Beruflich Dokumente
Kultur Dokumente
Introduction 2
Terminology 2
Restrictions 3
iSCSI target configuration 3
Enabling iSCSI service 3
Configuring discovery methods 4
Determining authentication 5
Creating an iSCSI LUN 6
iSCSI initiator configuration on Windows 8
iSCSI initiator configuration on Linux 18
iSCSI initiator configuration on Mac 25
iSCSI initiator configuration on VMware ESX 30
iSCSI connection using StorCenter Manager 31
SUMMER 2009
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
INTRODUCTION
Iomega StorCenter ix4-200r is both NAS and IP SAN storage device designed to serve small- and medium-sized
businesses that look for great reliability, ease of use, and ease of management characteristics. This document is
intended for system administrators who plan to store data on iSCSI logical units (LUNs) provided by a StorCenter ix4-
200r NAS server.
iSCSI (Internet Small Computer Systems Interface) is a transport protocol for sending SCSI packets over a TCP/IP
network. iSCSI initiators and targets are the key components in an iSCSI architecture. Initiators and targets are either
software or hardware devices that package and transfer SCSI information over an IP network. An iSCSI initiator
encapsulates SCSI commands, data, and status information in iSCSI packets and sends the packets to an iSCSI target
that resides on a storage device.
This document describes how to configure and manage iSCSI targets and LUNs on a StorCenter ix4-200r storage
server and how to configure iSCSI initiators on a Windows or Linux host system.
TERMINOLOGY
t CHAP: Challenge Handshake Authentication Protocol. Access control protocol for secure authentication using
shared passwords called secrets.
t Digest: iSCSI protocol error-checking method used to verify the integrity of an iSCSI packet header (header digest) or
payload data (data digest) using a checksum.
t iSCSI: Internet Small Computer System Interface. A protocol for sending SCSI packets over a TCP/IP network.
t iSNS: Internet Storage Name Service. Discovery and naming protocol designed to facilitate the automated discovery,
management, and configuration of iSCSI and Fibre Channel Protocol (FCP) devices on a TCP/IP network.
t iSCSI host: computer hosting an iSCSI initiator.
t iSCSI initiator: iSCSI endpoint, identified by a unique iSCSI name, which begins an iSCSI session by issuing a
command to the other endpoint (the target).
t IQN: iSCSI Qualified Name. Naming standard supported by the iSCSI protocol. IQN names are globally unique and
in the form of “iqn,” followed by a date and a reversed domain name.
t iSCSI target: iSCSI endpoint, identified by a unique iSCSI name, which executes commands issued by the iSCSI initiator.
t LU: Logical Unit. For iSCSI on an Iomega ix4-200r server, a logical unit is an iSCSI software feature that processes
SCSI commands, such as reading from and writing to storage media. From an iSCSI host perspective, a logical unit
appears as a disk device.
t LUN: Logical Unit Number. Identifying number of a SCSI or iSCSI object that processes SCSI commands. The LUN
is the last part of the SCSI address for a SCSI object. The LUN is an ID for the logical unit, but the term is often used
to refer to the logical unit itself.
White Paper 2
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
t LUN mask: A set of access permissions that identify which iSCSI initiator can access specific LUNs on a target.
t SCSI: Small Computer System Interface. Standard set of protocols for host computers communicating with attached
peripherals.
RESTRICTIONS
The following restrictions and limitations apply in the latest Lifeline 2.0 firmware release. They may be removed in
future releases without advance notice.
w The StorCenter ix4-200r supports a total of 32 iSCSI targets per device.
w Each iSCSI target on the StorCenter ix4-200r contains only one iSCSI LUN.
w The StorCenter ix4-200r does not support iSCSI digests.
w Each iSCSI session on the Iomega ix4-200r allows only one connection.
w Microsoft Multipath I/O (MPIO) is not currently supported by a StorCenter ix4-200r target.
w iSCSI snapshot and replication are not currently supported on a StorCenter ix4-200r.
w No Microsoft Volume Shadow Copy Service (VSS) provider is available on the StorCenter ix4-200r.
