IBM 890 manual z/VM Version 5

Page 88

The guest LAN support provided in z/VM V4.2 simulates the HiperSockets function for communication among virtual machines without the need for real IQD channels, much as VM simulates channel-to-channel adapters for communication among virtual machines without the need for ESCON, FICON, or other real channel-to-channel con- nections. With the guest LAN capability, customers with S/390 servers can gain the benefi ts of HiperSockets com- munication among the virtual machines within a VM image, since no real IQD channels are required.

z/VM V4.4 further enhances its virtualization technology by providing the capability to deploy virtual IP switches in the guest LAN environment. The z/VM virtual switch replaces the need for virtual machines acting as routers to provide IPv4 connectivity to a physical LAN through an OSA- Express adapter. Routers consume valuable processor cycles and require additional copying of data being trans- ported. The virtual-switch function alleviates this problem and also provides centralized network confi guration and control. These controls allow the LAN administrator to more easily grant and revoke access to the network and to manage the confi guration of VLAN segments.

TCP/IP for z/VM provides numerous self-protection func- tions. A Secure Sockets Layer (SSL) server is available to facilitate secure and private conversations between z/VM servers and external clients. The upgraded SSL server in z/VM V4.4 provides appropriate RPM format packages for the SUSE LINUX Enterprise Server 8 (SLES 8). Security of the TCP/IP stack has been improved to help prevent additional types of Denial of Service (DoS) attacks includ- ing: Smurf, Fraggle, Ping-o-Death, Kiss of Death (KOD), KOX, Blat, SynFlood, Stream, and R4P3D. The overall security and auditability of the TCP/IP for z/VM stack and the integrity of the z/VM system have been improved by providing better controls, monitoring, and defaults. An IMAP

user authentication exit has been added that removes prior user ID and password length restrictions and eliminates the need for every IMAP client to have a VM user ID and pass- word.

TCP/IP for z/VM, formerly a priced, optional feature of VM/ESA and z/VM V3, is packaged at no additional charge and shipped enabled for use with z/VM V4 and V5. The former priced, optional features of TCP/IP — the Network File System (NFS) server and TCP/IP source — are also packaged with TCP/IP for z/VM at no additional change.

In addition to the new function provided by the Performance Toolkit for VM, RealTime Monitor (RTM), and Performance Reporting Facility (PRF) are still available in z/VM V4.4 to support new and changed monitor records in z/VM. RTM simplifi es performance analysis and the installation man- agement of VM environments. PRF uses system monitor data to analyze system performance and to detect and diagnose performance problems. RACF for z/VM is avail- able as an priced, optional feature of z/VM V4 and provides improved data security for an installation. RTM, PRF, and the Performance Toolkit are also priced, optional features of z/VM V4 as is the Directory Maintenance Facility (DirMaint).

z/VM Version 5 (V5)

z/VM continues the evolution of its premier world-class zSeries virtualization technology with a new version z/VM Ver- sion 5 Release 1, offering traditional capabilities to manage zSeries operating systems, including Linux, on a single main- frame as guests of z/VM. z/VM V5.1 is designed to operate only on zSeries servers that support the z/Architecture (64- bit) including the z990, z890, z900, and z800 or equivalent.

