1-1000) [5 ] FallingTrigger (decimal value, 0-1000) [1 ] SampleWindow (decimal value, 1-1000 sec) [10 ] LogoutMonitoringEnabled (True / False) [True ] RisingTrigger (decimal value, 1-1000) [5 ] FallingTrigger (decimal value, 0-1000) [1 ] SampleWindow (decimal value, 1-1000 sec) [10 ] LOSMonitoringEnabled (True / False) [True ] RisingTrigger (decimal value, 1-1000) [100 ] FallingTrigger (decimal value, 0-1000) [5 ] SampleWindow (decimal value, 1-1000 sec) [10 ]

SANbox (admin-config) #> config save SANbox (admin-config) #> config activate

59183-01 A 6-11

6 – Port Configuration Testing a Port

6.6

Testing a Port

You can test a port using the Test Port command using online or offline tests. The following sections describe the test types, displaying test results, and cancelling a test:

 Online Tests for Ports  Offline Tests for Ports  Display Port Tes t Re sults  Cancel a Port Test

6.6.1

Online Tests for Ports

An online test is a non-disruptive test that exercises the port, transceiver, and device connections. The port must be online and connected to a device. The following is an example of an online test:

SANbox #> admin start SANbox (admin) #> test port 1 online

A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the default value. If you wish to terminate this process before reaching the end of the list press 'q' or 'Q' and the ENTER key to do so.

LoopCount (decimal value, 1-4294967295) [429496729] FrameSize (decimal value, 40-2148) [256 ] DataPattern (32-bit hex value or 'Default') [Default ] StopOnError (True / False) [True ] LoopForever (True / False) [False ]

Do you want to start the test? (y/n) [n] y

The test has been started. A notification with the test result(s) will appear on the screen when the test has completed.

SANbox (admin) #> Test for port 1 Passed.

6-12 59183-01 A

6.6.2

Offline Tests for Ports

An offline test is a disruptive test that exercises the port connections. You must place the port in the diagnostics state using the Set Port command before starting the test. There are two types of offline test: internal loopback and external loopback.

 An internal loopback test exercises the internal port connections.  An external loopback test exercises the port and its transceiver. A

transceiver with a loopback plug is required for the port.

The following example performs an offline test:

SANbox #> admin start SANbox (admin) #> set port 1 state diagnostics SANbox (admin) #> test port 1 offline internal

6 – Port Configuration

Testing a Port

Do you want to start the test? (y/n) [n] y

The test has been started. A notification with the test result(s) will appear on the screen when the test has completed.

SANbox (admin) #> Test for port 1 Passed.

When the test is complete, remember to place the port back online.

SANbox (admin) #> set port 1 state online

59183-01 A 6-13

6 – Port Configuration Testing a Port

6.6.3

Display Port Test Results

You can display the test status while the test is in progress by entering the

Test Status Port command as shown in the following example:

SANbox (admin) #> test status port 1 Port Test Test Loop Test Num Port Type Status Count Failures

---- -------- ---- ------ ----- --------

1 1 Offline Internal Passed 12 0

6.6.4

Cancel a Port Test

To cancel a port test that is in progress, enter the Test Cancel Port command.

6-14 59183-01 A

6.7

Extending Port Transmission Distance

You can extend the distance over which an F_Port or G_Port port can transmit by borrowing buffer credits from other ports. Refer to the SANbox 5000 Series Fibre Channel Switch Installation Guide for information about extended credits and transmission distance. Enter the Set Config Port command to borrow and reallocate port credits as shown in the following example:

SANbox #> admin start SANbox (admin) #> config edit SANbox (admin-config) #> set config port A list of attributes with formatting and current values will follow.

Enter a new value or simply press the ENTER key to accept the current value. If you wish to terminate this process before reaching the end of the attributes for the port being processed, press 'q' or 'Q' and the ENTER key to do so. If you wish to terminate the configuration process completely, press 'qq' or 'QQ' and the ENTER key to so do.

