Security Measures (Unauthorized Access Prevention)
In a SAN environment, one storage is shared by multiple servers. The ETERNUS DX has functions to protect data
from unauthorized access and functions to return appropriate responses for server access from various environ-
ments in order to improve security and responses.
Host Affinity
The host affinity function prevents data from being damaged due to inadvertent storage access.
By defining a server that can access the volume, security can be ensured when multiple servers are connected.
A server can access the volume by associating the server that is allowed to access the volume with the volume.
Volumes that are accessed can be set for each host interface port.
Figure 28 Host Affinity
Permission for Server A
LUN#0
→
Volume#0 ... LUN#255
→
V olume#255
Permission for Server B
LUN#0
→
Volume#256 ... LUN#255
→
Volume#511
Permission for Server C
LUN#0 Volume#512 ... LUN#255 V olume#767
Permission for Server D
LUN#0 Volume#768 ... LUN#255 V olume#1023
→ →
→ →
Switch
Server A
LUN#0
:
LUN#255
Server B
LUN#0
LUN#255
Server D
LUN#0
:
LUN#255
Server C
LUN#0
:
LUN#255
Volume#0
:
Volume#255
Volume#256
:
Volume#511
Volume#512
:
Volume#767
Volume#768
Volume#1023
:
Port
Port
:
ETERNUS DX
By using the host affinity function, a host interface port can be shared by multiple servers with different OSs in a
system or by multiple servers in a cluster system.
4. SAN Functions
Security Measures (Unauthorized Access Prevention)
52
FUJITSU Storage ETERNUS DX500 S3/DX600 S3 Hybrid Storage Systems
Overview
Copyright 2019 FUJITSU LIMITED
P3AM-7702-29ENZ0
To Next Page
Loading...
