beautypg.com

Access control list policy configuration, Virtual fabrics considerations, Admin domain considerations – Brocade Web Tools Administrators Guide (Supporting Fabric OS v7.3.0) User Manual

Page 209: Creating an scc, dcc, or fcs policy

background image

Access control list policy configuration

Support for the Access Control List (ACL) policies is currently defined in the Switch Connection Control
(SCC) and Device Connection Control (DCC) policies. SCC and DCC policy configuration in base
Fabric OS is performed on a switch-local basis.

Fabric Configuration Server (FCS) Policy can be created only once. While creating the FCS policy, the
local switch WWN is automatically included in the list. In the FCS list, the switch in the first position
becomes the primary FCS switch. If the first switch in the FCS list is not reachable, the next switch
becomes the primary switch. You can also explicitly specify the primary FCS switch.

If there is no SCC, DCC, or FCS policy, the defined and active list is blank.

Virtual Fabrics considerations

ACL policies can be implemented at the logical switch/logical fabric level.

Admin Domain considerations

ACL management can be done on AD255 and in AD0 only if there are no other user-defined Admin
Domains. Both AD0 (when no other user-defined Admin Domains exist) and AD255 provide an
unfiltered view of the fabric. If there are user defined Admin Domains, then ACL management can be
done on AD255 only.

Creating an SCC, DCC, or FCS policy

You can create the FCS policy only once.

To create an SCC, DCC, or FCS policy, perform the following steps.

1. Open the Switch Administration window as described in

Opening the Switch Administration window

on page 52.

2. Select the Security Policies tab.
3. Select the ACL subtab.
4. Select a policy by clicking on the appropriate tab (SCC, DCC, or FCS).
5. Click Edit.

This launches the ACL Policy Configuration wizard.

6. Select the policy type you want to edit.
7. Click Next and click Create.
8. SCC Option: Add switches to an SCC policy by selecting one or more switches and clicking Add or

Add All.

9. SCC Option: To add an offline switch, click Add other Switch and enter the WWN.
10.DCC Option: Select the ports to add to a DCC policy.

When you launch the DCC Policy Configuration wizard, only the launched switch and its ports are
listed in the tree. All the devices in the fabric are also listed in the tree.

11.In the ADD Domain, Port Index field, enter the value in the Domain, Index format and click Add.
12.Click OK to confirm the changes to the switch.
13.Activate the policy in order to implement it. Refer to

Activating all SCC, DCC, or FCS policies

on

page 210 for instructions.

Access control list policy configuration

Web Tools Administrator's Guide

209

53-1003169-01

See also other documents in the category Brocade Computer Accessories: