NGHIÊN CỨU VỀ MẠNG LƯU TRỮ VÀ ðỀ XUẤT PHƯƠNG ÁN MẠNG LƯU TRỮ ỨNG DỤNG CHO TỔNG CÔNG TY BẢO HIỂM VIỆT NAM

HO

NG

D

NG

THN

H C

NG

NG

H

THN

G TIN

2004

- 2006

H Ni

2006

B GIO DC V O TO TRNG I HC BCH KHOA H NI

----------------------------------------

LUN VN THC S KHOA HC

NGHNH : CNG NGH THNG TIN

NGHIN CU V MNG LU TR V XUT PHNG N MNG LU TR NG DNG CHO

TNG CNG TY BO HIM VIT NAM

HONG DNG THNH

H NI 2006

B gio dc v o to

Trng i hc bch khoa h ni

-------------------------------------------

LUN VN THC S KHOA HC

Nghin cu v mng lu tr v xut

phng n mng lu tr ng dng cho tng

cng ty

bo him vit nam

NGNH : CNG NGH THNG TIN

M> S :

HONG DNG THNH

Ngi hng dn khoa hc : TS .trnh vn loan

H ni 2006

- 1 - Lun vn thc s Khoa hc: Nghin cu v mng lu tr v xut phng n mng lu tr ng dng cho Tng Cng ty Bo him Vit Nam -

___________________________________________________________________

- Hong Dng Thnh Lp Cao hc CNTT 2004 HBKHN-

LI CM N

Trong li u tin ca lun vn Thc s khoa hc ny, em mun gi nhng li cm n v bit n chn thnh ca mnh ti tt c nhng ngi h tr, gip em v chuyn mn, vt cht v tinh thn trong qu trnh thc hin Lun vn.

Trc ht, em xin chn thnh cm n thy gio Tin s Trnh Vn Loan ngi trc tip hng dn, nhn xt, gip em trong sut qu trnh thc hin lun vn.

Em xin chn thnh cm n cc thy, c gio trong khoa Cng ngh Thng tin, B mn K thut My tnh,Trung tm o to v bi dng sau i hc v cc thy c trong Trng i hc Bch Khoa H Ni, nhng ngi dy d, ch bo em trong sut nhng nm hc tp ti trng.

Cui cng, em xin by t lng bit n ti gia nh, nhng ngi bn thn v cc bn ng nghip gip , ng vin em trong sut qu trnh hc tp v lm lun vn tt nghip.

Do thi gian thc hin c hn, kin thc chuyn mn cn nhiu hn ch nn lun vn em thc hin chc chn khng trnh khi nhng thiu st nht nh. Em rt mong nhn c kin ng gp ca thy c gio v cc bn.

Em xin chn thnh cm n!

H Ni,ngy 15 thng 11 nm 2006 Hc vin

Hong Dng Thnh


___________________________________________________________________


M U Trc y h thng my tnh ln thng c s dng qun l tp trung

cc dch v d liu. nhng h thng ny thit b lu tr c gn trc tip vo cc knh vo/ra ca my ch. My ch c quyn truy xut v qun l tt c thit b lu tr gn trc tip vo chng. Khi , cc ng dng hoc cc my trm ch c th truy xut d liu mt cch gin tip thng qua mng.

Workstation Laptop

ServerDisk array

Main frame

Disk array

Network & LAN

Hnh 1 - M hnh thit b lu tr gn trc tip

M hnh thit b lu tr gn trc tip hot ng hiu qu trong mt thi gian di, c bit trong mi trng x nghip va v nh. Tuy nhin khi p dng m hnh ny cho cc doanh nghip ln (doanh nghip ang s dng cc ng dng c lng d liu lun chuyn ln v c nhiu yu cu c bit) th m hnh trn bc l nhiu im hn ch:

Kh nng m rng: S thit b gn trc tip vo knh vo ra ca my ch thng b gii hn bi mt s c nh. V d nh knh SCSI gii hn 16 thit b trn mt knh k c thit b iu hp. Khi , dung lng d liu lu tr cng b gii hn theo.

Hiu nng thc thi: Cc thit b lu tr chia s bng thng trn knh vo ra


___________________________________________________________________


m chng gn vo. Do vy, khi gn thm thit b lu tr vo mt knh s lm gim hiu nng thc thi.

Gii hn v mt khong cch: Khng gian t thit b lu tr b rng buc nht nh v khong cch, c bit trong cc knh giao tip song song. Nhm m bo hiu nng thc thi v k thut tn hiu in, cc knh vo ra c di ti a thng ch vi mt.

Kh nng sn sng: Ngi qun tr phi tt hot ng ca ton b chui thit b trn mt knh khi mun b sung, loi b hay cu hnh li h thng lu tr. iu ny nh hng n s hot ng lin tc ca h thng.

Bo v d liu: Khi c nhiu my ch, chi ph cho thit b sao lu d liu tng nhanh ng thi vic qun tr cng phc tp do phi sao lu d liu trn tng my ch ring bit. Ngoi ra, vic sao lu thng qua mng cc b s nh hng n hot ng ca mng doanh nghip trong mt thi gian di.

Hiu qu: Kh phn phi li khng gian lu tr do mi my ch qun l hot ng ca cc thit b mt cch ring bit. iu ny dn ti hu ht cc cng ty phi mua b sung thit b cho my ch ny trong khi my ch khc cn nhiu khng gian lu tr cha dng n.

Nhng hn ch ca m hnh thit b lu tr kt ni trc tip cng chnh l nhng l do thc y cng ngh lu tr i sang mt th h mi, th h mng lu tr. Mng lu tr c tim nng c ng dng rng ri bi nhng u im sau:

- Mng lu tr a ra kh nng m rng, cho php kt ni hng ngn thit b lu tr phn tn trong phm vi rng ln.

- Mng lu tr cho php lu chuyn d liu gia cc thit b lu tr m khng chim dng bng thng ca mng cc b v khng phi trung chuyn qua nhng my ch.

- Mng lu tr cho php cu hnh li hoc bo tr h thng lu tr m khng yu cu dng hot ng ca c h thng.


___________________________________________________________________


- Mng lu tr cung cp mt gii php qun l tp trung nng lc lu tr.

My nm gn y, th trng SAN t mc tng trng cao nh s h tr v

a dng ha cc gii php kt ni. Theo thng k ca ca t chc Gartner Groups Dataquest, ch ring th trng Nht bn t doanh thu 7.2 t la m v t mc tng trng 17.5% trong nm 2005. Cng ngh SAN c p dng nhiu nc trn th gii. Vit Nam, cng ngh SAN mi gy c s quan tm trong

thi gian gn y v mi bc u c ng dng.

Lun vn tp trung nghin cu cng ngh SAN, tnh hnh pht trin SAN trn

th gii v kh nng ng dng cng ngh SAN ti Vit Nam, qua xy dng gii php thch hp lu tr khi lng d liu ln ti mt doanh nghip c th. Cu trc lun vn bao gm:

Phn: M u gii thiu v s hnh thnh cng ngh lu tr SAN, nhng

tim nng ca SAN.

Chng 1: Mng lu tr - SAN. Tng quan h thng mng lu tr: cc khi

nim c bn, cc thnh phn chnh, cc ng dng trong mng SAN, vic qun l v khai thc mng SAN.

Chng 2: IP SAN. Phn tch chi tit hai giao thc iFCP v iSCSI. Cc giao

thc ny s c s dng lm c s pht trin cng ngh SAN da trn nn tng IP.

Chng 3: ng dng SAN gii quyt bi ton thc tin, thit k mng lu tr gii quyt bi ton lu tr khi lng d liu ln ca Tng Cng ty Bo Him Vit Nam ( Bo Vit).

Cui cng, phn: Kt lun tng hp li nhng nghin cu chnh ca lun

vn, gii thiu mt s hng pht trin v nhng khc phc mt s nhng hn ch

hin ti ca SAN.


___________________________________________________________________


CHNG 1: MNG LU TR - SAN

1.1. Mng lu tr l g?

Mng lu tr SAN (Storage Area Network) c nh ngha l mt mng dnh ring lin kt gia cc my ch v thit b lu tr [6]. N c cu trc tng t mng cc b (LAN) nhng tch bit khi mng cc b. My ch v cc thit b lu tr gi l cc nt (node) trong mng lu tr. S mng lu tr c th hin qua hnh 2

Desktop Laptop computer

Disk array

Main frame

Disk array

Workstation

Tape drive

ServerServer

Network & LAN

Storage Area Network

Hnh 2 - S mng lu tr

Mng lu tr l gii php mi kt ni cc thit b lu tr vi my ch. SAN s dng nhng tin b trong cng ngh mng nhm nng cao bng thng, hiu nng thc thi v sn sng cao cho h thng lu tr [6]. Mng lu tr c s dng kt ni: cc mng a c chia s (Shared Storage Array), cc cm my ch (Cluster Server), cc a hay bng t ca my tnh ln (MainFrame Disk or Tape) vi cc my ch hoc my trm. n gin, mng lu tr l mt mng thng thng


___________________________________________________________________


c to nn t giao din cc thit b lu tr.

Do mng lu tr tch bit vi h thng mng thng thng nn khi hot ng s khng chim bng thng ca h thng mng. Mng lu tr th hin mt hng chia s khng gian lu tr mi, cho php nhiu my ch cng chia s mt khng

gian lu tr. Mng lu tr h tr ba kiu trao i d liu: - My ch ti thit b lu tr: l kiu kt ni truyn thng, mng lu tr c

u im ln l cho php nhiu my ch truy xut tun t hoc cng lc ti

mt thit b lu tr. - My ch ti my ch: s dng mng lu tr lm ng truyn thng gia

cc my ch.

- Thit b lu tr ti thit b lu tr: cho php truyn ti d liu gia cc thit b lu tr m khng c s can thip ca my ch. iu ny gip cho d liu c truyn ti nhanh hn ng thi khng tn thi gian x l ca CPU.

Tuy cu trc ging mng thng thng, mng lu tr SAN c mt s khc bit do c to dng t giao din cc thit b lu tr. Nu nh trong mng thng thng giao din kt ni c dng tun t th trong mng lu tr giao din kt ni c th l cc chun kt ni song song.

1.2. Thit b lu tr gn mng (NAS - Network Attached Storage)

Thit b lu tr gn mng (NAS - Network Attached Storage) l dy cc a gn trc tip vi mng LAN thng qua giao din kt ni nh Ethernet [6]. Vi chc nng l mt my ch trong m hnh Client/Server, NAS c b vi x l ring, h iu hnh ring v i tng x l l cc file. i din tiu biu nht cho m hnh thit b lu tr gn mng l Server Message Block v Network File System.


___________________________________________________________________


NAS Processor IDE, SCSI Disk

Ethernet

Hnh 3 - Kin trc NAS

Phn bit NAS vi SAN: da trn phng thc trao i d liu theo file hay khi (block). NAS truyn ti cc file qua cc giao thc hng file nh NFS (Network File System) hay CIFS (Common Internet File System) trong khi SAN truyn ti cc khi bng giao thc hng khi nh SCSI-3.

Data BaseApplications

Block I/OBlock I/O

converted toFile I/O protocol

IP Network FileProtocols (NFS, CIFS ..)

File I/O protocolconverted toBlock I/O

Pooled Storage


Block I/O

Pooled Storage

FC NetworkSCSI Protocols


Block I/O

Pooled Storage

IP NetworkiSCSI Protocols

NAS FCP SAN iSCSI SAN

Hnh 4 - So snh NAS v SAN

1.3. Cc thnh phn ca mng lu tr - SAN Components

1.3.1. My ch SAN

My ch SAN l nhng phn t tnh ton c gn trc tip vo mng SAN

[3]. My ch SAN c nhim v qun l tp mng v tru tng ha thit b lu tr. My ch SAN c th hot ng trn nhiu h iu hnh khc nhau nh


___________________________________________________________________


Windows NT, UNIX, OS/390. Mt mng SAN c th c nhiu my ch SAN hot ng trong mt mi trng hn hp.

