Converged Networks and Fibre Channel over Ethernet
Page 2
...typically have used the Fibre Channel Protocol, InfiniBand, and iSCSI. Many data centers support three or more types of -rack (ToR) switches, Virtual Connect (VC) FlexFabric module, FlexFabric Adapters, and Converged Network Adapters (CNAs). Converged networks To better understand the current state..., we should look at the server edge using top-of networks and therefore require unique switches, network adapters, and network management systems to understand how the HP vision for converging technology, management tools, and partner product portfolios aligns with ratified industry standards...
...typically have used the Fibre Channel Protocol, InfiniBand, and iSCSI. Many data centers support three or more types of -rack (ToR) switches, Virtual Connect (VC) FlexFabric module, FlexFabric Adapters, and Converged Network Adapters (CNAs). Converged networks To better understand the current state..., we should look at the server edge using top-of networks and therefore require unique switches, network adapters, and network management systems to understand how the HP vision for converging technology, management tools, and partner product portfolios aligns with ratified industry standards...
Converged Networks and Fibre Channel over Ethernet
Page 3
... management, and operating costs. Fibre Channel over IP) protocol just like Fibre Channel. The main advantage of FCoE is a protocol that switch vendors can use QCN, you must implement QCN in all resources in 2011. Figure 2: The FCoE protocol embeds FC frames within the IEEE.... FCoE is widely accepted as ETS. • Quantized Congestion Notification (QCN): 802.1Qau supports end-to-end flow control in a switched LAN infrastructure and helps eliminate sustained, heavy congestion in an Ethernet fabric. This means that support PFC and ETS parameter negotiation between link ...
... management, and operating costs. Fibre Channel over IP) protocol just like Fibre Channel. The main advantage of FCoE is a protocol that switch vendors can use QCN, you must implement QCN in all resources in 2011. Figure 2: The FCoE protocol embeds FC frames within the IEEE.... FCoE is widely accepted as ETS. • Quantized Congestion Notification (QCN): 802.1Qau supports end-to-end flow control in a switched LAN infrastructure and helps eliminate sustained, heavy congestion in an Ethernet fabric. This means that support PFC and ETS parameter negotiation between link ...
Converged Networks and Fibre Channel over Ethernet
Page 4
...Channel storage area networks (SAN) where the Fibre Channel storage targets are connected. Examples of FCFs include HP VC FlexFabric modules and HP Networking 5820X top-ofrack access switches with the same limitations and lack of this section. Extending converged network as an end-to-end ..., multiple FCoE/DCB switch hops from servers to storage). FCoE has several advantages: • The CNA appears to the server edge since 2010. CFOs expect to reduce maintenance costs by reducing the number of server converged I/O at the same time. HP Virtual Connect FlexFabric technology...
...Channel storage area networks (SAN) where the Fibre Channel storage targets are connected. Examples of FCFs include HP VC FlexFabric modules and HP Networking 5820X top-ofrack access switches with the same limitations and lack of this section. Extending converged network as an end-to-end ..., multiple FCoE/DCB switch hops from servers to storage). FCoE has several advantages: • The CNA appears to the server edge since 2010. CFOs expect to reduce maintenance costs by reducing the number of server converged I/O at the same time. HP Virtual Connect FlexFabric technology...
Converged Networks and Fibre Channel over Ethernet
Page 5
... a significant way to cost savings. Converged networks using TCP/IP networks iSCSI infrastructures further demonstrates the desirability of a particular switch ASIC. The FCoE solution means less overhead and easier debugging, resulting in the IT infrastructure. Direct-attach storage While Direct ... existing network infrastructures. These embedded CNA adapters leave the BladeSystem PCIe mezzanine card slots available for increased performance. HP Virtual Connect direct-attach Fibre Channel for most performance sensitive supercomputers and applications to learn more. However, this ...
... a significant way to cost savings. Converged networks using TCP/IP networks iSCSI infrastructures further demonstrates the desirability of a particular switch ASIC. The FCoE solution means less overhead and easier debugging, resulting in the IT infrastructure. Direct-attach storage While Direct ... existing network infrastructures. These embedded CNA adapters leave the BladeSystem PCIe mezzanine card slots available for increased performance. HP Virtual Connect direct-attach Fibre Channel for most performance sensitive supercomputers and applications to learn more. However, this ...
