FW V06.XX/HAFM SW V08.02.00 HP StorageWorks SAN High Availability Planning Guide (AA-RS2DD-TE, July 2004)
Table Of Contents
- SAN HA Planning Guide
- Contents
- About this Guide
- Introduction to HP Fibre Channel Products
- Product Management
- Planning Considerations for Fibre Channel Topologies
- Fibre Channel Topologies
- Planning for Point-to-Point Connectivity
- Characteristics of Arbitrated Loop Operation
- Planning for Private Arbitrated Loop Connectivity
- Planning for Fabric-Attached Loop Connectivity
- Planning for Multi-Switch Fabric Support
- Fabric Topologies
- Planning a Fibre Channel Fabric Topology
- Fabric Topology Design Considerations
- FICON Cascading
- Physical Planning Considerations
- Port Connectivity and Fiber-Optic Cabling
- HAFM Appliance, LAN, and Remote Access Support
- Inband Management Access (Optional)
- Security Provisions
- Optional Features
- Configuration Planning Tasks
- Task 1: Prepare a Site Plan
- Task 2: Plan Fibre Channel Cable Routing
- Task 3: Consider Interoperability with Fabric Elements and End Devices
- Task 4: Plan Console Management Support
- Task 5: Plan Ethernet Access
- Task 6: Plan Network Addresses
- Task 7: Plan SNMP Support (Optional)
- Task 8: Plan E-Mail Notification (Optional)
- Task 9: Establish Product and HAFM Appliance Security Measures
- Task 10: Plan Phone Connections
- Task 11: Diagram the Planned Configuration
- Task 12: Assign Port Names and Nicknames
- Task 13: Complete the Planning Worksheet
- Task 14: Plan AC Power
- Task 15: Plan a Multi-Switch Fabric (Optional)
- Task 16: Plan Zone Sets for Multiple Products (Optional)
- Index
Introduction to HP Fibre Channel Products
35SAN High Availability Planning Guide
■ State change notification — Directors and switches support a state change
notification function that allows attached N_Ports to request notification
when other N_Ports change operational state.
■ Port binding — Directors and switches support a feature that binds an
attached Fibre Channel device to a specified port through the device’s World
Wide Name (WWN).
Security Features
The HAFM and Element Manager applications offer the following security
features:
■ Password protection — Users must provide a user name and password to log
in to the HAFM appliance and access managed directors and switches.
Administrators can configure user names and passwords for up to 16 users
and can authorize or prohibit specific management permissions for each user.
■ Remote user restrictions — Remote user access to directors and switches is
either disabled or restricted to configured IP addresses.
■ SNMP workstation restrictions — SNMP workstations can access only
management information base (MIB) variables managed by a director or
switch SNMP agent. SNMP workstations must belong to SNMP communities
configured through the HAFM application or EWS interface. If configured,
the agent can send authorization failure traps when unauthorized SNMP
workstations attempt to access a director or switch.
■ Audit log tracking — Configuration changes to a director or switch are
recorded in an audit log stored on the HAFM appliance, where they are
accessible to users for display. Log entries include the date and time of the
configuration change, a description of the change, and the source of the
change.
■ Port blocking — System administrators can block or unblock any port to
restrict device access to a director or switch.
■ Zoning — System administrators can create zones that provide director or
switch access control to increase network security, differentiate between
operating systems, and prevent data loss or corruption. Zoning can be
implemented in conjunction with server-level access control and storage
device access control.