Preface
This preface describes the audience, organization, and conventions of the Cisco Nexus 7000 Series NX-OS Security Configuration Guide, Release 4.1. It also provides information on how to obtain related documentation.
This chapter includes the following sections:
•Audience
•Document Organization
•Document Conventions
•Related Documentation
•Obtaining Documentation and Submitting a Service Request
Audience
This publication is for experienced network administrators who configure and maintain NX-OS devices.
Document Organization
This document is organized into the following chapters:
|
|
New and Changed Information |
Describes the new and changed information for the new Cisco NX-OS software releases. |
Chapter 1, "Overview" |
Describes the security features supported by the NX-OS software. |
Chapter 2, "Configuring AAA" |
Describes how to configure authentication, authorization, and accounting (AAA) features. |
Chapter 3, "Configuring RADIUS" |
Describes how to configure the RADIUS security protocol. |
Chapter 4, "Configuring TACACS+" |
Describes how to configure the TACACS+ security protocol. |
Chapter 5, "Configuring PKI" |
Describes how to configure certificate authorities and digital certificates in the Public Key Infrastructure (PKI). |
Chapter 6, "Configuring SSH and Telnet" |
Describes how to configure Secure Shell (SSH) and Telnet. |
Chapter 7, "Configuring User Accounts and RBAC" |
Describes how to configure user accounts and role-based access control (RBAC). |
Chapter 8, "Configuring 802.1X" |
Describes how to configure 802.1X authentication. |
Chapter 9, "Configuring NAC" |
Describes how to configure Network Admission Control (NAC). |
Chapter 10, "Configuring Cisco TrustSec" |
Describes how to configure Cisco TrustSec integrated security. |
Chapter 11, "Configuring IP ACLs" |
Describes how to configure IP access control lists (ACLs). |
Chapter 12, "Configuring MAC ACLs" |
Describes how to configure MAC ACLs. |
Chapter 13, "Configuring VLAN ACLs" |
Describes how to configure VLAN ACLs. |
Chapter 14, "Configuring Port Security" |
Describes how to configure port security. |
Chapter 15, "Configuring DHCP Snooping" |
Describes how to configure Dynamic Host Configuration Protocol (DHCP) snooping. |
Chapter 16, "Configuring Dynamic ARP Inspection" |
Describes how to configure Address Resolution Protocol (ARP) inspection. |
Chapter 17, "Configuring IP Source Guard" |
Describes how to configure IP Source Guard. |
Chapter 18, "Configuring Keychain Management" |
Describes how to configure keychain management. |
Chapter 19, "Configuring Traffic Storm Control" |
Describes how to configure traffic storm control. |
Chapter 20, "Configuring Unicast RPF" |
Describes how to configure Unicast Reverse Path Forwarding (Unicast RPF). |
Chapter 21, "Configuring Control Plane Policing" |
Describes how to configure control plane policing on ingress traffic. |
Chapter 22, "Configuring Rate Limits" |
Describes how to configure rate limits on egress traffic. |
Document Conventions
Command descriptions use these conventions:
|
|
boldface font |
Commands and keywords are in boldface. |
italic font |
Arguments for which you supply values are in italics. |
{ } |
Elements in curly brackets are required. |
[ ] |
Elements in square brackets are optional. |
[ x | y | z ] |
Optional alternative keywords are grouped in brackets and separated by vertical bars. |
string |
A nonquoted set of characters. Do not use quotation marks around the string or the string will include the quotation marks. |
Screen examples use these conventions:
screen font |
Terminal sessions and information that the switch displays are in screen font. |
boldface screen font |
Information that you must enter is in boldface screen font. |
italic screen font |
Arguments for which you supply values are in italic screen font. |
< > |
Nonprinting characters, such as passwords, are in angle brackets. |
[ ] |
Default responses to system prompts are in square brackets. |
!, # |
An exclamation point (!) or a pound sign (#) at the beginning of a line of code indicates a comment line. |
This document uses the following conventions:
Note Means reader take note. Notes contain helpful suggestions or references to material not covered in the manual.
Caution
Means
reader be careful. In this situation, you might do something that could result in equipment damage or loss of data.
Related Documentation
Cisco NX-OS includes the following documents:
Release Notes
Cisco Nexus 7000 Series NX-OS Release Notes, Release 4.1
NX-OS Configuration Guides
Cisco Nexus 7000 Series NX-OS Getting Started with Virtual Device Contexts, Release 4.1
Cisco Nexus 7000 Series NX-OS Fundamentals Configuration Guide, Release 4.1
Cisco Nexus 7000 Series NX-OS Interfaces Configuration Guide, Release 4.1
Cisco Nexus 7000 Series NX-OS Layer 2 Switching Configuration Guide, Release 4.1
Cisco Nexus 7000 Series NX-OS Quality of Service Configuration Guide, Release 4.1
Cisco Nexus 7000 Series NX-OS Unicast Routing Configuration Guide, Release 4.1
Cisco Nexus 7000 Series NX-OS Multicast Routing Configuration Guide, Release 4.1
Cisco Nexus 7000 Series NX-OS Security Configuration Guide, Release 4.1
Cisco Nexus 7000 Series NX-OS Virtual Device Context Configuration Guide, Release 4.1
Cisco Nexus 7000 Series NX-OS Software Upgrade and Downgrade Guide, Release 4.1
Cisco Nexus 7000 Series NX-OS Licensing Guide, Release 4.1
Cisco Nexus 7000 Series NX-OS High Availability and Redundancy Guide, Release 4.1
Cisco Nexus 7000 Series NX-OS System Management Configuration Guide, Release 4.1
Cisco Nexus 7000 Series NX-OS XML Management Interface User Guide, Release 4.1
Cisco MDS 9000 Family and Nexus 7000 Series NX-OS System Messages Reference, Release 4.1
Cisco Nexus 7000 Series NX-OS MIB Quick Reference
NX-OS Command References
Cisco Nexus 7000 Series NX-OS Command Reference Master Index, Release 4.1
Cisco Nexus 7000 Series NX-OS Fundamentals Command Reference, Release 4.1
Cisco Nexus 7000 Series NX-OS Interfaces Command Reference, Release 4.1
Cisco Nexus 7000 Series NX-OS Layer 2 Switching Command Reference, Release 4.1
Cisco Nexus 7000 Series NX-OS Quality of Service Command Reference, Release 4.1
Cisco Nexus 7000 Series NX-OS Unicast Routing Command Reference, Release 4.1
Cisco Nexus 7000 Series NX-OS Multicast Routing Command Reference, Release 4.1
Cisco Nexus 7000 Series NX-OS Security Command Reference, Release 4.1
Cisco Nexus 7000 Series NX-OS Virtual Device Context Command Reference, Release 4.1
Cisco Nexus 7000 Series NX-OS System Management Command Reference, Release 4.1
Other Software Document
Cisco Nexus 7000 Series NX-OS Troubleshooting Guide, Release 4.x
Obtaining Documentation and Submitting a Service Request
For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:
http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html
Subscribe to the What's New in Cisco Product Documentation as a Really Simple Syndication (RSS) feed and set content to be delivered directly to your desktop using a reader application. The RSS feeds are a free service and Cisco currently supports RSS version 2.0.