Manualshelf

HP StorageWorks Fabric OS 5.2.x administrator guide (5697-0014, November 2009)

ManualsBrandsHP ManualsStorageHP StorageWorks SAN Switch 2/32 32port Switch
101102103104105106107108109110
Fabric OS 5.2.x administrator guide 105
Displaying ACL policies
Use the secPolicyShow command to display the Active and Defined policy sets. The following example
shows a switch that has no SCC and DCC policies.
secPolicyShow displays the following information:
Active Policy Set—The policies that are being enforced.
Defined Policy Set—The policies that have been saved. Policies created in the same login session also
appear but these policies are automatically deleted if the user logs out without saving.
To display the ACL policies
1. Connect to the switch and log in.
2. Type the secPolicyShow command:
NOTE: The defined policy set list is described in ”Saving changes to ACL policies” on page 108 and
active policy set is described in Activating changes to ACL policies” on page 108.
Configuring a DCC policy
Multiple DCC policies can be used to restrict which device ports can connect to which switch ports. The
devices can be initiators, targets, or intermediate devices such as SCSI routers and loop hubs. By default,
all device ports are allowed to connect to all switch ports; no DCC policies exist until they are created.
Each device port can be bound to one or more switch ports; the same device ports and switch ports might
be listed in multiple DCC policies. After a switch port is specified in a DCC policy, it permits connections
only from designated device ports. Device ports that are not specified in any DCC policies are allowed to
connect only to switch ports that are not specified in any DCC policies.
When a DCC violation occurs, the related port is automatically disabled and must be re-enabled using the
portEnable command.
The procedure used to create a DCC policy is described after Table 25, which shows the possible DCC
policy states.
switch:admin> secPolicyShow
____________________________________________________
ACTIVE POLICY SET
____________________________________________________
DEFINED POLICY SET
switch:admin>
Table 25 DCC policy states
Policy state Characteristics
No policy Any device can connect to any switch port in the fabric.