Page 1 HP StorageWorks 8/20q Fibre Channel Switch command line interface guide Part number: 5697-7760 Third edition: January 2009...
Page 2 Legal and notice information © Copyright 2008-2009 Hewlett-Packard Development Company, L.P. © Copyright 2008-2009 This software includes technology under a license from QLogic Corporation. All rights reserved. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services.
Page 3: Table Of Contents
Contents About this guide ............11 Intended audience .
Page 4 4 Switch configuration ..........39 Displaying switch information .
Page 5 Offline tests for ports ............72 Displaying port test results.
Page 6 Resetting the security database............96 Managing security sets .
Page 7 Modifying the SNMP configuration ..........125 Resetting the SNMP configuration .
Page 8 set setup system ............. . . 227 set switch state .
Page 9 zoning delete orphans............313 zoning edit .
Page 10 47 Call Home service configuration attributes ......... . 216 48 Common RADIUS server configuration attributes .
Page 11: About This Guide
About this guide This guide provides information about using the command line interface (CLI): • Logging on and off of a switch, opening and closing an Admin session, entering commands, getting help, paging a switch, setting page breaks, and loading and retrieving files. •...
Page 12: Document Conventions And Symbols
Document conventions and symbols Table 1 Document conventions Convention Element Figure 1 Medium blue text: Cross-reference links and e-mail addresses Medium blue, underlined text Web site addresses (http://www.hp.com) Bold font • Key names that are pressed • Text typed into a GUI element, such as into a box •...
Page 13: Hp Technical Support
HP technical support Telephone numbers for worldwide technical support are listed on the HP support web site: http://www.hp.com/support/. Collect the following information before calling: • Technical support registration number (if applicable) • Product serial numbers • Product model names and numbers •...
Page 14 About this guide...
Page 15: Command Line Interface Usage
Command line interface usage This section describes the following tasks: • Logging in to the switch through Telnet, page 15 • Opening and closing an admin session, page 16 • Entering commands, page 16 • Getting help, page 17 • Setting page breaks, page 17 •...
Page 16: Opening And Closing An Admin Session
To log in to a switch through the serial port: Configure the workstation port with the following settings: • 9,600 baud • 8-bit character • 1 stop bit • No parity Enter an account name and password when prompted. The default account name is admin, and its password is password.
Page 17: Getting Help
Getting help To display help for a command, enter the help command followed by the command you are inquiring about. The following is an example of the help that is available for the config edit command. 8/20q FC Switch #> help config edit config edit [CONFIG_NAME] This command initiates a configuration session and places the current session into config edit mode.
Page 18 The following example creates a support file and sends it to a remote host using a workstation with an FTP server. 8/20q FC Switch #> create support Log Msg:[Creating the support file - this will take several seconds] FTP the dump support file to another machine? (y/n): y Enter address of ftp server (hostname, IPv4, or IPv6): 10.20.33.130 Login name: johndoe Enter remote directory name: bin/support...
Page 19: Downloading And Uploading Files
Downloading and uploading files Several files that reside on the switch can be downloaded to the workstation for examination or for safekeeping. These files include the following: • Backup configuration file (configdata) • Log files (logfile) • Support files (dump_support.tgz) You can upload firmware image files or backup configuration files to the switch to reinstall firmware or restore a corrupted configuration.
Page 20 Command line interface usage...
Page 21: User Account Configuration
User account configuration User accounts and their respective passwords are the first line of switch security. A user account consists of an account name, an authority level, and an expiration date. Switches come from the factory with certain user accounts defined for special purposes. Table 3 describes these accounts, their passwords, and their purpose.
Page 22: Creating User Accounts
Creating user accounts A user account consists of an account name, an authority level, and an expiration date, which have the following requirements: • The account name can be up to 15 characters: the first character must be alphanumeric; the remaining characters must be American Standard Code for Information Interchange (ASCII) characters except semicolon (;), comma (,), #, and period (.).
Page 23 In the following example, the admin user account changes the password for the user account named user2. 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> passwd user2 Press 'q' and the ENTER key to abort this command. account OLD password : ******** account NEW password (8-20 chars)
Page 24 User account configuration...
Page 25: Network Configuration
Network configuration Network configuration consists of the IP parameters that identify the switch in the network and provide for IP security. This section describes the following network configuration tasks: • Displaying the network configuration, page 25 • Configuring the Ethernet port, page 26 •...
Page 26: Configuring The Ethernet Port
Configuring the Ethernet port Use the set setup system command in an Admin session to configure the Ethernet port and other network parameters. You can configure all of the following parameters in one session, or you can configure specific parameters by adding the corresponding keyword: •...
Page 27: Ipv6 Configuration
IPv6 configuration The switch supports IPv6, which includes the following: • Network discovery method • IP address • IP gateway address The network discovery method determines how the switch acquires its IP address. The IP address can come from the IP address (static) that resides on the switch or from a DHCP server; or it can be learned from a router through the Neighbor Discovery Protocol (NDP).
Page 28: Dns Server Configuration
DNS server configuration A DNS server manages the host names for a fabric. This enables you to specify servers and switches by a meaningful name rather than IP address. To configure a DNS server, enter the set setup system dns command in an Admin session, as shown in the following example: 8/20q FC Switch (admin) #>...
Page 29: Managing Ip Security
Managing IP security To modify IP security, you must open an Admin session with the admin start command, then open an Ipsec Edit session with the ipsec edit command. The Admin session prevents other accounts from making changes at the same time through Telnet, Simple SAN Connection Manager, or any other management application.
Page 30: Applying Ip Security
Applying IP security You can apply IP security to all communication between two systems, or to selected protocols, such as the Internet Control Message Protocol (ICMP), Transmission Control Protocol (TCP), or the User Datagram Protocol (UDP). Furthermore, instead of applying IP security, you can choose to discard all inbound or outbound traffic, or to allow all traffic without encryption.
Page 31: Ip Security Configuration History
IP security configuration history To display the IP security configuration history, enter the ipsec history command to display a record of policy and association modifications, as shown in the following example: 8/20q FC Switch #> ipsec history IPsec Database History ---------------------- ConfigurationLastEditedBy johndoe@OB-session5...
Page 32: Creating A Policy
Creating a policy To create a policy, enter the ipsec policy create command as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> ipsec edit 8/20q FC Switch (admin-ipsec) #> ipsec policy create h2h-sh-sp A list of attributes with formatting will follow.
Page 33: Modifying A User-Defined Policy
Modifying a user-defined policy To modify an existing user-defined policy, enter the ipsec policy edit command in an Admin session and an Ipsec Edit session, as shown in the following example. An asterisk (*) indicates a required entry. 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #>...
Page 34: Renaming A User-Defined Policy
Renaming a user-defined policy To rename a policy (policy_1), enter the ipsec policy rename command, as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> ipsec edit 8/20q FC Switch (admin-ipsec) #> ipsec policy rename policy_1 policy_4 The security policy will be renamed.
Page 35: Creating An Association
Creating an association To create an association, enter the ipsec association create command as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> ipsec edit 8/20q FC Switch (admin-ipsec) #> ipsec association create h2h-sh-sa A list of attributes with formatting will follow.
Page 36: Modifying A User-Defined Association
Modifying a user-defined association To modify an existing user-defined association, enter the ipsec association edit command in an Admin session and an Ipsec Edit session as shown in the following example. An asterisk (*) indicates a required entry. 8/20q FC Switch (admin-ipsec) #> ipsec association edit h2h-sh-sa A list of attributes with formatting and current values will follow.
Page 37: Renaming A User-Defined Association
Renaming a user-defined association To rename a user-defined association (association_1), enter the ipsec association rename command as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> ipsec edit 8/20q FC Switch (admin-ipsec) #> ipsec association rename association_1 association_4 The security association will be renamed.
Page 38 Network configuration...
Page 39: Switch Configuration
Switch configuration Switch configuration consists of the following tasks: • Displaying switch information, page 39 • Managing switch services, page 46 • Managing switch configurations, page 48 • Paging a switch, page 51 • Managing the date and time, page 51 •...
Page 40: Name Server Information
Name server information The show ns all command displays the list of worldwide names (WWNs) in the fabric, as shown in the following example. The show ns command displays the WWNs that are local to the switch. 8/20q FC Switch #> show ns all Seq Domain Port Port...
Page 41: Switch Operational Information
Switch operational information The show switch command displays a variety of switch operational information. These include the switch WWN, domain ID, firmware version, administrative state, and operational state, as shown in the following example: 8/20q FC Switch #> show switch Switch Information ------------------ SymbolicName...
Page 42: System Process Information
System process information The ps command displays system process information to help you determine what processes are running and central processing unit (CPU) usage. The column titles in the following example are: • PID—Process identifier • PPID—Parent process identifier • %CPU—Percentage CPU usage •...
Page 43: Switch Configuration Parameters
Switch configuration parameters To display the switch configuration parameters, enter the show config switch command. These parameters determine the operational characteristics of the switch. See Table 37 for descriptions these parameters. 8/20q FC Switch #> show config switch Configuration Name: default ------------------- Switch Configuration Information --------------------------------...
Page 44: Security Configuration Parameters
Security configuration parameters To display security configuration and port binding parameters, enter the show config security command. These parameters determine how security is applied to the switch. See Table 35 for descriptions of the switch security configuration parameters. See Table 36 for descriptions of the port binding parameters.
Page 45: Hardware Information
Hardware information To display the status of the switch hardware, including fans, power supplies, internal temperature, and Heartbeat LED status, enter the show chassis command. The following is an example of the show chassis command: 8/20q FC Switch #> show chassis Chassis Information ------------------- BoardTemp (1) - Degrees Celsius...
Page 46: Managing Switch Services
Managing switch services You can configure your switch to suit the demands of your environment by enabling or disabling a variety of switch services using the set setup services commands. To display the status of the switch services, use the show setup services command. See Table 50 for descriptions of the switch services settings.
Page 47 To configure the switch services, enter the set setup services command in an Admin session, as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> set setup services A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 48: Managing Switch Configurations
Managing switch configurations The switch configuration determines the basic operational characteristics of the switch. A switch can store up to 10 configurations, including the default configuration (Default Config). The current switch operating characteristics are determined by the active configuration. Only one configuration can be active at a time.
Page 49: Modifying A Switch Configuration
Modifying a switch configuration To modify a switch configuration, you must open an Admin session with the admin start command. The Admin session prevents other accounts from making changes at the same time through Telnet, Simple SAN Connection Manager, or any other management application. You must also open a Config Edit session with the config edit command and indicate which configuration you want to modify.
Page 50: Backing Up And Restoring A Switch Configuration
Backing up and restoring a switch configuration Successful management of switches and fabrics depends on the effective use of switch configurations. Backing up and restoring a switch configuration is useful both to protect your work and to use the configuration as a template. Backing up and restoring the switch configuration involves the following tasks: •...
Page 51: Paging A Switch
The restore process replaces all configuration information on the switch and afterwards the switch is automatically reset. If the restore process changes the IP address, all management sessions are terminated. Use the set setup system command to return the IP configuration to the values you want. To restore the switch, open a Telnet session (a new IP address may be required), then enter the config restore command from in an Admin session, as shown in the following example: 8/20q FC Switch #>...