Configuring Port Number: 0

------------------------

AdminState (1=Online, 2=Offline, 3=Diagnostics, 4=Down) [Online] LinkSpeed (1=1Gb/s, 2=2Gb/s, 4=4Gb/s, A=Auto) [Auto ] PortType (GL / G / F / FL / Donor) [GL ] donor SymPortName (string, max=32 chars) [Port0 ] q

6 – Port Configuration

Extending Port Transmission Distance

Configuring Port Number: 1

------------------------

AdminState (1=Online, 2=Offline, 3=Diagnostics, 4=Down) [Online] LinkSpeed (1=1Gb/s, 2=2Gb/s, 4=4Gb/s, A=Auto) [Auto ] PortType (GL / G / F / FL / Donor) [G ] SymPortName (string, max=32 chars) [Port1 ] ALFairness (True / False) [False ] DeviceScanEnable (True / False) [True ] ForceOfflineRSCN (True / False) [False ] ARB_FF (True / False) [False ] InteropCredit (decimal value, 0-255) [0 ] ExtCredit (dec value, increments of 15, non-loop only) [0 ] 15 FANEnable (True / False) [True ] qq

59183-01 A 6-15

6 – Port Configuration Extending Port Transmission Distance

Enter the Show Donor command to display the extended credit status for the switch as shown in the following example:

SANbox #> show donor

Port Config Ext Credit Max Credit Donated Member of Valid Groups to Number Type Requested Available to Port Donor Group Extend Credit

------ ------ ---------- ---------- ------- ----------- ---------------

0 GL 0 16 None 0 0 1 GL 0 16 None 0 0 2 GL 0 16 None 0 0 3 GL 0 16 None 0 0 4 GL 0 16 None 0 0 5 GL 0 16 None 0 0 6 GL 0 16 None 0 0 7 GL 0 16 None 0 0 8 GL 0 16 None 0 0 9 GL 0 16 None 0 0 10 GL 0 16 None 0 0 11 GL 0 16 None 0 0 12 GL 0 16 None 0 0 13 GL 0 16 None 0 0 14 GL 0 16 None 0 0 15 GL 0 16 None 0 0 16 G 0 16 None None None Donor Group Credit Pool

----------- -----------

0 0

6-16 59183-01 A

Section 7

Zoning Configuration

This section describes the following tasks:

 Displaying Zoning Database Information  Configuring the Zoning Database  Modifying the Zoning Database  Resetting the Zoning Database  Managing Zone Sets  Managing Zones  Managing Aliases

Consider device access needs within the fabric. Access is controlled by the use of zoning. Some zoning strategies include the following:

 Separate devices by operating system.  Separate devices that have no need to communicate with other devices in

the fabric or have classified data.

 Separate devices into department, administrative, or other functional group.  Reserve a path and its bandwidth from one port to another.

Zoning divides the fabric for purposes of controlling discovery and inbound traffic. A zone is a named group of ports or devices. Members of the same zone can communicate with each other and transmit outside the zone, but cannot receive inbound traffic from outside the zone. A port/device can be a member of up to eight zones whose combined membership does not exceed 64.

Zoning is hardware enforced on a switch port if the sum of the logged-in devices plus the devices zoned with devices on that port is 64 or less. If a port exceeds this sum, that port behaves as a soft zone member. The port continues to behave as a soft zone member until the sum of logged-in and zoned devices falls back to 64, and the port is reset.

A zone can be a component of more than one zone set. Several zone sets can be defined for a fabric, but only one zone set can be active at one time. The active zone set determines the current fabric zoning.

59183-01 A 7-1

7 – Zoning Configuration Displaying Zoning Database Information

7.1

Displaying Zoning Database Information

You can display the following information about the zoning database:

 Configured Zone Set Information  Active Zone Set Information  Zone Set Membership Information  Zoning Modification History  Zoning Database Limits

7.1.1

Configured Zone Set Information

The Zoneset List and the Zoning List commands display information about the all zone sets in the zoning database. Enter the Zoneset List command to display a list of the zone sets as shown in the following example:

SANbox #> zoneset list

Current List of ZoneSets

------------------------

alpha beta

7-2 59183-01 A

7 – Zoning Configuration

Displaying Zoning Database Information

Enter the Zoning List command to display all zone sets, zones, and zone members in the zoning database as shown in the following example:

