Network Virtualization and Security

Image 90

Contents

IBM zSeries 890 and z/OS Reference Guide January Table of Contents zSeries Overview What does an on demand company look like? The New zSeries from IBM Tools for Managing e-business z/Architecture z/Architecture Operating System Support z/Arch IBM zSeriesOperating System 31-bit Base Number of CPsEstimated Ratio z890 Design and Technology The z890 supports LPAR mode only basic mode is no longer supported z890 Family Models z890 Performance ComparisonIBM On/Off Capacity on Demand for z890 Page z800 to z890 and z890 Model Upgrades On/Off CoD Testz800 z890 z890 Performance Comparisons z890 Cage Layout z890 I/O Subsystemz890s Positioning in the zSeries Family CEC I/O Cage Physical Channel IDs PCHIDs SubSystem Greater than 15 Logical Partitions LPARsUp to 30 Logical Partitions Logical Channel SubSystem LCSS Spanning Up to 420 ESCON Channels z890 Channels and I/O ConnectivityChannel Spanning Up to 40 FICON Express Channels Integrated Cluster Bus-3 ICB-3 Up to 80 FICON Express2 ChannelsInterSystem Channel-3 ISC-3 Integrated Cluster Bus-4 ICB-4 Fibre Channel Connectivity Native FICON ChannelsFICON CTC function FICON Connectivity FICON Support for Cascaded DirectorsFCP Channels Preview - FCP LUN Access Control FCP Full fabric connectivityFICON Express enhancements for Storage Area Networks FICON purge path extended FICON Express2 LX A New Generation for SANs - FICON Express2FICON Express2 Doubles the Channel Capacity FICON Express2 SX Modes of Operation Concurrent UpdateContinued Support of Spanned Channels and LPARs Cascading Concurrent LIC update Layer OSA-Express2 Gigabit EthernetOSA-Express2 10 Gigabit Ethernet LR Queued Direct Input/Output QDIO One port per feature Large send for TCP/IP trafﬁc New functions in OSA-Express2Improved virtualization - now 640 TCP/IP stacks OSA-Express2 large send for the z/OS environment preview OSA-Express2 concurrent LIC update - an availability enhancement Layer 2 support - ideal for server consolidation Open Systems Adapter-Express Features OSA-Express TCP/IP stack utilization improvement for OSA-Expressz890 OSA-Express 1000BASE-T Ethernet OSA-Integrated Console Controller Queued Direct Input/Output QDIOz890 OSA-Express Gigabit Ethernet NON-QDIO operational mode z890 OSA-Express Token-RingNote Statement of Direction IPv6 Support Server to User connectionsLPAR Support of OSA-Express Performance enhancements for virtual servers HiperSockets LCSS1 z/VMLCSS0 HiperSockets CHPID Cryptography HiperSockets Network Concentrator Logical Partitions zSeries Security Certiﬁcation Cryptographyz890/z990 PCIXCC Designed for FIPS 140-2 level 4 certiﬁ cation Operating Systems Common Criteria Certiﬁ cation SUSE LINUX on zSeries The Crypto Express2 feature supports the following Enabling use of less than 512-bit keys for clear key RSA operations Cryptographic support for 19-digit PANs2048-bit key RSA management for PCICC on z800, z900 TKE 4.2 and Smart Card Reader Support TKE 4.2 code Availability z890 Capacity Upgrade on Demand CUoDz890 Server Capacity BackUp CBU Plan Ahead and Concurrent Conditioning On/Off CoD Testing Automatic Enablement of CBU for GDPSz890 Customer Initiated Upgrade CIU Order Staging for CIU-Express and On/Off CoD Advanced Availability Functions Concurrent MaintenanceConcurrent Capacity BackUp Downgrade CBU Undo Transparent Sparing Parallel Sysplex Cluster Technology Coupling Facility Conﬁguration Alternatives System-Managed CF Structure Duplexing Route A Parallel Sysplex Coupling ConnectivityGDPS/PPRC Cross Site Parallel Sysplex distance Extended to 100 km Route B z890 and z990 Theoretical