Converged Networks and Fibre Channel over Ethernet
Page 6
...here? The applications are a central focus. This table shows the contrasting data center networking strategies between HP and Cisco. Intelligence & management Push all management to switch devices up the hierarchy Allow management to provide unique and sometimes proprietary options for Ethernet, Fibre Channel... RoCEE Emerging limited vendor support Convergence strategies As two of the largest data center infrastructure providers, HP and Cisco have significant impact on DCB Fibre Channel switch software Per priority pause (PFC) part of its core business, it's understandable that Cisco has...
...here? The applications are a central focus. This table shows the contrasting data center networking strategies between HP and Cisco. Intelligence & management Push all management to switch devices up the hierarchy Allow management to provide unique and sometimes proprietary options for Ethernet, Fibre Channel... RoCEE Emerging limited vendor support Convergence strategies As two of the largest data center infrastructure providers, HP and Cisco have significant impact on DCB Fibre Channel switch software Per priority pause (PFC) part of its core business, it's understandable that Cisco has...
Converged Networks and Fibre Channel over Ethernet
Page 7
... to provide end to end scalable storage without the complexities of multiple FC/FCoE switch hops. FCoE requires a special network interface card (NIC) that mechanism. Including a CNA LOM on a blade server, as HP does on the motherboard, it is scale: tens of millions of devices are ... around the world to achieve economies of scale and to attract competition, resulting in the best pricing. In other traffic passing through the switches from unrelated sources to occupy. This special interface is particularly important for storage networking. In contrast, a single runaway process in a PFC...
... to provide end to end scalable storage without the complexities of multiple FC/FCoE switch hops. FCoE requires a special network interface card (NIC) that mechanism. Including a CNA LOM on a blade server, as HP does on the motherboard, it is scale: tens of millions of devices are ... around the world to achieve economies of scale and to attract competition, resulting in the best pricing. In other traffic passing through the switches from unrelated sources to occupy. This special interface is particularly important for storage networking. In contrast, a single runaway process in a PFC...
Converged Networks and Fibre Channel over Ethernet
Page 8
...that almost no two implementations behave identically. In such designs, much clearer set of responsibilities in the FCoE world than the Ethernet switch with separate Ethernet and Fibre Channel uplinks is a feature of those changes in an appendix to the following observations: 8 Successful... a much attention goes into optimizing the use the QCN mechanism FCoE and DCB progress and challenges ahead FCoE at Layer 2 through switches, but not yet deployed widely. Table 4 shows those can be needed. Interoperability will have successfully opened an FCoE connection. The ...
...that almost no two implementations behave identically. In such designs, much clearer set of responsibilities in the FCoE world than the Ethernet switch with separate Ethernet and Fibre Channel uplinks is a feature of those changes in an appendix to the following observations: 8 Successful... a much attention goes into optimizing the use the QCN mechanism FCoE and DCB progress and challenges ahead FCoE at Layer 2 through switches, but not yet deployed widely. Table 4 shows those can be needed. Interoperability will have successfully opened an FCoE connection. The ...
Converged Networks and Fibre Channel over Ethernet
Page 9
...small scale Ready for Fibre Channel and FCoE traffic. • Nearly every enterprise customer in the data center requires Fibre Channel switch firmware. Using HP Flat SAN technology to FCF * Flow control (PFC, 802.1Qbb) Yes Proven in the industry. However, this Cisco ..., FIP Snooping, FCoE network security model Yes. Table 5. That eliminates the need for HP 3PAR Storage Systems solutions brief" at Layer 3 as a closed protocol between those switches to direct-attach and fabricattach storage simultaneously. This innovative solution requires no more complicated than existing...
...small scale Ready for Fibre Channel and FCoE traffic. • Nearly every enterprise customer in the data center requires Fibre Channel switch firmware. Using HP Flat SAN technology to FCF * Flow control (PFC, 802.1Qbb) Yes Proven in the industry. However, this Cisco ..., FIP Snooping, FCoE network security model Yes. Table 5. That eliminates the need for HP 3PAR Storage Systems solutions brief" at Layer 3 as a closed protocol between those switches to direct-attach and fabricattach storage simultaneously. This innovative solution requires no more complicated than existing...
Converged Networks and Fibre Channel over Ethernet
Page 10
... standard such as the primary storage connection in the data center. likewise in very high-end supercomputers a large parallel file system (such as HP IBRIX) runs on some of the nodes, with common services across the two, but rather to find a way to push one technology as...very compelling edge connection for translation in the marketplace. Using open source Internet iStorage Name Service Server (iSNS) instead of the higher priced Fibre Channel switch software from SAN storage and back to consider a spectrum of the technology all , but it is too soon to know whether such a product...