Page 52: Setting The Date And Time Explicitly
Setting the date and time explicitly To set the switch date and time explicitly, use the set timezone and date commands. To change the time zone (to America/North Dakota, for example), enter the set timezone command in an Admin session, as shown in the following example: 8/20q FC Switch #>...
Page 53: Setting The Time Through An Ntp Server
Setting the time through an NTP server An NTP server can automatically set the switch date and time. To configure the switch to use an NTP server, enter the set setup system ntp command in an Admin session to enable the NTP client on the switch and specify the NTP server IP address, as shown in the following example: 8/20q FC Switch #>...
Page 54: Installing Firmware
Installing firmware New firmware becomes available periodically either on CD-ROM or from the HP web site. Installing firmware on a switch involves the following steps: Downloading the firmware image file to the switch. Unpacking the firmware image file. Activating the new firmware. The activation can be disruptive or non-disruptive. See ”Non-disruptive activation”...
Page 55: One-Step Firmware Installation
One-step firmware installation The firmware install and image install commands download the firmware image file from an FTP or Trivial File Transfer Protocol (TFTP) server to the switch, unpack the image file, and perform a disruptive activation all in one step. The one-step installation process prompts you to enter the following information: •...
Page 56: Custom Firmware Installation
Custom firmware installation A custom firmware installation downloads the firmware image file from a remote host to the switch, unpacks the image file, and resets the switch in separate steps. This allows you to choose the type of switch reset and whether the activation will be disruptive (reset switch command) or non-disruptive (Hotreset command).
Page 57: Online Tests For Switches
Online tests for switches An online test is a non-disruptive test that exercises port-to-device connections for all ports that are online. The online switch test excludes TR_Ports. The following is an example of an online test: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #>...
Page 58: Displaying Switch Test Status
The following example performs an internal connectivity test on a switch: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> set switch state diagnostics 8/20q FC Switch (admin) #> test switch connectivity internal A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the default value.
Page 59: Verifying And Tracing Fibre Channel Connections
Verifying and tracing Fibre Channel connections You can verify Fibre Channel connections between the switch and the fabric and display routing information. Enter the fcping command to verify a Fibre Channel connection to a switch or a device, as shown in the following example. The target device can be defined as a Fibre Channel address or a WWN.
Page 60: Managing Idle Session Timers
Managing idle session timers You can limit the duration of idle login sessions and idle Admin sessions (admin start command). You can specify limits up to 1,440 minutes; specifying 0 means unlimited duration. Idle login sessions that exceed the timeout limit are logged off (InactivityTimeout). An idle Admin session that exceeds the timeout limit is ended, but the login session may be maintained (AdminTimeout).
Page 61: Port Configuration
Port configuration This section contains the following topics: • Displaying port information, page 61 • Modifying port operating characteristics, page 65 • Configuring transparent routing, page 66 • Port binding, page 68 • Resetting a port, page 69 • Configuring port threshold alarms, page 69 •...
Page 62: Port Operational Information
Port operational information To display port operational information, enter the show port command. 8/20q FC Switch #> show port 1 Port Number: 1 ------------ AdminState Online AsicNumber AsicPort ConfigType DownstreamISL False EpConnState Connected EpIsoReason NotApplicable IOStreamGuard Disabled Licensed True LinkSpeed 8Gb/s LinkState Active...
Page 63: Port Threshold Alarm Configuration Parameters
FlowErrors TotalOfflineSeq FReject TotalRxFrames 4432 InvalidCRC TotalRxWords 300995 InvalidDestAddr TotalTxFrames 28640 LIP_AL_PD_AL_PS TotalTxWords 483225 LIP_F7_AL_PS TxLinkResets LIP_F7_F7 TxOfflineSeq LIP_F8_AL_PS Port threshold alarm configuration parameters To display the port threshold alarm parameters, enter the show config threshold command. These parameters determine the error thresholds at which the switch issues alarms. See Table 38 for descriptions of these parameters.
Page 64: Port Performance
Port performance To display port performance in terms of the volume of data transmitted, data received, or errors, enter the show perf command. You can display continuous live performance information for one or more ports, or an instantaneous summary. The following example displays an instantaneous summary in bytes and frames.
Page 65: Modifying Port Operating Characteristics
Modifying port operating characteristics You can make permanent or temporary changes to port operating characteristics. The set config port command makes permanent port configuration changes. These changes are saved in the active configuration and are preserved across switch or port resets. The set port command makes temporary changes that apply until the next port or switch reset, or until you activate a configuration.
Page 66: Configuring Transparent Routing
You can duplicate a specified port configuration on specified target ports using the clone config port command. The following example configures ports 8–19 based on port 0: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) config edit 8/20q FC Switch (admin) #> clone config port 0 8-19 8/20q FC Switch (admin-config)#>...
Page 67 NOTE: Although transparent routing can be configured with the CLI, the QuickTools web applet is designed to simplify the configuration process. See the HP StorageWorks 8/20q Fibre Channel Switch QuickTools switch management user guide. To configure transparent routing: Determine what devices on the local fabric require access to devices on the remote fabric. Local devices must be attached directly to the 8/20q Fibre Channel Switch.
Page 68: Port Binding
c. Add the new zone to the active zone set, save the zone set, and activate it. 8/20q FC Switch (admin-zoning) #>zoneset add zoneset_alpha IFZ_210000E08B0ED359_22000004CFA87F2D 8/20q FC Switch (admin-zoning) #> zoning save The changes have been saved; however, they must be activated before they can take effect -- see Zoneset Activate command.
Page 69: Resetting A Port
To enable port binding for the selected port and to specify the WWNs of the authorized ports/devices, enter the set config security portbinding command. The following example enables port binding on port 1 and specifies two device world wide names: 8/20q FC Switch #>...
Page 70 To enable and configure port threshold monitoring on the switch, enter the set config threshold command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> config edit 8/20q FC Switch (admin-config) #> set config threshold A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 71: Testing A Port
Testing a port You can test a port using the test port command using online or offline tests. The following sections describe the test types, displaying test results, and cancelling a test: • Online tests for ports, page 71 • Offline tests for ports, page 72 •...
Page 72: Offline Tests For Ports
Offline tests for ports An offline test is a disruptive test that exercises the port connections. You must place the port in the diagnostics state using the set port command before starting the test. There are two types of offline test: internal loopback and external loopback.
Page 73: Zoning Configuration
Zoning configuration This section describes the following tasks: • Displaying zoning database information, page 73 • Configuring the zoning database, page 79 • Modifying the zoning database, page 81 • Saving the active and merged zone sets, page 81 • Resetting the zoning database, page 82 •...
Page 74: Configured Zone Set Information
Configured zone set information The zoneset list and the zoning list commands display information about all zone sets in the non-volatile zoning database. To display a list of the zone sets, enter the zoneset list command, as shown in the following example: 8/20q FC Switch #>...
Page 75: Active Zone Set Information
Active zone set information The zoning list and zoneset active commands display information about the active zone set. To display component zones and zone members, enter the zoning active command, as shown in the following example: 8/20q FC Switch #> zoning active Active (enforced) ZoneSet Information ZoneSet Zone...
Page 76: Merged Zone Set Information
Merged zone set information A merged zone set is a zone set that is received from another switch as a result of a change to the active zone set. You can display the merged zone set on your switch if the MergeAutoSave parameter is set to False.
Page 77: Zone Membership Information
To display the zones and the zone sets to which they belong, enter the zone list command, as shown in the following example: 8/20q FC Switch #> zone list Zone ZoneSet ---- ------- wwn_b0241f zone_set_1 wwn_23bd31 zone_set_1 wwn_221416 zone_set_2 wwn_2215c3 zone_set_2 wwn_0160ed zone_set_3...
Page 78: Alias And Alias Membership Information
Alias and alias membership information The alias list and alias members commands display information about aliases. To display a list of all aliases, enter the alias list command, as shown in the following example: 8/20q FC Switch #> alias list Current list of Zone Aliases ---------------------------- alias1...
Page 79: Zoning Database Limits
Zoning database limits To display a summary of the objects in the zoning database and their maximum limits, enter the zoning limits command, as shown in the following example: 8/20q FC Switch #> zoning limits Configured (saved in NVRAM) Zoning Information Zoning Attribute Maximum Current...
Page 80 If MergeAutoSave is False on a switch, and a new zone set is activated elsewhere in the fabric or a fabric merge occurs, you can choose how to dispose of the merged zone set: • To display the merged zone set, enter the zoning merged command. •...
Page 81: Modifying The Zoning Database
Modifying the zoning database To modify the non-volatile zoning database: Enter the admin start command. 8/20q FC Switch #> admin start An Admin session prevents other accounts from making changes at the same time through Telnet, QuickTools, or any other management application. Take one of the following actions: •...
Page 82: Resetting The Zoning Database
Resetting the zoning database There are two ways to remove all aliases, zones, and zone sets from the zoning database: • Enter the reset zoning command, as shown in the following example. This is the preferred method. 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #>...
Page 83: Renaming A Zone Set
Renaming a zone set To rename a zone set, enter the zoneset rename command, as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> zoning edit 8/20q FC Switch (admin-zoning) #> zoneset rename zoneset_old zoneset_new 8/20q FC Switch (admin-zoning) #>zoning save Copying a zone set To copy a zone set and its contents to a new zone set, enter the zoneset copy command, as shown in...
Page 84: Creating A Zone
Creating a zone To create a new zone, enter the zone create command, as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> zoning edit 8/20q FC Switch (admin-zoning) #> zone create zone_1 8/20q FC Switch (admin-zoning) #>...
Page 85: Managing Aliases
Managing aliases Managing aliases consists of the following tasks: • Creating an alias, page 85 • Deleting an alias, page 85 • Renaming an alias, page 85 • Copying an alias, page 85 • Adding members to an alias, page 85 •...
Page 86: Removing Members From An Alias
Removing members from an alias To remove ports/devices from alias_1, enter the alias remove command, as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> zoning edit 8/20q FC Switch (admin-zoning) #> alias remove alias_1 1,4 1,5 8/20q FC Switch (admin-zoning) #>...
Page 87: Connection Security Configuration
Connection security configuration This section describes the following tasks: • Managing SSL and SSH services, page 87 • Displaying SSL and SSH services, page 88 • Creating an SSL security certificate, page 89 The 8/20q Fibre Channel Switch supports secure connections with Telnet and switch management applications.
Page 88: Displaying Ssl And Ssh Services
To manage both SSH and SSL services, enter the set setup services command, as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> set setup services A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 89: Creating An Ssl Security Certificate
Creating an SSL security certificate Enabling SSL automatically creates a security certificate on the switch. The security certificate is required to establish an SSL connection with a management application such as Simple SAN Connection Manager or QuickTools. The certificate is valid 24 hours before the certificate creation date and expires 365 days after the creation date.
Page 90 Connection security configuration...
Page 91: Device Security Configuration
Device security configuration This section describes the following tasks: • Displaying security database information, page 91 • Configuring the security database, page 95 • Modifying the security database, page 96 • Resetting the security database, page 96 • Managing security sets, page 96 •...
Page 92: Active Security Set Information
To display all security sets, groups, and group members in the security database, enter the security list command, as shown in the following example: 8/20q FC Switch #> security list Active Security Information SecuritySet Group GroupMember ----------- ----- ----------- No active securityset defined. Configured Security Information SecuritySet Group...
Page 93: Security Set Membership Information
