IBM z/OS manual Network Virtualization and Security, Technology Exploitation

Page 86

PCIX Cryptographic Coprocessor (PCIXCC) support provides z/OS and Linux guest support for the PCIXCC Feature available with the z990 and z890 severs. Deliv- ery of the z/VM PCIXCC support satisfi es the Statement of Direction made on May 13, 2003.

The Systems Management APIs, introduced in z/VM V4.4, provided a basic set of functions that may be called by applications to allocate and manage resources for guests running in z/VM virtual machines (virtual images). Although these APIs are primarily intended

for managing Linux virtual images, they can be used to manage many types of z/VM virtual machine. All enhancements to the APIs in z/VM V5.1 have been imple- mented using Version 2 (V2) of the RPC server. In addi- tion to usability enhancements, new functions include:

DASD volume management for virtual images

VMRM confi guration fi le management

Query status of active images

Query VMRM measurement data

Removal of user ID entries in an authorization fi le with a single request

Query all shared storage segments instead of one at a time

A new programming service is provided by an emulated DIAGNOSE instruction that helps enable a guest virtual machine to specify an action to be taken by CP when the guest becomes unresponsive. A time interval and action are specifi ed by the guest. If the guest fails to reissue the DIAGNOSE instruction within the specifi ed time interval, CP performs the action.

A new publication, Getting Started with Linux on zSeries, describes z/VM basics and how to confi gure and use z/VM functions and facilities to create and manage Linux servers running on zSeries processors. The publication

is designed to help systems personnel (system pro- grammers, administrators, and operators) with limited knowledge of z/VM deploy Linux servers on z/VM more quickly and more easily.

Network Virtualization and Security

The virtual IP switch, introduced in z/VM V4.4, was designed to improve connectivity to a physical LAN for hosts coupled to a guest LAN. The virtual switch has been enhanced to provide enhanced failover support for less disruptive recovery for some common network failures helping to provide business continuity as well as infrastructure reliability and availability.

Authorization capabilities have been enhanced for z/VM guest LANs and virtual switches by using Resource Access Control Facility (RACF) or any equivalent Exter- nal Security Manager (ESM) that supports this function. It is designed to provide ESM centralized control of authorizations and Virtual LAN (VLAN) assignment.

Technology Exploitation

z/VM V5.1 supports the new z890 as well as the new enhancements to the z990 including:

Four Logical Channel SubSystems (LCSSs) on the z990 and two on the z890

Transparent sharing of internal and external channel types across LCSSs such as ICB-3, ICB-4, ISC-3, FICON Express, and OSA-Express

Open Systems Adapter-Express Integrated Console Controller (OSA-ICC) function

Up to 24 real processor engines in a single z/VM image on a z990 satisfi es the Statement of Direction made on May 13, 2003.