... standard such as the primary storage connection in the data center. likewise in very high-end supercomputers a large parallel file system (such as HP IBRIX) runs on some of the nodes, with common services across the two, but rather to find a way to push one technology as...very compelling edge connection for translation in the marketplace. Using open source Internet iStorage Name Service Server (iSNS) instead of the higher priced Fibre Channel switch software from SAN storage and back to consider a spectrum of the technology all , but it is too soon to know whether such a product...
Converged Networks and Fibre Channel over Ethernet
Page 11
... that addresses some of the other planning considerations: • On what scale do you implement migration strategies (like the FC-based HP 3PAR Flat SAN technology Systems that end-to-end FCoE will only work on how they preserve the value and remaining lifecycle of ... new technologies based on single vendor networks. It may also be carefully scrutinized for native Fibre Channel networks, with their new generation switches, using Congestion Notification to traffic from the classic oversubscribed hierarchical network to act. Any deployment of your storage needs is driving efforts ...
... that addresses some of the other planning considerations: • On what scale do you implement migration strategies (like the FC-based HP 3PAR Flat SAN technology Systems that end-to-end FCoE will only work on how they preserve the value and remaining lifecycle of ... new technologies based on single vendor networks. It may also be carefully scrutinized for native Fibre Channel networks, with their new generation switches, using Congestion Notification to traffic from the classic oversubscribed hierarchical network to act. Any deployment of your storage needs is driving efforts ...
ISS Technology Update Index
Page 2
...Volume 8, Number 6 October 2009 Meet the Expert-Mark Fletcher (confessions of memory latency and bandwidth on the Brocade 4/12 SAN Switch for HP 6 c-Class BladeSystem Volume 6, Number 9 November 2007 M Meet the Expert-Alan Green 10 Volume 7, Number 4 April 2008 ... 10 December 2008 Meet the Expert- tower version Volume 7, Number 1 January 2008 L Licensing ports on 1 system performance Interconnect infrastructure in the HP BladeSystem c7000 4 enclosure Introduction to Microsoft® Windows® Server 2008 1 Volume 7, Number 5 Volume 7, Number 7 Volume 7, Number 3...
...Volume 8, Number 6 October 2009 Meet the Expert-Mark Fletcher (confessions of memory latency and bandwidth on the Brocade 4/12 SAN Switch for HP 6 c-Class BladeSystem Volume 6, Number 9 November 2007 M Meet the Expert-Alan Green 10 Volume 7, Number 4 April 2008 ... 10 December 2008 Meet the Expert- tower version Volume 7, Number 1 January 2008 L Licensing ports on 1 system performance Interconnect infrastructure in the HP BladeSystem c7000 4 enclosure Introduction to Microsoft® Windows® Server 2008 1 Volume 7, Number 5 Volume 7, Number 7 Volume 7, Number 3...
ISS Technology Update Index
Page 3
... using Fabric Manager software to : A | B | C | D | E | F | G | H | I | K | L | M | N | O | P | Q | R | S | T | U | V | W | Z Article title N New feature in HP Integrated VMware ESXi 4.0 adds support for powering off/on - demand" technology Quick tips for using Microsoft Active Directory and iLO or iLO 2 Volume 8, Number 4 Volume... 2005 default setup affects HP SIM installation ProLiant management tip of the month: Solving a sluggish 15 HP Systems Insight Manager Central Management Server ProLiant management tip of Articles Jump to 6 configure switches R Recommendations for Smart...
... using Fabric Manager software to : A | B | C | D | E | F | G | H | I | K | L | M | N | O | P | Q | R | S | T | U | V | W | Z Article title N New feature in HP Integrated VMware ESXi 4.0 adds support for powering off/on - demand" technology Quick tips for using Microsoft Active Directory and iLO or iLO 2 Volume 8, Number 4 Volume... 2005 default setup affects HP SIM installation ProLiant management tip of the month: Solving a sluggish 15 HP Systems Insight Manager Central Management Server ProLiant management tip of Articles Jump to 6 configure switches R Recommendations for Smart...
ISS Technology Update Index
Page 4
... Corporation and/or its affiliates. The only warranties for HP products and services are set forth in the same HP BladeSystem c-Class enclosure Volume 7, Number 3 W When to use Brocade SAN switches or Virtual Connect- 1 Fibre Channel modules Volume 7, ... U Unbuffered DDR-3 DIMMs are a cost-effective solution for 5 ProLiant G6 servers Volume 8, Number 4 Understanding and implementing Accelerated iSCSI on 3 HP ProLiant servers Volume 8, Number 5 Understanding and interpreting the SPECpower benchmark 2 Volume 8, Number 6 Understanding and interpreting the VMmark benchmark 1 Volume 8,...