1.3.2. Giao din kt ni SAN

SCSI, FC-AL, SSA, ESCON, Bus-and-Tag, v HIPPI l nhng giao din kt ni thng c s dng trong SAN. Nhng giao din ny cho php thit b lu tr c m rng phm vi khi my ch v c th chia s d liu. Chng ta c th s dng nhiu knh kt ni tng hiu nng thc thi cng nh to knh d tha (d phng). Tuy SCSI l giao din truyn d liu song song, ngi qun tr vn c th m rng, trn knh, chuyn mch, hay kt ni vi cng mng ging nh vi giao

din ni tip.

1.3.3. Kt ni SAN

Ging nh mng LAN, SAN thng s dng mt s thit b nh Extenders, Mux, Hubs, Routers, Switchs, Directors kt ni gia cc thnh phn SAN. Trong

gii php mng SAN c th, ngi ta c th s dng nhiu loi thit b v kin trc kt ni khc nhau t c hiu qu tt nht.

1.3.3.1 Cc thit b kt ni SAN

- Thit b iu hp (Host Bus Adapter): HBA l thit b kt ni gia thit b ch qun (thit b lu tr hay my ch) vi mng SAN v chc nng ca n l bin i nhng tn hiu song song t bus ca thit b lu tr hay ca my ch sang dng tn hiu tun t gi vo mng SAN. Mt HBA c th c nhiu cng giao tip cng hay khc loi nhm cung cp

thm kt ni vi mng SAN. Cng tng t, mt thit b ch qun c th c gn mt hoc nhiu thit b iu hp cng hay khc loi.

- Thit b ko di (Extenders): Thit b ko di c s dng ko di khong cch cho php gia cc nt trong mng SAN. V mt vt l, thit ko di l mt b khuych i li tn hiu.

- B trn (multiplexors): b trn c s dng tn dng hiu qu ca


___________________________________________________________________


ng kt ni bng thng rng bng cch trn d liu lun phin t nhiu ngun khc nhau vo mt kt ni duy nht. B trn cn c nhiu u im khc: cho php nn d liu, sa li, nng cao tc truyn v kh nng ngt nhiu kt ni mt lc.

- B tp trung (hubs): b tp trung cung cp kt ni gia cc nt vi nhau. Tt c cc nt ny cng chia s bng thng nn hiu qu t c khng cao nh b chuyn mch.

- B nh tuyn (routers): b nh tuyn cho thit b lu tr khc vi b nh tuyn mng thng thng. D liu c nh tuyn s dng cc giao thc nh tuyn cho thit b lu tr nh FCP hay SCSI trong khi mng thng thng s dng cc giao thc thng ip nh TCP/IP. ng truyn d liu trong cc thit b lu tr ging ng truyn thng ip trong mng thng thng nhng ni dung truyn s cha nhng thng tin ring ca giao thc.

- Cu (Brigdes): cu thng c s dng kt ni nhng on mng LAN/SAN hoc nhng mng c giao thc khc nhau.

- Cng mng (Gateways): cng mng dng kt ni hai hoc nhiu mng c giao thc khng ging nhau. Thit b ny thng c dng kt ni gia LAN v WAN. SAN s dng cng mng m rng mng thng qua mng WAN.

- B chuyn mch(switchs): b chuyn mch l mt trong nhng thit b c s dng nhiu nht. B chuyn mch c nhiu u im nh: cung cp kh nng kt ni n mt lng ln thit b, bng thng ln, gim thiu tc nghn, d m rng. V b chuyn mch h tr kiu kt ni ti mt im bt k nn phn mm qun l b chuyn mch c th t tu chn kt ni ring cho tng cng. Mt s cng ty ln s dng d tha b chuyn mch hoc cu hnh nhiu b chuyn mch song song nhm tng bng thng v kh


___________________________________________________________________


nng chu li [3].

- B nh hng (Directors): nh b chuyn mch nhng c s dng vi giao din kt ni ESCON.

1.3.3.2 Cc kin trc kt ni SAN

Vic la chn kin trc kt ni SAN c nh hng nhiu n hiu nng ca ton b h thng cng nh quyt nh trang thit b kt ni. Knh truyn vt l trong kin trc kt ni m lun vn cp l knh quang hc (Fibre channel). Cc kin trc kt ni trong mng SAN.

- Kt ni trc tip im - im (point to point topology): y l phng thc kt ni d thc hin v d qun tr nht. Mt knh kt ni cao tc c c thit lp gia hai nt nh hnh 5.

Disk array Server

Full duplex200MB/s

100 MB/s

100 MB/s

Hnh 5 - Kin trc kt ni im ti im Kin trc kt ni c hiu qu khi kt ni cc my ch cung cp dch v file (File server) ti chui cc a (Disk array). Kin trc khng s dng thit b kt ni s gim chi ph cho h thng nhng khng th p dng cho nhng mng SAN ln.

- Kt ni vng (loop) vi thit b tp trung (Hubs): kiu kin trc ny cho php ta xy dng c kt ni c bng thng rng v chi ph thp. Mt nt mun truyn d liu s phi i nhn c th iu khin knh (ging nh th bi trong mng Token Ring). Khi , nt c th iu khin knh s thit lp mt kt ni kiu im - im (kt ni o) ti mt nt khc trn vng. D liu c trao i gia hai nt . Khi qu trnh trao i hon thnh,

cc nt khc trong vng s nhn c th iu khin knh.


___________________________________________________________________


Disk array Disk arrayHub

Server

Server

Hnh 6 - Kin trc kt ni vng

Kin trc kt ni vng c mt s c im sau:

o Hn ch s thit b kt ni trong mt vng: 126 thit b. o Mt nt trong vng b hng khng nh hng n hot ng ca

vng.

o T d tm (qu trnh ny xc nh c ton b cc nt trn vng v thng bo cho mi nt khc).

o Cho php thit lp kt ni o (gia hai thit b trong vng). o Mt vng c th kt ni vi thit b chuyn mch (Switch) m rng

vng.

- Kin trc chuyn mch (Switches): Kin trc ny hay c s dng trong thc t vi nhiu u im nh: bng thng rng, s lng thit b kt ni ln, c kh nng m rng tc thc thi, cho php s d tha ng kt ni.


___________________________________________________________________


Switch Switch

Server

Disk arrayTape drive

Optical drive

Disk array

Hnh 7 - Kin trc chuyn mch

Qua vic tm hiu cc kin trc kt ni mng SAN trn, chng ti nhn thy c th xy dng cu trc mng SAN t nhiu b chuyn mch cho php kt ni nhiu thit b vi nhau. Khi cc b chuyn mch c kt ni vi nhau, thng tin cu hnh ca tng b chuyn mch s c sao chp cho cc b chuyn mch khc. Hin nay c hai dng kin trc chuyn

mch: chuyn mch khng phn tng v chuyn mch phn tng [3].

Chuyn mch khng phn tng (without cascading): chuyn mch khng phn tng c ng dng trong nhng h thng ln c hiu nng cao. H thng khng kt ni trc tip cc b chuyn mch vi nhau m thit lp cu hnh m bo bt k h thng con no u c th truy cp c ti mi b chuyn mch. Vi cu hnh ny, h thng vn hot ng lin tc khi mt b chuyn mch b hng, tuy hiu nng ca h thng s b gim i so vi lc ban u.


___________________________________________________________________


Switch Switch

Server

Disk array Tape driveDisk array

Supercomputer

Hnh 8 - Kin trc chuyn mch khng phn tng

Chuyn mch c phn tng (Cascade Switching): Kin trc ny lin kt cc b chuyn mch vi nhau to thnh b chuyn mch logic c cc cng l tp cng ca cc b chuyn mch ring l. Mi cng trong kin trc chuyn mch phn tng u lin thng vi cc cng cn li.

Vi m hnh ny cng vic qun l phc tp hn. Ngi qun tr cn pht hin kp thi ng lin kt hng gia cc b nh tuyn m bo tnh lin thng v kim sot vic lu thng gia cc khi d liu trong mng

Switch Switch

Switch

Server Server

Tape driveDisk arrayDisk array

Hnh 9 - Kin trc chuyn mch phn tng


___________________________________________________________________


Kt hp kin trc chuyn mch v Kin trc vng (Mixed topology): kt hp kin trc chuyn mch v kin trc vng, b chuyn mch phi c cng lp gn kt vo vng. Qu trnh pht hin thit b v phn mm qun l SAN s tr nn phc tp hn khi h thng p dng kin trc ny.

Hub

Server

Server

Server

Disk arrayTape drive

SwitchSwitch

Disk arrayDisk array

Optical drive

Hnh 10 - Kin trc chuyn mch hn hp

1.3.4. ng dng SAN

Mng lu tr cung cp cho cc ng dng: kh nng qun l, kh nng m rng v tc thc thi. Mt s ng dng c trng trong mng SAN [3]:

SAN Applications

Shared Repositor &Data Sharing

Data Protection &Disaster Recovery

NetworkArchitechture

Clustering Data Backups

Data Interchange

Hnh 11 - Cc ng dng SAN

- Chia s khng gian lu tr v chia s d liu: SAN h tr m rng khng gian lu tr v tp trung ha d liu. Khi , d liu c chia s gia


___________________________________________________________________


nhiu my ch m khng nh hng n hiu nng h thng. Khi nim

chia s d liu m t kh nng truy cp d liu chung bi nhiu my ch. Cc my ch lu tr d liu chia s c th c ci t trn nhiu h iu hnh khc nhau.

"True" Data SharingStorage Sharing

Storage Subsystem - BasedSharing

Data-Copy Sharing

HeterogeneousHomogeneous

Hnh 12 - Chia s khng gian lu tr v chia s d liu

+ Chia s khng gian lu tr (Storage Sharing): Cho php mt hoc nhiu my ch chia s cng mt khng gian lu tr con. Khng gian lu tr con

cng c th c chia lm nhiu phn vng (partition) v mi phn vng c s hu bi mt hoc nhiu my ch.

+ Chia s bn sao d liu (Data Copy Sharing): Bng cch gi nhng bn sao d liu, cc my ch chy trn nhiu nn h iu hnh khc nhau c th truy xut cng mt d liu c chia s. C hai hng tip cn chia s bn sao d liu gia hai my ch: truyn file phng (Flat file) v dng ng chuyn i (Piping).

+ Chia s d liu thc (True Data Sharing): d liu chia s c th c truy xut bi nhiu my ch chy trn cc nn h iu hnh khc nhau. Hin cc ng dng kiu ny ch s dng c trn cc my ch c nn tng ng nht nh Oracle Parallel Server hay OS/390 Parallel Sysplex. C ba c ch chnh thc hin vic chia s d liu thc: o Tun t, ti tng thi im ch c mt my ch c th truy xut d

liu.


___________________________________________________________________


o Nhiu my ch ng thi c d liu v ch c mt my ch c php cp nht d liu.

o Nhiu my ch ng thi c v ghi d liu.

- Kin trc mng: Trong h thng, mng thng ip nh Ethernet thng c xc nh l mng chnh, SAN c coi l mng th hai (cn gi l mng sau my ch - The Network behind the Server). Kin trc mng ny cho php tp trung ha khng gian lu tr bng cch s dng kt ni nh mng LAN, WAN vi cc thit b nh router, hub, switch, gateway. Khi , SAN c hiu nh mng cc b hay t xa, chia s hoc dnh ring. Chnh v l do trn, mng SAN c nh gi c kh nng sn sng, tc thc thi v kh nng m rng trong khng gian lu tr.

- Sao lu d liu (Data backup): SAN cho php truyn thng gia cc thit b lu tr nn d liu c th chuyn trc tip t a n bng t. D liu t cc a khc nhau c sao lu trn nhng bng t dng chung. Thao tc sao lu d liu c lp lch v qun l tp trung, khng gy nh hng ti mng LAN cng nh gii phng my ch khi cng vic sao lu s

liu.

- Tnh ton cm (Clustering): Nh nhiu my ch hot ng ng thi trn mt tp d liu, tnh ton cm cung cp tc thc thi v kh nng chu li cao hn cho ng dng. SAN cung cp mi trng tnh ton cm hiu qu bi chng cho php nhiu my ch truy xut d liu dng chung vi bng thng rng.

