Network Connections; Configuring Blade Processor Links - Brocade Communications Systems Brocade 8/12c Administrator's Manual
Supporting hp secure key manager (skm) environments and hp enterprise secure key manager (eskm) environments
Hide thumbs
Also See for Brocade 8/12c:
- User manual (1301 pages) ,
- Command reference manual (1132 pages) ,
- Reference (362 pages)
Table of Contents
Advertisement
2
Network connections
Network connections
Before you use the encryption setup wizard for the first time, you must have the following required
network connections:
•
•
•
•
Configuring blade processor links
Each encryption switch or blade has two GbE ports labeled Ge0 and Ge1. The Ge0 and Ge1 ports
are Ethernet ports that connect encryption switches and blades to other encryption switches and
blades. Both ports of each encryption switch or blade must be connected to the same IP network
and the same subnet. Static IP addresses should be assigned. Neither VLANs nor DHCP should be
used. These two ports are bonded together as a single virtual network interface to provide link layer
redundancy.
All encryption switches and blades in an encryption group must be interconnected by these links
through a dedicated LAN before their encryption engines are enabled. Security parameters and
certificates cannot be exchanged if these links are not configured and active.
To configure blade processor links, complete the following steps:
1. Select Configure > Encryption from the menu task bar.
2. Select the encryption engine from the Encryption Center Devices table, then select Engine >
FIGURE 13
24
The management ports on all devices that will perform encryption (Brocade Encryption
Switches, or DCX and DCX-4S chassis with encryption blades installed) must have a LAN
connection to the SAN management program, and must be available for discovery.
A supported key management appliance must be connected on the same LAN as the
management port of each device that will perform encryption, and the SAN Management
program.
In some cases, you may want to have an external host available on the LAN to facilitate
certificate exchange between encryption nodes and the key management appliance. You may
use the SAN management program host computer rather than an external host.
All switches in the planned encryption group must be interconnected on a private LAN. This
LAN is used to exchange security parameters and certificates, and to synchronize encryption
engine operations. Refer to
The Encryption Center dialog box displays.
Blade Processor Link from the menu task bar, or right-click the encryption engine and select
Blade Processor Link.
The Blade Processor Link dialog box displays.
Blade Processor Link dialog box
"Configuring blade processor links"
on page 24 for details.
Fabric OS Encryption Administrator's Guide
53-1002159-03
Advertisement
Table of Contents
Troubleshooting
