En la administración de una red de fibra para almacenamiento más que medidas de seguridad de caracter preventivo son una práctica habitual el zoneado del switch ( o fabric) y el enmascaramiento de lunes (lun masking) desde la cabina en la provisión rutinaria de almacenamiento. Adiccionalmente, se puede añadir niveles de seguridad en la SAN con funcionalidades que proporcionan los fabricantes de switches de fibra. Ejemplos para tecnología Brocade son las políticas de control de las conexiones entre switches ( Switch Connection Control – SCC) y de control de dispositivos ( Device Connection Control – DCC). Lo que nos permiten hacer estas los políticas es restringir que switches y dispositivos se conectarán a la fabric.
SCC – Proteje las conexiónes inesperadas entre switches, se trata de verificar cada vez que se intenta realizar una conexión entre switches (ISL) contra un listado de switches definido por la política.
DCC – Proteje la conexiónes inesperadas entre dispositivos (HBAs de servidores, librerías, drives, VTLs, cabinas) con switches, se trata de verificar cada vez que se intenta realizar una conexión de un dispositivo de fibre contra un listado de dispositivos definido por la política.
La aplicación de estas políticas pueden considerarse interesante en muchos casos, por ejemplo, si el parcheo de fibra y sus cambios es ajeno al personal de administración de la SAN, si se quiere minimizar el fallo humano, o evitar un intento de acceso no deseado de un equipo o un analizador de tráfico, …
La SAN, al estar aislada sin acceso externo por otras redes es considerada segura, no necesitando medidas de protección especiales en apariencia. Pero si alguien consigue la contraseña de administración de alguno de los servidores conectado a la SAN, puede introducir driver de la HBAs modificados (o ni eso) para una práctica de hack que es "wwn spoofing", es decir, modificar la HBA de un servidor con el wwn de otra que le permita tener acceso al recurso de almacenamiento … y a sus datos. Recordemos que el sentido del hackering puede ser robar, corromper o destrozar el núcleo de información de la compañía. y … ¿ ésto lo evitaría DCC ? Si, ya que es una aplicación de "port locking" ( o "port binding") que es la asociación de un puerto a un wwn.
Para añadir un nivel mayor de seguridad se pueden usar protocolos de autenticación como DH-CHAP que pertenece a los protocolos FC-SP (Fibre Channel Security Protocols) definidos por la T11 y asegura mediante par de claves asociadas a wwn la negociación entre conexiones de forma segura. Aparte del "wwn spoofing" existen otras técnicas de hack en la fabric tales como "S_ID spoofing", " M-I-T-M attack" donde la aplicación de protocolos FC-SP son eficaces para evitar cualquier riesgo de intrusión.
Para la tecnología Brocade está la política AUTH que implementa la autenticación entre switches y dispositivos a través de DH-CHAP / FCAP.
¿ Es vuestra SAN segura ? y … ¿ estás preparado para una intrusión?
May I simply say what a comfort to discover a person that genuinely understands tingkatan kartu poker dice This web site is one thing that is needed on the internet, someone with a little originality!
Fantastic post but I was wondering if you could write a litte more on this topic? I’d be very thankful if you could elaborate a little bit further. Thank you!
Spot on with this write-up, I actually think this web site wants rather more consideration. I’ll most likely be again to read much more, thanks for that info.
May I simply just say what a comfort to find somebody that actually knows situs casino uang asli This site is something that is required on the internet, someone with a little originality!
Hmm it seems like your site ate my first comment (it was super long) so I guess I’ll just sum it up what I wrote and say, I’m thoroughly enjoying your blog. I too am an aspiring blog writer but I’m still new to the whole thing. Do you have any tips and hints for inexperienced blog writers? I’d really appreciate it.|
Simply wish to say your article is as surprising. The clarity in your post is simply excellent and i could assume you’re an expert on this subject. Fine with your permission allow me to grab your RSS feed to keep updated with forthcoming post. Thanks a million and please carry on the enjoyable work.|
This web site is really a stroll-by means of for all of the data you wanted about this and didn’t know who to ask. Glimpse right here, and also you’ll definitely discover it.
What’s up, I log on to your blogs regularly. Your humoristic style is awesome, keep doing what you’re doing!|
Does your site have a contact page? I’m having problems locating it but, I’d like to send you an email. I’ve got some creative ideas for your blog you might be interested in hearing. Either way, great website and I look forward to seeing it develop over time.
Spot on with this write-up, I absolutely feel this amazing site needs far more attention. cara bermain oglok online I’ll probably be returning to read more, thanks for the advice!
Thank you a lot for sharing this with all folks you actually realize what you are speaking about! Bookmarked. Please additionally discuss with my site =). We can have a hyperlink alternate arrangement between us!
Nice post. I learn something new and challenging on sites I stumbleupon everyday. It’s always helpful to read metode menang bermain roulette articles from other authors and use a little something from other sites.
I simply wanted to appreciate you once again. I am not sure the things that I would’ve worked on without those solutions discussed by you relating to such concern. Entirely was the depressing problem in my view, nevertheless encountering the very specialised fashion you solved the issue made me to jump with gladness. I’m grateful for the support as well as pray you realize what a powerful job you were providing instructing people all through your web blog. I’m certain you haven’t met any of us.
