Home
Topics
Storage Channel
Storage Area Network (SAN)
Isolating non-storage IP traffic

Ask the Expert

Isolating non-storage IP traffic

Retired Expert - Chris Evans

Why should VARs work to isolate non-storage IP traffic from IP-based iSCSI SAN traffic? How will this affect the customer's storage network and what benefits will it bring?

Requires Free Membership to View

Login

By submitting you agree to receive email communications from
TechTarget and its partners. Privacy Policy Terms of Use.

The use of iSCSI technology to provide SAN storage offers the opportunity to benefit from networked storage at a significantly lower cost than standard Fibre Channel (FC). However, the simplicity of iSCSI means it can be implemented onto any standard network with the consequent risk to performance and security. That is why it is essential to consider isolating non-iSCSI traffic from iSCSI traffic for these reasons.

In a standard IP network the delay of packets to and from an application or browser is unlikely to cause an issue.The same cannot be said for storage where a consistent response time and guaranteed delivery is essential for providing transparent disk I/O. Isolating IP and iSCSI traffic will help to reduce the potential impact to storage performance of unpredictable traffic.

Considering security, iSCSI can be run in a completely open fashion. Data packets can be visible on the network for anyone with a standard piece of software such as Ethereal. To counter this, iSCSI offers server/target validation and the suggested use of IPsec to encrypt traffic, which inevitably adds to the CPU load on both server and storage. Isolating iSCSI hosts from a physical perspective improves security and provides the choice as to whether IPsec needs to be used.

Taking the above points into consideration, a customer may choose to completely isolate iSCSI traffic into separate switches or to provide dedicated VLANs for iSCSI connections. Both approaches help to mitigate against performance and security issues and give the added benefit of making problem resolution easier to achieve.

More News and Tutorials

Articles

This was first published in April 2007

Back to top

More from Related TechTarget Sites

Microscope
Cloud Provider
Security
Networking
Storage
Cloud computing
Server Virtualization
Data Backup

MicroscopeUK
- McAfee worried that SME security training lacks impact
  
  McAfee is worried that SMEs that have trained staff around security matters are still not seeing an improvement in attitudes towards threats
- Tech firm ditches Rackspace hosting service for ‘lack of support’
  
  Cloud sales service company Price & Quote has ditched IT hosting provider Rackspace due to “lack of support and unresponsiveness”
- HotLink helps VARs address hypervisor management
  
  Latest Silicon Valley start-up touts award-winning multi-hypervisor and hybrid cloud management product as it sets up shop in Europe
Cloud Provider
- Providers find value in vendor-specific cloud certifications
  
  Vendor-specific cloud certifications let providers show their technological expertise in ways independent audits can't.
- News briefs: Red Hat OpenShift Online goes live; Lenovo pushes cloud
  
  This week, Red Hat's OpenShift Online rolls out for commercial use, Lenovo enters the cloud market and NTT deploys VMware network virtualization.
- Open source vs. proprietary cloud provider platforms
  
  The choice between an open source or proprietary cloud platform plagues cloud providers, as open source platforms mature and end-user needs evolve.
Security
- RSA Silver Tail improves online fraud detection, enterprise security
  
  Fraud prevention for the Web: RSA Silver Tail sets stage for enterprise-level security with big data and brand new interface.
- Users may remain vulnerable despite Oracle Java patch release
  
  Oracle has issued a new security patch for Java, but only 7% deployed the patch before it.
- Gary McGraw: NSA data collection programs demand discussion, scrutiny
  
  Opinion: Gary McGraw details the various and sundry NSA data collection programs and explains why all its efforts demand new discussion and scrutiny.
Networking
- Will bring your own device security make you sacrifice convenience?
  
  Employee-owned devices can seriously undermine security. But bring your own device is probably here to stay. So what should IT do?
- Marble Security's cloud-based mobile security service augments MDM
  
  Marble Security released its new cloud-based mobile security service that can work with MDM tools for protection of employee-owned mobile devices.
- New VMS feature enables big spines of Mellanox Ethernet ToR switches
  
  A new Layer 3-based Virtual Modular Switch feature on top-of-rack Ethernet switches from Mellanox enables large clusters for leaf-spine architecture.
searchStorage
- Imation upgrades Nexsan Assureon object-based storage archive
  
  Imation makes first product upgrade since acquiring Nexsan, delivering Assureon 7 for object-based storage archiving.
- Following Dell acquisitions, users find platform integration enticing
  
  Customers want to see the storage products Dell has gained through acquisitions better integrated with common management.
- Converged systems offer turnkey storage and server bundles
  
  Storage vendors are packaging their products with servers and networking gear to create ready-to-run converged systems. Could this be the end of best-of-breed deployments?
Cloud computing
- PaaS market heats up with Red Hat OpenShift, Savvis AppFog buy
  
  PaaS made headlines last week, but it's still difficult to gauge the true level of interest in Platform as a Service in the enterprise world.
- IBM, Salesforce deals usher in cloud consolidation era
  
  IBM's SoftLayer buy is getting mixed reviews from IT pros, but everyone agrees that it's an example of the consolidation phase of the cloud bubble.
- U.S. defense agencies' cloud transition yields better intelligence
  
  A cloud migration seems daunting but the effort is worthwhile; U.S. defense agencies say their cloud move led to better military intelligence.
Server Virtualization
- RISC technology, ARM processors trending in server virtualization
  
  New 64-bit ARM processors are better equipped to support virtualization than before, but not all workloads are good candidates for the technology.
- Virtualization vs. cloud: Let's get this straight
  
  Reports of clouds abound, but true clouds are hard to come by. Turns out, many don't know what separates virtualization vs. cloud. We're here to help.
- Moving VMs around? Avoid downtime with Hyper-V Live Storage Migration
  
  Live Storage Migration eliminates the downtime associated with moving VM files from one storage location to another and helps improve performance.
searchDataBackup
- Zetta improves DataProtect with WAN optimization
  
  Zetta adds WAN optimization to its DataProtect enterprise cloud backup and disaster recovery software.
- SMB data backup strategy must overcome data protection issues
  
  Jason Buffington discusses some of the major data protection issues an SMB must overcome in building their data backup strategy in this podcast.
- HP turns StoreOnce into virtual storage appliance
  
  Hewlett-Packard delivers virtual software appliance version of its StoreOnce deduplication technology and a scalable midrange tape library.

All Rights Reserved,Copyright 2006 - 2013, TechTarget