88

Page 87 Page 89
Image 88
Page 87 Page 89
Contents IBM zSeries 890 and z/OS Reference Guide JanuaryTable of Contents zSeries Overview What does an on demand company look like?The New zSeries from IBM Tools for Managing e-businessz/Architecture z/Architecture Operating System SupportIBM zSeries Operating Systemz/Arch 31-bitNumber of CPs BaseEstimated Ratio z890 Design and Technology The z890 supports LPAR mode only basic mode is no longer supported z890 Performance Comparison z890 Family ModelsIBM On/Off Capacity on Demand for z890 Page On/Off CoD Test z800 to z890 and z890 Model Upgradesz800 z890 z890 Performance Comparisons z890 I/O Subsystem z890s Positioning in the zSeries Familyz890 Cage Layout CEC I/O CageGreater than 15 Logical Partitions LPARs Up to 30 Logical PartitionsPhysical Channel IDs PCHIDs SubSystem Logical Channel SubSystem LCSS Spanningz890 Channels and I/O Connectivity Channel SpanningUp to 420 ESCON Channels Up to 40 FICON Express ChannelsUp to 80 FICON Express2 Channels InterSystem Channel-3 ISC-3Integrated Cluster Bus-3 ICB-3 Integrated Cluster Bus-4 ICB-4Native FICON Channels Fibre Channel ConnectivityFICON CTC function FICON Support for Cascaded Directors FICON ConnectivityFCP Channels FCP Full fabric connectivity Preview - FCP LUN Access ControlFICON Express enhancements for Storage Area Networks FICON purge path extended A New Generation for SANs - FICON Express2 FICON Express2 Doubles the Channel CapacityFICON Express2 LX FICON Express2 SXConcurrent Update Continued Support of Spanned Channels and LPARsModes of Operation CascadingOSA-Express2 Gigabit Ethernet OSA-Express2 10 Gigabit Ethernet LRConcurrent LIC update Layer Queued Direct Input/Output QDIO One port per featureNew functions in OSA-Express2 Improved virtualization - now 640 TCP/IP stacksLarge send for TCP/IP traffic OSA-Express2 large send for the z/OS environment previewOSA-Express2 concurrent LIC update - an availability enhancement Layer 2 support - ideal for server consolidationTCP/IP stack utilization improvement for OSA-Express Open Systems Adapter-Express Features OSA-Expressz890 OSA-Express 1000BASE-T Ethernet Queued Direct Input/Output QDIO OSA-Integrated Console Controllerz890 OSA-Express Gigabit Ethernet z890 OSA-Express Token-Ring NON-QDIO operational modeNote Statement of Direction Server to User connections LPAR Support of OSA-ExpressIPv6 Support Performance enhancements for virtual serversHiperSockets z/VM LCSS0LCSS1 HiperSockets CHPIDCryptography HiperSockets Network ConcentratorzSeries Security Certification Cryptography z890/z990 PCIXCC Designed for FIPS 140-2 level 4 certifi cationLogical Partitions Operating Systems Common Criteria Certifi cation SUSE LINUX on zSeriesThe Crypto Express2 feature supports the following Cryptographic support for 19-digit PANs Enabling use of less than 512-bit keys for clear key RSA operations2048-bit key RSA management for PCICC on z800, z900 TKE 4.2 and Smart Card Reader Support TKE 4.2 codez890 Capacity Upgrade on Demand CUoD z890 Server Capacity BackUp CBUAvailability Plan Ahead and Concurrent ConditioningAutomatic Enablement of CBU for GDPS z890 Customer Initiated Upgrade CIUOn/Off CoD Testing Order Staging for CIU-Express and On/Off CoDConcurrent Maintenance Concurrent Capacity BackUp Downgrade CBU UndoAdvanced Availability Functions Transparent SparingParallel Sysplex Cluster Technology Coupling Facility Configuration Alternatives System-Managed CF Structure Duplexing Parallel Sysplex Coupling Connectivity GDPS/PPRC Cross Site Parallel Sysplex distance Extended to 100 kmRoute A Route BConnectivity z890 and z990 Theoretical Maximum Coupling Link SpeedOptions Intelligent Resource Director zSeries IRD ScopeLPAR CPU Management Dynamic Channel Path ManagementParallel Sysplex Professional Services Channel Subsystem Priority QueuingGDPS GPDS/PPRC HyperSwap GDPS/PPRC and GDPS/XRC FlashCopy Support GDPS/PPRC Multiplatform Resiliency for zSeriesRe-IPL in place of failing operating system images Site takeover/failover of a complete production siteAutomatic Enablement of CBU for GDPS configurationsGDPS/Global Mirror - preview Performance enhancements for GDPS/PPRC and GDPS/XRCContinuous Availability Recommended Configuration for Parallel FacilitiesSysplex Components and assumptionsKey attributes can include z890 Support for LinuxLinux on zSeries IBM Middleware Linux Distribution Partners z/VM Version 4 and VersionIntegrated Facility for Linux IFL OSA-Express Ethernet for LinuxOSA-Express Enhancements for Linux HiperSocketsCryptographic Support for Linux Fibre Channel Protocol FCP channel Support for LinuxLinux Support zSeries 890 Family Configuration Detail Processor Unit AssignmentsProcessor Memory ChannelsCryptographic Features OSA-Express Featuresz890 Frame and I/O Configuration Content Planning for I/O General InformationPhysical Characteristics z890 Power/Heating/Cooling System Power Consumption 50/60 Hz, KVAz890 Dimensions Coupling Facility - CF Level of SupportFiber-Optic Cabling and System Connectivity Integrated system services z/OSz/OS.e Support for 64-bit real memory and 64-bit virtual storagezSeries Application Assist Processor z/OS Scalability64-bit Support LPAR CPU Management Dynamic Channel Path ManagementSystem Services Automation Supportz/OS Version 1 Release 6 optional priced features z/OS Version 1 Release 6 base elementsWLM Improvements for WebSphere Sense and Respond with Workload ManagerData Management with DFSMS Parallel Sysplex CICS/VSAM enabled for 24x7 availabilityJES2 and JES3 Console Enhancements System Management ServicesEnhancements Security Services SMP/EAdvanced System Automation RACFRACF enhancements Multilevel SecurityICSF LDAPa restriction where the private key had to reside in the RACF database Network Authentication Service PKI ServicesFirewall Language Environment Application Enablement ServicesC/C++ Communication Services JavaUnicode REXX FunctionsIntrusion Detection Services IDS Dynamic Virtual IP Address TakeoverSysplex Distributor IPv6HiperSockets z/OS UNIXUNIX System Services benefits can include Distributed Computing ServicesHighlights zSeries File System zFSDistributed File Services DFS Server Message Block SMB Internet ServicesPrint Services Infoprint CentralIntegrated Testing Library CenterSoftcopy Publications Support Publicationsz/OS 1.6 is supported on the following IBM servers Installation ConsiderationsMigration/Coexistence zSeries Bimodal Support for z/OS Migration, installation and customization enhancementsWizards z/VM Order z/OS through the Internetz/VM Version 3 z/VM Version 4Exploiting New Technology Systems Management New technological enhancements in z/VM V4.4 provideApplication Enablement Networking with z/VMManagement and control of VLAN topology by the z/VM virtual switch C/C++ for z/VM Compiler 5654-A22z/VM Version 5 Engine-based Value Unit Pricing Enhancements in z/VM V5.1 includeVirtualization Technology and Linux Enablement Value Unit Pricing helps you toNetwork Virtualization and Security Systems Management Improvements Technology ExploitationFor further information see the z/VM Reference Guide, GM13-0137 VSE/ESA VSE/ESAz/VSE To learn more Endnotes
Related manuals
Manual 28 pages 54.75 Kb
Top Page Image Contents