beautypg.com

Security monitoring category, Resource monitoring category – Brocade Network Advisor SAN + IP User Manual v12.3.0 User Manual

Page 2070

background image

1998

Brocade Network Advisor SAN + IP User Manual

53-1003155-01

MAPS monitoring categories

50

Security monitoring category

The Security category monitors different security violations on the switch and takes action based
on the configured thresholds and their actions.

Table 180

lists measures in the Security category and describes what each measure indicates.

Resource monitoring category

The Resource category monitors the system RAM, flash, CPU, and memory.

The Resource category uses monitors to perform the following tasks:

Configure thresholds for MAPS event monitoring and reporting for the environment and
resource classes. Environment thresholds enable temperature monitoring, and resource
thresholds enable monitoring of flash memory.

Configure memory or CPU usage parameters on the switch or display memory or CPU usage.
Configuration options include setting usage thresholds which, if exceeded, trigger a set of
specified MAPS alerts. You can set up the system monitor to poll at certain intervals and
specify the number of retries required before MAPS takes action.

Table 181

lists measures in the Resource category and describes what each measure indicates.

SFPs (SFP_STATE)

State of the SFP has changed.

WWN

State of a world wide name (WWN) card has changed.

TABLE 180

Security measures

Measure

Description

DCC violations (SEC_DCC)

An unauthorized device attempts to log in to a secure fabric.

HTTP violations (SEC_HTTP)

A browser access request reaches a secure switch from an unauthorized IP
address.

Illegal command (SEC_CMD)

Commands permitted only to the primary fabric configuration server (FCS)
are executed on another switch.

Incompatible security DB (SEC_IDB) Secure switches with different version stamps have been detected.

Login violations (SEC_LV)

Login violations that occur when a secure fabric detects a login failure.

Invalid certifications (SEC_CERT)

There is a missing or invalid certificate file.

No-FCS (SEC_FCS)

The switch has lost contact with the primary FCS.

SCC violations (SEC_SCC)

SCC violations that occur when an unauthorized switch tries to join a secure
fabric. The WWN of the unauthorized switch appears in the ERRLOG.

Security authentication failures
(SEC_AUTH_FAIL)

Authentication failures that occur when packets try to pass from a
nonsecure switch to a secure fabric.

Telnet violations (SEC_TELNET)

Telnet violations that occur when a Telnet connection request reaches a
secure switch from an unauthorized IP address.

TS out of sync (SEC_TS)

Time Server (TS) violations that occur when an out-of-synchronization error
has been detected.

TABLE 179

FRU measures

Measure

Description

See also other documents in the category Brocade Software: