HP StorageWorks 2/140 FW 07.00.00/HAFM SW 08.06.00 McDATA Products in a SAN En - Page 278
Task 16: Plan Zone Sets for Multiple Products (Optional), No Zone Synchronization
View all HP StorageWorks 2/140 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 278 highlights
Configuration Planning Tasks 6 Task 16: Plan Zone Sets for Multiple Products (Optional) If name server zoning is to be implemented, carefully plan the characteristics and security objectives (separation of operating systems, data sets user groups, devices, or processes) of zone members, zones and zone sets. If a fabric topology or routed SAN is implemented, zoning is configured on a fabric-wide or SAN-wide basis. Planning for zoned configurations must be carefully coordinated with planning the topology. The following factors should be considered when planning to implement name server zoning: • Zone members specified by port number or WWN - Consider if zoning is to be implemented by port number or WWN. Because changes to a port connections or fiber-optic cable configurations may disrupt zone operation, zoning by WWN is recommended. NOTE: SAN routers do not support port number zoning. • Zoning implications for a multiswitch fabric - To ensure zoning is consistent across a multiswitch fabric, directors and fabric switches must have compatible operating parameters and unique domain IDs, the active zone set name must be consistent, and zones with the same name must have identical elements. • Zoning implications for a routed SAN - A zone policy must be established that specifies how zone information is synchronized between a SAN router and attached fabrics. Zone policy options are No Zone Synchronization (device zoning is controlled at the fabric level) or Append IPS Zones (device zoning control is shared between a SAN router and the fabric). • Server and storage device access control - In addition to zoning, consider implementing server-level access control (persistent binding) and storage-level access control. Consider purchasing and enabling the SANtegrity Authentication and SANtegrity Binding features to work in conjunction with name server zoning to provide additional data security in a complex and multi-OEM environment. Planning and implementing zones and zone sets is a complex and difficult task, especially for multiswitch fabrics. Obtain planning assistance from McDATA's professional services organization before implementing a zoning feature. 6-30 McDATA Products in a SAN Environment - Planning Manual