86

Page 85 Page 87
Image 86
Page 85 Page 87
Contents IBM zSeries 990 and z/OS Reference Guide Table of Contents ZSeries Overview What does an on demand company look like?To huge increases in user activity Tools for Managing e-businessArchitecture Architecture Operating System SupportIBM zSeries TionBase Ratio Z990 Design and Technology MultiChip Module is the technology cornerstone for Z990 and IBM On/Off Capacity on Demand Z990 Family ModelsZ990 Models Model Upgrades Z990 and z900 Performance Comparison Z990 I/O SubSystem Z990 Cage LayoutGreater than 15 Logical Partitions LP Physical Channel IDs PCHIDs SubSystemIC Channel Spanning Z990 Channels and I/O ConnectivityLogical Channel SubSystem Lcss Spanning Up to 1024 Escon ChannelsIntegrated Cluster Bus-3 ICB-3 InterSystem Channel-3 ISC-3Integrated Cluster Bus-2 ICB-2 Integrated Cluster Bus-4 ICB-4Performance Ficon Express Channel Card FeaturesFibre Channel Connectivity Flexibility Three channel types supportedShared infrastructure Native Ficon ChannelsFicon Support for Cascaded Directors Ficon ConnectivityFicon CTC function Ficon Bridge Channel FCP ChannelsOpen Systems Adapter-Express Features OSA-Express FCP Full fabric connectivityZ990 OSA-Express 1000BASE-T Ethernet OSA-Express Integrated Console ControllerQueued Direct Input/Output Qdio Z990 OSA-Express Gigabit EthernetServer to User connections NON-QDIO operational modeZ990 OSA-Express Token-Ring Performance enhancements for virtual servers Lpar Support of OSA-ExpressIPv6 Support HiperSockets LCSS0 LCSS1HiperSockets Network Concentrator Cryptography ZSeries Security Certification Cryptography Z990 Capacity Upgrade on Demand CUoDAvailability Plan Ahead and Concurrent ConditioningZ990 Server Capacity BackUp CBU Advanced Availability Functions Z990 Server Customer Initiated Upgrade CIUConcurrent Maintenance Transparent SparingParallel Sysplex Cluster Technology Concurrent Capacity Backup Downgrade CBU UndoConcurrent Memory Upgrade Coupling Facility Configuration Alternatives System-Managed CF Structure Duplexing Parallel Sysplex Coupling Connectivity Z990 Theoretical Maximum Coupling Link Speed OptionsIntelligent Resource Director IRD ScopeChannel Subsystem Priority Queuing Lpar CPU ManagementDynamic Channel Path Management Page Geographically Dispersed Parallel Sysplex HyperSwap Geographically Dispersed Parallel Sysplex Gdps Enhancements Page Page Parallel Sysplex FacilitiesNo single point of failure Components and assumptionsIBM Middleware Z990 Support for LinuxLinux on zSeries Tivoli Access Manager for Operating Systems Version Integrated Facility for Linux IFL Linux Distribution PartnersVM Version 4 and Version OSA-Express Ethernet for LinuxHiperSockets Fibre Channel Protocol FCP channel Support for LinuxLinux Support ZSeries 990 Family Configuration DetailCryptographic Support for Linux Processor Unit Assignments Cryptographic FeaturesOSA-Express Features Processor MemoryZ990 Frame and I/O Configuration Content Planning for I/O General InformationZ990 Dimensions Physical CharacteristicsZ990 Power/Heating/Cooling System Power Consumption kW System Cooling Air Flow Rate CFMCoupling Facility CF Level of Support Fiber-Optic Cabling and System ConnectivityFiber-optic jumper cabling package Integrated system services OS.e ZSeries Application Assist ProcessorAutomation Support OS ScalabilityBit Support System Services Sense and Respond with Workload ManagerWLM Improvements for WebSphere Data Management with DfsmsJES2 and JES3 CICS/VSAM enabled for 24x7 availabilitySystem Management Services Console Enhancements EnhancementsSecurity Services Advanced System AutomationRacf enhancements Multilevel SecurityLdap PKI Services FirewallLanguage Environment Network Authentication ServiceApplication Enablement Services Java UnicodeDynamic Virtual IP Address Takeover Communication ServicesRexx Functions Sysplex DistributorIntrusion Detection Services IDS HiperSocketsOS Unix HighlightsZSeries File System zFS Unix System Services benefits can includeDistributed Computing Services Distributed File Services DFS Server Message Block Internet ServicesPrint Services Infoprint CentralLibrary Center Integrated TestingSoftcopy Publications Support PublicationsOS 1.6 is supported on the following IBM servers Installation ConsiderationsOS 1.4 and 1.5 are supported on the following IBM servers Migration/CoexistenceMigration, installation and customization Enhancements ZSeries Bimodal Support for z/OSWizards Order z/OS through the InternetVM Version 3 VM Version 4 Exploiting New Technology Systems Management Application Enablement Networking with z/VMPage Enhancements in z/VM V5.1 include VM Version 5Engine-based Value Unit Pricing Network Virtualization and Security Technology ExploitationSystems Management Improvements To learn more
Top Page Image Contents