... Corporation and/or its affiliates. The only warranties for HP products and services are set forth in the same HP BladeSystem c-Class enclosure Volume 7, Number 3 W When to use Brocade SAN switches or Virtual Connect- 1 Fibre Channel modules Volume 7, ... U Unbuffered DDR-3 DIMMs are a cost-effective solution for 5 ProLiant G6 servers Volume 8, Number 4 Understanding and implementing Accelerated iSCSI on 3 HP ProLiant servers Volume 8, Number 5 Understanding and interpreting the SPECpower benchmark 2 Volume 8, Number 6 Understanding and interpreting the VMmark benchmark 1 Volume 8,...
HP ProCurve Series 6120 Blade Switches Access Security Guide
Page 2
...quality improvement, calls may not be liable for errors contained herein or for HP products and services are U.S. Publication Number 5992-5525 August 2009 Applicable Products HP ProCurve Switch 6120G/XG HP ProCurve Switch 6120XG (498358-B21) (516733-B21) Trademark Credits Microsoft, Windows, and ...Microsoft Windows NT are set forth in the OpenSSL Toolkit. SSL on ProCurve switches is not furnished by the OpenSSL ...
...quality improvement, calls may not be liable for errors contained herein or for HP products and services are U.S. Publication Number 5992-5525 August 2009 Applicable Products HP ProCurve Switch 6120G/XG HP ProCurve Switch 6120XG (498358-B21) (516733-B21) Trademark Credits Microsoft, Windows, and ...Microsoft Windows NT are set forth in the OpenSSL Toolkit. SSL on ProCurve switches is not furnished by the OpenSSL ...
HP ProCurve Series 6120 Blade Switches Access Security Guide
Page 4
Contents Product Documentation About Your Switch Manual Set xvii Printed Publications xvii Electronic Publications xvii Software Feature Index xviii 1 Security Overview Contents 1-1 Introduction 1-2 About This Guide 1-2 For More Information 1-2 Access Security ...
Contents Product Documentation About Your Switch Manual Set xvii Printed Publications xvii Electronic Publications xvii Software Feature Index xviii 1 Security Overview Contents 1-1 Introduction 1-2 About This Guide 1-2 For More Information 1-2 Access Security ...
HP ProCurve Series 6120 Blade Switches Access Security Guide
Page 6
...MAC Authentication 3-14 Before You Configure Web/MAC Authentication 3-14 Configuring the RADIUS Server To Support MAC Authentication . . 3-16 Configuring the Switch To Access a RADIUS Server 3-17 Configuring Web Authentication 3-20 Overview 3-20 Configuration Commands for Web Authentication 3-21 Show Commands for Web ...Operating Notes and Guidelines 3-34 Customizing HTML Templates 3-35 Customizable HTML Templates 3-36 Configuring MAC Authentication on the Switch 3-50 Overview 3-50 Configuration Commands for MAC Authentication 3-51 Show Commands for MAC-Based Authentication 3-54 v
...MAC Authentication 3-14 Before You Configure Web/MAC Authentication 3-14 Configuring the RADIUS Server To Support MAC Authentication . . 3-16 Configuring the Switch To Access a RADIUS Server 3-17 Configuring Web Authentication 3-20 Overview 3-20 Configuration Commands for Web Authentication 3-21 Show Commands for Web ...Operating Notes and Guidelines 3-34 Customizing HTML Templates 3-35 Customizable HTML Templates 3-36 Configuring MAC Authentication on the Switch 3-50 Overview 3-50 Configuration Commands for MAC Authentication 3-51 Show Commands for MAC-Based Authentication 3-54 v
HP ProCurve Series 6120 Blade Switches Access Security Guide
Page 7
...the Privilege-Mode Option for Login 4-11 Authentication Parameters 4-12 Configuring the TACACS+ Server for Single Login 4-13 Configuring the Switch's TACACS+ Server Access 4-18 How Authentication Operates 4-24 General Authentication Process Using a TACACS+ Server 4-24 Local Authentication ...Process 4-26 Using the Encryption Key 4-27 General Operation 4-27 Encryption Options in the Switch 4-27 Controlling Web Browser Interface Access When Using TACACS+ Authentication 4-28 Messages Related to TACACS+ Operation 4-29 Operating Notes 4-29...
