HP StorageWorks 2/140 FW 08.01.00 HP StorageWorks Director and Edge Switch Rel - Page 9

Open Trunking with FMS, Safe Zoning mode, Security enhancements, QSA Rev 2 and RFCN support

Get HP StorageWorks 2/140 - Director Switch PDF manuals and user guides View all HP StorageWorks 2/140 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 9 highlights

Open Trunking with FMS Open Trunking Load Balancing is now qualified in FICON environments where FICON flows are rerouted, without encountering out-of-order frames. Safe Zoning mode When this mode is enabled through the CLI or HAFM Basic, zone merges are prohibited if zone sets from different fabrics do not match, and the default zone (available in Homogeneous Fabric mode only) cannot be activated. This prevents fabric merge problems when zones are removed accidentally or when new unzoned devices are added to the fabric when the default zone is enabled. The following CLI and HAFM Basic enhancements support this mode: • CLI-New config.switch.safeZoning command • HAFM Basic-A Safe Zoning Mode check box on the Security menu Security enhancements The following enhancements have been made to Security features: • Firmware 08.01.00 supports SSL connection for HTTP sessions managing switches with HAFM Basic, as well as HAFM management sessions. This ensures that all data transmitted between the switch and these management interfaces is secure and encrypted. SSL complements the SSH support added to firmware 07.xx.xx for CLI management. • Support for standard syslog logging functions. You can configure a central logging service for all log events. Each log can be configured separately for distribution to the syslog. • The SNMP interface can be configured to operate in version 3 mode, and support for authentication is provided. SNMPv3 provides additional security for you to authenticate any management sessions on your M-Series Fibre Channel switches. Consider the following: • The authentication/privacy password (key) configured for an SNMPv3 user on a switch is not localized. Therefore, the authentication/privacy password configured in the SNMP management application must be a non-localized password in ASCII format. • Before enabling SNMPv3, ensure that all desired community strings are configured for SNMPv3 access. If the community strings are not configured for SNMPv3, then SNMP access will be lost. QSA Rev 2 and RFCN support With firmware 08.xx and later, standards-based support for the revision 2 of Query Security Attributes (QSA) and new remote fabric change notifications (RFCNs) is available. Director and Edge Switch release notes 7

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
Open Trunking with FMS
Open Trunking Load Balancing is now quali
ed in FICON environments where FICON
ows are rerouted, without encountering out-of-order frames.
Safe Zoning mode
When this mode is enabled through the CLI or HAFM Basic, zone merges are prohibited
if zone sets from different fabrics do not match, and the default zone (available in
Homogeneous Fabric mode only) cannot be activated. This prevents fabric merge
problems when zones are removed accidentally or when new unzoned devices are
added to the fabric when the default zone is enabled.
The following CLI and HAFM Basic enhancements support this mode:
CLI
—New
config.switch.safeZoning
command
HAFM Basic
—A Safe Zoning Mode check box on the Security menu
Security enhancements
The following enhancements have been made to Security features:
Firmware 08.01.00 supports SSL connection for HTTP sessions managing
switches with HAFM Basic, as well as HAFM management sessions. This ensures
that all data transmitted between the switch and these management interfaces
is secure and encrypted. SSL complements the SSH support added to
rmware
07.xx.xx for CLI management.
Support for standard syslog logging functions. You can con
gure a central
logging service for all log events. Each log can be con
gured separately for
distribution to the syslog.
The SNMP interface can be con
gured to operate in version 3 mode, and
support for authentication is provided. SNMPv3 provides additional security for
you to authenticate any management sessions on your M-Series Fibre Channel
switches. Consider the following:
The authentication/privacy
password
(key) con
gured for an SNMPv3 user
on a switch is not localized. Therefore, the authentication/privacy password
con
gured in the SNMP management application must be a non-localized
password in ASCII format.
Before enabling SNMPv3, ensure that all desired community strings are
con
gured for SNMPv3 access. If the community strings are not con
gured
for SNMPv3, then SNMP access will be lost.
QSA Rev 2 and RFCN support
With
rmware 08.xx and later, standards-based support for the revision 2 of Query
Security Attributes (QSA) and new remote fabric change noti
cations (RFCNs) is
available.
Director and Edge Switch release notes
7