Fabric OS Administrator's Guide v7.0.0 (53-1002148-02, June 2011)
Fabric OS Administrator’s Guide 311
53-1002148-02
Chapter
14
In-flight Encryption and Compression
In this chapter
•In-flight encryption and compression overview . . . . . . . . . . . . . . . . . . . . . . 311
•Configuring encryption and compression . . . . . . . . . . . . . . . . . . . . . . . . . . 314
•Encryption and compression example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 319
In-flight encryption and compression overview
The in-flight encryption and compression feature of Fabric OS allows frames to be encrypted or
compressed at the egress point of an ISL between two Brocade switches, and then to be decrypted
or decompressed at the ingress point of the ISL. This feature uses port-based encryption and
compression. It is supported on 16 Gbps E_Ports, only.
The purpose of encryption is to provide security for frames while they are in flight between two
switches. The purpose of compression is for better bandwidth use on the ISLs, especially over long
distance. An average compression ratio of 2:1 is provided. Frames are never left in an encrypted or
compressed state when delivered to an end device. Both ends of the ISL must terminate at 16
Gbps ports.
Encryption and compression can be enabled at the same time for an ISL, or you can enable either
encryption or compression selectively. Figure 54 shows an example of 16 Gbps links connecting
three Brocade switches. One link is configured with encryption and compression, one with just
encryption, and one with just compression.
FIGURE 54 Encryption and Compression on 16 Gbps ISLs
16G
16G
16G
Compression/Encryption
Compression
Encryption