0% found this document useful (0 votes)
20 views

02-14 SAN Protocols - iSCSI Overview

iSCSI is a SAN protocol that runs over Ethernet networks as a less expensive alternative to Fibre Channel. It can use dedicated or shared Ethernet networks and VLANs, and uses IQNs for addressing instead of Fibre Channel's WWPNs. Security features include LUN masking and authentication.

Uploaded by

Mohit Gautam
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
0% found this document useful (0 votes)
20 views

02-14 SAN Protocols - iSCSI Overview

iSCSI is a SAN protocol that runs over Ethernet networks as a less expensive alternative to Fibre Channel. It can use dedicated or shared Ethernet networks and VLANs, and uses IQNs for addressing instead of Fibre Channel's WWPNs. Security features include LUN masking and authentication.

Uploaded by

Mohit Gautam
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 14

SAN Protocols - iSCSI

iSCSI is the Internet Small Computer System Interface protocol


It runs over Ethernet networks and was originally viewed as a less
expensive alternative to Fibre Channel
It has higher packet overhead than and has traditionally been seen as
having lower reliability and performance than Fibre Channel
It is a very mature and popular SAN technology
SAN Protocols - iSCSI

As it runs over Ethernet, it can share the data network or have its own
dedicated network infrastructure
TOE (TCP Offload Engine) cards are specialist adapters which can be
used to offload the storage TCP/IP processing from a server’s CPU.
They are sometimes called iSCSI HBAs.
iSCSI Networks – Shared Network

Server 1’s Client


Ethernet NIC

Server to Storage
and
Server to Client
Ethernet Switch
uses shared
Ethernet Network
Ethernet NIC/TOE Ethernet NIC

Server 1 Storage System


iSCSI Networks – Dedicated Storage Network
Server 1’s Client
Ethernet NIC

Server to Client
Ethernet Network Ethernet Switch
Ethernet NIC

Server 1
Ethernet NIC/TOE
Dedicated Ethernet Switch
Server to Storage
Ethernet Network
Ethernet NIC
Storage System
iSCSI Networks – Dedicated VLAN Network
Server to Storage
and Server 1’s Client
Server to Client Ethernet NIC

uses shared
switches, but traffic
is split into
Ethernet Switch
Separate VLANs

Data Vlan Ethernet NIC/TOE

Server 1
iSCSI Networks – Dedicated VLAN Network
Server to Storage
and
Server to Client
uses shared
switches, but traffic
is split into
Ethernet Switch
Separate VLANs
Ethernet NIC/TOE Ethernet NIC

Storage VLAN
Server 1 Storage System
iSCSI Networks – Dedicated VLAN Network
Server to Storage
and Server 1’s Client
Server to Client Ethernet NIC

uses shared
switches, but traffic
is split into
Ethernet Switch
Separate VLANs
Ethernet NIC
Data Vlan Ethernet NIC/TOE

Storage VLAN
Server 1 Storage System
iSCSI Addressing

Fibre Channel uses World Wide Names to identify initiators and targets
iSCSI uses IQN iSCSI Qualified Names (or less commonly EUI Extended
Unique Identifier) for its addressing
The IQN can be up to 255 characters long and has the following format:
iqn.yyyy-mm.naming-authority:unique name
For example iqn.1991- 05.com.microsoft:testHost
iSCSI Addressing

The IQN is assigned to the host as a whole, similar to the WWNN in Fibre
Channel
iSCSI runs over Ethernet so individual ports are addressed by IP address
iSCSI Addressing

iSCSI does not support Fibre Channels FLOGI/PLOGI/PLRI process so an


administrator must explicitly point the initiator at its target by specifying
one of the IP addresses in the Target Portal Group
It will then discover the target’s IQN and the other ports in the TPG
iSCSI Addressing

Multipathing software on the initiator can then choose which path or


paths to take
Although it runs over Ethernet, iSCSI is still a SAN protocol with
multipathing intelligence on the initiator
iSCSI Security
LUN Masking is configured in the same way as in Fibre Channel, using
the IQN rather than WWPN on the storage system to identify the client
Zoning is not supported in iSCSI
Password based authentication is typically configured on the initiator
and target to guard against spoofing attacks
End to end IPSec encryption can also be enabled to enhance security
SAN Adapter Summary
NIC: Network Interface Adapter. Traditional Ethernet network card, it is used
for NAS protocols and iSCSI.
TOE: TCP Offload Engine. Used to offload the TCP/IP processing from a
server’s CPU, it can enhance performance for NAS protocols and iSCSI.
HBA: Host Bus Adapter. Fibre Channel equivalent of a NIC.
iSCSI HBA: Ethernet TOE card optimized for iSCSI.
CNA: Converged Network Adapter. 10Gb Ethernet card which supportsFCoE.
UTA: Universal Target Adapter. NetApp proprietary card which supportsFCoE
or Fibre Channel.
SAN Protocol Stack Comparison
Fibre Channel FCoE iSCSI

SCSI Reads and Writes

iSCSI
FCP
Protocol Stack FCP TCP

FCoE IP

Infrastructure Fibre Channel Ethernet Ethernet

You might also like