HP Surestore 64 Planning Guide - Page 82
Benefits of Zoning, Configuring Zones
View all HP Surestore 64 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 82 highlights
Benefits of Zoning System administrators create zones to increase network security measures, differentiate between operating systems, and prevent data loss or corruption by controlling access between devices (such as servers and data storage units), or between separate user groups (such as engineering or human resources). Zoning allows an administrator to establish: • Logical subsets of closed user groups. Administrators can authorize access rights to specific zones for specific user groups, thereby protecting confidential data from unauthorized access. • Barriers between devices that use different operating systems. For example, it is often critical to separate servers and storage devices with different operating systems because accidental transfer of information from one to another can delete or corrupt data. Zoning prevents this by grouping devices that use the same operating systems into zones. • Groups of devices that are separate from devices in the rest of a fabric. Zoning allows certain processes (such as maintenance or testing) to be performed on devices in one group without interrupting devices in other groups. • Temporary access between devices for specific purposes. Administrators can remove zoning restrictions temporarily (for example, to perform nightly data backup), then restore zoning restrictions to perform normal processes. Configuring Zones Zoning is configured through the Fabric Manager application by authorizing or restricting access to name server information associated with device node ports (N_Ports) that attach to director fabric ports (F_Ports). A device N_Port can belong to multiple zones. Zoning is configured by: • The eight-byte (16-digit) worldwide name (WWN) assigned to the HBA or Fibre Channel interface installed in the device connected to the director. CAUTION If zoning is implemented by WWN, removal and replacement of a device HBA or Fibre Channel interface (thereby changing the device WWN) disrupts zone operation and may incorrectly include or exclude a device from a zone. 68 Security Provisions