Home » Adaptec Manuals » Network Storage Servers » Adaptec 5325302053 » Manual Viewer

Adaptec 5325302053 User Guide - Page 89

Controlling Access to Your IP SAN, Limiting Discovery of iSCSI Targets with Discovery Control Lists

UPC - 753253020539

View all Adaptec 5325302053 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 89 highlights

Chapter 7 Controlling Access to Your IP SAN This chapter describes how to use Adaptec Storage Manager to restrict and control access to your IP SAN and iSCSI targets (logical devices) with auto-discovery control lists, authentication, and the Security Manager. Limiting Discovery of iSCSI Targets with Discovery Control Lists If you want to limit which iSCSI initiators can discover an iSCSI target (logical device), you can create a discovery control list which will allow one or more specified iSCSI initiators to discover an iSCSI target while preventing other iSCSI initiators from discovering it, as illustrated in this figure. iSCSI Target iSCSI Discovery control list allows Initiator A to discover target Discovery control list denies discovery to Initiator B iSCSI Initiator A iSCSI Initiator B Each iSCSI target can have its own auto-discovery control list, with specified iSCSI initiators that are permitted to discover it. Note Discovery control lists don't prevent iSCSI initiators from logging into iSCSI targets that aren't on their control lists. If you are using iSNS to discover iSCSI targets and want to control which logical devices are logged into by which iSCSI initiators, you must set CHAP authentication. Without CHAP authentication, all iSCSI initiators will be able to log in to all iSCSI targets. See "Controlling Access to Your IP SAN with Authentication" on page 85 for more information.