To display the name of the active security set and its activation history, enter the securityset active command, as shown in the following example: 8/20q FC Switch #> securityset active Active SecuritySet Information ------------------------------ ActiveSecuritySet alpha LastActivatedBy Remote LastActivatedOn day month date time year Security set membership information The securityset groups and group securitysets commands display security set membership information.
Page 94: Security Database Modification History
Security database modification history To display a record of security database modifications, enter the security history command, as shown in the following example: 8/20q FC Switch #> security history Active Database Information --------------------------- SecuritySetLastActivated/DeactivatedBy Remote SecuritySetLastActivated/DeactivatedOn day month date time year Database Checksum 00000000 Inactive Database Information...
Page 95: Configuring The Security Database
Configuring the security database You can configure how the security database is applied to the switch and exchanged with the fabric through the security configuration parameters. The following security configuration parameters are available through the set config security command: • AutoSave—This parameter enables or disables the saving of changes to active security set in the switch’s non-volatile security database.
Page 96: Modifying The Security Database
Modifying the security database To modify the security database: Open an Admin session with the admin start command. 8/20q FC Switch #> admin start An Admin session prevents other accounts from making changes at the same time either through Telnet, QuickTools, or Simple SAN Connection Manager.
Page 97: Deleting A Security Set
Deleting a security set To delete a security set, enter the securityset delete command, as shown in the following example: 8/20q FC Switch (admin-security) #> securityset delete securityset_1 Renaming a security set To rename a security set. enter the securityset rename command, as shown in the following example: 8/20q FC Switch (admin-security) #>...
Page 98: Creating A Group
Creating a group Creating a group involves specifying a group name and a group type. There are three types of groups: • ISL group—secures connected switches • Port group—secures connected devices • MS group—secures management server commands To create a new port group, enter the group create command, as shown in the following example: 8/20q FC Switch (admin-security) #>...
Page 99: Modifying A Group Member
Modifying a group member Modifying a group member involves changing the member attributes. The member attributes define the authentication method, encryption methods, secrets, and fabric binding, depending on the group type. • For ISL member attributes, see Table • For Port member attributes, see Table •...
Page 100 100 Device security configuration...
Page 101: Radius Server Configuration
RADIUS server configuration Authentication can be performed locally using the switch’s security database, or remotely using a Remote Dial-In User Service (RADIUS) server such as Microsoft RADIUS. With a RADIUS server, the security database for the entire fabric resides on the server. In this way, the security database can be managed centrally, rather than on each switch.
Page 102: Configuring A Radius Server On The Switch
Configuring a RADIUS server on the switch To configure a RADIUS server on the switch, enter the set setup radius command. There are two groups of RADIUS configuration parameters. One group of parameters is common to all RADIUS server configurations. The second group is server-specific. You can configure both groups of parameters for all RADIUS servers, or you can configure the common and server-specific parameters separately.
Page 103 The following example configures RADIUS server 1: 8/20q FC Switch (admin) #> set setup radius server 1 A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value. If you wish to terminate this process before reaching the end of the attributes for the server being processed, press 'q' or 'Q' and the ENTER key to do so.
Page 104 104 RADIUS server configuration...
Page 105: 10Event Log Configuration
Event log configuration This section describes the following tasks: • Starting and stopping event logging, page 105 • Displaying the event log, page 106 • Managing the event log configuration, page 107 • Clearing the event log, page 108 • Logging to a remote host, page 108 •...
Page 106: Displaying The Event Log
Displaying the event log To display the event log, enter the show log command. Each log message has the following format: [ordinal][time_stamp][severity][message_ID][source][message_text] Table 6 describes the message format components. Table 6 Event log message format Component Description A number assigned to each message in sequence since the last time the alarm history was [ordinal] cleared.
Page 107: Filtering The Event Log Display
Filtering the event log display You can customize which events are displayed according to either the component or the severity level. To filter the events in the display, enter the show log display command with an operand that corresponds to one of the following severity levels and component events: •...
Page 108: Displaying The Event Log Configuration
The following example configures the event log to record switch management events with warning and critical severity levels associated with ports 0–3. Entering the set log save command ensures that this configuration is preserved across switch resets. 8/20q FC Switch (admin) #> set log component switch 8/20q FC Switch (admin) #>...
Page 109: Creating And Downloading A Log File
To control local logging (LocalLogEnabled parameter) and remote logging (RemoteLogEnabled and RemoteLogHostAddress parameters), enter the set setup system command in an Admin session, as shown in the following example: 8/20q FC Switch (admin) #> set setup system A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 110 110 Event log configuration...
Page 111: 11Call Home Configuration
Call Home configuration NOTE: The 8/20q Fibre Channel Switch Call Home service provides an e-mail notification capability for the switch. This service has no relationship with the HP Call Home feature, which notifies HP services. This section describes the following topics: •...
Page 112: Call Home Messages
Call Home messages The Call Home service generates e-mail messages for the specified event severity level and the following switch actions: • Switch comes online • Switch goes offline • Reboot • Power up • Power down • SFP failure NOTE: For a power-down event, if the switch is forced to power down before the message is sent to the SMTP server, no message will be transmitted.
Page 113: Technical Support Interface
The following is an example of a full-text e-mail, including profile and SNMP contact information: From: john.doe@work.com [mailto:john.doe@work.com] Sent: Wednesday, July 25, 2007 5:03 PM Subject: [CallHome: Test] Alarm generated on Switch_8 ------------ Event Details SwitchName: Switch_8_83.215 SwitchIP: 10.20.30.40 SwitchWWN: 10:00:00:c0:dd:0c:66:f2 Level: Alarm...
Page 114: Configuring The Call Home Service
Configuring the Call Home service To configure the Call Home service, enter the set setup callhome command in an Admin session, as shown in the following example. See Table 47 for a description of the Call Home service configuration entries. 8/20q FC Switch (admin) #>...
Page 115: Managing The Call Home Database
To display the Call Home service configuration, enter the show setup callhome command, as shown in the following example. 8/20q FC Switch (admin) #> show setup callhome Callhome Information -------------------- PrimarySMTPServerAddr 0.0.0.0 PrimarySMTPServerPort PrimarySMTPServerEnabled False SecondarySMTPServerAddr 0.0.0.0 SecondarySMTPServerPort SecondarySMTPServerEnabled False ContactEmailAddress nobody@localhost.localdomain PhoneNumber...
Page 116: Displaying Call Home Database Information
Managing the Call Home database consists of the following tasks: • Displaying Call Home database information, page 1 16 • Creating a profile, page 1 18 • Deleting a profile, page 1 18 • Modifying a profile, page 1 19 •...
Page 117 To display a list of Call Home profiles and their details, enter the callhome list profile command, as shown in the following example: 8/20q FC Switch #> callhome list profile ProfileName: group4 ------------ Level Warn Format FullText MaxSize any size up to max of 100000 EmailSubject CallHome Warn RecipientEmail...
Page 118: Creating A Profile
Creating a profile To create a Call Home profile, enter the profile create command, as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> callhome edit 8/20q FC Switch (admin-callhome) #> profile create profile_1 A list of attributes with formatting and default values will follow.
Page 119: Modifying A Profile
Modifying a profile To modify an existing Call Home profile, enter the profile edit command, as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> callhome edit 8/20q FC Switch (admin-callhome) #> profile edit profile_1 A list of attributes with formatting and current values will follow.
Page 120: Adding A Data Capture Configuration
Adding a data capture configuration To add a data capture configuration to the Tech_Support_Center profile, enter the capture add command, as shown in the following example. If the Tech_Support_Center profile does not exist, you must create it using the profile create command. 8/20q FC Switch #>...
Page 121: Deleting A Data Capture Configuration
Deleting a data capture configuration To delete a data capture configuration from the Tech_Support_Center profile, enter the capture remove command, as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> callhome edit 8/20q FC Switch (admin-callhome) #> capture remove Capture Entries for Profile: Tech_Support_Center Index...
Page 122: Resetting The Call Home Database
Resetting the Call Home database There are two ways to reset the Call Home database. To clear all Callhome profiles, enter the callhome clear command, as shown in the following example. This command does not affect the Call Home service configuration. 8/20q FC Switch #>...
Page 123: 12Simple Network Management Protocol Configuration
Simple Network Management Protocol configuration This section describes the following tasks: • Managing the SNMP service, page 123 • Displaying SNMP information, page 124 • Modifying the SNMP configuration, page 125 • Resetting the SNMP configuration, page 126 • Managing the SNMP version 3 configuration, page 127 The Simple Network Management Protocol (SNMP) provides for the management of the switch through third-party applications that use SNMP.
Page 124: Displaying Snmp Information
Displaying SNMP information To display common and trap-specific SNMP configuration information, enter the show setup snmp command, as shown in the following example. See Table 51 for a description of the SNMP parameters. 8/20q FC Switch #> show setup snmp SNMP Information ---------------- SNMPEnabled...
Page 125: Modifying The Snmp Configuration
Modifying the SNMP configuration To modify the SNMP configuration, enter the set setup snmp command in an Admin session. There are two groups of configuration parameters. One group is common to all traps; the second group is trap-specific. You can configure both groups of parameters for all SNMP traps, or you can configure the common and trap-specific parameters separately.
Page 126: Resetting The Snmp Configuration
The following example configures SNMP trap 1: 8/20q FC Switch (admin) #> set setup snmp trap 1 A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value. If you wish to terminate this process before reaching the end of the list press 'q' or 'Q' and the ENTER key to do so.
Page 127: Managing The Snmp Version 3 Configuration
Managing the SNMP version 3 configuration SNMP version 3 is an interoperable, standards-based protocol for network management. SNMP version 3 provides secure access to devices using a combination of packet authentication and encryption over the network. SNMP version 3 provides the following security features: •...
Page 128: Creating An Snmp Version 3 User Account
Creating an SNMP version 3 user account To create an SNMP version 3 user account, enter the snmpv3user add command as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> snmpv3user add A list of SNMPV3 user attributes with formatting and default values as applicable will follow.
Page 129: Modifying An Snmp Version 3 User Account
Modifying an SNMP version 3 user account To modify an SNMP version 3 user account, enter the snmpv3user edit command as shown in the following example: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> snmpv3user edit A list of SNMPV3 user attributes with formatting and current attribute values for the specified SNMPV3 user will follow.
Page 130 130 Simple Network Management Protocol configuration...
Page 131: 13Command Reference
Command reference This section provides an alphabetical listing of the commands of the CLI and provides the following information for each command: • Access authority, page 131 • Syntax and operands, page 131 • Notes and examples, page 131 Access authority The Authority paragraph in each command description indicates what types of sessions are required to enter that command.
Page 132: Admin
admin Description Opens and closes an Admin session. The Admin session provides access to commands that change the fabric and switch configurations. Only one Admin session can be open on the switch at any time. An inactive Admin session will time out after a specified period of time, which is changed using the set setup system command.
Page 133: Alias
alias Description Creates a named set of ports/devices. Aliases make it easier to assign a set of ports/devices to many zones. An alias can not have a zone or another alias as a member. Authority Admin session and Zoning Edit session for all operands except list and members Syntax alias add [alias] [member_list]...
Page 134 Examples The following is an example of the alias list command: 8/20q FC Switch #> alias list Current list of Zone Aliases ---------------------------- alias1 alias2 The following is an example of the alias members command: 8/20q FC Switch #> alias members alias1 Current list of members for Zone Alias: alias1 --------------------------------------- 50:06:04:82:bf:d2:18:c4...
Page 135: Callhome
