Solved

SAN - physical vs logical distinction of LUNs

Posted on 2013-06-14
4
302 Views
Last Modified: 2013-06-20
Let's say 10 organizations have their SAN storage in one central location. Their LUNs are all logically seperated out, but they are all part of the same physical SAN.

1)If the 10 entities are all maintaining their own private data collections, is there any vulnerability for the data? Is Logical seperation enough?

2)Would it be cost-prohibitive for each organization to have their own SAN physically distinct from the others.

Thanks.
0
Comment
Question by:25112
  • 2
4 Comments
 
LVL 119

Assisted Solution

by:Andrew Hancock (VMware vExpert / EE MVE^2)
Andrew Hancock (VMware vExpert / EE MVE^2) earned 333 total points
ID: 39248783
1. Yes, you would need very tight security controls, to prevent LUNs be accessible from other organisations.

2. Storage virtualisation is much cheaper, than all organisations having their own SAN.
0
 
LVL 5

Author Comment

by:25112
ID: 39249247
>>1. Yes, you would need very tight security controls, to prevent LUNs be accessible from other organisations.

what would be the standards for these tight security controls.. can you suggest any link i can read about this?

>>2. Storage virtualisation is much cheaper, than all organisations having their own SAN.
can you please give a money figure example (approximate) so i can understand what extent
0
 
LVL 119

Assisted Solution

by:Andrew Hancock (VMware vExpert / EE MVE^2)
Andrew Hancock (VMware vExpert / EE MVE^2) earned 333 total points
ID: 39249290
depends on the SAN, Fibre Channel or iSCSI.

If Fibre Channel it would be controlled by Zoning and HBA WWNN, if iSCSI it would be controlled by CHAP Secrets (a password to access the iSCSI LUN), and IQN/HBA node names.

see here
vSphere Storage Guide

£20-£25k per Single SAN approx 14TB RAW - e.g. Dell EqualLogic 4100
0
 
LVL 55

Accepted Solution

by:
andyalder earned 167 total points
ID: 39253193
Data security is covered by LUN masking so they can't access each others LUN. That doesn't do anything for performance though, if one of them runs IOmeter all day (or stressful SQL queries) performance for the other companies may suffer.
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Is your company's data protection keeping pace with virtualization? Here are 7 dynamic ways to adapt to rapid breakthroughs in technology.
The business world is becoming increasingly integrated with tech. It’s not just for a select few anymore — but what about if you have a small business? It may be easier than you think to integrate technology into your small business, and it’s likely…
This tutorial will walk an individual through the process of installing the necessary services and then configuring a Windows Server 2012 system as an iSCSI target. To install the necessary roles, go to Server Manager, and select Add Roles and Featu…
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…

791 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question