Manuals / Brands / Computer Equipment / Switch / Q-Logic / Computer Equipment / Switch

Q-Logic 9100, 59229-05 A Security Example: Switches and HBAs with Authentication, Figure 2-2 Security Example: Switches and HBAs

1 168

Download 168 pages, 1.33 Mb

2–Planning

Security

59229-05 A 2-15

Consider the devices, switches, and management agents and evaluate the need

for authorization and authentication. Also consider whether the security database

is to be distributed on the switches or centralized on a RADIUS server and how

many servers to configure.

The following examples illustrate how to configure a security database:

Security Example: Switches and HBAs with Authentication

Security Example: RADIUS Server

Security Example: Host Authentication

Security Example: Switches and HBAs with Authentication

Consider the fabric shown in Figure 2-2. In this fabric, Switch_1, HBA_1, and

Switch_2 support authentication while the JBOD and HBA_2 do not. The objective

is to secure F_Ports and E_Ports in the fabric. T o do this, configure security on the

devices that support security: Switch_1, Switch_2, and HBA_1.

Figure 2-2 Security Example: Switches and HBAs

E_Port

Device: Switch_1

WWN: 10:00:00:c0:dd:07:e3:4c

Security: Yes

Device: Switch_2

WWN: 10:00:00:c0:dd:07:e3:4e

Security: Yes

Device: HBA_1

WWN: 10:00:00:c0:dd:07:c3:4d

Security: Yes

F_Port

F_Port

FL_Port

Device: JBOD

WWNS:10:00:00:d1:ee:18:d4:5e

10:00:00:d1:ee:18:d4:5f

10:00:00:d1:ee:18:d4:5g

Security: No

Device: HBA_2

WWN: 10:00:00:c0:dd:07:c3:4f

Security: No

Contents

Main Document Revision History T able of Contents Preface 1 General Description 2 Planning 3 Installation 4 Diagnostics/Troubleshooting 5 Customer Replaceable Units A Specifications Glossary Index List of Figures List of Tables Preface Intended Audience Related Materials Safety Notices Sicherheitshinweise Notes informatives relatives la scurit Advertencias de seguridad Communications Statements Federal Communications Commission (FCC) Class A Statement Canadian Department of Communications Class A Compliance Statement Avis de conformit aux normes du ministre des Communications du Canada CE Statement VCCI Class A Statement Laser Safety Information Electrostatic Discharge Sensitivity (ESDS) Precautions Accessible Parts Pices Accessibles Zugngliche Teile License Agreements New in this Release Technical Support Availability Training Contact Information Page 1 Hardware Overview Table 1-1. QLogic 9000 Series Switch Models Figure 1-1 QLogic 9000 Series Switch Model Components Maintenance Panel Figure 1-2 Maintenance Panel I/O Blades Figure 1-3 I/O Blades I/O Blade LEDs FC Port LEDs Port Types Transceivers and 10-Gbps Stacking Cables CPU Blades Figure 1-4 CPU Blade CPU Blade LEDs Maintenance Button Resetting a CPU Blade Placing the Switch in Maintenance Mode Ethernet Port Serial Port Inter-Chassis Connection Ports Power Supply Blades Figure 1-5 Power Supply Blade Fan Blades Figure 1-6 Fan Blade Fabric and Switch Management Enterprise Fabric Suite 2007 QuickTools Command Line Interface Application Programming Interface Simple Network Management Protocol Storage Management InitiativeSpecification (SMI-S) File Transfer Protocols 2 Devices Device Access Table 2-1. Zoning Database Limits Performance Distance Bandwidth Table 2-2. Extended Credit Distances and Cable Lengths Latency Feature Licensing Table 2-3. Port-to-Port Latency Multiple Chassis Fabrics Optimizing Device Performance Figure 2-1 Single Switch Fabric with Initiators and Targets Domain ID, Principal Priority, and Domain ID Lock Interconnecting QLogic 9000 Series Switches Switch Services Page Internet Protocol Support Security User Account Security IP Security Port Binding Connection Security Device Security Security Example: Switches and HBAs with Authentication Figure 2-2 Security Example: Switches and HBAs Page Page Security Example: RADIUS Server Figure 2-3 Security Example: RADIUS Server Page Page Page 2Planning Security 2-22 59229-05 A