- Bo v d liu v khi phc d liu: K thut nhn bn d liu (replication/mirror) c p dng m bo cho ng dng vn tip tc hot ng ngay c khi mt bn d liu b hng. SAN to v lin kt cc bn sao bo v v khi phc d liu bng phng php d tha d liu nhm p ng cc ng dng c yu cu sn sng cao.


___________________________________________________________________


1.3.5. Qun l SAN

La chn phn mm qun l SAN l mt trong nhng im mu cht trong cc gii php SAN. tn dng c cc im mnh ca SAN nht thit phi c phn mm qun l SAN hiu qu v phn mm ny c th c ci t trn cc my ch SAN.

Applications Management

Data Management

Resource Management

Network Management

Element Management

Layer 5

Layer 4

Layer 3

Layer 2

Layer 1

- Logical and financial views of IT- Business process policy/SLA definition/execution- Resource optimization across business processes- Load balancing across SANs/LANs/WANs/VPNs, etc.- Application optimization, failover/failback, scalability

- File systems- "real time" copy (mirroring, remote copy, replication)- "point-in-time" copy (backup, snapshot)- Relocation (migration, HSM, archive)- Data sharing

- Inventory/asset/capacity management & planning- Resource attribute (policy) management- Storage sharing (disk & tape pooling), clustering, tape- Media management- Volume management

- Physical to logical mapping within SAN network- Topological views- Zoning- Performance/availability of SAN network

- Configuration, initialization, RAS- Performance monitoring/tuning- Authentication, authorization, security

Hnh 13 - Kin trc phn mm qun l SAN

Nhm to tin cho cc nh pht trin, t chc SNIA a ra mt chun

m m t kin trc phn mm qun l SAN. M hnh kin trc c t chc theo phn cp lp, mi lp m nhim cung cp nhng chc nng khc nhau v cung

cp dch v cho lp bn trn hoc bn di.

* Lp qun l ng dng- Applications Management:


___________________________________________________________________


y l lp qun l cao nht trong m hnh, c nhim v cung cp mt khung nhn trong sut v ton din v ton b ti nguyn h thng. Cc thng tin nh cu hnh, trng thi, hiu nng, dung lng hu dng... u c chuyn t nhng tng bn di ln cho lp ng dng qun l.

Cc chc nng ca lp ng dng qun l bao gm: - Cung cp ci nhn chi tit v logic v h thng SAN.

- Thit lp v thc thi chnh sch giao dch, bo mt. - Ti u ha ti nguyn theo m hnh nghip v.

- Cn bng ti trong SAN, LAN, WAN, VPNs - Ti u ha ng dng, ngn nga li, khc phc li.

Hai t chc SNIA v SNMWG a ra m hnh giao tip chung (Common Interface Model) lm chun giao tip ca lp ng dng vi lp di. y l c s cho cc nh pht trin vit ng dng SAN hot ng c trn mi trng hn hp.

Management Applications

Element Management(Hubs, switchs, Interconnects ..)

Common Interface

Entity Mapping

Inband Management(SNMP, SES..) Native APIs

Hnh 14 - M hnh giao din chung cho phn mm qun l SAN

* Lp qun l d liu - Data Management:

Lp ny chu trch nhim kim sot v cht lng dch v d liu:


___________________________________________________________________


- m bo tnh sn sng d liu v cung cp kh nng truy cp d liu cho cc ng dng.

- m bo v mt hiu nng d liu cho cc ng dng. - m bo kh nng khi phc d liu. V lp cn cung cp cc dch v d liu c s: - Dch v file.

- Cc dch v sao chp thi gian thc: to nh (mirroring), nhn bn (replication).

- Cc dch v sao chp ti mt thi im: sao lu, bn chp nhanh. - Cc dch v di chuyn d liu - Chia s d liu.

* Lp qun l ti nguyn - Resource Management:

Lp qun l ti nguyn lin quan ti hiu qu s dng, tnh thng nht, t ng ha qun l ti nguyn lu tr v kin trc lu tr. N cn cung cp kh nng t ng sa li khi cn. Lp ny cung cp cc chc nng:

- To qu a.

- Qun l khng gian lu tr. - To qu v chia s thit b lu tr c th tho lp. - Tng cng cho tnh nng lu tr tc thi.

Yu cu ca lp ny l phi cung cp mt khung nhn n nht v h thng v

t mt im c kh nng qun l c tt c cc ngun ti nguyn lu tr phn tn.

* Lp qun l mng - Network Management:

Lp qun l mng thc hin vic qun l cc kt ni gia cc thc th ca SAN, cc thc th ny c th l thc th logic hay vt l. Ton b kin trc kt ni v kt ni vt l ca cc thnh phn ca SAN u c lp ny qun l. ng thi n cn qun l cc mi quan h gia cc thc th vt l bng cch to ra cc thc th logic nh vng (zone). Lp ny cung cp cc chc nng:

- nh x logic v vt l trong mng lu tr.


___________________________________________________________________


- Cu trc lin kt mng (topology). - Phn vng (zoning). - sn sng v hiu nng mng ca mng lu tr.

- Qun l li kt ni.

* Lp qun l thnh phn - Element Management:

Lp ny lm vic vi cc thit b phn cng xy dng ln SAN. Cc thit b ny c th l cc h a thng minh, cc thit b lu tr c th tho ri, cc b chuyn mch, ..vv. Thng thng cc nh cung cp thit b s cung cp km theo nhng chng trnh c s (firmware) qun l thit b.

Cc chc nng c th c lp ny cung cp bao gm: - Cu hnh, khi to, thit lp kt ni t xa (RAS) cho cc thnh phn. - Theo di v iu chnh hiu nng. - Xc thc, cp php v bo mt.


___________________________________________________________________


CHNG 2: IP SAN

Sau mt thi gian di pht trin v ng dng trong thc t, giao thc TCP/IP tr thnh chun chnh thc v c ng dng trong hu ht cc h thng mng ca cc doanh nghip trn th gii. Vic ng dng SAN da trn nn tng giao thc TCP/IP c nhng u im sau:

- SAN c xy dng t nhng thit b trong h thng mng LAN nhm gip doanh nghip tn dng thit b c trang b trc , gim c chi ph o to v chi ph iu hnh.

- C th s dng mng internet nh l cng c truyn v lu tr d liu

khi lung d liu vt qua nhng gii hn ca LAN.

Tuy nhin, giao thc TCP/IP ban u khng c thit k ring bit cho nhng ng dng nh SAN nn khi s dng SAN trn nn IP tn ti mt s nhc im sau:

- TCP s dng c ch iu khin lung v kim sot li phc tp. iu ny s lm gim hiu sut truyn ti d liu.

- Qu trnh nh tuyn (routing) v chuyn tip gi tin (forwarding) i hi phi c thi gian x l thng tin tiu gi tin (header), s lm gim hiu sut truyn ti d liu.

Nhng hn ch trn c th c khc phc khi ta s dng nhng thit b mng c h tr c ch m bo cht lng dch v (QoS) hay b iu hp mng (Adaptor) c thit k nhm tng tc cho mt s tc v c s dng trong giao thc TCP.

Trong chng ny chng ti phn tch chi tit hai giao thc: iSCSI v iFCP - nhng giao thc c ng dng cho SAN da trn nn tng IP.

2.1. Giao thc iFCP (Internet Fibre Channel Protocol)

iFCP l giao thc t cng mng ti cng mng (gateway to gateway), kt ni


___________________________________________________________________


cc thit b knh quang hc c bng cch s dng mng IP nhm cung cp dch v knh quang hc (Fibre Channel Services) cho cc thit b cui c cng l knh quang hc da trn mng TCP/IP [1]. iFCP s dng TCP lm cng c iu khin lung v kim sot li.

2.1.1. Kin trc mng iFCP

iFCP thch nghi vi cc thit b cui trn knh quang hc bng cch gi lp giao din cng kt ni quang hc (F_Port). Khi , iFCP c chc nng nh mt thit b chuyn mch quang hc (Fibre Channel Switch) nh hnh 15 di y.

FibreChannelTrafic

FibreChannelDevice

FibreChannelDevice

N_Port N_Port

FibreChannelDevice

FibreChannelDevice

N_Port N_Port Fibre ChannelDevice Domain

FibreChannelDeviceAddress

F_Port F_Port F_Port F_Port

iFCP Layer iFCP Layer

iFCP Portal iFCP PortalControl

DataIPAddressMaping

iFCP Frames

IP Network

iFCP Gateway Region iFCP Gateway Region

IP Fabric

Hnh 15 - Kin trc iFCP Ti tng iFCP, a ch (24 bit) ca mt thit b knh quang hc c nh x

vi mt a ch IP duy nht v cung cp a ch IP cho thit b ngun v thit b ch

(thit b knh quang). Tng ng vi tng vn ti ca knh quang (FC-2) c iFCP thay th bng giao thc TCP/IP truyn ti d liu qua mng IP.


___________________________________________________________________


IP Network for Storage

iFCP GatewayiFCP Gateway

iFCP Gateway iFCP Gateway

Device to DeviceSession

Device to DeviceSession

Fibre ChannelServer

FibreChannelServer

Fibre ChannelTape Library

FibreChannelServer

Fibre ChannelDisk Array

Fibre ChannelServer



Hnh 16 - s dng iFCP kt ni cc thit b thng qua mng IP

Vic kt ni ti cc thit b knh quang c cung cp thng qua cng FL_Port (kin trc kt ni vng) hay qua cng E_Port (kin trc kt ni chuyn mch) gia mt cng ca iFCP (iFCP gateway) v mt b chuyn mch quang. c tnh ny cho php nhng SAN knh quang ring l c th c s dng trong kin trc IP. Lc ny cc thit b knh quang c gn vo thit b chuyn mch quang s c gn cho mt a ch IP nh x. Nh vy iFCP cung cp phng thc kt

ni mm do kt ni cc thit b knh quang vi nhau nn n c th c dng thay th cc b chuyn mch quang.

3.1.2. a ch iFCP

c t iFCP xc nh hai ch a ch ca cc thit b knh quang l: ch trong sut (transparent mode) v ch chuyn i (translation mode).

ch trong sut, cc thit b knh quang c xc nh bi a ch duy nht c di 24 bit, l a ch theo cch nh ca chun knh quang. Theo chun ny, cc b chuyn mch quang chu trch nhim cp pht mt a ch duy nht cho

cc thit b knh quang khi cc thit b ny thc hin qu trnh ng nhp (login). Hnh 17 th hin nh dng a ch ca cc thit b cui knh quang, cn c gi l


___________________________________________________________________


a ch N_Port. a ch N_Port c di 24 bit v chia lm 3 phn, mi phn c di 8 bit (1 byte): byte th nht cha thng tin nhn dng min (Domain ID), byte th hai cha thng tin nhn dng vng (Area ID) v byte cui cng cha thng tin nhn dng cng (Port ID).

Domain Area Port

Fibre Channel N_Port Address

Hnh 17 - nh dng a ch N_port ca thit b knh quang

Theo chun knh quang, mi b chuyn mch c gn tng ng vi mt nh danh min. Nh vy trong mt mng quang th s min ti a l 239 min v mi min c kh nng cp pht c 65000 a ch khc nhau cho cc thit b cui. Khi bit c a ch ca mt thit b cui knh quang, chng ta c th xc nh c v tr ca thit b . nh danh min gip ta xc nh c b chuyn mch m thit b c gn vo, cp nh danh vng/cng (Area/Port) gip ta xc nh c cng m thit b c gn vo.

a ch N_Port ph thuc vo v tr ca thit b trong mng quang nn khi ta chuyn kt ni ca thit b t cng ny sang cng khc ca b chuyn mch hay t b chuyn mch ny sang b chuyn mch khc th a ch N_Port cng thay i theo. S thay i a ch N_Port buc qu trnh nh tuyn d liu thay i. Tuy nhin thit b knh quang s vn c xc nh duy nht nh a ch cng WWN. a ch WWN l duy nht trn ton cu v c di 64 bit. a ch WWN khng c dng nh tuyn v di ca n kh ln v khng c cu trc ph hp vi vic nh tuyn nh a ch N_Port.