White Paper 3
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
The StorCenter ix4-200r supports two ways of target discovery: the SendTargets command and using the Internet
Storage Name Service (iSNS) server. SendTargets is the simple and default discovery method; it requires an initiator to
know the IP address and port number of the target. The port number used is 3260, the default port defined in the
iSCSI protocol.
To utilize the iSNS method, go to Settings > iSCSI (Figure 1). From there, you can choose to use either a local iSNS
server integrated within your device, or you can specify the host name or IP address of an external iSNS server. When
using the built-in iSNS server, the server’s host name and IP address are the Iomega device name and IP address
respectively.
Enabling iSNS discovery does not preempt the SendTargets discovery method; both will be available. The Microsoft
iSCSI Initiator supports both discovery methods. However, the Open-iSCSI initiator and globalSAN iSCSI initiator
mentioned in this document do not support the iSNS discovery method.
Note: when using the SendTargets method, the IP address of a target is required. By default, the StorCenter ix4-200r
device assigns device IP dynamically using the DHCP protocol. To prevent the initiator from losing discovered targets
due to the Iomega device IP change, you should assign a static IP address to the Iomega device instead. To assign a
static IP, go to Settings > Network Services > Network Settings.
White Paper 4
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
w Mutual Challenge-handshake Authentication Protocol (CHAP): this is a global setting available from the Settings >
iSCSI page. You need to specify a CHAP secret if you choose this method. This is the device secret and must be the
same as specified in an initiator’s Mutual CHAP setting for the initiator to be able to log on.
w One-way CHAP: there is no setting for this option on the device. The user account that is granted access to an iSCSI
drive is needed during authentication. In this case, the CHAP name is the user name, and the target CHAP secret is
the user password. This is true whether the user account is in workgroup mode or Active Directory mode.
w Unsecured: when a drive is created but not secured, there is no CHAP authentication required. Any initiator can
access the target without authentication.
On the StorCenter ix4-200r, when a new iSCSI drive is created on the device, a single-drive target is created
automatically with the drive. If the drive is not secured, then the corresponding target will not require authentication
even if the global Mutual CHAP is enabled. If the drive is secured instead, then the corresponding target will use
Mutual CHAP if it is set, otherwise, the target will use one-way CHAP.
Note that an iSCSI initiator requires the CHAP secret length to be 12-16 characters if IPSec is not used. Therefore, you
should specify a CHAP secret within this range on your Mutual CHAP setting. In the case of one-way CHAP and the
user password is not within this range, you should pad the password with “*” to make it 12 characters long, or on the
other hand, truncate the password to 16 characters long in the initiator as the target CHAP secret.
White Paper 5
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
Note: In this white paper, the Mutual CHAP device secret is set to abcdefghijkl.
White Paper 6
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
7. Click OK to go back to the list of Shared Storage on the device, the newly created drive is listed. You can click
the icon to view the drive information, the icon to modify the drive, or the icon to delete the drive.
White Paper 7
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
Note: In this white paper, for demonstration purpose, the admin user account is granted read/write access to the drive.
The account’s password is set to 12345678. Since the account password is less than 12 characters long, you need to
pad it with * to make the target secret 12345678**** in initiators.
White Paper 8
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
White Paper 9
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
2. If Mutual CHAP is enabled on the Iomega NAS device, click Secret to enter the device secret abcdefghijkl set
on the Iomega device.
b. If using the iSNS method, click Add below the iSNS Servers pane to enter the hostname or IP address of the iSNS
server to be used. In our example, the device built-in iSNS server is used, so the IP address of the Iomega device is
entered.
White Paper 10
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
4. After either the SendTargets information or iSNS server is specified, click the Targets tab to see the list of
targets available on the Iomega NAS device. The iSCSI drive created previously should be there with the status being
Inactive.
White Paper 11
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
a. If the iSCSI drive is not secured on the Iomega NAS device, click OK to log on to the target.
b. If the iSCSI drive is secured on the Iomega device, click Advanced to specify CHAP information. Check CHAP logon
information, and enter admin as the CHAP user name. Since the account password 12345678 is less than 12
characters long, you need to pad it with * to make the target secret 12345678****.
c. If Mutual CHAP is enabled on the Iomega device, check Perform mutual authentication.