SANbox #> zoning list Active ZoneSet Information ZoneSet Zone ZoneMember

--------------------------------

wwn wwn_b0241f 50:06:04:82:bf:d2:18:c2 50:06:04:82:bf:d2:18:d2 21:00:00:e0:8b:02:41:2f wwn_23bd31 50:06:04:82:bf:d2:18:c2 50:06:04:82:bf:d2:18:d2 10:00:00:00:c9:23:bd:31 wwn_221416 50:06:04:82:bf:d2:18:c2 50:06:04:82:bf:d2:18:d2 10:00:00:00:c9:22:14:16 wwn_2215c3 50:06:04:82:bf:d2:18:c2 50:06:04:82:bf:d2:18:d2 10:00:00:00:c9:22:15:c3 Configured Zoning Information ZoneSet Zone ZoneMember

--------------------------------

59183-01 A 7-3

7 – Zoning Configuration Displaying Zoning Database Information

7.1.2

Active Zone Set Information

The Zoning Active and Zoneset Active commands display information about the active zone set. Enter the Zoning Active command to display component zones and zone members as shown in the following example:

SANbox #> zoning active Active ZoneSet Information ZoneSet Zone ZoneMember

--------------------------------

Enter the Zoneset Active command to display the name of the active zone set and its activation history as shown in the following example:

SANbox #> zoneset active

ActiveZoneSet Bets LastActivatedBy admin@OB-session6 LastActivatedOn day month date time year

7-4 59183-01 A

7.1.3

Zone Set Membership Information

The Zoneset Zones and Zone Zonesets commands display zone set membe rship information. Enter the Zoneset Zones command to display the member zones for a specified zone set as shown in the following example:

SANbox #> zoneset zones ssss

Current List of Zones for ZoneSet: ssss

----------------------------------

zone1 zone2 zone3

Enter the Zone Zonesets command to display the zone sets for which a specified zone is a member as shown in the following example:

SANbox #> zone zonesets zone1

7 – Zoning Configuration

Displaying Zoning Database Information

Current List of ZoneSets for Zone: zone1

----------------------------------

zone_set_1

7.1.4

Zone Membership Information

Enter the Zone Members command to display the members for a specified zone as shown in the following example:

SANbox #> zone members wwn_b0241f

Current List of Members for Zone: wwn_b0241f

---------------------------------

50:06:04:82:bf:d2:18:c2 50:06:04:82:bf:d2:18:d2 21:00:00:e0:8b:02:41:2f

59183-01 A 7-5

7 – Zoning Configuration Displaying Zoning Database Information

7.1.5

Alias and Alias Membership Information

The Alias List and Alias Members commands display information about aliases. Enter the Alias List command to display a list of all aliases as shown in the following example:

SANbox #> alias list

Current list of Zone Aliases

----------------------------

alias1 alias2

Enter the Alias Members command to display the membership for a specified alias as shown in the following example:

SANbox #> alias members alias1

Current list of members for Zone Alias: alias1

---------------------------------------

50:06:04:82:bf:d2:18:c4 50:06:04:82:bf:d2:18:c5 50:06:04:82:bf:d2:18:c6

7-6 59183-01 A

7.1.6

Zoning Modification History

Enter the Zoning History command to display a record of zoning modifications as shown in the following example:

SANbox #> zoning history Active Database Information

---------------------------

ZoneSetLastActivated/DeactivatedBy Remote ZoneSetLastActivated/DeactivatedOn day mon date hh:mm:ss yyyy Database Checksum 00000000

Inactive Database Information

-----------------------------

ConfigurationLastEditedBy admin@OB-session17 ConfigurationLastEditedOn day mon date hh:mm:ss yyyy Database Checksum 00000000

7 – Zoning Configuration

Displaying Zoning Database Information

History information includes the following:  Time of the most recent zone set activation or deactivation and the user

account that performed it

 Time of the most recent modifications to the zoning database and the user

account that made them.

 Checksum for the zoning database

59183-01 A 7-7

7 – Zoning Configuration Displaying Zoning Database Information

7.1.7

Zoning Database Limits

Enter the Zoning Limits command to display a summary of the objects in the zoning database and their maximum limit as shown in the following example:

SANbox #> zoning limits

Zoning Attribute Maximum Current [Zoning Name]

---------------- ------- ------- -------------

MaxZoneSets 256 6 MaxZones 2000 17 MaxAliases 2500 1 MaxTotalMembers 10000 166 MaxZonesInZoneSets 2000 19 MaxMembersPerZone 2000 10 D_1_JBOD_1 23 D_1_Photons 9 D_2_JBOD1 16 D_2_NewJBOD_2 5 E1JBOD1 5 E2JBOD2 3 LinkResetZone 3 LinkResetZone2 8 NewJBOD1 8 NewJBOD2 24 Q_1Photon1 8 Q_1_NewJBOD1 13 Q_1_Photon_1 21 Q_2_NewJBOD2 3 ZoneAlias 3 ZoneDomainPort 4 ZoneFCAddr MaxMembersPerAlias 2000 2 AliasInAZone