Trong khung d liu ca knh quang, c hai trng cha a ch N_Port: trng D_ID (Destination ID) cha a ch N_Port bn ch n v trng S_ID (Source ID) cha a ch N_Port bn ngun. a ch D_ID v S_ID c s dng


___________________________________________________________________


sut qu trnh trao i d liu. Kt thc qu trnh giao dch, trong khung d liu s cha a ch WWN. Thng tin ny rt cn thit m bo tnh ton vn ca giao dch v a ch ngun hoc ch c th b mt thit b khc chim dng khi thit b ny c cm vo ch thit b ngun hoc ch cm.

iFCP c mt s hn ch do s dng lc nh a ch ca mng quang. Mi iFCP gateway u c coi nh mt khi gm 65000 a ch ngay c khi ch c mt vi a ch c s dng cho vi thit b ang hot ng. Hn na, khi mt b chuyn mch c gn vo, mng quang s thc hin qu trnh gn nh danh min mi v yu cu ton b thit b gn vo n thc hin qu trnh ng nhp cp pht li a ch N_Port mi. Mt mng quang c qui m ln vi nhiu b chuyn mch v thit b s mt nhiu thi gian n nh li ton b mng quang.

m bo SAN da trn nn tng IP m rng hn nhng gii hn ca mng quang, iFCP cn s dng ch a ch chuyn i. Trong ch a ch chuyn i, iFCP gateway vn gn nhng a ch N_Port 24 bit cho nhng thit b gn vo n. V mt chc nng, nhng giao dch ni b trong cng mt iFCP gateway cng ging nh mt b chuyn mch quang. Nhng khng ging vi b chuyn mch quang, iFCP gateway cn gn a ch N_Port cho nhng thit b t xa (khng cng trn mt iFCP gateway) v coi chng nh nhng thit b cc b. a ch c gn cho cc thit b t xa ny cn c gi l a ch N_Port y nhim (proxy address) v chng ch c th c s dng trong phm vi cc b iFCP gateway, khng c

qung b khp IP SAN. iFCP gateway thc hin chuyn i a ch N_Port y nhim vi a ch N_Port thc s. N s thay th trng D_ID ca a ch y nhim

bng a ch thc s trong khung d liu khi giao dch. Qu trnh ny lm tng thm thi gian x l ti iFCP gateway nhng n trnh c nhng vn pht sinh trong s nh a ch ca mng quang.

iFCP thc hin nh x a ch IP, a ch ny c lu trong phn thng tin tiu IP (IP header) ca khung s liu iFCP. Trong hnh 18, iFCP gateway duy tr mt bng tra cu (lookup table) nh x a ch N_Port vi a ch IP. Trong ch


___________________________________________________________________


chuyn i a ch, bng tra cu ny bao gm c a ch N_Port y nhim v a ch N_Port thc.

Fibre Channel HeaderD_ID 80XXYYS_ID 03XXYY

---------------------------

Payload

--------------------

DestinationIP PortalAddress

N_Port ID--------------------

AA.BB.CC.DD01XXYY

Key

IP header

IP DestinationIP Source

---------------------------

TCP Header---------------------------

iFCP Header---------------------------

Payload

Fibre Channel HeaderD_ID 01XXYYS_ID 03XXYY

----------------------

Payload

OutboundFibre Channel Frame iFCP Lookup Table Outbound iFCP Frame

Hnh 18 - Ch chuyn i a ch iFCP v a ch IP

Trong s trn, 80 l gi tr nh danh min ca a ch D_ID trong mng quang. a ch N_Port y nhim trong khung s liu ny thng bo vi iFCP rng: khung s liu ny cn c chuyn n mt thit b t xa no y. iFCP gateway

thc hin thao tc tm a ch trong bng tm kim, kt qu tr v l a ch IP v N_Port thc tng ng. Trong qu trnh xy dng khung d liu iFCP, a ch N_Port thc s c gn vo phn thng tin tiu knh quang, a ch IP ch

c in vo phn thng tin tiu IP ca khung s liu iFCP.

Qu trnh nh x v chuyn i a ch lm tng thi gian tr x l. Tuy nhin trong thc nghim, iFCP vn c th t c tc gigabit.

2.1.3. Gi lp dch v knh quang hc ca iFCP

Giao thc iFCP c thit k h tr thit b cui quang hc cng nh thit b thun


___________________________________________________________________


iFCP. Do mt cng mng iFCP c th thay th trc tip mt b chuyn mch knh quang v cho php kt ni N_Port, n phi gi lp nhng dch v knh quang chun nh ng nhp, ng k SNS v ELS. Hn na iFCP gateway chn cc yu cu ca knh quang nh ng nhp cng (PLOGI) v phi thit lp kt ni TCP/IP vi iFCP gateway ch.

Fibre ChannelPLOGI Command

LocalN_Port?

Set UpTCP/IP

Connection

TransmitPLOGI to N_Port

ELS TransmitLocal N_Port

No

Yes

Fibre Channel Domain IP Domain

Hnh 19 - iFCP gateway x l PROGI

Hnh 19 minh ha qu trnh mt thit b knh quang cc b gi yu cu PLOGI ti ch. u tin, iFCP phi xc nh ch l cc b hay xa. Nu PLOGI c gi n a ch ch l mt thit b cc b, iFCP chuyn tip ti cng tng ng. Ngc li, cng mng iFCP thit lp kt ni TCP/IP n ng iFCP gateway c gn thit b v gi yu cu PLOGI thng qua khung d liu iFCP. Bc tip theo l qu trnh m phn v kch c ti a ca khung s liu gia hai thit b knh quang, kt qu m phn c cp nht vo trng qui nh kch c ti a cho

khung s liu. Ni chung, cng mng iFCP khi m phn s ngh kch c gi d liu ti a l 1.5KB m bo khung s liu knh quang c ng gi trong mng Ethernet m khng lm phn mnh gi tin

Trong mng knh quang, bn ngun gi truy vn SNS ti b chuyn mch, kt


___________________________________________________________________


qu nhn c l danh sch a ch knh quang ca bn ch. iFCP gateway cng gi lp dch v ny, nhng li chuyn i truy vn SNS thnh truy vn iSNS. Khi nhn c phn hi t my ch iSNS, iFCP gateway ghi li a ch knh quang v

a ch IP tng ng vo trong bng chuyn i a ch (Translation Table Address) v nh dng thnh hi p SNS gi cho bn ngun. Hnh 20 th hin mt qu trnh x l yu cu SNS, trong qu trnh ny vic cp nht li bng chuyn i a ch to thun li cho qu trnh truyn thng sau ny gia bn ngun v bn ch.

Name ServiceELS

Convert toiSNS Query

iSNS NameService Query

Convert toiSNS Query

Format ELSResponse

Name ServiceELS Response

Fibre Channel Domain IP Domain

Hnh 20 - Qu trnh iFCP gateway x l mt yu cu SNS

Nhm h tr cc thit b knh quang gi v nhn yu cu mt cch thun tin, iFCP s dng nhng a ch c chun ha trong knh quang. V d dch v

SNS c a ch FF FF FC c b chuyn mch v iFCP.

2.1.4. iu khin kt ni TCP v iFCP

iFCP gatewway c hai loi giao tip: F_Port giao tip vi thit b cui knh quang v FCP Portal giao tip vi mng TCP/IP. iFCP gateway khng s dng dch v truyn ca knh quang (da trn giao thc nh tuyn FSPF - Fabric Shortest


___________________________________________________________________


Path First) m thit lp kt ni TCP/IP ti iFCP gateway khc v s dng giao thc nh tuyn nh OSPF (Open Shortest Path First) truyn.

Khi cc thit b pht hin ra nhau thng qua iSNS, iFCP gateway c th thit lp nhiu kt ni TCP/IP gia chng. Kt ni TCP c qun l nh hnh thc trao i thng ip kt ni gia cc iFCP gateway. Kt ni TCP gi l c rng buc khi cng N_Port ang lu thng d liu s dng kt ni ny. Kt ni TCP gi l khng rng buc khi kt ni tn ti nhng khng c s lu thng d liu. Khi thit b knh quang gi yu cu PLOGI ti mt thit b knh quang khc khng gn cng iFCP gateway, iFCP gateway chn mt kt ni TCP khng rng buc nu c hoc thit lp kt ni TCP mi cho phin ng nhp . Mt kt ni TCP khng rng

buc s tr thnh kt ni TCP rng buc nu iFCP a ra lnh rng buc kt ni ti iFCP gateway ca thit b ch.

Trong qu trnh ng nhp, thit b knh quang c rng buc vi mt kt ni TCP, n s s dng kt ni ny trong sut thi gian giao dch. Khi phin giao dch kt thc, kt ni TCP s chuyn sang trng thi khng b rng buc v sn sng cho mt qu trnh ng nhp mi. iFCP gateway li khc, n c th c nhiu kt ni TCP ti nhiu iFCP khc v cc cc kt ni ny c th c p dng nhng chnh sch cht lng dch v khc nhau.

2.1.5. Kim sot li ca iFCP

iFCP c trch nhim pht hin li trn c knh quang hc v TCP. iFCP lun

phi theo di gi tr gii hn thi gian x l (timeout) ca knh quang nh E_D_TOV v R_A_TOV cng nh cc li ca TCP. Nu mt kt ni TCP hoc mt thit b knh quang pht sinh li khng th khc phc c, cng mng iFCP s ngt kt ni TCP v hy b cc khung d liu cha c x l xong. Tip iFCP yu cu thit b cui knh quang bn ngun thc hin mt phin ng nhp mi ti bn ch. Khi cng mng iFCP pht hin ra li nghim trng nh b nh tuyn hoc b chuyn mch gn vi n b li th iFCP s kt thc ton b cc kt ni TCP v thit lp li kt ni ti mng IP ch. Trong trng hp c mt trong


___________________________________________________________________


nhiu kt ni b hng, iFCP ch x l kt ni hng v duy tr nhng kt ni cn li.

2.1.6. An ninh iFCP

Bo mt cc giao dch iFCP c thc hin theo mt s cch khc nhau. Hnh thc u tin l bo mt giao dch ngay t mc vt l. bn thn mng quang knh quang c s bo mt v mt vt l, iFCP gateway c s dng thay th cc b chuyn mch knh quang. Ngoi ra, cc iFCP gateway c kt ni vi nhau thng qua mng IP SAN tch bit vi mng IP LAN thng thng nhm m bo tnh bo mt cho d liu lu tr.

Ngay trong trung tm lu tr, d liu c th b chia tch thnh nhiu vng cho cc ng dng hoc i tng s dng khc nhau. H thng cn bo mt sao cho i tng khng c quyn truy nhp cc vng s khng truy xut c d liu. Trong mng quang, vic phn tch khng gian lu tr d liu c gi l phn chia vng. Trong iFCP, chc nng tng t c thc hin thng qua dch v khm ph min (Discovery domains), dch v ny cho php bn ngun ( c cp php) c th pht hin v thit lp phin lm vic vi thit b ch. Cc giao dch bn ngun v

bn ch c bo mt nh s dng phng thc xc thc vi kha cng khai hoc kha ring. My ch iSNS v iFCP gateway qun l qu trnh xc thc ny.

iFCP tng cng kh nng bo mt trong mng IP bng cch s dng giao thc IPSec xc thc v m ha d liu nhm hn ch IP SAN b tn cng. Kh nng bo mt s cao hn nu cc thit b trong IP SAN (nh b nh tuyn hay b chuyn mch) p dng chnh sch bo mt s dng danh sch iu khin truy nhp (Access Control List). Khi thit lp c kt ni th c bn ngun v bn ch ch u phi c trong danh sch iu khin truy cp. Hn na, iFCP gateway c th s dng thit b tng la lc gi tin (firewall) ng trc bo v. Thit b Firewall ngn chn s tn cng t bn ngoi v cung cp mng ring o cho vic lu thng d liu lu tr.