White Paper 12
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
3. Click OK to complete the logon process, the status of the target should now show as Connected.
4. The target is a Persistent Target that the initiator will attempt to reconnect each time the computer is rebooted.
White Paper 13
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
Creating a disk
After the iSCSI initiator has logged on successfully, you can use the Microsoft Disk Management snap-in to locate the
iSCSI drive presented by the target and manage the drive.
1. Run compmgmt.msc to bring up Computer Management, and select Disk Management in the console tree.
2. The Iomega iSCSI drive will be displayed with the status being Unknown and Not Initialized. Select the drive, and
choose Action > All Tasks > Initialize Disk to initialize the drive.
3. Click OK and the disk status should be changed to Basic and Online. The disk is now available for use.
White Paper 14
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
4. Select the Unallocated disk, choose Action > All Tasks > New Partition to create a partition on the disk. The New
Partition Wizard is run.
5. Choose the type of partition you want to create.
White Paper 15
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
9. The iSCSI drive on the Iomega device is now ready to use on the host just like a local hard disk.
White Paper 16
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
White Paper 17
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
3. Check the target identifier and click Log off and then click OK. The target status changes to Inactive and the iSCSI
drive is no longer available to the host.
1. For an existing StorCenter ix4-200r storage device with initiator CHAP already configured, stop the iSCSI service on
the Linux host.
RedHat:
/etc/init.d/iscsi stop
SuSE:
/etc/init.d/open-iscsi stop
2. Set the run levels for the iSCSI service to start automatically on reboot and shutdown:
RedHat:
chkconfig --level 345 iscsid on
SuSE:
chkconfig –s open-iscsi 345
chkconifg –s open-iscsi on
White Paper 18
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
Note: the settings in the iscsid.conf file are global to the initiator. It means that the initiator will try to connect to all
iSCSI targets using these settings by default. However, you can specify these settings using Open-iSCSI commands for
an individual target connection. Please skip this section if you do not want to set these variables globally.
1. Open the /etc/iscsi/iscsid.conf file on RedHat or /etc/iscsid.conf file on SuSE with vi or another editor.
2. Uncomment (remove the # symbol) before the following variable settings and enter the values accordingly:
node.startup = automatic
node.session.auth.authmethod = CHAP
node.session.auth.username = admin
node.session.auth.password = 12345678****
3. If Mutual CHAP is enabled on the Iomega device, set the following variables:
node.session.auth.username_in = iscsi
node.session.auth.password_in = abcdefghijkl
1. Run the following command to discover targets available on the StorCenter ix4-200r. The command will return a list
of targets.
# iscsiadm –m discovery –t sendtargets –p 10.6.126.153:3260
10.6.126.153:3260,1 iqn.1992-04.com.emc:ix4-200r.rtpsoho1.WLKLUN2
10.6.126.153:3260,1 iqn.1992-04.com.emc:ix4-200r.rtpsoho1.W2K3LUN
10.6.126.153:3260,1 iqn.1992-04.com.emc:ix4-200r.rtpsoho1.RepliStorLUN
10.6.126.153:3260,1 iqn.1992-04.com.emc:ix4-200r.rtpsoho1.W2K8LUN
10.6.126.153:3260,1 iqn.1992-04.com.emc:ix4-200r.rtpsoho1.XPLUN
10.6.126.153:3260,1 iqn.1992-04.com.emc:ix4-200r.rtpsoho1.DemoLUN
10.6.126.153:3260,1 iqn.1992-04.com.emc:ix4-200r.rtpsoho1.WLKLUN3
10.6.126.153:3260,1 iqn.1992-04.com.emc:ix4-200r.rtpsoho1.EXCHANGELUN
10.6.126.153:3260,1 iqn.1992-04.com.emc:ix4-200r.rtpsoho1.WLKLUN1
10.6.126.153:3260,1 iqn.1992-04.com.emc:ix4-200r.rtpsoho1.ESXLUN
10.6.126.153:3260,1 iqn.1992-04.com.emc:ix4-200r.rtpsoho1.EXCHANGELOG
White Paper 19
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
3. Run the following commands to specify CHAP settings for the target if you haven’t set the global settings previously
in iscsid.conf.