callhome Description Opens a Callhome Edit session in which to create and manage Call Home profiles. NOTE: The 8/20q Fibre Channel Switch Call Home service provides an e-mail notification capability for the switch. This service has no relationship with the HP Call Home feature, which notifies HP services.
Page 136: Call Home Queue Statistics Parameters
queue [option] Clears the Call Home e-mail queue or displays Call Home e-mail queue statistics depending on the value of [option]. The Call Home queue statistics parameters are described in Table 7 Table 7 Call Home queue statistics parameters Parameter Description Clears the Call Home e-mail queue.
Page 137 The following is an example of the callhome list profile command: 8/20q FC Switch #> callhome list profile ProfileName: group4 ------------ Level Warn Format FullText MaxSize any size up to max of 100000 EmailSubject CallHome Warn RecipientEmail admin1@company.com RecipientEmail admin2@company.com RecipientEmail admin3@company.com RecipientEmail...
Page 138: Capture
capture Description Manages the data capture configuration for the Tech_Support_Center Call Home profile. The data capture configuration determines the time and frequency by which status and trend data are collected from the switch and sent to recipients specified in the Tech_Support_Center profile. Authority Admin session and Callhome Edit session.
Page 139 Examples The following is an example of the capture add command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> callhome edit 8/20q FC Switch (admin-callhome) #> capture add A list of attributes with formatting and default values will follow. Enter a value or simply press the ENTER key to accept the default value.
Page 140 The following is an example of the capture remove command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> callhome edit 8/20q FC Switch (admin-callhome) #> capture remove Capture Entries for Profile: Tech_Support_Center Index TimeOfDay DayOfWeek Interval ----- --------- --------- --------...
Page 141: Clone Config Port
clone config port Description Duplicates a source port configuration on specified target ports. Authority Admin session and a Config Edit session Syntax clone config port [source_port_number] [port_list] Operands [source_port_number] [port_list] Duplicates the configuration of a port given by [source_port_number] on a set of target ports given by [port_list].
Page 142: Config
config Description Manages the Fibre Channel configurations on a switch. Authority Admin session for all operands except backup and list Syntax config activate [config_name] backup export cancel copy [config_source] [config_destination] delete [config_name] edit [config_name] export [account_name] [ip_address] [file_name] import [account_name] [ip_address] [file_name] list restore import save [config_name]...
Page 143 restore import Restores configuration settings to the switch from a configuration backup file named configdata. You can create a backup file using the config backup command. Typically, you would upload this backup file from a server using FTP. The optional import operand imports the backup file from a remote server, prompting you for an account name, server IP address or DNS host name, configuration file name on the server, and a password if the server requires one.
Page 144 The following is an example of how to upload a configuration backup file (configdata) from the workstation to the switch and then restore the configuration. #> ftp symbolic_name or ip_address user: images password: images ftp> bin ftp> put configdata ftp> quit 8/20q FC Switch #>...
Page 145: Create
create Description Creates support files for troubleshooting switch problems, and certificates for secure communications for Simple SAN Connection Manager, QuickTools, and SMI-S. Authority Admin session for the certificate operand Syntax create certificate support Operands certificate Creates a security certificate on the switch. The security certificate is required to establish an SSL connection with a management application such as Simple SAN Connection Manager.
Page 146 The following is an example of the create support command to download the support file to your workstation. When prompted to send the support file to another machine, you decline, close the Telnet session, and open an FTP session on the switch and log in with the account name images and password images.
Page 147: Date
date Description Displays or sets the system date and time. To set the date and time, the information string must be provided in this format: MMDDhhmmCCYY. The new date and time takes effect immediately. Authority Admin session except to display the date. Syntax date [MMDDhhmmCCYY]...
Page 148: Exit
exit Description Closes the switch connection. Authority None Syntax exit Notes You can also press Control-D to close the switch connection. 148 Command reference...
Page 149: Fcping
fcping Description Verifies a Fibre Channel connection with another switch or a device and reports status. Authority None Syntax fcping destination [address] count [number] timeout [seconds] Operands [address] The address of the port or device with which to verify the Fibre Channel connection. [address] can have one of the following formats: •...
Page 150: Fctrace
fctrace Description Displays the path from an initiator device port in the fabric to a target device port in the same zone. To trace the path between two initiator ports, you must disable the I/O StreamGuard feature. Use the set config port command to change the IOStreamGuard parameter. Path information includes the following: •...
Page 151: Feature
feature Description Adds license key features to the switch and displays the license key feature log. To order a license key, contact your switch distributor or your authorized reseller. Upgrading a switch is not disruptive, nor does it require a switch reset. Authority Admin session for add operand only Syntax feature...
Page 152: Firmware Install
firmware install Description Downloads firmware from a remote host to the switch, installs the firmware, then resets the switch to activate the firmware. This is disruptive. The command prompts you for the following: • The file transfer protocol (FTP or TFTP) •...
Page 153 The following is an example of the firmware install command using TFTP: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> firmware install The switch will be reset. This process will cause a disruption to I/O traffic. Continuing with this action will terminate all management sessions, including any Telnet sessions.
Page 154: Group
group Description Creates groups, manages membership within the group, and manages the membership of groups in security sets. Authority Admin session and a Security Edit session. For information about starting a Security Edit session, see the security command. The list, members, securitysets, and type operands are available without an Admin session.
Page 155: Port Group Member Attributes
Table 9 ISL group member attributes (continued) Attribute Description Hex string that is encrypted by the secondary hash and sent for SecondarySecret authentication. The string has the following lengths, depending on the secondary hash function: • MD5 hash: 16-byte • SHA- 1 hash: 20-byte Domain ID of the switch to which to bind the ISL group member WWN.
Page 156: Group Type Parameters
Table 1 1 MS group member attributes (continued) Attribute Description The hash function to use to decipher the encrypted secret sent by the MS Hash group member. Hash values are MD5 or SHA-1. Hexadecimal string that is encrypted by the hash function for Secret authentication with MS group members.
Page 157 Table 13 Group member attributes (continued) Attribute Description Hexadecimal string that is encrypted by the primary hash for PrimarySecret authentication with the member. The string has the following lengths (ISL and Port Groups) depending on the primary hash function: • MD5 hash: 16-byte •...
Page 158 Examples The following is an example of the group add command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> security edit 8/20q FC Switch (admin-security) #> group add Group_1 A list of attributes with formatting and default values will follow Enter a new value or simply press the ENTER key to accept the current value with exception of the Group Member WWN field which is mandatory.
Page 159 The following is an example of the group members command: 8/20q FC Switch #> group members group_1 Current list of members for Group: group_1 ---------------------------------- 10:00:00:c0:dd:00:71:ed 10:00:00:c0:dd:00:72:45 10:00:00:c0:dd:00:90:ef 10:00:00:c0:dd:00:b8:b7 See also security, page 194 8/20q Fibre Channel Switch command line interface guide 159...
Page 160: Hardreset
hardreset Description Resets the switch and performs a power-on self test (POST). This reset disrupts I/O traffic, activates the pending firmware, and clears the alarm log. To save the alarm log before resetting, see the set log command. Authority Admin session Syntax hardreset Notes To reset the switch without a power-on self test, see the reset command.
Page 161: Help
help Description Displays a brief description of the specified command, its operands, and usage. Authority None Syntax help [command] [operand] Operands [command] Displays a summary of the command given by [command] and its operands. If you omit [command], the system displays all available commands. [operand] Displays a summary of the operand given by [operand] belonging to the command given by [command].
Page 162: History
history Description Displays a numbered list of the previously entered commands from which you can re-execute selected commands. Authority None Syntax history Notes Use the history command to provide context for the ! command: • Enter ![command_string] to re-execute the most recent command that matches [command_string]. •...
Page 163: Hotreset
hotreset Description Resets the switch for the purpose of activating the pending firmware without disrupting traffic. This command terminates all management sessions, saves all configuration information, and clears the event log. After the pending firmware is activated, the configuration is recovered. This process may take a few minutes.
Page 164: Image
image Description Manages and installs switch firmware. Authority Admin session Syntax image cleanup fetch [account_name] [ip_address] [file_source] [file_destination] install list tftp [ip_address] [file_source] [file_destination] unpack [file] Operands cleanup Removes all firmware image files from the switch. All firmware image files are removed automatically each time the switch is reset.
Page 165 Examples The following is an example of the image install command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> image install The switch will be reset. This process will cause a disruption to I/O traffic. Continuing with this action will terminate all management sessions, including any Telnet sessions.
Page 166: Ipsec
ipsec Description Manages the IP Security database. The IP Security database consists of the Security Association database and the Security Policy database. The ipsec edit command opens a session in which to create and manage associations and policies. Authority Admin session except for the history operand. The clear operand also requires an Ipsec Edit session.
Page 167 The following is an example of the ipsec limits command: 8/20q FC Switch #> ipsec limits Configured (saved) IPsec Information IPsec Attribute Maximum Current --------------- ------- ------- MaxConfiguredSAs MaxConfiguredSPs See also ipsec association, page 168 ipsec list, page 171 ipsec policy, page 174 8/20q Fibre Channel Switch command line interface guide 167...
Page 168: Ipsec Association
ipsec association Description Creates and manages associations in the Security Association database. Authority Admin session and an Ipsec Edit session Syntax ipsec association copy [association_source] [association_destination] create [association] delete [association] edit [association] list [association] rename [association_old] [association_new] Operands copy [association_source] [association_destination] Creates a new association named [association_destination] and copies the configuration into it from the association given by [association_source].
Page 169 Table 14 Association configuration parameters (continued) Parameter Description Algorithm that encrypts outbound data or decrypt inbound data. Encryption The encryption algorithm can be one of the following: • DES-CBC • 3DES-CBC • Null • Blowfish-CBC • AES-CBC • Twofish-CBC Key string to use in encrypting or decrypting data such as EncryptionKey "123456789012345678901234"...
Page 170 Examples The following is an example of the ipsec association create command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> ipsec edit 8/20q FC Switch (admin-ipsec) #> ipsec association create h2h-sh-sa A list of attributes with formatting will follow. Enter a value or simply press the ENTER key to skip specifying a value.
Page 171: Ipsec List
ipsec list Description Displays information about IP security associations and policies. Authority None Syntax ipsec list active association [option] configured edited policy [option] Operands active Displays a summary of active associations and policies. This is the default. association [option] Displays the configuration for the associations given by [option]. If you omit [option], the command displays the configuration of all active associations.
Page 172 Examples The following is an example of the ipsec list command: 8/20q FC Switch #> ipsec list Active IPsec Information Security Association Database ----------------------------- h2h-sh-sa h2h-hs-sa Security Policy Database ------------------------ h2h-hs-sp h2h-sh-sp Summary ------- Security Association Count: Security Policy Count: The following is an example of the ipsec list association command: 8/20q FC Switch #>...
Page 173 The following is an example of the ipsec list association command: 8/20q FC Switch #> ipsec list association Active IPsec Information h2h-sh-sa Description: Host-to-host: switch->host Source: fe80::2c0:ddff:fe03:d4c1 Destination: fe80::250:daff:feb7:9d02 Protocol: esp SPI: 333 (0x14d) Authentication: hmac-sha1 ******** Encryption: 3des-cbc ******** h2h-hs-sa Description: Host-to-host: host->switch Source: fe80::250:daff:feb7:9d02...
Page 174: Ipsec Policy
ipsec policy Description Manages policies in the Security Policy database. Authority Admin session and an Ipsec Edit session Syntax ipsec policy copy [policy_source] [policy_destination] create [policy] delete [policy] edit [policy] list [option] rename [policy_old] [policy_new] Operands copy [policy_source] [policy_destination] Creates a new policy named [policy_destination] and copies the configuration into it from the policy given by [policy_source].
Page 175 Table 15 Policy configuration parameters (continued) Parameter Description Direction of the data traffic to which the policy is to be applied: Direction • In—Data entering the source • Out—Data leaving the source A number from –2147483647 to +214783647 that determines Priority priority for this policy in the security policy database.
Page 176 rename [policy_old] [policy_new] Renames the policy given by [policy_old] to the policy given by [policy_new]. You must enter the ipsec save command afterwards to save your changes. Dynamic policies cannot be renamed. Examples The following is an example of the ipsec policy create command: 8/20q FC Switch #>...
Page 177: Lip
Description Reinitializes the specified loop port. Authority Admin session Syntax lip [port_number] Operands [port_number] The number of the port to be reinitialized. Ports are numbered beginning with 0. Examples The following is an example of the lip command: 8/20q FC Switch (admin) #> lip 2 8/20q Fibre Channel Switch command line interface guide 177...
Page 178: Logout
logout Description Closes the switch connection. Authority None Syntax logout Notes You can also press Control-D to close the switch connection. See also exit, page 148 logout, page 178 178 Command reference...
Page 179: Passwd
passwd Description Changes a user account’s password. Authority Admin account name and an Admin session to change another account’s password; you can change your own password without an Admin session. Syntax passwd [account_name] Operands [account_name] The user account name. To change the password for an account name other than your own, you must open an Admin session with the account name admin.
Page 180: Ping
ping Description Initiates an attempt to communicate with another switch over an Ethernet network and reports the result. Authority None Syntax ping [host_name] -ipv4 [host_address] -ipv6 [host_address] Operands [host_name] DNS host name of the switch you want to query. [host_name] is a character string of 2–125 characters made up of one or more subdomains delimited by periods (.).
Page 181: Profile
profile Description Creates and modifies profiles with which to customize Call Home e-mail notification. A profile defines the event severity level at which to generate e-mails, e-mail subject and text, and e-mail recipients. NOTE: The Call Home service provides an e-mail notification capability for the switch. This service has no relationship with the HP Call Home feature, which notifies HP services.
Page 182 Table 16 Profile configuration parameters (continued) Parameter Description Addresses to send e-mail messages to; maximum of 10 addresses. The RecipientMail address format is account@domain. Enables (True) or disables (False) the data capture configuration only CaptureEnabled when creating the Tech_Support_Center profile. The default is False. For more information about the data capture configuration, see the ”capture”...
Page 183 The following is an example of the profile edit command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> callhome edit 8/20q FC Switch (admin-callhome) #> profile edit profile_1 A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 184 Description Displays current system process information. Authority None Syntax Examples The following is an example of the ps command: 8/20q FC Switch #> ps PPID %CPU %MEM TIME ELAPSED COMMAND 0.3 00:00:04 2-03:02:31 cns 0.3 00:00:06 2-03:02:31 ens 0.3 00:00:09 2-03:02:31 dlog 0.6 00:00:33 2-03:02:31 ds...
Page 185: Quit
quit Description Closes the switch connection. Authority None Syntax quit Notes You can also press Control-D to close the switch connection. See also exit, page 148 logout, page 178 8/20q Fibre Channel Switch command line interface guide 185...
Page 186: Reset
reset Description Resets the switch configuration parameters. If you omit the operand, the default is reset switch. Authority Admin session Syntax reset callhome config [config_name] factory ipsec port [port_list] radius security services snmp switch (default) system zoning Operands callhome Resets the Call Home database configuration to its default values. config [config_name] Resets the configuration given by [config_name] to the factory default values for switch, port, port threshold alarm, and zoning configuration as described in...
Page 187 switch Resets the switch without a power-on self test (POST). This is the default. This reset disrupts traffic and does the following: • Activates the pending firmware • Closes all management sessions • Clears the event log. To save the event log before resetting, see the ”set log”...
Page 188: Call Home Service Configuration Defaults
Notes The following tables specify the various factory default settings: • Enter the show setup callhome command to display the Call Home database configuration. The default values are shown in Table • Enter the show config switch command to display the switch configuration. The default values are shown in Table •...
Page 189: Switch Configuration Defaults
Table 18 Switch configuration defaults Parameter Default AdminState Online Broadcast Enabled True InbandEnabled True FDMIEnabled True FDMIEntries 1,000 1 (0x Hex) DefaultDomainID DomainIDLock False SymbolicName 8/20q FC Switch R_A_TOV 10000 E_D_TOV 2000 PrincipalPriority ConfigDescription Config Default Table 19 Port configuration defaults Parameter Port Defaults AdminState...
Page 190: Port Threshold Alarm Configuration Defaults
Table 20 Port threshold alarm configuration defaults Parameter Default ThresholdMonitoringEnabled False CRCErrorsMonitoringEnabled True • RisingTrigger • FallingTrigger • SampleWindow DecodeErrorsMonitoringEnabled True • RisingTrigger • FallingTrigger • SampleWindow ISLMonitoringEnabled True • RisingTrigger • FallingTrigger • SampleWindow LoginMonitoringEnabled True • RisingTrigger • FallingTrigger •...
Page 191: Radius Configuration Defaults
Table 22 SNMP configuration defaults (continued) Parameter Default Description HP StorageWorks 8/20q FC Switch ObjectID 1.3.6.1.4.1.3873.1.11 AuthFailureTrap False ProxyEnabled True SNMPv3Enabled False Trap [1-5] Address Trap 1: 10.0.0.254; Traps 2–5: 0.0.0.0 Trap [1-5] Port Trap [1-5] Severity Warning Trap [1-5] Version Trap [1-5] Enabled False Table 23...
Page 192: Dns Host Name Configuration Defaults
Table 24 Switch services configuration defaults Parameter Default MgmtServerEnabled True CallHomeEnabled True Table 25 DNS host name configuration defaults Parameter Default DNSClientEnabled False DNSLocalHostname <undefined> DNSServerDiscovery Static DNSServer1Address <undefined> DNSServer2Address <undefined> DNSServer3Address <undefined> DNSSearchListDiscovery Static DNSSearchList1 <undefined> DNSSearchList2 <undefined> DNSSearchList3 <undefined>...
Page 193: Ntp Server Configuration Defaults
Table 28 Event logging configuration defaults (continued) Parameter Default RemotelogEnabled False RemoteLogHostAddress 10.0.0.254 Table 29 NTP server configuration defaults Parameter Default NTPClientEnabled False NTPServerAddress 10.0.0.254 EmbeddedGUIEnabled True Table 30 Timer configuration defaults Parameter Default AdminTimeout InactivityTimeout Table 31 Security configuration defaults Parameter Default AutoSave...
Page 194: Security
security Description Opens a Security Edit session in which to manage the security database on a switch. Authority Admin session. The operands active, history, limits, and list are available without an Admin session. Syntax security active cancel clear edit history limits list restore...
Page 195 restore Restores the volatile security database with the contents of the non-volatile security database. If the AutoSave parameter is False, you can use this operand to revert changes to the volatile security database that were propagated from another switch in the fabric through security set activation or merging fabrics.
Page 196 The following is an example of the security list command: 8/20q FC Switch #> security list Active Security Information SecuritySet Group GroupMember ----------- ----- ----------- No active securityset defined. Configured Security Information SecuritySet Group GroupMember ----------- ----- ----------- alpha group1 (ISL) 10:00:00:00:00:10:21:16 Authentication Chap...
Page 197: Securityset
securityset Description Manages security sets in the security database. Authority Admin session and a Security Edit session. For information about starting a Security Edit session, see the security command . The active, groups, and list operands are available without an Admin session.
Page 198 Examples The following is an example of the securityset active command 8/20q FC Switch #> securityset active Active SecuritySet Information ------------------------------ ActiveSecuritySet alpha LastActivatedBy Remote LastActivatedOn day month date time year The following is an example of the securityset groups command 8/20q FC Switch #>...
Page 199: Set Alarm
set alarm Description Controls the display of alarms in the session output stream or clears the alarm log. Authority Admin session for the clear operand. Otherwise, none. Syntax set alarm [option] Operands [option] Table 32 describes the output stream alarm parameters. Table 32 Output stream alarm parameters Parameter...
Page 200: Set Beacon
set beacon Description Enables or disables the flashing of the Logged-In LEDs for the purpose of locating a switch. Authority None Syntax set beacon [state] Operands [state] Table 33 describes the beacon state parameters. Table 33 Beacon state parameters Parameter Description Enables the flashing beacon.
Page 201: Set Config Port
set config port Description Sets the port configuration parameters for one or more ports. The changes you make with this command are not retained when you reset or power-cycle the switch unless you save them using the config save command. Authority Admin session and a Config Edit session Syntax set config port [port_number]...
Page 202 Table 34 Port configuration parameters (continued) Parameter Description Send ARB_FF (True) instead of IDLEs (False) on the loop. The default is ARB_FF False. Interoperability credit. The number of buffer-to-buffer credits per port. 0 InteropCredit means the default is unchanged. Default buffer-to-buffer credits are 16 per port.
Page 203 Examples The following is an example of the set config port command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> config edit 8/20q FC Switch (admin-config) #> set config port 1 A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 204: Set Config Security
set config security Description Configures the security database for the automatic saving of changes to the active security set and fabric binding. The changes you make with this command are not retained when you reset or power-cycle the switch unless you save them using the config save command. Authority Admin session and a Config Edit session Syntax set config security...
Page 205: Set Config Security Portbinding
set config security portbinding Description Configures port binding. Authority Admin session and a Config Edit session Syntax set config security portbinding [port_number] Operands [port_number] Initiates an editing session in which to change the port binding configuration for the port given by [port_number].
Page 206: Set Config Switch
set config switch Description Sets the switch configuration parameters. The changes you make with this command are not retained when you reset or power-cycle the switch unless you save them using the config save command. Authority Admin session and a Config Edit session Syntax set config switch This command initiates an editing session in which to change switch configuration settings.
Page 207 Examples The following is an example of the set config switch command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> config edit 8/20q FC Switch (admin-config) #> set config switch A list of attributes with formatting and default values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 208: Set Config Threshold
set config threshold Description Sets the port alarm threshold parameters by which the switch monitors port performance and generates alarms. The changes you make with this command are not retained when you reset or power-cycle the switch unless you save them using the config save command. Authority Admin session and a Config Edit session Syntax set config threshold...
Page 209 Examples The following is an example of the set config threshold command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> config edit 8/20q FC Switch (admin-config) #> set config threshold A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 210: Set Config Zoning
set config zoning Description Configures the zoning database. The changes you make with this command are not retained when you reset or power-cycle the switch unless you save them using the config save command. Authority Admin session and a Config Edit session Syntax set config zoning Initiates an editing session in which to change the zoning database configuration.
Page 211: Set Log
set log Description Specifies the events to record in the event log and display on the screen. You determine what events to record in the switch event log using the component, level, and port operands. You determine what events are automatically displayed on the screen using the display operand. Alarms are always displayed on the screen.
Page 212: Event Display Filter Parameters
Table 41 Event display filter parameters Parameter Description Critical severity-level events. The critical level describes events that are generally Critical disruptive to the administration or operation of the fabric, but require no action. Warning severity-level events. The warning level describes events that are Warn generally not disruptive to the administration or operation of the fabric, but are more important than the informative-level events.
Page 213 restore Restores and saves the port, component, and level settings to the default values. save Saves the log settings for the component, severity level, port, and display level. These settings remain in effect after a switch reset. The log settings can be viewed using the show log settings command.
Page 214: Set Pagebreak
