Table of Contents
Advertisement
Logical Switches and the Default Switch. Any Gen 5 ports (Condor3 based) assigned to that Logical Switch
will be configured with that Logical Switch's EHT setting. Any 8G ports (Condor2 based) will continue to
share the EHT value configured for the Default Switch.
For more information on EHT behaviors and recommendations, refer to the Brocade SAN Fabric Resiliency
Best Practices v2.0 document available on www.brocade.com.
Encryption Behavior for the Brocade Encryption Switch (BES) and FS8-18
SafeNet's KeySecure hosting NetApp's LKM (SSKM) is supported for data encryption operations with
•
SSKM operating in PVM mode. Please see SSKM documentation for operating in PVM mode for details.
Operation in HVM mode is not supported
RASlog SPC-3005 with error 34 may be seen if the link key used by a BES/FS8-18 is re-established.
•
Please refer to the LKM/SSKM Encryption Admin Guide for the workaround. Also, please ensure that two
(2) SSKM's are present in the deployment for workaround to be performed.
For crypto tape operations, please ensure to use Emulex FC HBA firmware/drivers 2.82A4/7.2.50.007 or
•
higher. Use of lower level firmware/drivers may result in hosts not being able to access their tape LUNs
through a crypto target container.
Adding of 3PAR Session/Enclosure LUNs to CTCs is now supported. Session/Enclosure LUNs (LUN 0xFE)
•
used by 3PAR InServ arrays must be added to CryptoTarget (CTC) containers with LUN state set to
"cleartext", encryption policy set to "cleartext". BES/FS8-18 will not perform any explicit enforcement of
this requirement.
The Brocade Encryption switch and FS8-18 blade do not support QoS. When using encryption or Frame
•
Redirection, participating flows should not be included in QoS Zones.
The RSA DPM Appliance SW v3.2 is supported. The procedure for setting up the DPM Appliance with BES
•
or a DCX/DCX-4S/DCX 8510 with FS8-18 blades is located in the Encryption Admin Guide.
Support for registering a 2nd DPM Appliance on BES/FS8-18 is blocked. If the DPM Appliances are
•
clustered, then the virtual IP address hosted by a 3rd party IP load balancer for the DPM Cluster must be
registered on BES/FS8-18 in the primary slot for Key Vault IP.
With Windows and Veritas Volume Manager/Veritas Dynamic Multipathing, when LUN sizes less than
•
400MB are presented to BES for encryption, a host panic may occur and this configuration is not
supported in the FOS v6.3.1 or later release.
Hot Code Load from FOS v7.3.x to FOS v7.4 is supported. Cryptographic operations and I/O will be
•
disrupted but other layer 2 FC traffic will not be disrupted.
When disk and tape CTCs are hosted on the same encryption engine, re-keying cannot be done while tape
•
backup or restore operations are running. Re-keying operations must be scheduled at a time that does not
conflict with normal tape I/O operations. The LUNs should not be configured with auto rekey option when
single EE has disk and tape CTCs.
Gatekeeper LUNs used by SYMAPI on the host for configuring SRDF/TF using in-band management must
•
be added to their containers with LUN state as "cleartext", encryption policy as "cleartext" and without "-
newLUN" option.
BES/FS8-18 will reject the SCSI commands WRITE SAME, ATS(Compare and Write/Vendor Specific opcode
•
0xF1) and EXTENDED COPY, which are related to VAAI (vStorage APIs for Array Integration) hardware
acceleration in vSphere 4.1/5.x. This will result in non-VAAI methods of data transfer for the underlying
arrays, and may affect the performance of VM related operations.
VMware VMFS5 uses ATS commands with arrays that support ATS. BES/FS8-18 does not support this
•
command set. Use of a workaround procedure is required in order to configure encryption in a VMFS 5
environment. Please refer to Brocade Tech Note "Deployment Options for VMware VMFS-5 with Brocade
Encryption" for details.
XIV storage arrays that have been upgraded to firmware 11.2x or later required to support encryption on
•
thin provisioned LUNs will report all XIV data LUNs as TP=Yes.
Fabric OS 7.4.1a Release Notes v3.0
Page 36 of 142
Advertisement
Table of Contents
