Logical Unit Number Masking
From Wikipedia, the free encyclopedia
Logical Unit Number Masking or LUN masking is an authorization process that makes a Logical Unit Number available to some hosts and unavailable to other hosts.
The security benefits are limited in that with many HBAs it is possible to forge source addresses (WWNs/MACs/IPs). However, it is mainly implemented not as a security measure per se, but rather as protection against misbehaving servers from corrupting disks belonging to other servers. For example, Windows servers attached to a SAN will under some conditions corrupt non-Windows (Unix, Linux, NetWare) volumes on the SAN by attempting to write Windows volume labels to them. By hiding the other LUNs from the Windows server, this can be prevented, since the Windows server does not even realise the other LUNs exist.
[edit] External links
 |
This computer storage-related article is a stub. You can help Wikipedia by expanding it. |
One of the server-access security technologies in ETERNUS600 is LUN Mapping. LUN Mapping associates the Logical Unit Numbers (LUNs) used by servers for accessing logical volumes, and the uniquely defined LUNs on each ETERNUS6000 where the logical volumes are stored. This enables servers to access different logical volumes using the same LUN. In Figure 17, LUN-0 of server A is assigned to LUN-1 in the ETERNUS6000 whereas LUN-0 of server B is assigned to LUN-3 in the ETERNUS6000.