set pagebreak Description Specifies how much information is displayed on the screen at a time. This command is useful for disabling pagebreaks to allow command scripts to run without interruption. Authority None Syntax pagebreak [state] Operands [state] Table 44 describes the pagebreak state parameters. Table 44 Pagebreak state parameters Parameter...
Page 215: Set Port
set port Description Sets port state and speed for the specified port temporarily until the next switch reset or new configuration activation. This command also clears port counters. Authority Admin session Syntax set port clear set port [port_number] clear speed [transmission_speed] state [state] Operands [port_number]...
Page 216: Set Setup Callhome
set setup callhome Description Configures the Call Home database for managing e-mail notifications of fabric problems. Authority Admin session Syntax set setup callhome Prompts you in a line-by-line fashion to configure the Call Home database. Table 47 describes the Call Home configuration attributes. Table 47 Call Home service configuration attributes Parameter...
Page 217 Notes • The Callhome service must be active to support Call Home e-mail notification. See the set setup services command. • The primary, secondary, or both SMTP servers must be properly addressed and enabled on the switch to activate Call Home e-mail notification. If both SMTP servers are enabled, the primary server is active.
Page 218: Set Setup Radius
set setup radius Description Configures RADIUS servers on the switch. Authority Admin session Syntax set setup radius common server [server_number] Operands common Prompts you in a line-by-line fashion to configure attributes that are common to all RADIUS servers. To configure common and server-specific attributes, omit the operand. Table 48 describes the common RADIUS server configuration attributes.
Page 219 Table 49 Server-specific RADIUS server configuration attributes Attribute Description Enable (True) or disable (False) this server for user account UserAuthServer authentication. A user authentication RADIUS server requires a secure management connection (SSL). The default is True. Enable (True) or disable (False) this server for auditing of activity AccountingServer during a user session.
Page 220 The following is an example of the set setup radius server command: 8/20q FC Switch (admin) #> set setup radius server 1 A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value. If you wish to terminate this process before reaching the end of the attributes for the server being processed, press 'q' or 'Q' and the ENTER key to do so.
Page 221: Set Setup Services
set setup services Description Configures services on the switch. Authority Admin session Syntax set setup services This command prompts you in a line-by-line fashion to enable or disable switch services. Table 50 describes the switch service parameters. For each parameter, enter a new value or press Enter to accept the current value shown in brackets.
Page 222 Table 50 Switch services settings (continued) Parameter Description Enables (True) or disables (False) the management of the switch SNMPEnabled through third-party applications that use the Simple Network Management Protocol (SNMP). This parameter is the master control for the set setup snmp command parameter, SNMPEnabled. The default is True.
Page 223 Examples The following is an example of the set setup services command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> set setup services A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 224: Set Setup Snmp
set setup snmp Description Configures SNMP on the switch. Authority Admin session Syntax set setup snmp common trap [trap_number] Operands common Prompts you in a line-by-line fashion to change SNMP configuration parameters that are common for all traps. For each parameter, enter a new value or press Enter to accept the current value. To configure common parameters and trap parameters, omit the common operand.
Page 225: Snmp Trap Configuration Parameters
Operands trap [trap_number] Prompts you in a line-by-line fashion to change SNMP trap parameters for the trap number given by [trap_number]. [trap_number] can be 1–5. For each parameter, enter a new value or press Enter to accept the current value. To configure common parameters and trap parameters, omit the trap operand.
Page 226 The following is an example of the set setup snmp trap command: 8/20q FC Switch (admin) #> set setup snmp trap 1 A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 227: Set Setup System
set setup system Description Configures the network, logging, NTP server, and timer configurations on the switch. Authority Admin session Syntax set setup system ipv4 ipv6 logging timers Operands Prompts you in a line-by-line fashion to change DNS host name configuration parameters described in Table 53.
Page 228: Ipv4 Ethernet Configuration Parameters
ipv4 Prompts you in a line-by-line fashion to change the switch IPv4 Ethernet configuration parameters described in Table 54. To configure all system parameters, omit the operand. For each parameter, enter a new value or press Enter to accept the current value. NOTE: Changing the IP address will terminate all Ethernet management sessions.
Page 229: Event Logging Configuration Parameters
Operands logging Prompts you in a line-by-line fashion to change the event logging configuration parameters described in Table 56. To configure all system parameters, omit the operand. For each parameter, enter a new value or press Enter to accept the current value. Table 56 Event logging configuration parameters Parameter...
Page 230: Timer Configuration Parameters
Table 58 Timer configuration parameters Parameter Description Amount of time in minutes the switch waits before terminating an AdminTimeout idle Admin session. Zero (0) disables the time out threshold. The default is 30, the maximum is 1440. Amount of time in minutes the switch waits before terminating an InactivityTimeout idle Telnet command line interface session.
Page 231 The following is an example of the set setup system ipv4 command: 8/20q FC Switch (admin) #> set setup system ipv4 A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 232 The following is an example of the set setup system logging command: 8/20q FC Switch (admin) #> set setup system logging A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 233 The following is an example of the set setup system timers command: 8/20q FC Switch (admin) #> set setup system timers A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the current value.
Page 234: Set Switch State
set switch state Description Changes the administrative state for all ports on the switch. The previous set config switch command settings are restored after a switch reset or a reactivation of a switch configuration. Authority Admin session Syntax set switch state [state] Operands [state] Table 59...
Page 235: Set Timezone
set timezone Description Specifies the time zone for the switch and the workstation. The default is Universal Time (UTC), also known as Greenwich Mean Time (GMT). This command prompts you to choose a region, then a subregion to specify the time zone. Changing the time zone converts the time to the time in the new time zone.
Page 236: Show About
show about Description Displays introductory information about the operational attributes of the switch. This command is equivalent to the show version command. Authority None Syntax show about Table 60 describes the information returned by the show about command. Table 60 Show about display entries Attribute Description...
Page 237 Examples The following is an example of the show about command: 8/20q FC Switch #> show about ***************************************************** Command Line Interface SHell (CLISH) ***************************************************** SystemDescription HP StorageWorks 8/20q Fibre Channel Switch HostName <undefined> EthIPv4NetworkAddress 10.20.11.192 EthIPv6NetworkAddress MACAddress 00:c0:dd:00:71:ee WorldWideName 10:00:00:c0:dd:00:71:ed ChassisSerialNumber FAM033100024 SymbolicName...
Page 238: Show Alarm
show alarm Description Displays the alarm log and session output stream display setting. Authority None Syntax show alarm settings Operands settings Displays the status of the parameter that controls the display of alarms in the session output stream. This parameter is set using the set alarm command. Notes The alarm log is cleared when the switch is reset or power-cycled.
Page 239: Show Broadcast
show broadcast Description Displays the broadcast tree information and all ports that are currently transmitting and receiving broadcast frames. Authority None Syntax show broadcast Examples The following is an example of the show broadcast command: 8/20q FC Switch #> show broadcast Group Member Ports ISL Ports ----- ------------ --------- 8/20q Fibre Channel Switch command line interface guide 239...
Page 240: Show Chassis
show chassis Description Displays chassis component status and temperature. Authority None Syntax show chassis Examples The following is an example of the show chassis command. 8/20q FC Switch #> show chassis Chassis Information ------------------- BoardTemp (1) - Degrees Celsius BoardTemp (2) - Degrees Celsius BoardTemp (3) - Degrees Celsius PowerSupplyStatus (1) Good...
Page 241: Show Config Port
show config port Description Displays configuration parameters for one or more ports. Authority None Syntax show config port [port_number] Operands [port_number] The number of the port. Ports are numbered beginning with 0. If you omit [port_number], all ports are specified. Examples The following is an example of the show config port command for port 3: 8/20q FC Switch #>...
Page 242: Show Config Security
show config security Description Displays the security database configuration parameters. Authority None Syntax show config security Examples The following is an example of the show config security command: 8/20q FC Switch #> show config security Configuration Name: default ------------------- Switch Security Configuration Information ----------------------------------------- FabricBindingEnabled False...
Page 243: Show Config Security Portbinding
show config security portbinding Description Displays the port binding configuration for one or more ports. Authority None Syntax show config security portbinding [port_number] Operands [port_number] The number of the port. If you omit [port_number], the port binding configuration for all ports is displayed.
Page 244: Show Config Switch
show config switch Description Displays the switch configuration parameters. Authority None Syntax show config switch Examples The following is an example of the show config switch command: 8/20q FC Switch #> show config switch Configuration Name: default ------------------- Switch Configuration Information -------------------------------- AdminState Online...
Page 245: Show Config Threshold
show config threshold Description Displays alarm threshold parameters for the switch. Authority None Syntax show config threshold Examples The following is an example of the show config threshold command: 8/20q FC Switch #> show config threshold Configuration Name: default ------------ Threshold Configuration Information ----------------------------------- ThresholdMonitoringEnabled...
Page 246: Show Config Zoning
show config zoning Description Displays zoning configuration parameters for the switch. Authority None Syntax show config zoning Examples The following is an example of the show config zoning command: 8/20q FC Switch #> show config zoning Configuration Name: default ------------------- Zoning Configuration Information -------------------------------- MergeAutoSave...
Page 247: Show Domains
show domains Description Displays list of each domain and its WWN in the fabric. Authority None Syntax show domains Examples The following is an example of the show domains command: 8/20q FC Switch #> show domains Principal switch is (remote): 10:00:00:60:69:50:0b:6c Upstream Principal ISL is Domain ID List: Domain 97...
Page 248: Show Donor
show donor Description Displays list of current donor and extended credit configuration for all ports. Authority None Syntax show donor Examples The following is an example of the show donor command: 8/20q FC Switch #> show donor Port Config Ext Credit Max Credit Donated Member of Valid Groups to Number Type...
Page 249: Show Env
show env Description Displays temperature and voltage information. Authority None Syntax show env Examples The following is an example of the show env command: 8/20q FC Switch #? show env Temperature(C) Sensors: Sensor Description Status Current High Warn High Alarm ------ ----------- ------...
Page 250: Show Fabric
show fabric Description Displays list of each domain, symbolic name, worldwide name, node IP address, and port IP address in the fabric. Authority None Syntax show fabric brief Operands brief Displays a table of switches in the fabric including domain ID, WWN, and symbolic name. If you omit the brief operand, the command displays information for the local switch only.
Page 251: Show Fdmi
show fdmi Description Displays detailed information about the device host bus adapter. Authority None Syntax show fdmi [port_wwn] Operands [port_wwn] The device WWPN for which to display information. If you omit [port_wwn], the command displays a summary of host bus adapter information for all attached devices in the fabric. Illegal characters in the display appear as question marks (?).
Page 252: Show Interface
show interface Description Displays the status of the active network interfaces. Authority None Syntax show interface Examples The following is an example of the show interface command: 8/20q FC Switch #> show interface eth0 Link encap:Ethernet HWaddr 00:C0:DD:00:00:27 inet addr:10.20.116.131 Bcast:10.20.116.255 Mask:255.255.255.0 inet6 addr: fd70:c154:c2df:116:2c0:ddff:fe00:27/64 Scope:Global...
Page 253: Show Log
show log Description Displays the contents of the log or the parameters used to create and display entries in the log. The log contains a maximum of 1,200 entries. When the log reaches its entry capacity, subsequent entries overwrite the existing entries, beginning with the oldest. Authority None Syntax show log...
Page 254: Event Log Display Filter Parameters
Table 62 Event log display filter parameters Parameter Description Displays all informative events Info Displays all warning events Warning Displays all critical events Critical Displays all events related to E_Ports Eport Displays all events related to the management server Mgmtserver Displays all events related to the name server Nameserver Port [port_number]...