# iscsiadm -m node -T iqn.1992-04.com.emc:ix4-200r.rtpsoho1.DemoLUN -p 10.6.126.153 --op update -n
node.session.auth.authmethod -v CHAP
# iscsiadm -m node -T iqn.1992-04.com.emc:ix4-200r.rtpsoho1.DemoLUN -p 10.6.126.153 --op update -n
node.session.auth.username -v admin
# iscsiadm -m node -T iqn.1992-04.com.emc:ix4-200r.rtpsoho1.DemoLUN -p 10.6.126.153 --op update -n
node.session.auth.password -v 12345678****
4. If Mutual CHAP is enabled on the Iomega device, run the following commands if you haven’t set the global settings
previously in iscsid.conf.
# iscsiadm -m node -T iqn.1992-04.com.emc:ix4-200r.rtpsoho1.DemoLUN -p 10.6.126.153 --op update -n
node.session.auth.username_in -v iscsi
# iscsiadm -m node -T iqn.1992-04.com.emc:ix4-200r.rtpsoho1.DemoLUN -p 10.6.126.153 --op update -n
node.session.auth.password_in -v abcdefghijkl
5. Run the following command to automatically restore the iSCSI connection to the target each time the host is
rebooted if you haven’t set the global setting previously in iscsid.conf.
# iscsiadm -m node -T iqn.1992-04.com.emc:ix4-200r.rtpsoho1.DemoLUN -p 10.6.126.153 --op update -n node.startup
-v automatic
If you are running SuSE 10 or higher, you can alternatively use the YaST utility.
1. Open the YaST utility.
2. Select Network Services > iSCSI Initiator > iSCSI Initiator Overview.
White Paper 20
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
4. Click Next and all the targets on the Iomega device are listed.
5. Select the target to log on and click Connect. If the target is not secured, check No Authentication and proceed.
White Paper 21
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
6. If the target is secured, enter the Username and Password for Outgoing Authentication as admin and 12345678****
respectively. If Mutual CHAP is enabled on the Iomega device, enter the Username and Password for Incoming
Authentication as iscsi and abcdefghijkl respectively.
White Paper 22
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
8. Click Next and change the start-up mode from manual to automatic by clicking the Toggle Start-Up button.
Creating a disk
After the iSCSI initiator has logged on successfully, you can use the Linux fdisk utility to manage the iSCSI drive.
1. A new SCSI drive is listed in the directory /dev after the iSCSI target logon. However, the device will not always have
the same name each time the host is booted. Run the following command to find out which device is the iSCSI drive:
# ls -l /dev/disk/by-path/
total 0
lrwxrwxrwx 1 root root 9 May 29 19:04 ip-10.6.126.153:3260-iscsi-iqn.1992-04.com.emc:ix4-200r.rtpsoho1.DemoLUN ->
../../sdb
lrwxrwxrwx 1 root root 9 May 28 23:55 pci-0000:00:07.1-ide-0:0 -> ../../hda
lrwxrwxrwx 1 root root 9 May 28 23:55 pci-0000:00:10.0-scsi-0:0:0:0 -> ../../sda
lrwxrwxrwx 1 root root 10 May 28 23:55 pci-0000:00:10.0-scsi-0:0:0:0-part1 -> ../../sda1
lrwxrwxrwx 1 root root 10 May 28 23:55 pci-0000:00:10.0-scsi-0:0:0:0-part2 -> ../../sda2
2. From the return you can see the iSCSI drive on the Iomega NAS device is mapped to /dev/sdb. Run the following
command to create a partition on the disk.
# fdisk /dev/sdb
White Paper 23
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
3. At the prompt, enter n to create a new partition, and use the default values to create a primary partition.
Command (m for help): n
Command action
e extended
p primary partition (1-4)
p
Partition number (1-4): 1
First cylinder (1-261, default 1): 1
Last cylinder or +size or +sizeM or +sizeK (1-261, default 261): 261
5. Create a file system in the partition. You can create any type of file system supported on Linux. In this white paper,
ext3 is chosen as the example.