Maximum Coupling Link Speed ConnectivityOptions LPAR CPU Management Intelligent Resource DirectorzSeries IRD Scope Dynamic Channel Path Management Parallel Sysplex Professional Services Channel Subsystem Priority Queuing GDPS GPDS/PPRC HyperSwap Re-IPL in place of failing operating system images GDPS/PPRC and GDPS/XRC FlashCopy SupportGDPS/PPRC Multiplatform Resiliency for zSeries Site takeover/failover of a complete production site GDPS/Global Mirror - preview Automatic Enablement of CBU for GDPSconﬁgurations Performance enhancements for GDPS/PPRC and GDPS/XRC Sysplex Continuous Availability Recommended Conﬁguration for ParallelFacilities Components and assumptions z890 Support for Linux Key attributes can includeLinux on zSeries IBM Middleware Integrated Facility for Linux IFL Linux Distribution Partnersz/VM Version 4 and Version OSA-Express Ethernet for Linux OSA-Express Enhancements for Linux HiperSockets Fibre Channel Protocol FCP channel Support for Linux Cryptographic Support for LinuxLinux Support Processor Memory zSeries 890 Family Conﬁguration DetailProcessor Unit Assignments Channels z890 Frame and I/O Conﬁguration Content Planning for I/O Cryptographic FeaturesOSA-Express Features General Information z890 Dimensions Physical Characteristicsz890 Power/Heating/Cooling System Power Consumption 50/60 Hz, KVA Coupling Facility - CF Level of Support Fiber-Optic Cabling and System Connectivity Integrated system services z/OS z/OS.e Support for 64-bit real memory and 64-bit virtual storage 64-bit Support zSeries Application Assist Processorz/OS Scalability LPAR CPU Management Dynamic Channel Path Management z/OS Version 1 Release 6 optional priced features System ServicesAutomation Support z/OS Version 1 Release 6 base elements Sense and Respond with Workload Manager WLM Improvements for WebSphereData Management with DFSMS CICS/VSAM enabled for 24x7 availability Parallel SysplexJES2 and JES3 System Management Services Console EnhancementsEnhancements Advanced System Automation Security ServicesSMP/E RACF RACF enhancements Multilevel Security LDAP ICSFa restriction where the private key had to reside in the RACF database PKI Services Network Authentication ServiceFirewall Application Enablement Services Language EnvironmentC/C++ Unicode Communication ServicesJava REXX Functions Sysplex Distributor Intrusion Detection Services IDSDynamic Virtual IP Address Takeover IPv6 HiperSockets z/OS UNIX Highlights UNIX System Services beneﬁts can includeDistributed Computing Services zSeries File System zFS Distributed File Services DFS Server Message Block SMB Internet Services Print Services Infoprint Central Softcopy Publications Support Integrated TestingLibrary Center Publications Installation Considerations z/OS 1.6 is supported on the following IBM serversMigration/Coexistence Migration, installation and customization enhancements zSeries Bimodal Support for z/OSWizards z/VM Order z/OS through the Internet z/VM Version 3 z/VM Version 4 Exploiting New Technology Systems Management New technological enhancements in z/VM V4.4 provide Management and control of VLAN topology by the z/VM virtual switch Application EnablementNetworking with z/VM C/C++ for z/VM Compiler 5654-A22 z/VM Version 5 Virtualization Technology and Linux Enablement Engine-based Value Unit PricingEnhancements in z/VM V5.1 include Value Unit Pricing helps you to Network Virtualization and Security Technology Exploitation Systems Management ImprovementsFor further information see the z/VM Reference Guide, GM13-0137 VSE/ESA VSE/ESAz/VSE To learn more Endnotes

IBM 890 manual Network Virtualization and Security

Models: 890