Page 255 The following is an example of the show log command: 8/20q FC Switch #> show log [327][day month date time year][I][Eport Port:0/8][Eport State= E_A0_GET_DOMAIN_ID] [328][day month date time year][I][Eport Port: 0/8][FSPF PortUp state=0] [329][day month date time year][I][Eport Port: 0/8][Sending init hello] [330][day month date time year][I][Eport Port: 0/8][Processing EFP, oxid= 0x8] [331][day month date time year][I][Eport Port: 0/8][Eport State =...
Page 256: Show Lsdb
show lsdb Description Displays link state database information, Authority None Syntax show lsdb Examples The following is an example of the show lsdb command: 8/20q FC Switch #> show lsdb Link State Database Information ------------------------------- LsID 34: Age=1176, Incarnation=0x800000e5 NeighborDomain=36, LocalPort=6, RemotePort=7, Cost=500 NeighborDomain=35, LocalPort=16, RemotePort=16, Cost=100 NeighborDomain=35, LocalPort=18, RemotePort=19, Cost=100 NeighborDomain=35, LocalPort=7, RemotePort=7, Cost=500...
Page 257: Show Media
show media Description Displays transceiver operational and diagnostic information for one or more ports. Authority None Syntax show media [port_number] installed Operands [port_number] The port for which to display transceiver information. [port_number] can be 0–19. Displays transceiver information for all ports. installed Displays transceiver information for all ports that have transceivers installed.
Page 258: Transceiver Information
Table 63 Transceiver information Entry Description Media physical variant. The variant indicates speed, media, MediaType transmitter, and distance. The media designator may be M5 (multimode 50 micron), M6 (multimode 62.5 micron), or MX. MX indicates that the media supports both multimode 50 and 62.5 micron.
Page 259 Examples The following is an example of the show media command: 8/20q FC Switch #> show media 4 Port Number: 4 ------------- MediaType 800-MX-SN-S MediaVendor FINISAR CORP. MediaPartNumber FLTF8528P2BNV MediaRevision MediaSerialNumber P6G22RL MediaSpeeds 2Gb/s, 4Gb/s, 8Gb/s Temp Voltage Tx Bias Tx Pwr Rx Pwr (mA)
Page 260: Show Mem
show mem Description Displays information about memory activity. Authority None Syntax show mem [count] Operands [count] The number of seconds for which to display memory information. If you omit [count], the value 1 is used. Displayed memory values are in 1K block units. NOTE: This operand will display memory activity updates until [count] is reached–it cannot be interrupted.
Page 261: Show Ns
show ns Description Displays the WWNs for devices in the fabric. Authority None Syntax show ns [option] Operands [option] The domain IDs or port IDs for which to display name server information. If you omit [option], name server information for the local domain ID is displayed. Table 64 describes the name server display options.
Page 262: Show Pagebreak
show pagebreak Description Displays the current pagebreak setting. Authority None Syntax show pagebreak Operands The pagebreak setting limits the display of information to 20 lines (ON) or allows the continuous display of information without a break (OFF). Examples The following is an example of the show pagebreak command: 8/20q FC Switch #>...
Page 263: Show Perf
show perf Description Displays port performance in frames/second and bytes/second. If you omit the operand, the command displays data transmitted (out), data received (in), and total data transmitted and received in frames/second and bytes/second. Transmission rates are expressed in thousands (K) and millions (M).
Page 264 outframe [port_list] Displays continuous performance data in frames/second transmitted for the ports given by [port_list]. [port_list] can be a set of port numbers and ranges delimited by spaces. For example, 0 2 10-15 specifies ports 0, 2, 10, 1 1, 12, 13, 14, and 15. If you omit [port_list], the command displays performance data for ports 0–15.
Page 265: Show Port
show port Description Displays operational information for one or more ports. Authority None Syntax show port Table 65 describes the information returned by the show port command. Table 65 Show port display entries Parameter Description Administrative state AdminState Number of times the port begins arbitrated loop initialization AIinit Number of times the port entered initialization and the initialization AIinitError...
Page 266 Table 65 Show port display entries (continued) Parameter Description Number of frames received there were no available credits Flowerrors Number of frames from devices that were rejected FReject Invalid CRC detected InvalidCRC Invalid destination address detected InvalidDestAddr I/O StreamGuard status IOStreamGuard Number of optical link failures detected by this port.
Page 267: Show Port Display Entries
Table 65 Show port display entries (continued) Parameter Description Media physical variant. The variant indicates speed, media, transmitter, MediaType and distance. The media designator may be M5 (multimode 50 micron), M6 (multimode 62.5 micron), or MX. MX indicates that the media supports both multimode 50 and 62.5 micron.
Page 268 Examples The following is an example of the show port command: 8/20q FC Switch #> show port 1 Port Number: 1 ------------ AdminState Online OperationalState Offline AsicNumber PerfTuningMode Normal AsicPort PortID 3a0100 ConfigType PortWWN 20:01:00:c0:dd:0d:4f:08 POSTFaultCode 00000000 RunningType Unknown POSTStatus Passed MediaPartNumber FTLF8528P2BCV...
Page 269: Show Postlog
show postlog Description Displays the power-on self test log, which contains results from the most recently failed power-on self test (POST). Authority None Syntax show postlog show post log Examples The following is an example of the show postlog command: 8/20q FC Switch #>...
Page 270: Show Setup Callhome
show setup callhome Description Displays the Call Home database configuration. NOTE: The 8/20q Fibre Channel Switch Call Home service provides an e-mail notification capability for the switch. This service has no relationship with the HP Call Home feature, which notifies HP services. Authority None Syntax show setup callhome...
Page 271: Show Setup Mfg
show setup mfg Description Displays manufacturing information about the switch. Authority None Syntax show setup mfg Examples The following is an example of the show setup mfg command: 8/20q FC Switch #> show setup mfg Manufacturing Information ------------------------- BrandName BuildDate Tuesday, September 25, 2007 11:23 ChassisPartNumber HSTNM-N015...
Page 272: Show Setup Radius
show setup radius Description Displays RADIUS server information. Authority None Syntax show setup radius common server [server_number] Operands common Displays the configuration parameters that are common for all RADIUS servers. To display common and server-specific information, omit the operand. See Table 48 for a description of the common configuration parameters.
Page 273: Show Setup Services
show setup services Description Displays switch service status information. Authority None Syntax show setup services Examples The following is an example of the show setup services command: 8/20q FC Switch #> show setup services System Services ----------------------------- TelnetEnabled True SSHEnabled False GUIMgmtEnabled True...
Page 274: Show Setup Snmp
show setup snmp Description Displays the current SNMP settings. Authority None Syntax show setup snmp common trap [trap_number] Operands common Displays SNMP configuration parameters that are common to all traps. To display common and trap-specific parameters, omit the operand. See Table 51 for descriptions of the common configuration parameters.
Page 275: Show Setup System
show setup system Description Displays network, logging, NTP server, and timer parameters on the switch. Authority None Syntax show setup system ipv4 ipv6 logging timers Operands Displays DNS host name configuration parameters. To display all system configuration parameters, omit the operand. See Table 53 for descriptions of the DNS host name configuration parameters.
Page 276 The following is an example of the show setup system ipv4 command: 8/20q FC Switch #> show setup system ipv4 System Information ------------------ EthIPv4NetworkEnable True EthIPv4NetworkDiscovery Static EthIPv4NetworkAddress 10.20.11.32 EthIPv4NetworkMask 255.255.252.0 EthIPv4GatewayAddress 10.20.8.254 The following is an example of the show setup system ipv6 command: 8/20q FC Switch #>...
Page 277: Show Steering
show steering Description Displays the routes that data takes in the fabric. Authority None Syntax show steering [domain_id] Operands [domain_id] The domain ID for which to display route information. If you omit [domain_id], the system displays routes for all switches in the fabric. Examples The following is an example of the show steering command: 8/20q FC Switch #>...
Page 278: Show Switch
show switch Description Displays switch operational information. Authority None Syntax show switch Notes Table 66 describes the switch operational parameters. Table 66 Switch operational parameters Parameter Description Descriptive name for the switch SymbolicName Switch worldwide name SwitchWWN Programmable Read-only Memory (PROM) boot version BootVersion Number of port buffer credits available to recipient ports CreditPool...
Page 279 Examples The following is an example of the show switch command: 8/20q FC Switch #> show switch Switch Information ------------------ SymbolicName 8/20q FC Switch SwitchWWN 10:00:00:c0:dd:00:bc:56 BootVersion Vx.x.x.x-0 (day month date time year) CreditPool DomainID 19 (0x13) FirstPortAddress 130000 FlashSize - MBytes LogFilterLevel Critical MaxPorts...
Page 280: Show System
show system Description Displays the operational status of the Ethernet and DNS host name configuration parameters. Authority None Syntax show system Examples The following is an example of the show system command: 8/20q FC Switch #> show system Assigned System Network Information ----------------------------------- Hostname <undefined>...
Page 281: Show Temp
show temp Description Displays temperature information. Authority None Syntax show temp Examples 8/20q FC Switch #? show temp Temperature(C) Sensors: Sensor Description Status Current High Warn High Alarm ------ ----------- ------ ------- --------- ---------- BOARD Normal DS1780 Normal MAX1617 Normal ASIC Normal See also...
Page 282: Show Testlog
show testlog Description Displays the contents of the diagnostic field test log file. Authority None Syntax show testlog show test log Examples The following is an example of the show testlog command: 8/20q FC Switch #> show testlog Queue: Sequence Count: Success Count: Failed Count: 2023...
Page 283: Show Timezone
show timezone Description Displays the current time zone setting. Authority None Syntax show timezone Examples The following is an example of the show timezone command: 8/20q FC Switch #> show timezone America/Chicago See also timezone, page 235 8/20q Fibre Channel Switch command line interface guide 283...
Page 284: Show Topology
show topology Description Displays all connected devices. Authority None Syntax show topology [port_number] Operands [port_number] Displays the devices connected to the port given by [port_number]. Examples The following is an example of the show topology command: 8/20q FC Switch #> show topology Unique ID Key ------------- A = ALPA,...
Page 285: Show Users
show users Description Displays a list of logged-in users. This is equivalent to the user list command. Authority None Syntax show users brief Operands brief Displays just the account name and client. Examples The following is an example of the show users command: 8/20q FC Switch #>...
Page 286: Show Version
show version Description Displays introductory information about the operational attributes of the switch. This command is equivalent to the show about command. Authority None Syntax show version Notes Table 67 describes the information returned by the show version command. Table 67 Show version display entries Attribute Description...
Page 287 Examples The following is an example of the show version command. 8/20q FC Switch #> show version ***************************************************** Command Line Interface SHell (CLISH) ***************************************************** SystemDescription HP StorageWorks 8/20q Fibre Channel Switch HostName <undefined> EthIPv4NetworkAddress 10.20.11.192 EthIPv6NetworkAddress :: MACAddress 00:c0:dd:00:71:ee WorldWideName 10:00:00:c0:dd:00:71:ed ChassisSerialNumber FAM033100024...
Page 288: Show Voltage
show voltage Description Displays voltage information. Authority None Syntax show voltage Examples 8/20q FC Switch #? show voltage Voltage Sensors: Sensor Description Status Current Low Alarm High Alarm ------ ----------- ------ ------- --------- ---------- 2.5V Good 2.50 2.20 2.80 1.25V Good 1.24 1.00...
Page 289: Shutdown
shutdown Description Terminates all data transfers on the switch at convenient points and closes the switch connection. Always power-cycle the switch after entering this command. Authority Admin session Syntax shutdown Notes When the shutdown is complete, the Heartbeat LED is extinguished. 8/20q Fibre Channel Switch command line interface guide 289...
Page 290: Snmpv3User
snmpv3user Description Manages SNMP version 3 user accounts on the switch. Authority Admin session except for the list operand Syntax snmpv3user delete [account] edit list Operands Creates an SNMP version 3 user account, prompting you for the parameters that are described in Table Table 68 SNMP version 3 user account parameters...
Page 291 Examples The following is an example of the snmpv3user add command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> snmpv3user add A list of SNMPV3 user attributes with formatting and default values as applicable will follow. Enter a new value OR simply press the ENTER key where-ever allowed to accept the default value.
Page 292 The following is an example of the snmpv3user list command: 8/20q FC Switch #> snmpv3user list Username Group AuthType PrivType -------- ----- -------- -------- snmpuser1 ReadWrite See also set setup snmp, page 224 show setup snmp, page 274 292 Command reference...
Page 293: Test Cancel
