- Preface
- New and Changed Information
- Overview
- Configuring AAA
- Configuring RADIUS
- Configuring TACACS+
- Configuring SSH and Telnet
- Configuring PKI
- Configuring User Accounts and RBAC
- Configuring 802.1X
- Configuring NAC
- Configuring Cisco TrustSec
- Configuring IP ACLs
- Configuring MAC ACLs
- Configuring VLAN ACLs
- Configuring Port Security
- Configuring DHCP Snooping
- Configuring Dynamic ARP Inspection
- Configuring IP Source Guard
- Configuring Keychain Management
- Configuring Traffic Storm Control
- Configuring Unicast RPF
- Configuring Control Plane Policing
- Configuring Rate Limits
- Index
Preface
This preface describes the audience, organization, and conventions of the Cisco Nexus 7000 Series NX-OS Security Configuration Guide, Release 4.2. It also provides information on how to obtain related documentation.
- Audience
- Document Organization
- Document Conventions
- Related Documentation for Nexus 7000 Series NX-OS Software
- Obtaining Documentation and Submitting a Service Request
Audience
This publication is for experienced network administrators who configure and maintain Cisco NX-OS devices.
Document Organization
This document is organized into the following chapters:
Chapter |
Description |
---|---|
"New and Changed Information" | Describes the new and changed information for the new Cisco NX-OS software software releases. |
"Overview" | Describes the security features supported by the Cisco NX-OS software. |
"Configuring AAA" | Describes how to configure authentication, authorization, and accounting (AAA) features. |
"Configuring RADIUS" | Describes how to configure the RADIUS security protocol. |
"Configuring TACACS+" | Describes how to configure the TACACS+ security protocol. |
"Configuring SSH and Telnet" | Describes how to configure certificate authorities and digital certificates in the Public Key Infrastructure (PKI). |
"Configuring PKI" | Describes how to configure Secure Shell (SSH) and Telnet. |
"Configuring User Accounts and RBAC" | Describes how to configure user accounts and role-based access control (RBAC). |
"Configuring 802.1X" | Describes how to configure 802.1X authentication. |
"Configuring NAC" | Describes how to configure Network Admission Control (NAC). |
Configuring Cisco Trustsec" | Describes how to configure Cisco TrustSec integrated security. |
"Configuring IP ACLs" | Describes how to configure IP access control lists (ACLs). |
"Configuring MAC ACLs" | Describes how to configure MAC ACLs. |
"Configuring VLAN ACLs" | Describes how to configure VLAN ACLs. |
"Configuring Port Security" | Describes how to configure port security. |
"Configuring DHCP" | Describes how to configure Dynamic Host Configuration Protocol (DHCP) snooping. |
"Configuirng Dynamic ARP Inspection" | Describes how to configure Address Resolution Protocol (ARP) inspection. |
"Configuring IP Source Guard" | Describes how to configure IP Source Guard. |
"Configuring Keychain Management" | Describes how to configure keychain management. |
"Configuring Traffic Storm Control" | Describes how to configure traffic storm control. |
"Configuring Unicast RPF" | Describes how to configure Unicast Reverse Path Forwarding (Unicast RPF). |
"Configuring Control Plane Policing" | Describes how to configure control plane policing on ingress traffic. |
"Configuring Rate Limits" | Describes how to configure rate limits on egress traffic. |
Document Conventions
Command descriptions use the following conventions:
Convention | Description |
---|---|
bold | Bold text indicates the commands and keywords that you enter literally as shown. |
Italic | Italic text indicates arguments for which the user supplies the values. |
[x] | Square brackets enclose an optional element(keyword or argument). |
[x | y] | Square brackets enclosing keywords or arguments separated by a vertical bar indicate an optional choice. |
{x | y} | Braces enclosing keywords or arguments separated by a vertical bar indicate a required choice. |
