HP 6120G/XG HP ProCurve Series 6120 Blade Switches Advanced Traffic Management - Page 270
FIP Snooping
View all HP 6120G/XG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 270 highlights
Converged Enhanced Ethernet on the HP ProCurve 6120XG Switch FIP Snooping FIP Snooping With the introduction of CEE support on ProCurve switches, end nodes connected to ProCurve switches are able to communicate storage traffic with Fibre Channel fabric(s) using the Fibre Channel over Ethernet (FCoE) protocol. In a conventional Fibre Channel fabric all end nodes are directly connected to a Fibre Channel switch through point-to-point links. The Fibre Channel switch has complete control over which node is permitted to communicate with the fabric and the address the node will use to communicate, thus ensuring a degree of robustness of the FC fabric. In an FCoE configuration, end nodes are not directly physically connected to the FC switches, therefore the FC fabric cannot rely on physical connectivity to realize the same degree of robustness as a conventional FC fabric. This is where FIP (FCoE Initialization Protocol) Snooping comes in. The FC standard recommends intermediate CEE switches implement a packet snooping and ACL-based method to ensure only authenticated end nodes are permitted to communicate and the end nodes use only the FC switch assigned address for such communication. This method is generally referred to as FIP Snooping and is specified in Annex C of the FC-BB-5 Specification at www.t11.org/ftp/t11/pub/fc/bb-5/09-056v5.pdf. Figure 6-1 represents a FIP Snooping implementation. Each Converged Network Adapter (CNA) can communicate with single or multiple Fibre Channel Forwarders (FCFs) through the ProCurve switch. The switch and the FCFs can be connected through a single link or multiple links aggregated [as trunks or static LACP] respectively. All FCoE traffic is carried on a single VLAN common among all the FCFs and the CNAs. The switch does not permit any FCoE traffic until the participating VN_Port has successfully logged into the FC fabric. The switch also ensures that Enodes use no other MAC address but fabric provided MAC addresses exclusively for FCoE traffic. It also prevents a non-FCF port from masquerading as an FCF. 6-21