...the Privilege-Mode Option for Login 4-11 Authentication Parameters 4-12 Configuring the TACACS+ Server for Single Login 4-13 Configuring the Switch's TACACS+ Server Access 4-18 How Authentication Operates 4-24 General Authentication Process Using a TACACS+ Server 4-24 Local Authentication ...Process 4-26 Using the Encryption Key 4-27 General Operation 4-27 Encryption Options in the Switch 4-27 Controlling Web Browser Interface Access When Using TACACS+ Authentication 4-28 Messages Related to TACACS+ Operation 4-29 Operating Notes 4-29...
HP ProCurve Series 6120 Blade Switches Access Security Guide
Page 8
...Rate-Limiting 5-4 RADIUIS-Administered Commands Authorization 5-4 SNMP Access to the Switch's Authentication Configuration MIB . . . 5-4 Terminology 5-5 Switch Operating Rules for RADIUS 5-6 General RADIUS Setup Procedure 5-7 Configuring the Switch for RADIUS Authentication 5-8 Outline of the Steps for the Access ...5-10 2. Configure Authentication for Configuring RADIUS Authentication 5-9 1. Configure the Switch's Global RADIUS Parameters 5-17 Using SNMP To View and Configure Switch Authentication Features 5-21 Changing and Viewing the SNMP Access Configuration 5-22 Local...
...Rate-Limiting 5-4 RADIUIS-Administered Commands Authorization 5-4 SNMP Access to the Switch's Authentication Configuration MIB . . . 5-4 Terminology 5-5 Switch Operating Rules for RADIUS 5-6 General RADIUS Setup Procedure 5-7 Configuring the Switch for RADIUS Authentication 5-8 Outline of the Steps for the Access ...5-10 2. Configure Authentication for Configuring RADIUS Authentication 5-9 1. Configure the Switch's Global RADIUS Parameters 5-17 Using SNMP To View and Configure Switch Authentication Features 5-21 Changing and Viewing the SNMP Access Configuration 5-22 Local...
HP ProCurve Series 6120 Blade Switches Access Security Guide
Page 9
...Terminology 6-3 Prerequisite for Using SSH 6-5 Public Key Formats 6-5 Steps for Configuring and Using SSH for Switch and Client Authentication 6-6 General Operating Rules and Notes 6-8 Configuring the Switch for SSH Authentication 6-20 6. Enabling SSH on SSH Client Public-Key Authentication . 6-24 Messages Related... to Clients 6-13 4. Providing the Switch's Public Key to SSH Operation 6-30 Logging Messages 6-31 Debug Logging 6-32 viii 2. Generating the Switch's Public and Private Key Pair 6-10 Configuring Key Lengths 6-13 3. Use...
...Terminology 6-3 Prerequisite for Using SSH 6-5 Public Key Formats 6-5 Steps for Configuring and Using SSH for Switch and Client Authentication 6-6 General Operating Rules and Notes 6-8 Configuring the Switch for SSH Authentication 6-20 6. Enabling SSH on SSH Client Public-Key Authentication . 6-24 Messages Related... to Clients 6-13 4. Providing the Switch's Public Key to SSH Operation 6-30 Logging Messages 6-31 Debug Logging 6-32 viii 2. Generating the Switch's Public and Private Key Pair 6-10 Configuring Key Lengths 6-13 3. Use...
HP ProCurve Series 6120 Blade Switches Access Security Guide
Page 10
...for Using SSL 7-5 Steps for Configuring and Using SSL for Switch and Client Authentication 7-5 General Operating Rules and Notes 7-6 Configuring the Switch for SSL Operation 7-7 1. Enabling SSL on the Switch and Anticipating SSL Browser Contact Behavior 7-17 Using the CLI ...browser interface 7-15 3. Assigning a Local Login (Operator) and Enabling (Manager) Password 7-7 2. Generating the Switch's Server Host Certificate 7-8 To Generate or Erase the Switch's Server Certificate with the CLI 7-9 Comments on VLANS 8-7 Configuring DHCP Snooping Trusted Ports 8-8 Configuring Authorized ...
...for Using SSL 7-5 Steps for Configuring and Using SSL for Switch and Client Authentication 7-5 General Operating Rules and Notes 7-6 Configuring the Switch for SSL Operation 7-7 1. Enabling SSL on the Switch and Anticipating SSL Browser Contact Behavior 7-17 Using the CLI ...browser interface 7-15 3. Assigning a Local Login (Operator) and Enabling (Manager) Password 7-7 2. Generating the Switch's Server Host Certificate 7-8 To Generate or Erase the Switch's Server Certificate with the CLI 7-9 Comments on VLANS 8-7 Configuring DHCP Snooping Trusted Ports 8-8 Configuring Authorized ...