test cancel Description Cancels a port test that is in progress. Authority Admin session Syntax test cancel port [port_number] Operands port [port_number] Cancel the test for the port given by [port_number]. [port_number] can be 0–19. Examples The following example cancels the test running on port 15: 8/20q FC Switch (admin) #>...
Page 294: Test Port
test port Description Tests individual ports using an offline or online test. Authority Admin session Syntax test port [port_number] offline [loopback_type] online Operands [port_number] The port to be tested. [port_number] can be 0–19. offline [loopback_type] Performs an offline test of the type given by [loopback_type] on the port given by [port_number]. Use the set port command to place the port in the diagnostics state before running the test.
Page 295 Examples The following example performs an online test on port 1: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #> test port 1 online A list of attributes with formatting and current values will follow. Enter a new value or simply press the ENTER key to accept the default value. If you wish to terminate this process before reaching the end of the list press 'q' or 'Q' and the ENTER key to do so.
Page 296: Test Status
test status Description Displays the status of a test in progress, or if there is no test in progress, the status of the last test that was executed. Authority None Syntax test status port [port_number] switch Operands port [port_number] Display test status for the port given by [port_number]. [port_number] can be 0–19. switch Display test status for the switch: Passed, Failed, NeverRun.
Page 297 See also test cancel, page 293 test port, page 294 test switch, page 298 8/20q Fibre Channel Switch command line interface guide 297...
Page 298: Test Switch
test switch Description Tests all ports on the switch using a connectivity test, an offline test, or an online test. Authority Admin session Syntax test switch connectivity [loopback_type] offline [loopback_type] online Operands connectivity [loopback_type] Performs a connectivity test of the type given by [loopback_type] on all switch ports. You must place the switch in the diagnostics state using the set switch state command before starting the test.
Page 299 Table 73 Switch test parameters (continued) Parameter Description Stops the test when an error occurs (True). Otherwise, the test continues to StopOnError completion. Restarts the test after completion and continues until you cancel it (True). LoopForever Otherwise, the test ends normally after completion. Examples The following example performs an offline internal test on a switch: 8/20q FC Switch #>...
Page 300: Uptime
uptime Description Displays the elapsed up time since the switch was last reset and the reset method. A hot reset or non-disruptive firmware activation does not reset the elapsed up time reported by this command. Authority None Syntax uptime Examples The following is an example of the uptime command: 8/20q FC Switch #>...
Page 301: User
user Description Administers and displays user accounts. Authority Admin account name and an Admin session. The accounts and list operands are available to all account names without an Admin session. Syntax user accounts delete [account_name] edit list brief Operands accounts Displays all user accounts that exist on the switch.
Page 302 The following is an example of the user add command: 8/20q FC Switch (admin) #> user add Press 'q' and the ENTER key to abort this command. account name (1-15 chars) : user1 account password (8-20 chars) : ******* please confirm account password: ******* set account expiration in days (0-2000, 0=never): [0] 100 should this account have admin authority? (y/n): [n] y OK to add user account 'user1' with admin authority...
Page 303: Whoami
whoami Description Displays the account name, session number, and switch domain ID for the Telnet session. Authority None Syntax whoami Examples The following is an example of the whoami command: 8/20q FC Switch #> whoami User name : admin@session2 Switch name : HP StorageWorks 8/20q Fibre Channel Switch Switch domain ID: 21 (0x15) 8/20q Fibre Channel Switch command line interface guide 303...
Page 304: Zone
zone Description Manages zones and zone membership on a switch. Authority Admin session and a Zoning Edit session. See the zoning edit command. The list, members, and zonesets operands are available without an Admin session. Syntax zone add [zone] [member_list] list members [zone] orphans...
Page 305 remove [zone] [member_list] Removes the ports/devices given by [member_list] from the zone given by [zone]. Use a <space> to delimit aliases and ports/devices in [member_list]. [member_list] can have any of the following formats: • Domain ID and port number pair (Domain ID, Port Number). Domain IDs can be 1–239; port numbers can be 0–255.
Page 306 The following is an example of the zone zonesets command: 8/20q FC Switch #> zone zonesets zone1 Current List of ZoneSets for Zone: zone1 ---------------------------------- zone_set_1 See also zoneset, page 307 zoning edit, page 314 306 Command reference...
Page 307: Zoneset
zoneset Description Manages zone sets and component zones across the fabric. Authority Admin session and a Zoning Edit session. See the zoning edit command. The active, list, and zones operands are available without an Admin session. You must close the Zoning Edit session before using the activate and deactivate operand.
Page 308 rename [zone_set_old] [zone_set_new] Renames the zone set given by [zone_set_old] to the name given by [zone_set_new]. You can rename the active zone set. You must enter the zoning save command to save your changes. zones [zone_set] Displays all zones that are components of the zone set given by [zone_set]. This operand does not require an Admin session.
Page 309: Zoning Active
zoning active Description Displays information for the active zone set or saves the active zone set to the non-volatile zoning database. Authority Admin session for the capture operand. Syntax zoning active capture Operands capture Saves the active zone set to the non-volatile zoning data base. Examples The following is an example of the zoning active command: 8/20q FC Switch #>...
Page 310: Zoning Cancel
zoning cancel Description Closes the current Zoning Edit session. Any unsaved changes are lost. Authority Admin session and a Zoning Edit session. Syntax zoning cancel Examples The following is an example of the zoning cancel command: 8/20q FC Switch #> admin start 8/20q FC Switch (admin) #>...
Page 311: Zoning Clear
zoning clear Description Clears all inactive zone sets from the volatile edit copy of the zoning database. This operand requires a zoning edit session. This operand does not affect the non-volatile zoning database. However, if you enter the zoning clear command followed by the zoning save command, the non-volatile zoning database will be cleared from the switch.
Page 312: Zoning Configured
zoning configured Description Displays the contents of the non-volatile zoning database. Authority None Syntax zoning configured Examples The following is an example of the zoning configured command: 8/20q FC Switch #> zoning configured Configured (saved in NVRAM) Zoning Information ZoneSet Zone ZoneMember -------...
Page 313: Zoning Delete Orphans
zoning delete orphans Description Deletes all objects that are not part of the active zone set, including zone sets, zones, and aliases. Authority Admin session Syntax zoning delete orphans Examples The following is an example of the zoning delete orphans command: 8/20q FC Switch #>...
Page 314: Zoning Edit
zoning edit Description Opens a Zoning Edit session for the non-volatile zoning database or merged zone set in which to create and manage zone sets and zones. Authority Admin session Syntax zoning edit [database] Operands [database] Opens an edit session for the zoning database given by [database]. If you omit [database], an edit session for the non-volatile zoning database is opened.
Page 315: Zoning Edited
zoning edited Description Displays the contents of the edited zoning database. Authority Admin session and a Zoning Edit session Syntax zoning edited Examples The following is an example of the zoning edited command: 8/20q FC Switch (admin-zoning) #> zoning edited Edited (unsaved) Zoning Information ZoneSet Zone...
Page 316: Zoning History
zoning history Description Displays a history of zoning modifications. This operand does not require an Admin session. History information includes the following: • Time of the most recent zone set activation or deactivation and the user who performed it • Time of the most recent modifications to the zoning database and the user who made them.
Page 317: Zoning Limits
zoning limits Description Displays the limits and numbers of zone sets, zones, aliases, members per zone, members per alias, and total members in the zoning database. Authority None Syntax zoning limits brief Operands brief Displays zoning limits for each category, the current number of objects, and the applicable zoning database (non-volatile or active).
Page 318: Zoning List
zoning list Description Lists all zoning definitions, including the applicable zoning database. Authority None Syntax zoning list Examples The following is an example of the zoning list command: 8/20q FC Switch #> zoning list Active (enforced) ZoneSet Information ZoneSet Zone ZoneMember -------------------------------- wwn_23bd31...
Page 319: Zoning Merged
zoning merged Description Displays the contents of the merged zone set, or saves the merged zone set to the non-volatile zoning database. Authority Admin session for the capture operand. Syntax zoning merged capture Operands capture Saves the merged zone set to the non-volatile zoning database. You must enter the zoning save command to save your changes.
Page 320: Zoning Restore
zoning restore Description Restores the volatile zoning database with the contents of the non-volatile zoning database. If the MergeAutoSave parameter is False (see Table 21), you can use this command to revert changes to the merged zone set that were propagated from another switch in the fabric through zone set activation or merging fabrics.
Page 321: Zoning Save
zoning save Description Saves changes made during the current Zoning Edit session. The system informs you that the zone set must be activated to implement any changes. Authority Admin session and a Zoning Edit session. Syntax zoning save Examples The following is an example of the zoning save command: 8/20q FC Switch #>...
Page 322 322 Command reference...
Page 323: Index
Index authority level authorization access authority autosave account name security database activation zoning database firmware security switch configuration backup file zoning beacon feature active zone set binding Admin fabric account port authority Boot Protocol command BootP See Bootstrap Protocol opening and closing a session Bootstrap Protocol session timeout broadcast tree information...
Page 324 examples access notes security configuration reference DHCP See Dynamic Host Configuration Protocol rules and conventions discovery method syntax display control command-line completion disruptive activation common transport authentication DNS - See Domain Name System Config command documentation Activate example conventions Backup example HP web site Copy example domain ID...
Page 325 example Group command Fctrace command Add example example Copy example FDMI See Fabric Device Management Interface Create example Feature command Delete example Add example Edit example Log example Members example feature upgrade Remove example Fibre Channel Rename example connection Securitysets example routing file downloading and uploading File Transfer Protocol...
Page 326 Ipsec Limits command example name server information Ipsec List command network example configuration Ipsec Policy command discovery Copy example enable Create example gateway address Delete example interfaces Edit example IP address Rename example mask ISL See Inter-Switch Link resetting configuration Network Time Protocol client license key...
Page 327 information Zoning example initializing Reverse Address Resolution Protocol modifying operating characteristics routing frames operational information RSCN See Registered State Change Notification performance tuning resetting speed secret testing Secure Shell threshold alarms description POST See Power-on Self Test service Power-on Self Test Secure Socket Layer certificate results...
Page 328 adding member group NTP service configured SNMP service copying SSH and SSL services creating Set Setup SNMP command deactivating Set Setup System command deleting Ethernet configuration description NTP configuration displaying remote logging managing Timers example membership Set Switch State command removing groups Set Timezone command renaming...
Page 329 example management service Show Setup Services command manufacturer information example online test SSL and SSH example operational information Show Setup SNMP command paging example reset Show Setup System command resetting example services Show Steering command testing Show Switch command user accounts Show System command syntax Show Temp command...
Page 330 configuration Create example deleting Delete example displaying Members example list Remove example logged in Rename example modifying Zonesets example password zone set user administration activating User command active Accounts example adding member zone Add example configured Delete example copying Edit example creating List example deactivating...
Page 331 setting configuration parameters Zoning Delete command example Zoning Delete Orphans command Zoning Edit command example Zoning Edited command Zoning History command example Zoning Limits command example Zoning List command example Zoning Merged command Capture example Zoning Restore command Zoning Save command 8/20q Fibre Channel Switch command line interface guide 331...
Page 332 332 Index...

This manual is also suitable for:

8/20q

HP AK241A - StorageWorks 8Gb Simple SAN Connection Cli Manual

About this Guide

Command Line Interface Usage

User Account Configuration

Network Configuration

Switch Configuration

Port Configuration

Zoning Configuration

Connection Security Configuration

Device Security Configuration

RADIUS Server Configuration

10Event Log Configuration

11Call Home Configuration

12Simple Network Management Protocol Configuration

13Command Reference

Quick Links

Related Manuals for HP AK241A - StorageWorks 8Gb Simple SAN Connection

Summary of Contents for HP AK241A - StorageWorks 8Gb Simple SAN Connection