beautypg.com

Brocade Fabric OS Encryption Administrator’s Guide Supporting NetApp Lifetime Key Manager (LKM) and KeySecure Storage Secure Key Manager (SSKM) Environments (Supporting Fabric OS v7.2.0) User Manual

Page 8

background image

viii

Fabric OS Encryption Administrator’s Guide (LKM/SSKM)

53-1002925-01

Chapter 4

Deployment Scenarios

Single encryption switch, two paths from host to target . . . . . . . . 176

Single fabric deployment - HA cluster . . . . . . . . . . . . . . . . . . . . . . . 177

Single fabric deployment - DEK cluster . . . . . . . . . . . . . . . . . . . . . .178

Dual fabric deployment - HA and DEK cluster. . . . . . . . . . . . . . . . .179

Multiple paths, one DEK cluster, and two HA clusters . . . . . . . . . .180

Multiple paths, DEK cluster, no HA cluster . . . . . . . . . . . . . . . . . . .181

Deployment in Fibre Channel routed fabrics. . . . . . . . . . . . . . . . . .183

Deployment as part of an edge fabric . . . . . . . . . . . . . . . . . . . . . . .185

Deployment with FCIP extension switches . . . . . . . . . . . . . . . . . . .186

VMware ESX server deployments. . . . . . . . . . . . . . . . . . . . . . . . . . .187

Chapter 5

Best Practices and Special Topics

Firmware upgrade and downgrade considerations . . . . . . . . . . . .192

General guidelines. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .192
Specific guidelines for HA clusters . . . . . . . . . . . . . . . . . . . . . .193

Configuration upload and download considerations . . . . . . . . . . .194

Configuration upload at an encryption group
leader node . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .194
Configuration upload at an encryption group
member node. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .194
Information not included in a download. . . . . . . . . . . . . . . . . .195
Steps before configuration download. . . . . . . . . . . . . . . . . . . .195
Configuration download at the encryption group
leader node . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .195
Configuration download at an encryption group
member node. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .196
Steps after configuration download . . . . . . . . . . . . . . . . . . . . .196

HP-UX considerations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .196

AIX Considerations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .197

Enabling a disabled LUN. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .197

Decommissioning in an EG containing mixed modes . . . . . . . . . .198

Decommissioning a multi-path LUN . . . . . . . . . . . . . . . . . . . . . . . .198

Disk metadata . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .198

Tape metadata . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .198

Tape data compression . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .199

Tape pools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .199

Tape block zero handling . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .200

Tape key expiry . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .200

DF compatibility for tapes. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .200

DF compatibility for disk LUNs . . . . . . . . . . . . . . . . . . . . . . . . . . . . .200

See also other documents in the category Brocade Computer Accessories: