- Preface
-
- Configuring the Fabric Interconnects
- Configuring Ports and Port Channels
- Configuring Communication Services
- Configuring Authentication
- Configuring Organizations
- Configuring Role-Based Access Control
- Configuring DNS Servers
- Configuring System-Related Policies
- Managing Licenses
- Managing Virtual Interfaces
- Registering Cisco UCS Domains with Cisco UCS Central
- Index
Contents
- Configuring Fibre Channel Zoning
- Information About Fibre Channel Zoning
- Information About Zones
- Information About Zone Sets
- Support for Fibre Channel Zoning in Cisco UCS Manager
- Cisco UCS Manager-Based Fibre Channel Zoning
- vHBA Initiator Groups
- Fibre Channel Storage Connection Policy
- Fibre Channel Active Zone Set Configuration
- Switch-Based Fibre Channel Zoning
- Guidelines and recommendations for Cisco UCS Manager-Based Fibre Channel Zoning
- Configuring Fibre Channel Zoning in Cisco UCS
- Creating a VSAN for Fibre Channel Zoning
- Configuring Fibre Channel Storage Connection Policies
- Creating a Fibre Channel Storage Connection Policy
- Deleting a Fibre Channel Storage Connection Policy
Configuring Fibre Channel Zoning
This chapter includes the following sections:
- Information About Fibre Channel Zoning
- Support for Fibre Channel Zoning in Cisco UCS Manager
- Guidelines and recommendations for Cisco UCS Manager-Based Fibre Channel Zoning
- Configuring Fibre Channel Zoning in Cisco UCS
- Creating a VSAN for Fibre Channel Zoning
- Configuring Fibre Channel Storage Connection Policies
Information About Fibre Channel Zoning
Fibre Channel zoning allows you to partition the Fibre Channel fabric into one or more zones. Each zone defines the set of Fibre Channel initiators and Fibre Channel targets that can communicate with each other in a VSAN. Zoning also enables you to set up access control between hosts and storage devices or user groups.
The access and data traffic control provided by zoning does the following:
Information About Zones
A zone consists of multiple zone members and has the following characteristics:
Information About Zone Sets
Each zone set consists of one or more zones. You can use zone sets to enforce access control within the Fibre Channel fabric. In addition, zone sets provide you with the following advantages:
Support for Fibre Channel Zoning in Cisco UCS Manager
Cisco UCS Manager supports switch-based Fibre Channel zoning and Cisco UCS Manager-based Fibre Channel zoning. You cannot configure a combination of zoning types in the same Cisco UCS domain. You can configure a Cisco UCS domain with one of the following types of zoning:
No zoning
Cisco UCS Manager-based Fibre Channel zoning—This configuration combines direct attach storage with local zoning. Fibre Channel or FCoE storage is directly connected to the fabric interconnects and zoning is performed in Cisco UCS Manager, using Cisco UCS local zoning. Any existing Fibre Channel or FCoE uplink connections need to be disabled. Cisco UCS does not currently support active Fibre Channel or FCoE uplink connections coexisting with the utilization of the UCS Local Zoning feature.
Switch-based Fibre Channel zoning—This configuration combines direct attach storage with uplink zoning. The Fibre Channel or FCoE storage is directly connected to the fabric interconnects and zoning is performed externally to the Cisco UCS domain through an MDS or Nexus 5000 switch. This configuration does not support local zoning in the Cisco UCS domain.
Note | Zoning is configured on a per-VSAN basis. You cannot enable zoning at the fabric level. |
Cisco UCS Manager-Based Fibre Channel Zoning
With Cisco UCS Manager-based zoning, Cisco UCS Manager controls the Fibre Channel zoning configuration for the Cisco UCS domain, including creating and activating zones for all VSANs that you set up with this type of zoning. This type of zoning is also know as local zoning or direct attach storage with local zoning.
Note | You cannot implement Cisco UCS Manager-based zoning if the VSAN is also configured to communicate with a VSAN on an upstream switch and includes Fibre Channel or FCoE uplink ports. |
Supported Fibre Channel Zoning Modes
Cisco UCS Manager-based zoning supports the following types of zoning:
Single initiator single target—Cisco UCS Manager automatically creates one zone for each vHBA and storage port pair. Each zone has two members. We recommend that you configure this type of zoning unless you expect the number of zones to exceed the maximum supported.
Single initiator multiple targets—Cisco UCS Manager automatically creates one zone for each vHBA. We recommend that you configure this type of zoning if you expect the number of zones to reach or exceed the maximum supported.