# /sbin/mkfs.ext3 /dev/sdb1
6. vi or use another editor to open /etc/fstab and add an entry in the mount table.
/dev/sdb1 /iomega_iscsi ext3 _netdev 00
7. Create a directory as the file system mount point, and mount the newly created file system.
# mkdir /iomega_iscsi
# mount /iomega_iscsi
2. Alternatively, if you are running SuSE 10 or higher, go to YaST and click Log Out as shown in Figure 30.
White Paper 24
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
White Paper 25
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
4. Click OK and the list of targets on the Iomega NAS device is displayed in the Targets tab.
White Paper 26
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
1. Select the target to connect, check Persistent so that the initiator automatically logs on to the target every time the
host reboots. Then click Connected.
a. If the target is not secured, click Connect to proceed.
b. If the target is secured, check Use CHAP Login Information and enter admin and 12345678**** in the User Name
and Target Secret fields, respectively.
c. If Mutual CHAP is enabled on the Iomega device, enter abcdefghijkl in the Initiator Secret field.
2. Click Connect to proceed. The first time you log on to the target, a popup message is shown to remind you the disk
is not initialized.
White Paper 27
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
Creating a disk
1. Click Initialize in Figure 36 to bring up the Disk Utility.
White Paper 28
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
2. Go to the Partition tab, select 1 Partition in the Volume Scheme dropdown list, enter a name for the partition to be
created, and select the file system format for the partition.
3. Click Apply to create the partition. The disk is now ready for use.
White Paper 29
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
VMware ESX Server 4.0 adds support for Mutual CHAP. Follow the steps below to configure CHAP authentication. The
rest of the iSCSI configuration process remains the same as on VMware ESX Server 3.5.
White Paper 30
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
2. Select Required from the Select option in the CHAP pane, then enter admin and 12345678**** for the Name and
Secret, respectively.
3. Select Required from Select option in the Mutual CHAP pane, then enter iscsi and abcdefghijkl for the Name and
Secret, respectively.
To install the Microsoft iSCSI Initiator, refer to section Installing the Microsoft iSCSI software initiator in this document.
After the Microsoft initiator is installed, a new connect icon displays next to the iSCSI drive on the Shared Storage
page. You click this icon to connect the iSCSI drive..
White Paper 31
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
1. Click the icon, The Connect iSCSI Drive page opens. Specify the drive letter to use.
2. If Mutual CHAP is enabled on the Iomega device, the Device Secret field will display. Enter the secret abcdefjhijkl.
Because you are logged in to the StorCenter Manager as the Admin user, the software knows the CHAP user name and
secret. There is no need to supply the initiator CHAP information here.
White Paper 32
STORCENTER IX4-200r NAS WITH VMWARE ESX SERVER 3.5
3. Check Format Using and select either NTFS or FAT32 to format the iSCSI drive.
4. Click Apply. Upon completion, the client software formats the iSCSI drive in the background, and when done,
presents the drive to the host just like a local hard disk mounted at the drive letter you specified. The flag turns
into .
5. To disconnect the drive from the host, click from the client software.
©2009 Iomega Corporation. All rights reserved. Iomega, StorCenter, and the stylized “i” logo are either registered trademarks or trademarks of Iomega Corporation in the United States and/or other countries. EMC, Lifeline, and Retrospect are registered trademarks of
EMC Corporation in the U.S. and/or other countries. VMware is a registered trademark of VMware, Inc. Linux is a registered trademark of Linus Torvalds. Microsoft and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States
and/or other countries. Macintosh and Mac are either registered trademarks or trademarks of Apple Computer Inc. in the United States and/or other countries. Certain other product names, brand names and company names may be trademarks or designations or their
respective owners. Iomega's specific customer support policies (including fees for services) and procedures change as technology and market conditions dictate. Product in photos may vary slightly from product in package. Product capacities are specified in gigabytes
(GB), where 1GB = 1,000,000,000 Bytes. To obtain information about Iomega’s current policies please visit Iomega at www.iomega.com or call 1-888-4iomega (1-888-446-6342). iSWP-0909-01