Section	Page
About this Guide	13
What’s Included in this User’s Guide	14
What You Need to Know Before You Begin	14
Terminology Used in this Guide	14
Service and Technical Support	15
Additional Resources	15
Notes and Cautions	16
Finding More Information	16
Planning Your IP SAN	19
Introduction to Adaptec Storage Manager for iSCSI Storage	19
iSCSI Storage Feature Support	20
Understanding Adaptec Storage Manager’s Main Components	22
The GUI and the Agent	22
The Management Service	22
Windows Support	23
Planning Your IP SAN Configuration and Setup	24
Maximum Supported Connections	24
Sample IP SAN Configurations	24
Basic Configuration #1	25
Basic Configuration #2	26
Configuration with Mirroring	27
Configuration with Two Subnets	28
Configuration with Multipath Access	29
Building an IP SAN Without a DHCP Server	30
System Requirements	31
Installing Adaptec Storage Manager	33
Before You Begin	33
Installing on Windows	33
Installing on Linux	36
Before You Begin	36
Installing Adaptec Storage Manager	37
Creating an Administrator and Starting the Management Service	37
Using Adaptec Storage Manager with a Firewall	38
Setting Up Your iSCSI Storage Appliance and IP SAN	39
An Overview of the Setup Process	39
Before You Begin	40
Step 1: Starting Adaptec Storage Manager	41
Step 2: Configuring the iSCSI Storage Appliance	42
Step 3: Creating RAID Pools	44
Step 4: Provisioning Storage to Your Systems	46
Provisioning Storage Automatically	46
Provisioning Storage Manually	48
Step 5: Continuing to Build Your IP SAN	52
Step 6: Logging in to the iSCSI Storage	52
Step 7: Registering Your iSCSI Storage Appliance	53
Beginning to Use Your IP SAN	53
Logging In To Adaptec Storage Manager Next Time	53
Allowing Other Users To Log In To Your IP SAN	54
Setting Up VSS/VDS Access	54
Next Steps	56
Getting to Know Adaptec Storage Manager	57
Working in Adaptec Storage Manager	57
About the Actions Menu	57
Navigating the Main Window	58
The Enterprise View	58
The Physical Devices View	61
The Logical Devices View	62
The Volumes View	63
The Snapshots View	63
Revealing More Information	64
Checking System Status from the Main Window	65
Getting Help	66
Uninstalling Adaptec Storage Manager	66
Uninstalling From Windows Systems	66
Uninstalling From Linux Systems	66
Protecting Your Data	67
Protecting Your Data with Hot Spares	67
Hot Spare Limitations	67
Creating a Global Hot Spare for a Pool	68
Assigning a Hot Spare to a Logical Device	68
What Do the Hot Spare Icons Mean?	69
Deleting a Hot Spare	69
Backing Up Your Data with Snapshots	69
Before You Begin	70
Creating a Snapshot from an iSCSI Storage Host Volume	70
Mounting a Snapshot Set	72
Creating Target Based Snapshots	73
Mounting a Target Based Snapshot	74
Performing Roll back of a Mirror Snapshot	74
Performing Roll back of a Target Based Snapshot	74
Creating Volume Snapshots	75
Ensuring Pool Capacity for Your Snapshots	75
Scheduling a Snapshot Job	76
Backing Up Your Data with Mirrored Volumes	78
Mirror Managers and Mirror Plexes	79
Creating a Mirrored Volume	80
Extending a Mirrored Volume	81
Changing Mirror Priorities	81
Failing Over a Mirrored Volume	82
Failing Back a Mirrored Volume	82
Breaking a Mirrored Volume	83
Removing an Unavailable Mirror Plex	83
Deleting a Mirrored Volume	84
Backing Up Your Data with Replicas	84
Specifying Replica Site	84
Creating Replicas	85
Updating Replica Set	85
Aborting a Replica Set Update	86
Switching Roles	86
Mounting a Replica Set	86
Unmounting a Replica Set	86
Breaking a Replica Set	86
Scheduling Replica Update	87
Controlling Access to Your IP SAN	89
Limiting Discovery of iSCSI Targets with Discovery Control Lists	89
Modifying a Discovery Control List	90
Controlling Access to Your IP SAN with Authentication	91
Modifying the Authentication Settings	92
Limiting User Access to Your IP SAN with the Security Manager	92
Understanding Access Privilege Levels	93
Opening the Security Manager	94
Adding a User to the Security Manager	94
Modifying a User’s Information	95
Removing a User from the Security Manager	95
Modifying Your iSCSI Storage	97
Adding More Components to Your IP SAN	97
Adding a Management Service	97
Adding an iSCSI Storage Appliance	98
Adding an iSCSI Storage Host	98
Capacity Limitations	99
Creating and Modifying Pools	100
Creating a New Pool	100
Creating Pools Using Express Configuration	101
Adding Capacity to a Pool	102
Changing a Pool’s RAID Level	102
Moving a Pool to Another iSCSI Storage Appliance	103
Changing the Controller Cache Settings for a Pool	106
Deleting an Individual Pool	107
Deleting All Pools	107
Creating and Modifying Volumes	108
Creating a New Volume	108
Adding Capacity to a Volume	109
Reassigning a Volume to Another iSCSI Storage Host	109
Deleting a Volume	110
Creating and Modifying Logical Devices	110
Creating a New Logical Device	110
Modifying a Logical Device	111
Deleting a Logical Device	111
Maintaining Your iSCSI Storage Appliance	113
Configuring the Uninterruptible Power Supply (UPS) Monitor	113
Blinking Appliances, Enclosures, and Disk Drives	115
Shutting Down the iSCSI Storage Appliance	116
Shutting Down and Restarting the iSCSI Storage Appliance	116
Changing the iSCSI Storage Appliance’s Settings	116
Updating the Adaptec OnTarget Operating System	117
Applying a New Image	117
Checking the Current Image	118
Reverting to the Previous Image	118
Monitoring Status and Activity	121
Monitoring Jobs in Progress	121
Opening the Job Manager	122
Cancelling a Job in Progress	122
Resuming a Cancelled Job	123
Undoing a Failed Job	123
Viewing Status and Activity	124
Using the Event Viewer and Event Log	124
What Do the Status Icons Mean?	125
Viewing Enclosure Status	125
Viewing Component Properties	126
Using Status and Drive Light Behavior to Monitor Components	127
Snap Server 700i Series	127
SANbloc S50 Enclosure, Disk Drive, APC Module, and Controller Behavior	130
Notifying Users By Email About Status and Activity	132
Setting Up Email Notifications	133
Sending a Test Message	134
Modifying a Recipient’s Information or Removing a Recipient	134
Modifying Email Settings	135
Disabling Email Notifications	135
Notifying Users By SNMP Trap About Status and Activity	136
Setting Up SNMP Trap Notifications	136
Sending a Test Trap	137
Modifying a System’s Information or Removing a System	137
Disabling SNMP Traps	137
Monitoring Your GuardianOS-Powered Snap Servers	138
Viewing Network Attached Storage Status	138
Viewing GuardianOS-Powered Snap Server Properties	140
Discovering New or Additional GuardianOS-Powered Snap Servers	140
Removing Offline Servers from Adaptec Storage Manager	141
Disabling Remote Discovery of GuardianOS-Powered Snap Servers	141
Opening the GuardianOS Administration Tool	142
Changing the Network Attached Storage Management Settings	142
Updating and Customizing Adaptec Storage Manager	145
Updating Adaptec Storage Manager	145
Customizing Adaptec Storage Manager	145
Sorting Systems in the Enterprise View	146
Setting the Standard Unit of Measure	146
Changing the Main Window Appearance	147
Creating and Working with Display Groups	147
Adding a System to a Display Group	148
Viewing Display Group Status	148
Modifying Display Groups	148
Solving Problems	149
General Troubleshooting Tips	149
Troubleshooting Questions and Answers	150
Silencing an Alarm	154
Identifying Failed or Failing Components	154
Identifying Which Fan has Failed	155
Hot Swapping Disk Drives	156
Recovering from a Disk Drive Failure	156
Failed Disk Drive Protected by a Hot Spare	157
Failed Disk Drive Not Protected by a Hot Spare	157
Failure in Multiple Pools Simultaneously	157
Disk Drive Failure in a RAID 0 Pool	158
Multiple Failures in the Same Pool	158
Removing a Failed Disk Drive’s Icon from Adaptec Storage Manager	158
Rebuilding Pools	158
Recovering Snapshots After a Pool Capacity Failure	160
Using the Reset Button to Perform a Limited Reset of the Appliance	160
Recovering from an iSCSI Storage Appliance Failure	161
Recovery on iSCSI Storage Hosts	162
Recovery on Systems Running Windows XP, Linux, or VMware	165
Recovering from a Flash Drive Failure in a Mirrored Environment	165
Displaying ASM Mirror Volumes and Destroyed Mirror Volumes in the Disk Manager	166
Completing Stalled Replica Update	167
Unable to Perform Replication When Source and Destination have Static IP Address	167
Configuring iSCSI Initiators	169
Configuring iSNS with the CLI	169
iSCSI Configuration for Microsoft Windows	171
Configuring the MS Initiator Connection to the iSCSI Storage Appliance (Target Portal)	172
Configuring the QLogic QLA4050 and QLA4052 iSCSI Initiators for Microsoft Windows	178
Setting Up SAN Boot from Q-logic 4050C/4052C iscsi HBA	178
iSCSI Configuration for Red Hat or SUSE Linux	179
Setting Up an Out of the Box Cisco Initiator	179
iSCSI Configuration for VMware	182
Using the VI Client to Configure iSCSI Services	182
Using the CLI	185
Accessing the CLI	185
Access Levels and Passwords	186
Operator-Level Access	186
Administrator-Level Access	186
Switching Access Levels	186
Using the Wizard to Configure Your iSCSI Storage Appliance	187
About CLI Commands and Parameters	189
About Parameters	189
About Manage Commands	189
Command Abbreviation	189
About the Command Format in This Guide	190
Command Completion	190
Command and Parameter Separation	191
Character Case and White Space	191
Command Line Editing	191
Viewing Long Reports	192
The CLI and Adaptec Storage Manager	192
Getting Help	193
Your Snap Server 700i Series	195
Hardware Components	195
Product Descriptions	196
Identifying the Ethernet Ports	197
Basic Hardware Shipped with Snap Server 700i Series	198
Basic Hardware To Be Acquired from Third-Party Vendors	199
Optional Expansion Cards and Cables	199
Optional Expansion Arrays	199
Snap Server and Expansion Array Hardware Checklists	200
Snap Server 700i Series Hardware Checklists	200
Snap Server 720i Hardware Checklist	201
Snap Server 730i and 750i Hardware Checklist	202
SANbloc S50 Hardware Checklist	203
Snap Server and Expansion Array Hardware Specifications	204
Snap Server 700i Series Specifications	204
SANbloc S50 Specifications	205
Safety Precautions	206
RAID Quick Reference	207
Comparing RAID Levels	207
Selecting a RAID Level by Size of Pool	207
Expanding Pool Capacity	208
Changing from One RAID Level to Another	208
Completing a Silent Windows Installation	209
Completing a Silent Installation	209
Available Properties and Values	210
Example Command Line Installations	212
OS Support Quick Reference	215
iSCSI Initiator Support by OS	216