[x {y | z}] | Nested set of square brackets or braces indicate optional or required choices within optional or required elements. Braces and a vertical bar within square brackets indicate a required choice within an optional element. |
variable | Indicates a variable for which you supply values, in context where italics cannot be used. |
string | A nonquoted set of characters. Do not use quotation marks around the string or the string will include the quotation marks. |
Screen examples use the following conventions:
Convention | Description |
---|---|
screen font | Terminal sessions and information the switch displays are in screen font. |
boldface screen font | Information you must enter is in boldface screen font. |
italic screen font | Arguments for which you supply values are in italic screen font. |
< > | Nonprinting characters, such as passwords, are in angle brackets. |
[ ] | Default responses to system prompts are in square brackets. |
!, # | An exclamation point (!) or a pound sign (#) at the beginning of a line of code indicates a comment line. |
This document uses the following conventions:
Note |
Means reader take note. Notes contain helpful suggestions or references to material not covered in the manual. |
Caution |
Means reader be careful. In this situation, you might do something that could result in equipment damage or loss of data. |
Related Documentation for Nexus 7000 Series NX-OS Software
Cisco NX-OS documentation is available at the following URL:
http://www.cisco.com/en/US/products/ps9372/tsd_products_support_series_home.html
The documentation set for the Cisco NX-OS software includes the following documents:
Release Notes
Cisco NX-OS Configuration Guides
Cisco Nexus 7000 Series NX-OS Virtual Device Context Quick Start, Release 4.2
Cisco Nexus 7000 Series NX-OS Fundamentals Configuration Guide, Release 4.2
Cisco Nexus 7000 Series NX-OS Interfaces Configuration Guide, Release 4.2
Cisco Nexus 7000 Series NX-OS Layer 2 Switching Configuration Guide, Release 4.2
Cisco Nexus 7000 Series NX-OS Quality of Service Configuration Guide, Release 4.2
Cisco Nexus 7000 Series NX-OS Unicast Routing Configuration Guide, Release 4.2
Cisco Nexus 7000 Series NX-OS Multicast Routing Configuration Guide, Release 4.2
Cisco Nexus 7000 Series NX-OS Security Configuration Guide, Release 4.2
Cisco Nexus 7000 Series NX-OS Virtual Device Context Configuration Guide, Release 4.2
Cisco Nexus 7000 Series NX-OS Software Upgrade and Downgrade Guide, Release 4.2
Cisco Nexus 7000 Series NX-OS High Availability and Redundancy Guide, Release 4.2
Cisco Nexus 7000 Series NX-OS System Management Configuration Guide, Release 4.2
Cisco MDS 9000 Family and Nexus 7000 Series NX-OS System Messages Reference
Cisco Nexus 7000 Series NX-OS MIB Quick Reference
Cisco Nexus 7000 Series NX-OS Licensing Guide, Release 4.2
Cisco NX-OS XML Management Interface User Guide, Release 4.2
Cisco NX-OS Command References
Cisco Nexus 7000 Series NX-OS Command Reference Master Index, Release 4.2
Cisco Nexus 7000 Series NX-OS Fundamentals Command Reference, Release 4.2
Cisco Nexus 7000 Series NX-OS Interfaces Command Reference, Release 4.2
Cisco Nexus 7000 Series NX-OS Layer 2 Switching Command Reference, Release 4.2
Cisco Nexus 7000 Series NX-OS Quality of Service Command Reference, Release 4.2
Cisco Nexus 7000 Series NX-OS Unicast Routing Command Reference, Release 4.2
Cisco Nexus 7000 Series NX-OS Multicast Routing Command Reference, Release 4.2
Cisco Nexus 7000 Series NX-OS Security Command Reference, Release 4.2
Cisco Nexus 7000 Series NX-OS Virtual Device Context Command Reference, Release 4.2
Cisco Nexus 7000 Series NX-OS System Management Command Reference, Release 4.2
Other Software Document
Obtaining Documentation and Submitting a Service Request
For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:
http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html
Subscribe to the What's New in Cisco Product Documentation as a Really Simple Syndication (RSS) feed and set content to be delivered directly to your desktop using a reader application. The RSS feeds are a free service and Cisco currently supports RSS version 2.0.