7-8 59183-01 A

7.2

Configuring the Zoning Database

You can configure how the zoning database is applied to the switch and exchanged with the fabric through the zoning configuration parameters. The following zoning configuration parameters are available through the

Set Config Zoning command. Refer to Table 13-19 for more information about the

zoning configuration parameters.  InteropAutoSave–This parameter enables or disables the saving of changes

to active zone set in the switch’s non-volatile memory.

 DefaultZone–This parameter enables or disables communication among

ports/devices that are not defined in the active zone set.

 DiscardInactive–This parameter enables or disables the discarding of all

zone sets except the active zone set.

If InteropAutoSave is False, you can revert zoning changes that have been received from another switch through the activation of a zone set, or merging of fabrics. Enter the Zoning Restore command to replace the volatile zoning database with the contents of the non-volatile zoning database.

7 – Zoning Configuration

Configuring the Zoning Database

To restore the zoning configuration to its factory values, enter the Reset Config or Reset Factory commands. Notice however, these commands restore other aspects of the switch configuration also.

To modify the zoning configuration, you must open an Admin session with the

Admin Start command. An Admin session prevents other accounts from making

changes at the same time through Telnet, Enterprise Fabric Suite 2007, or another management application. You must also open a Config Edit session with the Config Edit command and indicate which configuration you want to modify. If you do not specify a configuration name, the active configuration is assumed.

59183-01 A 7-9

7 – Zoning Configuration Configuring the Zoning Database

The Config Edit session provides access to the Set Config Zoning command as shown in the following example:

SANbox #> admin start SANbox (admin) #> config edit The config named default is being edited. SANbox (admin-config) #> set config zoning A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value. If you wish to terminate this process before reaching the end of the list press 'q'

or 'Q' and the ENTER key to do so.

InteropAutoSave (True / False) [True ] DefaultZone (True / False) [True ] DiscardInactive (True / False) [False]

SANbox (admin-config)#> config save SANbox (admin)#> config activate SANbox (admin)#> admin end

7-10 59183-01 A

7.3

Modifying the Zoning Database

To modify the zoning database, you must open an Admin session with the Admin St art command. An Admin session pre vents oth er account s from making changes at the same time through Telnet, Enterprise Fabric Suite 2007, or another management application. You must also open a Zoning Edit session with the Zoning Edit command. The Zoning Edit session provides access to the Zoneset,

Zone, Alias, and Zoning commands with which you make modifications to the

zoning database.

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning)#> zoneset . . . SANbox (admin-zoning)#> zone . . . SANbox (admin-zoning)#> alias . . . SANbox (admin-zoning)#> zoning . . .

When you are finished making changes, enter the Zoning Save command to save the changes and close the Zoning Edit session.

SANbox (admin-zoning)#> zoning save

7 – Zoning Configuration

Modifying the Zoning Database

To close the Zoning Edit session without saving changes, enter the Zoning Cancel command.

SANbox (admin-zoning)#> zoning cancel

Changes to the active zone set do not take effect until you activate it with the Zoneset Activate command. The active zone set is propagated throughout the fabric.

SANbox (admin)#> zoneset activate zoneset_1 SANbox (admin)#> admin end

The Admin End command releases the Admin session for other administrators when you are done making changes to the switch.

To remove all zoning database objects (aliases, zones, and zone sets) and restore the zoning database to its factory state, enter the Reset Zoning command as shown in the following example:

SANbox (admin) #> reset zoning

59183-01 A 7-11

7 – Zoning Configuration Resetting the Zoning Database

7.4

Resetting the Zoning Database

There are two ways to remove all aliases, zones, and zone sets from the zoning database:

 Enter the Zoning Clear command as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zoning clear SANbox (admin-zoning) #> zoning save

 Enter the Reset Zoning command as shown in the following example. The

security configuration values, AutoSave, DefaultZone, and DiscardInactive remain unchanged. This is the preferred method.

SANbox #> admin start SANbox (admin) #> reset zoning

7.5

Removing Inactive Zone Sets, Zones, and Aliases

Enter the Zoning Delete Orphan command to delete all objects from the zoning database except those in the active zone set.

SANbox #> admin start SANbox (admin) #> zoning delete orphans This command will remove all zonesets, zones, and aliases that are not currently active. Please confirm (y/n): [n] y SANbox (admin) #> zoning save

7-12 59183-01 A

7.6

Managing Zone Sets

Managing Zone Sets consists of the following tasks:

 Create a Zone Set  Delete a Zone Set  Rename a Zone Set  Copy a Zone Set  Add Zones to a Zone Set  Remove Zones from a Zone Set  Activate a Zone Set  Deactivate a Zone Set

All of these tasks except Activate a Zone Set and Deactivate a Zone Set require an Admin session and a Zoning Edit session.

7.6.1

Create a Zone Set

7 – Zoning Configuration

Managing Zone Sets

Enter the Zoneset Create command to create a new zone set as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zoneset create zoneset_1 SANbox (admin-zoning) #>zoning save

7.6.2

Delete a Zone Set

Enter the Zoneset Delete command to delete a zone set as shown in the followin g example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zoneset delete zoneset_1 SANbox (admin-zoning) #>zoning save

59183-01 A 7-13

7 – Zoning Configuration Managing Zone Sets

7.6.3

Rename a Zone Set

Enter the Zoneset Rename command to rename a zone set as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zoneset rename zoneset_old zoneset_new SANbox (admin-zoning) #>zoning save

7.6.4

Copy a Zone Set

Enter the Zoneset Copy command to copy a zone set and its contents to a new zone set as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zoneset copy zoneset_1 zoneset_2 SANbox (admin-zoning) #>zoning save

7.6.5

Add Zones to a Zone Set

Enter the Zoneset Add command to add a zone to a zone set as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zoneset add zoneset_1 zone_1 zone_2

7.6.6

Remove Zones from a Zone Set

Enter the Zoneset Remove command to remove zones from a zone set as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zoneset remove zoneset_1 zone_1 zone_2 SANbox (admin-zoning) #>zoning save

7.6.7

Activate a Zone Set

Enter the Zoneset Activate command to apply zoning to the fabric as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoneset activate zoneset_1

7-14 59183-01 A

7.6.8

Deactivate a Zone Set

Enter the Zoneset Deactivate command to deactivate the active zone set and disable zoning in the fabric:

SANbox #> admin start SANbox (admin) #> zoneset deactivate

7.7

Managing Zones

Managing Zones consists of the following tasks:

 Create a Zone  Delete a Zone  Rename a Zone  Copy a Zone  Add Members to a Zone  Remove Members from a Zone

7 – Zoning Configuration

Managing Zones

All of these tasks require an Admin session and a Zoning Edit session.

7.7.1

Create a Zone

Enter the Zone Create command to create a new zone as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zone create zone_1 SANbox (admin-zoning) #> zoning save

7.7.2

Delete a Zone

Enter the Zone Delete command to delete zone_1 from the zoning database as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zone delete zone_1 SANbox (admin-zoning) #> zoning save

59183-01 A 7-15

7 – Zoning Configuration Managing Zones

7.7.3

Rename a Zone

Enter the Zone Rename command to rename zone_1 to zone_a as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zone rename zone_1 zone_a SANbox (admin-zoning) #> zoning save

7.7.4

Copy a Zone

Enter the Zone Copy command to copy the contents of an existing zone (zo ne_1) to a new zone (zone_2) as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zone copy zone_1 zone_2 SANbox (admin-zoning) #> zoning save

7.7.5

Add Members to a Zone

Enter the Zone Add command to add ports/devices to zone_1 as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zone add zone_1 alias_1 1,4 1,5 SANbox (admin-zoning) #> zoning save

7.7.6

Remove Members from a Zone

Enter the Zone Remove command to remove ports/devices from zone_1 as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> zone remove zone_1 alias_1 1,4 1,5 SANbox (admin-zoning) #> zoning save

7-16 59183-01 A

7.8

Managing Aliases

Managing aliases consists of the following tasks:

 Create an Alias  Delete an Alias  Rename an Alias  Copy an Alias  Add Members to an Alias  Remove Members from an Alias

All of these tasks require an Admin session and a Zoning Edit session.

7.8.1

Create an Alias

Enter the Alias Create command to create a new alias as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> alias create alias_1 SANbox (admin-zoning) #> zoning save

7 – Zoning Configuration

Managing Aliases

7.8.2

Delete an Alias

Enter the Alias Delete command to delete alias_1 from the zoning database as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> alias delete alias_1 SANbox (admin-zoning) #> zoning save

7.8.3

Rename an Alias

Enter the Alias Rename command to rename alias_1 to alias_a as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> alias rename alias_1 alias_a SANbox (admin-zoning) #> zoning save

59183-01 A 7-17

7 – Zoning Configuration Managing Aliases

7.8.4

Copy an Alias

Enter the Alias Copy command to copy alias_1 and its contents to alias_2 as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> alias copy alias_1 alias_2 SANbox (admin-zoning) #> zoning save

7.8.5

Add Members to an Alias

Enter the Alias Add command to add ports/devices to alias_1 as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> alias add alias_1 1,4 1,5 SANbox (admin-zoning) #> zoning save

7.8.6

Remove Members from an Alias

Enter the Alias Remove command to remove ports/devices from alias_1 as shown in the following example:

SANbox #> admin start SANbox (admin) #> zoning edit SANbox (admin-zoning) #> alias remove alias_1 1,4 1,5 SANbox (admin-zoning) #> zoning save

7-18 59183-01 A

Section 8

Connection Security Configuration

NOTE: SSH and SSL connection security require the Fabric Security license

key. To purchase a license key, contact your authorized maintenance provider or authorized reseller.

This section describes the following tasks:

 Managing SSL and SSH Services  Displaying SSL and SSH Services  Creating an SSL Security Certificate

The switch supports secure connections with Telnet and switch management applications. The Secure SHell protocol (SSH) secures Telnet connections to the switch. The Secure Sockets Layer (SSL) protocol secures switch connections to the following management applications:

 Enterprise Fabric Suite 2007  QuickTools  Application Programming Interface  Storage Management Initiative-Specification (SMI-S)

8.1

Managing SSL and SSH Services

Consider the following when enabling SSH and SSL services:  To establish a secure Telnet connection, your workstation must use an SSH

client.

 To enable secure SSL connections, you must first synchronize the date and

time on the switch and workstation. Refer to “Setting the Date and Time” on

page 5-17.

 The SSL service must be enabled to authenticate users through a RADIUS

server. Refer to “Configuring a RADIUS Server on the Switch” on page 10-3.

 To disable SSL when using a user authentication RADIUS server, the

RADIUS server authentication order must be local.

 Enabling SSL automatically creates a security certificate on the switch.

59183-01 A 8-1

8 – Connection Security Configuration Managing SSL and SSH Services

Enter the Set Setup Services command to manage both SSH and SSL services as shown in the following example:

SANbox #> admin start SANbox (admin) #> set setup services A list of attributes with formatting and current values will follow.

Enter a new value or simply press the ENTER key to accept the current value. If you wish to terminate this process before reaching the end of the list press 'q' or 'Q' and the ENTER key to do so.

PLEASE NOTE:

-----------

* Further configuration may be required after enabling a service.

* If services are disabled, the connection to the switch may be lost.

TelnetEnabled (True / False) [True ] SSHEnabled (True / False) [False] True GUIMgmtEnabled (True / False) [True ] SSLEnabled (True / False) [False] True EmbeddedGUIEnabled (True / False) [True ] SNMPEnabled (True / False) [True ] NTPEnabled (True / False) [False] CIMEnabled (True / False) [False] FTPEnabled (True / False) [True ] MgmtServerEnabled (True / False) [True ]

Do you want to save and activate this services setup? (y/n): [n] y

8-2 59183-01 A

8.2

Displaying SSL and SSH Services

Enter the Show Setup Services command to display the status of the SSH and SSL services as shown in the following example:

SANbox #> show setup services System Services

-----------------------------

TelnetEnabled True SSHEnabled False GUIMgmtEnabled True SSLEnabled False EmbeddedGUIEnabled True SNMPEnabled True NTPEnabled True CIMEnabled True FTPEnabled True MgmtServerEnabled True

8 – Connection Security Configuration

Displaying SSL and SSH Services

8.3

Creating an SSL Security Certificate

Enabling SSL automatically creates a security certificate on the switch. The security certificate is required to establish an SSL connection with a management application such as Enterprise Fabric Suite 2007. The certificate is valid 24 hours before the certificate creation date and expires 365 days after the creation date. Should the original certificate become invalid, enter the Create Certificate command to create a new one as shown in the following example:

SANbox (admin) #> create certificate The current date and time is day mon date hh:mm:ss UTC yyyy. This is the time used to stamp onto the certificate. Is the date and time correct? (y/n): [n] y Certificate generation successful.

