Manualshelf

Brocade Fabric OS v7.2.1a Release Notes v1.0

ManualsBrandsHP ManualsStorageHP SN3000B 16Gb 24-port/24-port Active Fibre Channel Switch/S-Buy
21222324252627282930
Fabric OS v7.2.1a Release Notes v1.0 Page 25 of 55
Hot Code Load from FOS v7.1.x to FOS v7.2 or later is supported. Cryptographic operations and I/O
will be disrupted but other layer 2 FC traffic will not be disrupted.
When disk and tape CTCs are hosted on the same encryption engine, re-keying cannot be done while
tape backup or restore operations are running. Re-keying operations must be scheduled at a time that
does not conflict with normal tape I/O operations. The LUNs should not be configured with auto rekey
option when single EE has disk and tape CTCs.
Gatekeeper LUNs used by SYMAPI on the host for configuring SRDF/TF using in-band management
must be added to their containers with LUN state as “cleartext”, encryption policy as “cleartext” and
without “-newLUN” option.
FOS 7.1.0 introduces support for “disk device decommissioning to the following key vault types:
ESKM, TEKA, TKLM and KMIP. To use disk device decommissioning feature for these key vaults,
all the nodes in the encryption group must be running FOS v7.1.0 or later. Firmware downgrade will be
prevented from FOS v7.2 to a FOS v7.0.x if this feature is in use. Disk Device decommissioning for
DPM and LKM key vaults will continue to work as with previous firmware versions.
FOS7.2 supports KMIP key vault type for Thales e-Security Key Authority SW v4.0.0 KMIP servers.
Please refer to the KMIP Encryption Admin Guide for more details.
Replication feature from Thales e-Security Key Authority KMIP server is not supported with
BES/FS8-18.
In FOS 7.1.0 or later the encryption FPGA has been upgraded to include parity protection of lookup
memory (ROM) within the AES engine. This change enhances parity error detection capability of the
FPGA.
BES/FS8-18 will reject the SCSI commands WRITE SAME, ATS(Compare and Write/Vendor Specific
opcode 0xF1) and EXTENDED COPY, which are related to VAAI (vStorage APIs for Array Integration)
hardware acceleration in vSphere 4.1/5.x. This will result in non-VAAI methods of data transfer for the
underlying arrays, and may affect the performance of VM related operations.
VMware VMFS5 uses ATS commands with arrays that support ATS. BES/FS8-18 does not support this
command set. Use of a workaround procedure is required in order to configure encryption in a VMFS
5 environment. Please refer to Brocade Tech Note “Deployment Options for VMware VMFS-5 with
Brocade Encryption” for details.
XIV storage arrays that have been upgraded to firmware 11.2x or later required to support encryption
on thin provisioned LUNs will report all XIV data LUNs as TP=Yes.
FCIP (Brocade 7800 and FX8-24)
Any firmware activation will disrupt I/O traffic on FCIP links.
Latency measurements supported on FCIP Tunnels:
o 1GbE & 10GbE - 200ms round trip time and 1% loss.
After inserting a 4G SFP in GE ports of an FX8-24 blade or 7800 switch, sometimes “sfpshow”
output might display “Cannot read serial data!” . Removing and re-inserting the SFP should
resolve this issue. It is recommended that users perform sfpshow immediately after inserting
the SFP and ensure SFP is seated properly before connecting the cables.
When running FOS v7.2.0 or later, if the new FCIP Circuit Group feature is configured on any
FCIP Circuits, a downgrade operation to pre-FOS v7.2.0 will be blocked until the feature is
removed from the FCIP configuration(s).