___________________________________________________________________


IP Network

Firewall/Router

Firewall/Router

Firewall/Router


Firewall/Router

Fibre ChannelServer



Fibre ChannelServer

Fibre ChannelServer


Fibre ChannelSwitch

Fibre ChannelServer

iFCPGateway

iFCPGateway

iFCPGateway

iFCPGateway

Hnh 21 - S dng Firewall bo mt trong mi trng iFCP

Hnh 21 minh ha vic s dng cc thit b Firewall nhm bo mt kt ni gia cc cng mng iFCP. Mng SAN s dng iFCP c nhiu la chn v linh hot hn trong vn bo mt so vi nhng mng SAN ch s dng knh quang.

2.1.7. Cc vn ca iFCP

Trong giao thc chun dnh cho mng SAN da trn giao thc IP, ch c giao thc iFCP c thit k h tr c thit b mng quang v thit b trn nn IP (trong thit b trn nn IP phi s dng chng giao thc iFCP). Cc c t ca giao thc iFCP khng h tr cho thit b iSCSI. Nh cung cp cn c nhng b sung thch hp thit b iSCSI, thit b knh quang v thit b iFCP c th kt ni lm vic cng nhau v to nn mt mng IP SAN a giao thc lin kt.

m bo hot ng ca cc thit b knh quang trn mi trng IP SAN i hi iFCP tm cch thch ng nhng dch v m mng knh quang truyn thng cung cp. Chc nng iu khin tc nghn trong trong knh quang c iFCP thch ng

bng cc s dng c iu khin lung ca giao thc TCP. FCP da vo WWNs


___________________________________________________________________


xc nhn duy nht thit b v s dng a ch 24 bit trong nh tuyn. iFCP thch ng bng cch s dng nh x a ch IP (IP Mapping) v c ch chuyn i a ch (Address translation). Tm li, iFCP lun phi iu chnh tng thch vi cc vn pht sinh trong mi trng knh quang nguyn thy [1].

2.2. Giao thc iSCSI (Internet SCSI Protocol)

Giao thc iSCSI (Internet SCSI Protocol) cho php nhng khi d liu SCSI (lnh hoc d liu) chuyn qua h thng mng da trn nn tng TCP/IP. Giao thc iSCSI c nh gi nh mt cng ngh then cht pht trin th trng SAN [1]. Do tnh ph bin ca mng nn iSCSI d dng c chp nhn v c ng dng rng ri.

2.2.1. M hnh lp ca giao thc iSCSI

M hnh lp trong giao thc iSCSI c th hin thng qua hnh 21:

IP Network

SCSI Applicationprotocol

iSCSI protocol

TCP/IP protocol

Initiator Target

iSCSI

SCSI

Data Sync

TCP

Lower Functional Level(e.g IPSec)

IP

Link

iSCSI

SCSI

Data Sync

TCP

Lower Functional Level(e.g IPSec)

IP

Link

TCPConnections

for iSCSI Session

Data Linkand Physical

SCSI CDB

iSCSI PDU

Hnh 22 - M hnh giao thc iSCSI

c t iSCSI b sung thm vo gia tng giao vn TCP/IP mt lp chc nng nhm cung cp thm mt s dch v nh dch v m ha d liu IPSec. Lp Data


___________________________________________________________________


Sync phc v c ch nh hng v ng b d liu. Lp Data Sync m bo ng th t lnh, d liu v lm ph hp d liu khi ghi trc tip vo vng b nh ca ng dng. Nu khng c lp Data Sync, thit b iSCSI i hi lng b nh m ln hn v phi thc hin mt s tc v sao chp lu tr cng nh sp xp li d liu trc khi chuyn chng ln lp trn.

Vic thit lp mt phin giao dch iSCSI gia Initiator v Target cn dng mt hoc nhiu kt ni TCP vn chuyn cc lnh, trng thi v d liu SCSI bn trong cc cc gi d liu iSCSI (l n v d liu ca giao thc - PDU). PDU cha khi m t lnh SCSI chun theo cu trc thng ip bo cho bn nhn bit l gi d liu hay lnh iu khin.

2.2.2. a ch iSCSI v qui c t tn

IP Network

Network Entity(iSCSI Client)

Initiator

iSCSI Node

Network PortalIP AddressTCP Port #

Network Entity(iSCSI Server)

Target

iSCSI Node


iSCSI Node


Hnh 23 - S dng tn v a ch lin kt gia ngun v ch

Ging nh SCSI, iSCSI thc hin theo m hnh Client/Server trong Target lm chc nng cung cp d liu theo yu cu ca Initiator. iSCSI hot ng trn ton mng nn c Target v Initiator u phi c nh danh mng, mi thc th c gn mt hoc vi a ch IP. Hnh 23 minh ha vic s dng tn v a ch lin kt gia bn ngun v ch thng qua mng IP.


___________________________________________________________________


Mt nt iSCSI c nh ngha nh mt thit b SCSI c bit bn trong mt thc th mng, c th truy cp c thng qua Network Portal. Mt thc th mng c nhiu nt iSCSI th hin u vo ca nhiu Intiator v Target. Mi nt iSCSI

c nhn din thng qua mt tn iSCSI duy nht, c di ti a 255 k t v c thit lp bi ngi qun tr.

Vic tch bit tn iSCSI v a ch iSCSI m bo: mi thit b lu tr ch c mt nh danh duy nht trong mng. Tn iSCSI c gn mm v c lp vi thit b phn cng. a ch iSCSI gip ta pht hin ra thit b ngay c khi ta thay i v tr ca thit b trong mng. V d khi ngi qun tr chuyn thit b sang mt phn on mng khc, a ch IP v s hiu cng TCP c th b thay i nhng tn iSCSI vn c gi nguyn. V l do di (cho php ti a 255 k t), tn iSCSI khng c s dng cho mc ch nh tuyn. Khi nt iSCSI s dng a ch IP v s hiu cng TCP (ngi qun tr gn cho) thc hin giao dch.

Tuy khng bt buc (ch cn m bo tnh duy nht), vic t tn iSCSI nn tun theo nhng qui nh chun v t tn ti nguyn c m t trong RFC 1737.

Giao thc iSCSI cn cho php khai bo thm tn b danh (alias), mc d tn b danh khng thay th c cho tn iSCSI. Tn b danh cng c di ti a l 255 k t v c trao i trong qu trnh ng nhp. Tn b danh c s dng nh cng c ngi qun tr phn bit thit b lu tr mt cch nhanh chng.

2.2.3 Qun l phin giao dch iSCSI

Trc khi thc hin mt phin giao dch gia bn ngun v ch, h thng phi thc hin mt tin trnh ng nhp cn c gi l pha ng nhp iSCSI. Qu trnh ny thc hin vic trao i cc tham s v trong mt s trng hp, n bao gm c vic xc thc hai bn. Nu thnh cng, bn ch pht i thng bo chp nhn vic ng nhp cho bn ngun. Ngc li vic ng nhp b loi b v kt ni cng b ngt.

Tin trnh ng nhp s dng cc trng text trao i nhng tham s bin


___________________________________________________________________


c php. Nhng trng ny bao gm cc t kho v gi tr ca chng. V d trng: s kt ni ti a (MaxConnections) dng thit lp s kt ni TCP ti a cho mt phin giao dch iSCSI. Nu s kt ni ti a c qui nh bn ngun v ch khc nhau th gi tr c chn l gi tr nh nht. Trng text cng c s

dng trao i tn v tn b danh cng nh cc tham s khc nh giao thc an ninh, gi tr timeout

Trong thc t, vic thit lp phin kh phc tp v mt thit b iSCSI c th c nhiu cng mng (gm a ch IP + s hiu cng TCP) v c th i din cho nhiu iSCSI Target (v d dy cc a). Khi bn ngun thit lp phin lm vic SCSI vi bn ch, cc s nhn din phin lm vic c sinh ra xc nh duy nht tng giao tip gia nt iSCSI c th vi nhng thc th mng tng ng. Bn ngun

ng nhp v gi i: tn iSCSI v s nhn din phin lm vic ca n cho bn ch (ISID). Bn ch to ra s nhn din phin duy nht (TSID) p ng yu cu ng nhp ca bn ngun. Kt qu ca qu trnh bt tay to ra mt cp gi tr ISID/TSID vi nhiu kt ni TCP gia chng (trong cp tn iSCSI/ISID i vi bn ngun v bn ch l duy nht trong thc th mng).

iSCSI Host

iSCSIInitiator

iSCSI Device

iSCSITarget

iSCSITarget

TCP Connection

TCP Connection

TCP Connection

iSCSI Session

iSCSI Session

Hnh 24 - Kt ni TCP trong cc phin giao dch

Khi qu trnh ng nhp hon thnh, phin iSCSI cho php thc hin nhng

giao dch bnh thng. Trng hp phin c nhiu kt ni th tng cp ra lnh/p

ng u phi thc hin ng qua kt ni tng ng. iu ny m bo cc lnh c v ghi d liu c hon thnh m khng phi kim tra tng kt ni. Mt lnh c


___________________________________________________________________


hoc ghi d liu c thc hin thng qua mt kt ni n cho n khi tt c d liu c truyn xong. Mt giao dch khc c th din ra ng thi da trn nhng kt ni ca chng trong cng mt phin giao dch.

Trong hnh 25, R2T (iSCSI PDUs bo trng thi sn sng nhn) c s dng gi lnh, trng thi, d liu v thc hin vai tr iu khin lung SCSI gia ngun v ch. i vi thao tc ghi, R2T c hiu l trng thi thng bo b m ca thit b ch sn sng tip nhn thm d liu. Khi qu trnh ghi hon thnh, bn ch s gi thng bo trng thi R2T xc nhn giao dch thnh cng.

Protocol Data Unit TargetInitiator

CommandRequestWrite

Queue CommandPrepare Buffer

Send R2T

Send R2T...................

SCSI Data

Ready to Transmit

Final SCSI Data ...................Send R2T

Status and SenseCommandCompletion

SCSI Command Write

SCSI Response

Ready to Transmit

Hnh 25 - V d v qu trnh ghi trong mt phin giao dch

D liu vn chuyn trong qu trnh c hoc ghi c theo di thng qua trng thi, s tun t ca gi d liu v cp thng s: con tr ca b nh m v trng di d liu truyn trong gi s liu iSCSI. Bn ch iu khin tc nhn d

liu bng cch iu chnh gi tr di d liu truyn. Bn ch c th yu cu truyn cc khi d liu theo mt th t nht nh bng cch thit lp a ch con tr b nh m khi bt u giao dch.


___________________________________________________________________


Khi bn ngun khng nhn c hi p yu cu t bn ch, n s gi mt thng bo ging nh lnh ping (lnh kim tra kt ni), km theo d liu kim tra trng thi bn ch. Nu bn ch khng hi p hoc hi p vi d liu li th bn ngun s ngt kt ni v thit lp li mt kt ni mi.

Phin iSCSI v kt ni ca chng c gi nguyn trng thi m v ch lnh

SCSI t tng ng dng bn trn gi xung. Bn ngun thng gn kt ti nguyn a trong mng lu tr v him khi ngt cc kt ni tr khi phi thc hin qu trnh

khi ng li. Trong mi trng iSCSI, bn ngun c th yu cu nhiu kt ni TCP cho mt giao dch. Do , nu mt vi kt ni trong phin lm vic b ngt th cng khng lm gin on phin lm vic . iu ny rt hu ch trong mt s

trng hp, v d nh trng hp cn ngt kt ni bo tr mng, thit b. Lnh thot khi phin lm vic iSCSI (logout) c s dng kt thc phin hoc ngt cc kt ni trong mt phin bng (nu c tham s: s nhn din kt ni) . Trng hp li kt ni, lnh logout a ra mt kt ni thay th hoc thit lp mt kt ni mi.