Security Example: Host Authentication E_Port Figure 2-4 Security Example: Management Server Page Fabric Management 3 Site Requirements Fabric Management Workstation Switch Power Requirements Environmental Conditions Table 3-1. Management Workstation Requirements Installing a Switch Figure 3-1 QLogic 9000 Series Stackable Chassis Switch Page Mount the Switch Page Page Figure 3-2 QLogic 9000 Series Rail Kit Page Install I/O Blades Figure 3-3 Installing an I/O Blade Stack the Switches Figure 3-4 Installing Stacking Cables Install Transceivers Power Up the Switch Page Figure 3-5 Attaching the Power Cord Restraint Bail Configure the Workstation Setting the Workstation IP Address for Ethernet Connections Configuring the Workstation Serial Port Connect the Workstation to the Switch Install Enterprise Fabric Suite 2007 Obtain the Network Configuration Start Enterprise Fabric Suite 2007 Configure the Switch Table 3-2. Network Configuration Parameters Cable Devices to the Switch Installing Firmware Using Enterprise Fabric Suite 2007 to Install Firmware Using QuickTools to Install Firmware Using the CLI to Install Firmware One-Step Firmware Installation Page Custom Firmware Installation Adding a Switch to an Existing Fabric Installing Feature License Keys HyperStacking Figure 3-6 HyperStack Cable Connector Figure 3-7 Connecting the HyperStack Cables Figure 3-8 Securing HyperStack Cables Page Page Page 4 Power-On Self Test Error Code Blink Patterns Internal Firmware Failure Blink Pattern Fatal POST Error Blink Pattern Table 4-1. Internal Firmware Failure Blink Pattern Table 4-2. System Error Blink Pattern Configuration File System Error Blink Pattern Page CPU Blade Diagnostics Figure 4-1 CPU Blade Diagnostic Process I/O Blade Diagnostics Figure 4-2 I/O Blade Diagnostic Process FC Port Diagnostics Figure 4-3 Logged-In LED E_Port Isolation Excessive Port Errors Page Transceiver Diagnostics Power Supply Blade Diagnostics Figure 4-4 Power Supply Blade Diagnostics Process Fan Blade Diagnostics Figure 4-5 Fan Blade Diagnostic Process Recovering a Switch Using Maintenance Mode Exiting the Maintenance Menu Unpacking a Firmware Image File Resetting the Network Configuration Resetting User Accounts Copying Log Files Removing the Switch Configuration Remaking the File System Resetting a Blade 5 Figure 5-1 QLogic 9000 Series Customer Replaceable Units Replacing Transceivers and Stacking Cables Replacing CPU Blades Page Standard Single CPU Primary CPU Blade Replacement Figure 5-2 Removing the CPU0 Blade Page Standard Dual CPU Primary CPU Blade Replacement Fault Tolerant Primary CPU Blade Replacement Secondary CPU Blade Replacment Replacing I/O Blades Removing an I/O Blade Figure 5-3 Removing an I/O Blade Installing an I/O Blade Replacing Power Supply Blades Page Page Removing a Power Supply Blade Figure 5-4 Removing a Power Supply Blade Installing a Power Supply Blade Replacing Fan Blades Page Removing a Fan Blade Figure 5-5 Removing a Fan Blade Installing a Fan Blade Page A Fabric Specifications Optional License Keys Table A-1. Fabric Specifications Table A-2. Optional License Keys Performance Features Table A-2. Optional License Keys Table A-3. Performance Features Modular Scalability Table A-4. Modular Scalability Table A-4. Modular Scalability (Continued) Interoperability/Certifications Fabric Services Table A-5. Interoperability/Certifications Table A-6. Fabric Services Table A-6. Fabric Services (Continued) Maintainability Table A-7. Maintainability Physical Characteristics Table A-7. Maintainability (Continued) Table A-8. Physical Characteristics Table A-8. Physical Characteristics (Continued) Electrical Requirements Table A-9. Electrical Requirements Power Cord Specifications Table A-10. Availalbe Power Cords Environmental Factors Table A-11. Environmental Factors Table A-10. Availalbe Power Cords (Continued) Regulatory Certifications Table A-12. Regulatory Certifications Page Glossary Page Page Page Page Page Index A B C D E F G H I L M N O P Q R S T U V W X