- vHBA Initiator Groups
- Fibre Channel Storage Connection Policy
- Fibre Channel Active Zone Set Configuration
vHBA Initiator Groups
vHBA initiator groups determine the Fibre Channel zoning configuration for all vHBAs in a service profile. Cisco UCS Manager does not include any default vHBA initiator groups. You must create vHBA initiator groups in any service profile that is to be assigned to servers included in a zone.
The configuration in a vHBA initiator group determines the following:
The vHBAs included in the initiator group, which are sometimes referred to as vHBA initiators.
A Fibre Channel storage connection policy, which includes the associated VSAN and the Fibre Channel target ports on the storage array.
The type of Fibre Channel zoning to be configured for the vHBAs included in the group.
Fibre Channel Storage Connection Policy
The Fibre Channel storage connection policy contains a collection of target storage ports on storage arrays that you use to configure Cisco UCS Manager-based Fibre Channel zoning. You can create this policy underneath an organization or an initiator group.
The storage arrays in these zones must be directly connected to the fabric interconnects. The target storage ports on these arrays that you include in the Fibre Channel storage connection policy can be either Fibre Channel storage ports or FCoE storage ports. You use the WWN of a port to add it to the policy and to identify the port for the Fibre Channel zone.
Note | Cisco UCS Manager does not create default Fibre Channel storage. |
Fibre Channel Active Zone Set Configuration
In each VSAN that has been enabled for Fibre Channel zoning, Cisco UCS Manager automatically configures one zone set and multiple zones. The zone membership specifies the set of initiators and targets that are allowed to communicate with each other. Cisco UCS Manager automatically activates that zone set.
Cisco UCS Manager processes the user-configured vHBA initiator groups and their associated Fibre Channel storage connection policy to determine the desired connectivity between Fibre Channel initiators and targets. Cisco UCS Manager uses the following information to build pair-wise zone membership between initiators and targets:
Switch-Based Fibre Channel Zoning
With switch-based zoning, a Cisco UCS domain inherits the zoning configuration from the upstream switch. You cannot configure or view information about your zoning configuration in Cisco UCS Manager. You have to disable zoning on a VSAN in Cisco UCS Manager to use switch-based zoning for that VSAN.
Guidelines and recommendations for Cisco UCS Manager-Based Fibre Channel Zoning
When you plan your configuration for Fibre Channel zoning, consider the following guidelines and recommendations:
Fibre Channel Switching Mode Must Be Switch Mode for Cisco UCS Manager Configurations
If you want Cisco UCS Manager to handle Fibre Channel zoning, the fabric interconnects must be in Fibre Channel Switch mode. You cannot configure Fibre Channel zoning in End-Host mode.
Symmetrical Configuration Is Recommended for High Availability
If a Cisco UCS domain is configured for high availability with two fabric interconnects, we recommend that both fabric interconnects are configured with the same set of VSANs.
Configuring Fibre Channel Zoning in Cisco UCS
Note | This procedure provides a high level overview of the steps required to configure a Cisco UCS domain for Fibre Channel zoning that is controlled by Cisco UCS Manager. You must ensure that you complete all of the following steps. |
Creating a VSAN for Fibre Channel Zoning
Note | FCoE VLANs in the SAN cloud and VLANs in the LAN cloud must have different IDs. Using the same ID for an FCoE VLAN in a VSAN and a VLAN results in a critical fault and traffic disruption for all vNICs and uplink ports using that FCoE VLAN. Ethernet traffic is dropped on any VLAN which has an ID that overlaps with an FCoE VLAN ID. |
Configuring Fibre Channel Storage Connection Policies
Creating a Fibre Channel Storage Connection Policy
Step 1 | In the Navigation pane, click the SAN tab. | ||||||||||||
Step 2 | On the SAN tab, expand . | ||||||||||||
Step 3 | Expand the node for the organization where you want to create the
policy.
If the system does not include multitenancy, expand the root node. | ||||||||||||
Step 4 | Right-click the Storage Connection Policies node and choose Create Storage Connection Policy. | ||||||||||||
Step 5 | In the
Create Storage Connection Policy dialog box, complete the following
fields:
| ||||||||||||
Step 6 | In the Zoning Type field, click one of the following radio buttons:
| ||||||||||||
Step 7 | In the FC Target Endpoints table, click + on the icon bar to the right of the table. If the + icon is disabled, click an entry in the table to enable it. | ||||||||||||
Step 8 | In the Create FC Target Endpoint dialog box, complete the following fields and then click OK:
Repeat this step until you have created all desired target endpoints for the policy. | ||||||||||||
Step 9 | After you have created all desired target endpoints for the policy, click OK. |