- Community Home
- >
- Storage
- >
- Midrange and Enterprise Storage
- >
- HPE EVA Storage
- >
- Re: Zoning
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-28-2010 02:00 AM
тАО01-28-2010 02:00 AM
Zoning
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-28-2010 02:06 AM
тАО01-28-2010 02:06 AM
Re: Zoning
Zoning is the precess to present the LUNs from storage to a server so that no other nodes other than the specified may get into the LUNs.
Zoning will keep the storage LUNs specified to each hosts. It does through the WWN of the HBA.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-28-2010 02:06 AM
тАО01-28-2010 02:06 AM
Re: Zoning
SAN zoning may be utilized to implement compartmentalization of data for security purposes.
Each device in a SAN may be placed into multiple zones.
Hard zoning is zoning which is implemented in hardware. Soft zoning is zoning which is implemented in software.
Hard zoning physically blocks access to a zone from any device outside of the zone.
Soft zoning uses filtering implemented in fibre channel switches to prevent ports from being seen from outside of their assigned zones. The security vulnerability in soft zoning is that the ports are still accessible if the user in another zone correctly guesses the fibre channel address.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-28-2010 02:07 AM
тАО01-28-2010 02:07 AM
Re: Zoning
Hard Zone - HW - Ports
Soft Zone - SW - WWN - HostNames
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-28-2010 04:08 AM
тАО01-28-2010 04:08 AM
Re: Zoning
Modern switches can do hardware-enforced zoning with WWNs, too.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-29-2010 10:10 AM
тАО01-29-2010 10:10 AM
Re: Zoning
Quick Summary:
Hard = ASIC based = Port = WWN zoning (2Gb and later switches)
Soft = Name Server based = mixed (WWN and port in the same zone)
See SAN Design Guide for proof.
Sincerely,
Curt
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-29-2010 01:20 PM
тАО01-29-2010 01:20 PM
Re: Zoning
Zoning will keep the storage LUNs specified to each hosts. It does through the WWN of the HBA."
Sorry to pick on you with this...I totally understand what you mean (I think), but this comment is seriously flawed...
Zoning has NOTHING to do with LUN Presentation.
Zoning is simply a way for you to configure your SAN so that your Servers can NOT see "Traffic" from other servers that are accessing the same Storage or Tape device.
For instance:
You have a windows host and a linux host and a solaris host. The Windows server is a file server and needs access to the Storage (and maybe the tape for direct backups. The Linux host is your Data Protector Cell Server (you main backup server). The Solaris host is just sitting out on the SAN looking pretty.
Typical zoning would be:
zone1: windows host, storage array
zone2: windows host, tape library
zone3: linux host, solaris host, tape library
This guarantees that your linux host can not access your Storage array in ANY way, shape or form. Lets add a fourth zone in there...
zone4: linux host, storage array
...for say the use of the storage array for a Backup to Disk location for DP.
Now, lets say your Solaris host was having some fibre channel HBA problems and causing a lot of errors to happen on your Switch. Potentially, you linux server could be effected, could possibly crash or have some other situations while trying to access the tape library.
If the solaris host was in a zone by itself (with the tape library) and NOT with the linux host... the linux host could go on it's merry way without even knowing that there were problems with SunOS and would probably never experience any issues with the tape library.
Next example:
2 linux server in 1 zone... server 1 can see errors and scsi bus resets on the SAn from the other server. Server 1 is not having ANY problems though. However, since the server can "see" the errors and resets and such, it may make a log entry. Now you have 2 servers with logs filling up instead of 1, potentially causing you additional issues.
As for Presenting LUNS... this is done strictly on your Storage Device. Even with properly configured zoning, you can still present a LUN to the wrong server... assuming that server can also access the storage array.
Steven
HP Master ASE, Storage, Servers, and Clustering
MCSE (NT 4.0, W2K, W2K3)
VCP (ESX2, Vi3, vSphere4, vSphere5, vSphere 6.x)
RHCE
NPP3 (Nutanix Platform Professional)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-29-2010 01:31 PM
тАО01-29-2010 01:31 PM
Re: Zoning
Even with properly configured zoning, you can still present a LUN to the wrong server...
Seems contradictory to me.
I'd work on your arguement for a little while longer.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-30-2010 12:21 AM
тАО01-30-2010 12:21 AM
Re: Zoning
I've first heard the term 'zone your LUNs' when I entered the VMware world some years back. NEVER heard it all the years before and it sent little shocks down my neck, because the term does not 'feel' right to me.
Let's face it - we see this problem (different or ambiguous names for the same object/technology) even in the vendor's documentation where a 'virtual disk' or a 'logical disk' is called a LUN or where a 'LUN address' is sometimes called a 'LUN ID' or 'LUN number' or where a WW[PN]N is called a WWID and so on...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-30-2010 07:30 PM
тАО01-30-2010 07:30 PM
Re: Zoning
Well, my $.02 is:
We have hosts, SAN, and storage. Hosts are presented storage thru the SAN. SAN's have zoning. Arrays can limit who can see the LUNs with LUN masking (or Selective Storage Presentation, Secure Manger, or whatever your storage vendor calls there LUN masking software).
Point is: SAN have zones (hard or soft)
Array use LUN masking to limit who can have access to the LUN (or VDisk, etc)
At least that's the way it works in my world ;^)
Curt