2.2.4. Kim sot li iSCSI

Kin trc SCSI c thit k vi gi thuyt mi trng khng li, Thit b SCSI c gn vo knh dnh ring song song, khng xy ra hin tng gin on

knh. iSCSI c trin khai trn mng IP tc cao, kin trc truyn thng khng

tin cy. Nhng tng TCP li cung cp tnh tin cy cn thit cho iSCSI. iSCSI cung

cp thm cc c ch kim tra kt ni TCP v pht hin li trong cc gi s liu (ti tng ny). iSCSI s dng tham s timeout v thit lp phm vi tm li d liu. Khi gi s liu trong mt dy gi tin lin tip nhau b li, th bn ch phi pht li cc gi s liu . Trong mng Gigabit, vic pht li c dy gi s liu khng gy nh hng qu nhiu n tc hiu dng.

Phng php kim sot li iSCSI yu cu c bn ngun v bn ch phi c kh nng lu lnh v nhng hi p trong b m cho n khi chng c xc


___________________________________________________________________


nhn. V d vi lnh ghi SCSI, bn ngun phi gi li trong b m d liu chuyn i cho n khi bn ngun nhn c thng bo R2T t bn ch (R2T thng bo d liu chuyn i trc c nhn v bn ch ang sn sng nhn d liu mi). Ti thiu thit b iSCSI phi c kh nng to dng li nhng gi d liu b mt hoc b hng trong qu trnh truyn thc hin truyn li.

Trong qu trnh truyn, Li c th xut hin phn thng tin mo u (iSCSI PDUs header) hay phn d liu (content) ca n v d liu iSCSI (iSCSI PDUs). Li xut hin c th chia ra hai loi:

- Li khun dng (format error): li ny xy ra khi mt trng trong phn thng tin mo u b mt hoc cc trng cha ng nhng thng tin tri ngc nhau.

- Li ni dung (Digest Content Error): li ny xut hin khi ni dung ca phn thng tin tiu hoc ni dung d liu mang theo (payload) trong PDUs b hng.

Trong trng hp li nh dng, bn ch s gi hi p c cha con tr (offset indicator) tr ti byte u tin b li trong phn thng tin mo u. Ngc li, bn ch s loi b gi tin li v yu cu gi li bng cch sa i gi tr trng offset trong R2T PDU.

iSCSI pht hin s tht lc d liu bng cch theo di s tun t ca gi tin (SNACK - Sequence Number Acknowledgment). Trong giao dch, mt hoc mt vi PDUs trong mt dy PDUs c th b tht lc. Ch nhng PDUs b tht lc ny mi c truyn li theo lnh SNACK ca bn ch s m bo hiu qu knh

truyn.

Pht hin v khc phc li iSCSI c th xy ra nhiu cp . N c th thc

hin ti tng SCSI m cng c th l tng bn di, tng TCP. Kt ni TCP c s dng chuyn ti d liu c th b li v trong trng hp ny iSCSI s c khc phc thng qua lnh khi to li. Mt phin giao dch iSCSI li c th gm nhiu kt ni TCP nn c th khng phi ch mt kt ni phi khi to li. Trong trng


___________________________________________________________________


hp xu nht, khi phin giao dch b li khng th khc phc c, n s ng tt c cc kt ni TCP, tm ngng tt c cc cng vic, cc lnh trong hng i v thc

hin to li giao dch mi thng qua qu trnh ng nhp.

2.2.5 An ninh iSCSI

Do iSCSI c thit k c th trin khai trn mng din rng nh Internet nn cc gii php v an ninh cho iSCSI l ht sc quan trng. Cc gii php v an

ninh cho iSCSI SAN bao gm [1]:

* Discovery Domains (DDSs): phng php ny da mt phn vo dch v iSNS. iSNS cung cp nhng tin nghi ng k, pht hin, qun l thit b lu tr (IP Storage) v qun l nhng thay i v trng thi. DDSs to ra min v cho php nhng thit b (c xc nhn bi iSNS) trong cng mt min c th thit lp c phin giao dch. DDSs c s dng trong IP SAN tng ng vi dch v Zoning ca knh FC SAN.

* LUN Masking: phng php ny da trn vic n giu cc LUNs. Bnh thng khi bn ngun thit lp mt phin lm vic vi bn ch, bn ngun s gi n bn ch lnh truy vn v s hiu LUNs ca nhng a n nh c hoc ghi s liu. Bn ch s p li bng cch gi danh sch s hiu cc LUNs m n c bng lnh Report LUNs cho bn ngun. Nh vy gii hn

danh sch cc LUNs ca bn ch tr v cho bn ngun cng l mt phng thc an ninh. Tnh nng LUN Masking khng bt buc phi c trong cc thit b lu tr iSCSI. N ch l mt la chn trong cc phng thc an ninh ca IP SAN.

* Danh sch iu khin quyn truy cp (Access Control Lists -ACL): Nhng thit b mng nh b nh tuyn hay b chuyn mch c th cung cp chnh sch bo mt n gin thng qua ACLs. ACL n gin c hiu nh mt bng c cha danh sch a ch no (vi tng 2 l a ch MAC v tng 3 l a ch IP) th c quyn truy cp, a ch no th khng. ACL cng c th s


___________________________________________________________________


dng loi dch v vn chuyn (TCP hay UDP) hay s hiu cng TCP gii hn quyn truy cp.

* Mng o (VLAN): VLAN c th c p dng phn tch v thit lp quyn u tin cho cc lung d liu lun chuyn qua thit b mng. ng dng vo IP SAN, VLAN l mt gii php bo mt cng nh phn vng (zoning).

* IPSec: IPSec gm hai c ch chnh: mo u xc thc (AH) v ng gi an ton d liu (ESP). IPSec cung cp cc dch v m ho, xc thc cho d liu truyn ti trn mng IP.

IPSec cung cp hai ch kt ni l ch vn ti (Transport Mode) v ch ng hm (Tunnel Mode). Ch vn ti bt buc p dng c ch an ninh tt c cc im thuc kt ni cn ch ng hm ch yu cu c ch an

ninh t im u n im cui ca ng hm.

TransportMode

TunnelMode

IP NetworkIP Router

InitiatorIP Router

Target

Encrypted Data

IP NetworkSercurityGatewayInitiator

SercurityGateway Target

Encrypted DataClear Data Clear Data

Hnh 26 - Hai ch kt ni ca IPSec

IPSec c th c p dng ht sc linh hot trong IP SAN, N c th c p dng trn ton mng SAN hay ch trn nhng on mng c kh nng ri ro cao. Nu s dng IPSec th SAN b gim hiu nng do phi vn chuyn thm thng tin ca kha khi trao i d liu v lm tng thi gian tr khi xc nhn, m ha hoc gii m. khc phc iu ny, cc thit b mng v thit b lu


___________________________________________________________________


tr cn tch hp sn IPSec.

Vic tho thun kiu bo mt gia hai thit b iSCSI c thc hin trong qu trnh ng nhp. Nu thnh cng, cc gi d liu trao i gia cc thit b iSCSI s c nh dng cho ph hp vi nhng yu cu ca tin trnh an ninh. Tin trnh ny c th c thc hin vi s tr gip ca my ch iSNS.

2.3. So snh FCP SAN v IP SAN

Cc giao thc nn tng c s dng trong SAN bao gm: FCP (Fibre Channel Protocol), FCIP (Fibre Channel over IP), iFCP (Internet Fibre Channel Protocol), iSCSI (Internet SCSI)..vv. Mi giao thc u c nhng im thun li v nhng hn ch ring. Trong lun vn ny, chng ti ch xem xt, nh gi hai giao

thc c s dng ph bin nht trong thc t l FCP v iSCSI.

Khi nim SAN thng gn vi mng quang, dnh ring phc v kt ni gia cc thit b lu tr hoc gia thit b lu tr v my ch. Giao thc dng vn

chuyn cc khi d liu cng l giao thc knh quang (Fibre Channel). Trong thi gian gn y, iSCSI c coi l giao thc y tim nng trong vic pht trin th

trng SAN. Nhng u im v nhc im ca giao thc iSCSI da trn c s giao thc vn ti d liu m n s dng (TCP/IP). Chnh v vy, ta c th coi vic so snh gia hai giao thc ca SAN l FCP v iSCSI chnh l so snh gia hai giao

thc vn ti d liu knh quang (FC) v TCP/IP.

So snh cc ch tiu:

Khong cch kt ni: FCP cho php thc hin cc kt ni c khong cch xa ln ti 10 km. Tuy vy,

vic trin khai nhng kt ni nh vy l khng thc tin i vi cc doanh nghip. Trong thc t, nhng mng SAN c s dng kt ni knh quang cho trung tm d liu trong mt hay nhiu ta nh gn nhau.

iSCSI khng ch cung cp gii php xy dng SAN cho nhng trung tm d liu tp trung, n cn thc hin tt vic kt ni gia nhng khong cch cc


___________________________________________________________________


ln nh mng internet ton cu. S pht trin h thng mng internet bng thng rng s l mt thun li cho vic pht trin th trng iSCSI [5].

Kh nng tng tc: Cc nh pht trin thit b lu tr knh quang vn pht trin v ci tin sn phm phn cng v phn mm mt cch ring r. iu ny dn n kh nng tng thch khng cao ca cc thit b. gim bt nhng li pht sinh, ngi s dng thng phi gim thiu vic s dng cc tnh nng mi ca cc thit b knh quang. iSCSI s dng nn giao thc TCP/IP l chun thng nht nn khng pht sinh nhng li lin tc gia cc thit b.

Chi ph:

Trong thc t cho thy chi ph cho SAN da trn iSCSI thng thp hn. Cc yu t lm gim chi ph cho iSCSI SAN bao gm: - Gi cc thit b thnh phn SAN da trn giao thc iSCSI thp hn do tnh

ph dng, s lng nh cung cp v qui m sn xut ca cc thit b xy ln SAN nh b iu hp, b chuyn mch, b dn ng,..vv.

- Thi gian o to, chi ph o to v duy tr iSCSI SAN thp hn nhiu so

vi FCP SAN. TCP/IP gn nh l k nng c bn ca cc k thut vin cng ngh thng tin v vic o to cng nh duy tr h thng SAN khng i hi cc chuyn gia thuc cc lnh vc cng ngh thng tin khc nhau

[2].

Kt ni:

Vi iSCSI, kt ni ca thit b lu tr vi my ch rt a dng thng qua IP SAN, qua IP LAN hay thm ch ni thng vo my ch v c s dng nh l mt thit b lu tr gn thng (DAS - Direct Attacked Storage) [5]:


___________________________________________________________________


IP LAN

iSCSI appliancestorage

IP SAN

IP LAN



Hnh 27 - Cc dng kt ni iSCSI

Hiu nng, thng lng truyn ti:

TCP/IP khng phi l mt giao thc t hiu qu cao trong vic tn dng bng thng. L do l n phi thc hin ng/gii gi tiu (pack/unpack header) c hai tng TCP v IP. Hn na c ch kim sot li, iu khin lu lng,

iu khin tc nghn ca TCP phc tp lm tng thi gian tr x l [5].

CRC EthernetHeader IP TCP iSCSI SCSI DATA CRC

iSCSI Data Packet

FCP Data Packet

TCP/IP Packet

FCHeader SCSI DATA CRC

EthernetHeader IP TCP DATA

Preamble DestinationAddressSourceAddress Type TCPIP Data FCS

Ethernet Payload

Hnh 28 - So snh FCP SAN v iSCSI SAN

Hiu nng gia FCP v iSCSI s cng khc bit nu iSCSI s dng kt ni


___________________________________________________________________


theo chun Ethernet. Kch c u gi s liu (over head) ca FCP ch l 36 byte trong khi kch c gi s liu tiu theo tiu chun Ethernet l 66 byte (mt byte bt u v mt byte bo hiu kt thc gi s liu). Cc s liu sau th hin r hn s khc bit trong vic chuyn ti 256 MB d liu [2]:

* FCP:

1 36B 256MB *

2112B

*

1

= 4.36 MB

Trong :

o 2112B l kch c d liu ti a c th mang trong gi s liu FCP. o 4.36 MB l tng kch c tiu .

* Ethernet:

1 66B 256MB * 1460B

*

1 = 11.57 MB

1 66B 256MB * 454B

*

1 = 37.22 MB

Trong :

o 1460B l kch c d liu ti a c th mang trong gi s liu Ethernet. o 454B l kch c d liu ti thiu c th mang trong gi s liu

Ethernet.

o 11.57 MB v 37.22 l tng kch c tiu tng ng vi tng trng hp.

S dng nhng cng ngh h tr nh TOEs hay iSCSI Accerleter s khc phc c nhc im ca iSCSI (thng lng truyn ti). Do iSCSI SAN l gii php kh hon thin. Bo vit s s dng gii php iSCSI SAN lm gii php lu tr trong h thng thng tin ca mnh.


___________________________________________________________________


CHNG 3: NG DNG SAN GII QUYT BI TON THC TIN

3.1 Gii thiu bi ton

Bo vit bt u hot ng kinh doanh bo him t 15/01/1965, c phm vi hot ng trn tt c cc tnh, thnh ph trong c nc v l mt trong 25 doanh nghip nh nc ln nht ca Vit Nam. K t ngy 30/06/2004, Bo vit s c t chc theo m hnh tp on ti chnh bo him vi hai tng cng ty trc thuc hch ton c lp kinh doanh hai mng nghip v nhn th v phi nhn th.

Vi mc tiu tr thnh tp on ti chnh hng u Vit Nam trong lnh vc

bo him nhn th, bo him phi nhn th, u t ti chnh v u t chng khon, Bo vit phi lun thc hin vic nng cao trnh qun l, cht lng phc v khch hng trong bt k lnh vc kinh doanh no ca tp on, t vic nghin cu pht trin cc sn phm, dch v ti vic t vn cho khch hng cc gii php ti u hoc xy dng cc mi quan h hp tc cht ch, cng pht trin vi khch hng v cc i tc. Vic ng dng cng ngh thng tin vo trong cc hot ng giao dch tr thnh mt yu t quan trng gip mc tiu ra sm tr thnh hin thc.

Nm 1995, Bo Vit xy dng h thng h tng cng ngh thng tin v cc ng dng cho hu ht nghip v kinh doanh trong Bo Vit. H thng thng tin Bo Vit hin c t chc theo m hnh phn tn v phn cp. Ti mi n v thnh

vin cc tnh thnh, Bo Vit xy dng c s h tng thng tin v trin khai nhng ng dng qun l nghip v thng nht trong ton ngnh.

Khng gian lu tr hin l mt trong nhng vn c quan tm trong nh

hng xy dng v pht trin c s h tng thng tin. Nhng con s thng k: hn 30 triu lt khch hng mi nm, hn 2 vn cn b nhn vin cc i l cn qun l v hn 6 ngn t ng doanh thu cn c tp hp, qun l v phn b trong nm phn no ni ln lng d liu pht sinh trong hot ng ca doanh nghip. Vn


___________________________________________________________________


khng gian lu tr cng tr ln thit yu khi Bo Vit c nh hng xy dng nhng ng dng trc tuyn, xy dng kho d liu (Dataware house), hay trin khai nhng dch v tch hp nh th thoi hay Call center.

3.2. Hin trng h thng thng tin

3.2.1. Cc thnh phn v kin trc kt ni ca h thng thng tin Bo vit

T chc thng tin ca h thng thng tin Bo vit bao gm: - Trung tm d liu t ti H ni. - Trung tm d liu t ti thnh ph H Ch Minh - H thng thng tin ca cc n v thnh vin

- H thng thng tin ti cc vn phng i din trc thuc n v thnh vin.

Kin trc kt ni Bo vit:

Public Commucation Area

Lease Line

Lease Line Lease Line

DialupDialup

Cng ty thnh vinWorkstation

LAN

Server

Server

LAN

ServerWorkstationServer Workstation

LAN

Server

LAN

Workstation

Cng ty thnh vin

Trung tm d liuH NiTrung tm d liuTP H Ch Minh

Hnh 29: S t chc mng truyn thng Bo Vit.

Trong :


___________________________________________________________________


- Hai trung tm d liu c trang b kt ni thu bao ring (lease line). Chng thc hin cp nht s liu trc tuyn vi nhau thng qua ng

truyn thng ny.

- Cc n v trao i s liu cng nh ly nng cp chng trnh thng qua

ng kt ni quay s (dialup). Trong tng lai gn c th cc kt ni ny s c nng cp ln lease line v s dng VPN trao i s liu vi cc trung tm d liu thng qua mng Internet.

3.2.2. H thng thng tin thnh phn

3.2.2.1. H thng thng tin ca trung tm d liu t ti H ni t ti 94 b triu, Trung tm thng tin l ni tp trung, x l, ng b d liu

nghip v ca ton Bo vit.

My ch: Trung tm c trang b cc my ch chy trn cc nn tng phn cng v phn mm khc nhau. Cc my ch cung cp cc loi hnh dch v khc nhau nh: c s d liu trn nn tng Oracle, dch v web da trn Oracle Portal, Dch v FTP, dch v lm vic nhm nh mail, dch v fax, qun l cng vn ..

Thit b CPU/ H iu hnh

Dung lng Lu tr

Dch v / ng dng

HP Proliant 530 Intel/Windows 2000

120 GB Qun l cng vn, Lotus Notes


120 GB K ton, T chc cn b.

HP LH6000 Intel/Windows 2000

60 GB Bo him phng tin, bo him con ngi - hc sinh, bo

him chy - xy lp, bo him tu - hng ha.

HP 9000 HP/ Unix 160 Bo him nhn th

HP 9000 HP/ Unix 160 Bo him nhn th


___________________________________________________________________



120 GB Lu s liu nghip v k ton

ca cc cng ty thnh vin

truyn v.


120 GB Lu s liu nghip v bo him nhn th ca cc cng ty

thnh vin truyn v.


120 GB Lu s liu nghip v bo him phi nhn th ca cc

cng ty thnh vin truyn v.

Thit b mng: Cc thit b mng c trang b cho trung tm u hot ng da trn nn tng IP.

Thit b Mc ch s dng Cisco 3600 RAS Cung cp kt ni t xa cho cc n v thnh vin, s

kt ni hin ang s dng l 16 ng.

Cisco 6500 Switch Cung cp kt ni trong ton b trung tm bng cch gn kt gia cc b chuyn mch knh quang v cc chuyn mch Ethernet khc. Ni cch khc n cung

cp trc xng sng cho cc phn on mng con.

Cisco Pix 525 - Firewall m nhn vic cung cp kt ni vi mng Internet v bo v mng LAN khi s thm nhp t bn ngoi.

Cisco 7800 Hot ng nh mt tng i, cung cp dch v thoi trn nn tng IP.

Cisco Switch 3550 c trang b cho cc tng, cung cp kt ni 100 Mb cho cc my trm vi nhau v 1Gb vi ng trc.

3.2.2.2. H thng thng tin ti cc n v thnh vin

Do s lng ng dng trin khai ti cc n v thnh vin thnh vin t hn nn thit b trang b cho n v c cu hnh thp. Cc ng dng chnh bao gm: c


___________________________________________________________________


s d liu trn nn Oracle, dch v lm vic nhm nh th v qun l cng vn trn nn Lotus Notes. D liu cc giao dch pht sinh trong a bn c tch ly ti y v s c truyn v trung tm d liu hng thng.

My ch: Do lm vic vi lng d liu nh hn nn cc n v thnh vin c trang b cc my ch c cng sut nh v dung lng lu tr t hn.

Thit b CPU/ H iu hnh

Dung lng Lu tr

Dch v/ ng dng

HP Proliant 370 Intel Xeon 2GHz

/Windows 2000 60 GB Lotus Notes v cc nghip

v c xy dng trn nn

tng File Server

HP A500 HP/Unix 40 GB Bvlife (c s d liu Oracle)

Thit b Mng: Cc n v thnh vin c trang b nhng thit b sau:

Thit b Mc ch s dng Cisco 3600 RAS Cung cp kt ni t xa cho cc vn phng i din t ti

cc huyn.

HP Switch Cung cp ng kt ni 10/100 Mb cho cc my trm

trong vn phng cng ty.

Modem 33.6 Kb L phng tin kt ni gia vn phng i din vi n v v n v vi trung tm thng tin.

H thng thng tin ti cc vn phng i din trc thuc n v thnh vin: bao gm h thng kt ni mng ngang hng s dng giao thc TCP/IP. cp ny, h thng thng tin khng c trang b my ch v cc ng dng ti y u da trn nn tng chia s tp tin. D liu cc giao dch trong ngy s c truyn v trao i thng qua kt ni dial-up vi n v thnh vin trc tip qun l.

3.2.3. Cc ng dng hin ang s dng ti Bo vit:


___________________________________________________________________


Chim a s l cc ng dng c s d liu ln, mi ng dng c th phc v cng tc qun l cho tng nhm nghip v bo him. Cc ng dng u c giao din ting vit v u s dng font TCVN3. Trong thi gian ti, khi cc d liu chuyn sang nh dng unicode th lng khng gian lu tr i hi s phi tng ng k.

Nhng ng dng chnh c s lng s liu ln hin ang c s dng ti Bo Vit bao gm:

BVLife - Bo him nhn th: (phn mm nn: Oracle) Nhim v:

o Qun l giy yu cu bo him cho tt c cc nghip v. o Qun l cp pht hp ng bo him. o Qun l cp nht, thay i cho cc hp hp ng bo him. o Lp k hoch v in ha n thu ph (ha n in sn - qun l m

vch). o Lp v qun l qu d phng. o Lp chng trnh chm sc khch hng.

o Qun l li chia hp ng bo him. o Qun l hp ng o hn.

Lng s liu: s liu qui chun l khong 140 GB nhng khng gian chim

thc t l gn 500 GB. Lng d liu pht sinh do: o Qun l gn 3 triu hp ng. o Qun l gn 20 triu giao dch trong mt nm. o Qun l hoa hng cho hn 2 vn i l. o Qun l li chia hng nm cho hn mt triu khch hng. o S liu c ly k t nm ny sang nm khc (hp ng c th ko

dai ti a l 17 nm). K ton: (phn mm nn: Foxpro)

Nhim v:


___________________________________________________________________


o Qun l hot ng thu chi hi s. o Qun l hot ng thu chi nghip v. o Qun l lng thng cc cn b trong doanh nghip. o Qun l chi hoa hng i l. o Qun l ti sn doanh nghip. o Qun l k hoch chi tiu trong doanh nghip. o Lp bo co ti chnh doanh nghip. o Lp bo co ti chnh ring bo cc b Ti chnh.

Lng s liu: s liu qui chun chim khong 12 GB hng nm pht sinh

ch yu do: o Qun l khong 60 triu giao dch trong mt nm.

T chc cn b: (phn mm nn: Foxpro) Nhim v:

o Qun l nhn s ca doanh nghip. o Qun l i l bo him. o Qun l chi nhnh v vn phng i din. o Qun l c cu phng ban trong cc n v thnh vin.

Lng s liu: s liu qui chun chim khong 100 MB pht sinh do: o Qun l h s ca hn hai vn cn b v i l. o Gn hai nghn chi nhnh trong c nc.

DocMan - Qun l cng vn: (phn mm nn: Lotus Notes) Nhim v:

o Qun l cng vn n, i ca doanh nghip. o Qun l cc vn bn ISO ca doanh nghip. o Qun l thng tin th trng. o Qun l nhim v ca cn b trong doanh nghip. o Qun l t trnh v trao i nghip v gia cc phng ban. o Tch hp vi h thng th in t intranet v internet ca doanh

nghip.


___________________________________________________________________


o Lp lch lm vic ca c nhn.

Lng s liu: Chim gn 60 GB c sinh ra ch yu t vic lu tr fax v th in t t nm 1999 n nay.

Bo him phng tin: (phn mm nn: Foxpro) Nhim v:

o Qun l nghip v bo him xe c gii bao gm: qun l cp n, qun l n, qun l hoa hng, qun l h s bi thng.

o Qun l n ch xe in sn. o Chm sc khch hng, ti tng hp ng bo him. o Bo co thng k, xy dng biu ph bo him xe

Lng s liu: hng nm chim hn 3 GB v c pht sinh ra qun l: o Hn hai triu xe c gii.

o Gn hai triu khch hng.