To ensure the creation of a valid certificate, be sure that the switch and the workstation time and date are the same. Refer to “Setting the Date and Time” on

page 5-17.

59183-01 A 8-3

8 – Connection Security Configuration Creating an SSL Security Certificate

Notes

8-4 59183-01 A

Section 9

Device Security Configuration

NOTE: Device security requires the Fabric Security license key. To purchase a

license key, contact your authorized maintenance provider or authorized reseller.

This section describes the following tasks:

 Displaying Security Database Information  Configuring the Security Database  Modifying the Security Database  Resetting the Security Database  Managing Security Sets  Managing Groups

Device security provides for the authorization and authentication of devices that you attach to a switch. You can configure a switch with a group of devices against which the switch authorizes new attachments by devices, other switches, or devices issuing management server commands.

Device security is defined through the use of security sets and groups. A group is a list of device worldwide names that are authorized to attach to a switch. There are three types of groups: one for other switches (ISL), another for devices (port), and a third for devices issuing management server commands (MS). A security set is a set of up to three groups with no more than one of each group type. The security database is made up of all security sets on the switch.

In addition to authorization, the switch can be configured to require auth entication to validate the identity of the connecting switch, device, or host. Authentication can be performed locally using the switch’s securit y database, or remotely u sing a Remote Dial-In User Service (RADIUS) server such as Microsoft® RADIUS.

59183-01 A 9-1

9 – Device Security Configuration Displaying Security Database Information

9.1

Displaying Security Database Information

You can display the following information about the security database:

 Configured Security Set Information  Active Security Set Information  Security Set Membership Information  Group Membership Information  Security Database Modification History  Security Database Limits

9.1.1

Configured Security Set Information

The Securityset List and the Security List commands display information about the all security sets in the security database. Enter the Securityset List command to display a list of the security sets as shown in the following example:

SANbox #> securityset list Current list of SecuritySets

----------------------------

alpha beta

9-2 59183-01 A

Q-Logic 5602 User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual

Table of Contents

List of Tables

Switch Models and Examples

Intended Audience

Related Materials

New in This Release

Technical Support

Availability

Training

Contact Information

Logging In to the Switch

Opening and Closing an Admin Session

Entering Commands

Getting Help

Setting Page Breaks

Creating a Support File

Downloading and Uploading Files

Displaying User Account Information

Creating User Accounts

Modifying User Accounts and Passwords

Displaying Name Server Information

Displaying the Ethernet Network Configuration

Configuring the Ethernet Port

Verifying a Switch in the Network

Verifying and Tracing Fibre Channel Connections

Displaying Switch Information

Switch Operational Information

System Process Information

Elapsed Time Between Resets

Configuration Information

Switch Configuration Parameters

Zoning Configuration Parameters

Security Configuration Parameters

Hardware Information

Firmware Information

Managing Switch Services

Managing Switch Configurations

Display a List of Switch Configurations

Activate a Switch Configuration

Copy a Switch Configuration

Delete a Switch Configuration

Modify a Switch Configuration

Back Up and Restore a Switch Configuration

Creating the Backup File

Downloading the Configuration File

Restoring the Configuration File

Paging a Switch

Setting the Date and Time

Resetting a Switch

Installing Firmware

Nondisruptive Activation

One-Step Firmware Installation

Custom Firmware Installation

Managing Switch Feature Upgrades

Display Feature Licenses

Install a Feature License Key

Displaying Port Information

Port Configuration Parameters

Port Operational Information

Port Threshold Alarm Configuration Parameters

Port Performance

Transceiver Information

Modifying Port Operating Characteristics

Port Binding

Resetting a Port

Configuring Port Threshold Alarms

Testing a Port

Online Tests for Ports

Offline Tests for Ports

Display Port Test Results

Cancel a Port Test

Extending Port Transmission Distance

Displaying Zoning Database Information

Configured Zone Set Information

Active Zone Set Information

Zone Set Membership Information