Match case Limit results 1 per page

Chapter 7

Controlling Access to Your IP SAN

This chapter describes how to use Adaptec Storage Manager to restrict and control

access to your IP SAN and iSCSI targets (logical devices) with auto-discovery

control lists, authentication, and the Security Manager.

Limiting Discovery of iSCSI Targets with Discovery Control

Lists

If you want to limit which iSCSI initiators can discover an iSCSI target (logical

device), you can create a discovery control list which will allow one or more

specified iSCSI initiators to discover an iSCSI target while preventing other iSCSI

initiators from discovering it, as illustrated in this figure.

Each iSCSI target can have its own auto-discovery control list, with specified iSCSI

initiators that are permitted to discover it.

Note

Discovery control lists don’t prevent iSCSI initiators from logging into iSCSI

targets that aren’t on their control lists. If you are using iSNS to discover iSCSI

targets and want to control which logical devices are logged into by which iSCSI

initiators, you must set CHAP authentication. Without CHAP authentication, all

iSCSI initiators will be able to log in to all iSCSI targets. See “Controlling Access to

Your IP SAN with Authentication” on page 85 for more information.

iSCSI

Discovery control list

denies discovery to

Initiator B

Discovery control list allows

Initiator A to discover target

iSCSI Initiator A

iSCSI Initiator B

iSCSI Target