Heya i am for the primary time here. I came across this board and I to find It truly useful & it helped me out much. I hope to provide something back and aid others such as you aided me.|
Really enjoyed this blog post, can you make it so I get an email sent to me whenever you make a new post?
You are a great writer. Do you have any more sites? I love sucking dick btw hmu
I’m really impressed along with your writing abilities as neatly as with the layout on your weblog. Is that this a paid topic or did you customize it yourself? Either way stay up the excellent quality writing, it is rare to look a nice blog like this one these days..
Hello there! This post could not be written any better! Reading this post reminds me of my previous room mate! He always kept talking about this. I will forward this write-up to him. Pretty sure he will have a good read. Thanks for sharing!
Good post. I study something more difficult on completely different blogs everyday. It would at all times be stimulating to learn content from other writers and practice a little something from their store. I’d want to use some with the content on my weblog whether you don’t mind. Natually I’ll provide you with a hyperlink on your web blog. Thanks for sharing.
Exceklent blog here! Also your web site loawds
up fast! What web host are you using? Cann I get your affiliate link tto your host?
I wish my web site loaded up as fast as yours lol
kameralı sohbet ede bilmek için kameralisohbetsiteleri.com sitemizi ziyaret ede bilirsiniz.
Howdy! Someone in my Myspace group shared this website with us so I came to give it a look. I’m definitely enjoying the information. I’m book-marking and will be tweeting this to my followers! Superb blog and great design and style.
bedava chat
Oyun oyna sitemiz üzerinde sizlerde hemen html5 ve flash oyunlarımızı ücretsiz olarak oynaya bilirsiniz.
WONDERFUL Post.thanks for share..more wait .. …
content
[…]This is very interesting[…]
Pembicaraan berkaitan web taruhan online terunggul bisa anda temukan pada judi poker deposit pulsa yaitu konten serta tulisan sama bagusnya dengan tulisan ini.
I do accept as true with all of the ideas you’ve presented on your post. They are really convincing and can definitely work. Nonetheless, the posts are very short for newbies. Could you please lengthen them a bit from subsequent time? Thank you for the post.
content
[…]This is very interesting[…]
Content
[…]This is very interesting[…]
This website was… how do I say it? Relevant!! Finally I have found something which helped me. Many thanks!|
Please let me know if you’re looking for a writer for your site. You have some really great posts and I think I would be a good asset. If you ever want to take some of the load off, I’d absolutely love to write some material for your blog in exchange for a link back to mine. Please shoot me an email if interested. Many thanks!
hi!,I like your writing so much! share we communicate more about your article on AOL? I require an expert on this area to solve my problem. Maybe that’s you! Looking forward to see you.
I was suggested this blog by my cousin. I am not sure whether this post is written by him as nobody else know such detailed about my problem. You’re incredible! Thanks!|
Hello, There’s no doubt that your website might be having internet browser compatibility issues. Whenever I take a look at your site in Safari, it looks fine however, if opening in IE, it’s got some overlapping issues. I just wanted to provide you with a quick heads up! Apart from that, excellent site!|
https://www.mynetokeyoyna.net/
paykwik
shell indir
It will be extra handy to explain to the client about their benifit.thanks for sharing
such an informative post.
Have a look at my web-site … what is organic seo
This is the precise blog for anybody who needs to find out about this topic. You notice a lot its almost onerous to argue with you (not that I really would need…HaHa). You definitely put a brand new spin on a topic thats been written about for years. Nice stuff, simply nice!
I like the helpful info you provide in your articles. I’ll bookmark your blog and check again here frequently. I’m quite sure I will learn many new stuff right here! Good luck for the next!
I was excited to discover this website. I want to to thank you for your time for this particularly wonderful read!! I definitely enjoyed every part of it and I have you book-marked to look at new information in your site.|
Hey! Do you know if they make any plugins to assist with Search Enine Optimization? I’m trying
too get my blog to rank for some targeted keywords but
I’m not seeing very good gains. If you know of any please share.
Thank you!
I like what you guys are up also. Such intelligent work and reporting! Keep up the superb works guys I’ve incorporated you guys to my blogroll. I think it’ll improve the value of my web site 🙂
I dont even understand how I finished up right here, but I believed this submit used to be great. I do not recognize who you might be however certainly you are going to a famous blogger if you aren’t already 😉 Cheers!
Thank you for the auspicious writeup. It in fact was a amusement account it. Look advanced to more added agreeable from you! By the way, how can we communicate?
Generic viagra over the counter viagra cvs
viagra over the counter
When someone writes an paragraph he/she keesps the plan of a user in his/her brain thhat how a user can understand it.
Thus that’s why this powt is outstdanding. Thanks!
My brother suggested I might like this blog. He was entirely right. This post actually made my day. You cann’t imagine simply how much time I had spent for this info! Thanks!
I think this is among the mpst vital info for
me. And i am glaad rerading your article. But
should remartk on some general things, The web site style is wonderful, the articles is really excellent : D.
Good job, cheers