Bo him con ngi, hc sinh: (phn mm nn: Foxpro) Nhim v:

o Qun l nghip v bo him con ngi, hc sinh bao gm: qun l cp n, qun l n, qun l hoa hng, qun l h s bi thng.

o Qun l n ch in sn. o Chm sc khch hng, ti tng hp ng bo him. o Bo co thng k, xy dng biu ph bo him con ngi

Lng s liu: hng nm chim gn 5 GB v c pht sinh qun l: o Gn bn triu hc sinh cc cp.

Bo him chy, xy lp: (phn mm nn: Foxpro) Nhim v:

o Qun l nghip v bo him chy, xy lp bao gm: qun l cp n, qun l n, qun l hoa hng, qun l h s bi thng.

o Qun l n ch in sn. o Chm sc khch hng, ti tng hp ng bo him. o Bo co thng k.


___________________________________________________________________


Lng s liu: Chim hn 1GB phc v qun l hn 100 000 i tng bo him khc nhau

Bo him hng ha: (phn mm nn: Foxpro) Nhim v:

o Qun l nghip v bo him hng ha: qun l cp n, qun l n, qun l hoa hng, qun l h s bi thng, ti bo him.

o Qun l n ch in sn. o Chm sc khch hng, ti tng hp ng bo him. o Bo co thng k.

Lng s liu: Chim hn 2GB phc v qun l gn 300 000 lt chuyn ch hng ha trong nm.

Vi lng d liu ln nh vy, Vic gii quyt bi ton lu tr l rt cn thit. N l c s duy tr hot ng ca cc ng dng hin ti v xy dng nhng ng dng mi phc v hot ng kinh doanh ca Bo vit.

3.2.4. H thng lu tr

D liu nghip v ca ton Bo vit u tp trung v trung tm d liu. Do

ln ca d liu ln nn vic lu tr phi phn tn ra nhiu my ch. Trung tm d liu bo vit hin t chc lu tr nh sau:

Lu tr d liu ca cc n v thnh vin: - S dng mt my ch HP Proliant 530 lu tr s liu do cc cng ty

thnh vin truyn v cho cc nghip v sau: hng ha, bo him hc sinh, bo him con ngi, bo him xe c gii, bo him chy.

- S dng mt my ch HP Proliant 530 lu tr s liu do cc cng ty thnh vin truyn v cho nghip v k ton.

- S dng mt my ch HP Proliant 530 lu tr s liu do cc cng ty thnh vin truyn v cho nghip v bo him nhn th.

Lu tr d liu tc nghip: - My ch ng dng c s dng lu tr d liu cho nghip v tng


___________________________________________________________________


ng


___________________________________________________________________


n phc tp. ng thi phi cn bng cc yu t: sn sng, tc , s lng thit b phi trang b. Kin trc SAN ca trung tm thng tin Bo vit c d kin nh hnh 30.

iSCSI SAN

IBM

3C om3Com

Thit bl- u tr iSCSI

M y nghip vM y nghip v

IP LAN

IBM

IBM

WAN

- ng thubao ring

T- ng la

2Gbps

Thit bl- u tr iSCSI

Thit bl- u tr iSCSI

B chuyn m ch

M y chng dng:

BVLifeM y ch

ng dng:Lotus Notes

M y chng dng:K to n

M y chng dng:

Phi nhn th

2Gbps

Thit bb ng t

iSCSI SAN t i thnhph H Ch Minh

B chuyn m ch

2Gbps

2Gbps

2Gbps

2Gbps

Hnh 30 - Kin trc iSCSI SAN ca Bo vit

3.3.2.2. La chn thit b mng

H thng mng Bo vit c xy dng ch yu t nhng thit b ca hng Cisco cung cp v c vn hnh bi mt k s cng ngh thng tin. Vic s dng thit b ca mt hng khc s lm cho h thng mng phi i mt vi nhng vn v tnh tng thch, v km theo l phi o to thm cho ngi vn hnh. Hin


___________________________________________________________________


nay, Cisco l hng cung cp thit b mng uy tn ln nht trn th gii, do , vic tip tc s dng sn phm ca Cisco l ph hp.

phc v cho vic thit lp mng SAN, Cisco a ra sn phm Cisco

catalyst 6509 switch vi nhiu tnh nng u vit. Sn phm ny c thit k cho mi trng doanh nghip vi nhiu tnh nng mnh v mi ca cng ngh mng LAN truyn thng. Nhng thng s k thut ca thit b c li trong vic ng dng vo SAN bao gm:

Bng thng:

Mt im bt li ca SAN da trn nn tng TCP/IP l t s bng thng hu ch trn bng thng cho php khng cao nn vic tng cng ti a bng thng tng mng s ngn nga s xut hin nt chai ti tng TCP/IP trong

SAN.

- Backplane: 32Gbps shared bus - Port max speed: 10 Gbps

Kh nng m rng:

Cc trung tm d liu thng trang b mt s lng ln thit b lu tr, my ch v mi thit b trn li c th thit lp nhiu kt ni (multi path) n nhau nhm nng cao bng thng hay tng cng chu li ca h thng. S lng cng kt ni phn nh kh nng m rng ca SAN v l mt yu t cn c

cn nhc m bo kh nng m rng theo nhu cu ny sinh trong hot ng kinh doanh. - 10/100/1000 Ethernet : 576 ports, all support Inline Power - 10/100 Fast Ethernet : 1152 ports, all support Inline Power - 100 Base FX : 288 ports

- Gigabit Ethernet : 194 ports (2 ports provided on supervisor engine) - 10 Gigabit Ethernet : 32 ports

H tr kt ni WAN:


___________________________________________________________________


Tnh nng ny l cn thit cho vic trao i d liu gia hai trung tm ca Bo Vit t ti H ni v thnh ph H Ch Minh thng qua knh thu bao ring. N gip cho vic cu hnh nh mt SAN t xa (remote SAN) cho trung tm d liu ti thnh ph H Ch Minh c thun li.

- OC-3 POS ports : 192 - OC-12 POS ports : 48

- OC-12 POS ports : 24

- OC-48 POS/DPT ports : 24

- Digital T1/E1 Trunk ports : 216 - FXS Interfaces : 864

Tch hp bo mt: Vic tch ri SAN khi LAN cng l mt hnh thc bo mt khng cho ngi dng thc hin bin i d liu mt cc tri php. Tuy nhin trong nhiu trung tm d liu cn yu cu vic bo mt phi cht ch hn. V d nh nhng trung tm c nhiu ngi qun tr, mi qun tr vin li qun tr mt nhm my

ch ng dng ring r. V cc my ch ny c gn vo IP SAN nn vic i hi phn vng d liu cho cc my ch ng dng v m bo cho phn vng d liu ny khng b truy xut bi cc my ch phn vng d liu khc. Cc tnh nng h tr bo mt ca Cisco catalyst 6509 switch bao gm:

o Gigabit firewall.

o High-performance SSL.

o Gigabit VPN and standards-based IP Security (IPSec) o VPN layer 2.

sn sng cao:

Cho php kt ni nhiu ng (multi path) nhm m bo tnh sn sng v tng bng thng cho SAN. Trong mng LAN thng thng, khng n gin l ch to nhiu kt ni song song l thc hin c kt ni nhiu ng v hin

tng gi tin i vng c th xy ra. Cisco catalyst 6509 switch h tr thm


___________________________________________________________________


mt s giao thc c bit lm cho vic kt ni nhiu ng tr nn d dng. Cc giao thc bao gm:

o Gateway Load Balancing Protocol. o Hot Standby Router Protocol. o Multimodule EtherChannel. o Rapid Spanning Tree. o Multiple Spanning Tree.

o Per VLAN Rapid Spanning Tree. o Rapid Convergence L3 Protocols.

3.3.2.3. La chn thit b lu tr

Do giao thc nn tng c chn la l iSCSI nn thit b lu tr cng s phi tng thch vi giao thc ny. IBM l nh sn xut tin phong trong vic xy dng v pht trin chun iSCSI v hin nay hng c mt s dng sn phm lu tr iSCSI. IBM IP Storage 200i model 210 l mt sn phm c cu hnh mnh nht ca hng hin nay, c thit k lm vic trn mi trng hn hp (WinNT, Windows 2000, Linux) v c gi thnh hp l nn ph hp vi mi trng phn mm v qui m ca Bo Vit. Cc thng s v thit b lu tr c th hin qua bng:

Giao tip mng v kt ni: c trang b sn giao tip mng 10/100/1000 Mbps hoc giao tip quang (mng quang hot ng theo c ch LAN). Giao tip mng s c b sung thm khi cn nh cc khe cm cn trng. - Network 10/100/1000 or Gigabit Fibre

- PCI slots 5 (4x64-bit and 1x32-bit)

Khng gian lu tr: phm vi dao ng ca khng gian lu tr kh rng t mc

192GB n mc ti a l 3.5 TB. iu ny cho php gim thiu chi ph trang b ban u v b sung khng gian lu tr khi cn.


___________________________________________________________________


- Disk type/ capacity/

speed Ultra160 SCSI / 36.4 GB / 10 000 rpm Ultra160 SCSI / 73.4 GB / 10 000 rpm (option)

- Number of disks/ capacity (min.)

3 / 109.2 GB

- Number of disks/ capacity (max.)

6/440.4 GB (internal) 48/3.52 TB (with three 4125 Expanded)

Kh nng x l: h thng c trang b ti a 1 GB b nh trong v 2 b vi x l hot ng theo c ch a x l i xng. iu ny l rt cn thit bi giao thc TCP/IP chim ti nguyn CPU c bn ngun, bn ch hay c nhng thit b nh tuyn. - Processor Two 1.13-GHz Pentium III with 133-MHz

front-side bus - Level 2 cache per processor 512 KB - Memory ECC SDRAM memory 1 GB

Kh nng chu li: m bo kh nng hot ng lin tc, h thng c trang b nhng cng ngh phng nga li da trn phng php d tha. Cc thnh phn d tha ca h thng bao gm ngun v phn a cng. - RAID accelerator ServeRAID 4H - four-channel

- Power supply Three 250-W (hot swap, auto-restart and redundant)

Phn mm: IBM IP Storage 200i model 210 c trang b sn mt cng 20GB cha cc phn mm i km v cc phn mm c b sung sau ny. - Internal disk 20-GB IDE 20-GB IDE

- Operating system Linux

- Network management SNMP

- Remote administration Web-based GUI Web-based GUI - Configuration IBM ServeRAID Manager RAID Configuration

and Monitoring. IBM Appliance Configuration Utility.


___________________________________________________________________


3.3.2.4. La chn thit b sao lu

V khi lng d liu ca Bo Vit phi sao lu l rt ln, nn vic ch s dng mt bng t l khng kh thi. Chng ti la chn cho gii php sao lu l IBM TotalStorage Ultrium Scalable Tape Library 3583. Gii php ny cho php s dng nhiu bng t trong qu trnh sao lu v t ng ho cng vic sao lu. Cc thng s k thut chnh ca thit b bao gm:

Dung lng: Thit b cho php sao lu lng d liu kh ln, ngay c khi s dng ch sao lu ton phn (Full Backup) th n vn m bo khng gian cha d liu Bo vit hn mt thng. - Media type : IBM TotalStorage LTO Ultrium 200GB Data

Cartridge - Capacity per cartridge : Up to 400 GB per cartridge compressed - Number of tape cartridges : 72 - Total Capacity per library : Up to 28.8TB compressed; 14.4TB native

Tc sao lu: tc ca thit b ny cho php sao lu ton b d liu ca Bo Vit ch mt khong mt gi. Vic gim thiu thi gian sao lu l yu t

quan trng nng

Documents

NGHIÊN CỨU VỀ MẠNG LƯU TRỮ VÀ ðỀ XUẤT PHƯƠNG ÁN MẠNG LƯU TRỮ ỨNG DỤNG CHO TỔNG CÔNG TY BẢO HIỂM VIỆT NAM