Huawei X6800 Скачать руководство пользователя страница 29 | Manualshive

Страница: 29 / 52

background image

4

Security Management

4.1 Compute Node

4.1 Compute Node

Compute nodes support security solutions based on the Trusted Platform Module (TPM).

The TPM is a security chip that complies with the Trusted Computing Group (TCG) TPM
specification. The hardware-based TPM provides data encryption, password protection,
authentication, and internal resource protection. The TPM is available.

The TPM is installed on a compute node and connects to the compute node through a port.
You can access a compute node with the TPM only after authorization, which ensures data
security based on hardware.

4.2 MM

The MM security involves hierarchical command protection, remote Secure Shell (SSH)
login, and Simple Network Management Protocol (SNMP) encrypted authentication.

Hierarchical Command Protection

To ensure operation security, only the user who has passed the authentication can access the
MM through an Ethernet port.

The MM provides hierarchical protection for command lines. The commands are classified
into commands of the monitoring level, configuration level, and management level in
ascending order. Login users are classified into common user, operator, and administrator.
After logging in to the MM, a user can run only the commands corresponding to or lower than
the specified level.

Remote SSH Login

The MMs support Secure Shell (SSH), which provides security protection and verification
functions. SSH defends against various attacks on an insecure network. The MMs also

HUAWEI X6800 Server
Technical White Paper

4 Security Management

Issue 02 (2019-03-13)

Copyright © Huawei Technologies Co., Ltd.

23

«
...
27
28
29
30
31
...
»

Содержание X6800

Страница 1: ...HUAWEI X6800 Server V100R005 Technical White Paper Issue 02 Date 2019 03 13 HUAWEI TECHNOLOGIES CO LTD ...

Страница 2: ...scribed in this document may not be within the purchase scope or the usage scope Unless otherwise specified in the contract all statements information and recommendations in this document are provided AS IS without warranties guarantees or representations of any kind either express or implied The information in this document is subject to change without notice Every effort has been made in the pre...

Страница 3: ...icates an imminently hazardous situation which if not avoided will result in death or serious injury Indicates a potentially hazardous situation which if not avoided could result in death or serious injury Indicates a potentially hazardous situation which if not avoided may result in minor or moderate injury Indicates a potentially hazardous situation which if not avoided could result in equipment...

Страница 4: ...o personal injury equipment damage and environment deterioration Change History Issue Release Date Description 02 2019 03 13 This issue is the second release 01 2018 08 27 This issue is the first official release HUAWEI X6800 Server Technical White Paper About This Document Issue 02 2019 03 13 Copyright Huawei Technologies Co Ltd iii ...

Страница 5: ...5 3 6 PSU 16 3 7 Backplane 19 3 8 System Management Board and Fan Switch Board 20 4 Security Management 23 4 1 Compute Node 23 4 2 MM 23 5 Management 25 5 1 iBMC Features 25 5 2 HMM Features 27 5 3 Management Principles 27 5 4 Management Modes 28 6 Technical Specifications 31 6 1 Chassis Specifications 31 6 2 Node Specifications 33 6 3 Power Supply and Power 33 6 4 Environmental Specifications 34 ...

Страница 6: ...anty 37 8 Certifications 40 8 1 Certifications 40 8 2 Protocols 41 A Acronyms and Abbreviations 43 HUAWEI X6800 Server Technical White Paper Contents Issue 02 2019 03 13 Copyright Huawei Technologies Co Ltd v ...

Страница 7: ... following applications l Internet and data center applications The X6800 provides customized server solutions that offer low power consumption easy maintenance and quick deployment l HPC and cloud computing applications The X6800 provides a hardware platform that features high reliability and virtualization performance l SDS and big data applications The X6800 provides a modular architecture that...

Страница 8: ...erver in a rack When fully configured with 4U4 server nodes each node occupies two slots in a chassis a cabinet supports up to 480 3 5 inch hard disks l A cabinet supports a maximum of 40 dual slot storage server nodes 80 processors and 80 TB memory capacity Simplified Management and Easy Maintenance l The X6800 uses the integrated baseboard management controller iBMC and Hyper management module H...

Страница 9: ...tion which maximizes the energy efficiency Redundancy and Reliability l The X6800 uses a passive backplane to protect the system from single point of failures SPOFs delivering higher reliability and security than an active backplane l The X6800 supports redundant fan modules and PSUs and RAID configuration preventing data loss and service interruption l The X6800 uses carrier class components and ...

Страница 10: ...chassis can hold different models of server nodes l All server nodes in an X6800 share the PSUs in 1 1 or 2 2 redundancy l All fan modules in an X6800 share the fan modules in N 1 redundancy l The X6800 provides service and management ports from the front and service ports from the rear of the server Figure 2 1 shows the X6800 system architecture HUAWEI X6800 Server Technical White Paper 2 System ...

Страница 11: ...r cooling l The system fans implement cooling of the management boards and I O boards on the fan modules l The high pressure counter rotating fans offer 10 higher air volume than common fans The refined air channels implement concentrated cooling of heat sensitive devices The optimal distribution of temperature sensors covers all areas of high heat concentration server hotspots facilitating accura...

Страница 12: ...al GE port through which users can access the HMM and iBMC to manage the chassis and server nodes l The HMM works with the fan switch boards to implements fan management The fan switch board provides five independent pulse width modulation PWM control signals to control the fan speed and ten tachometer TACH signals to detect the fan speed Based on the ambient temperature and temperature of the tem...

Страница 13: ...odes This unified architecture allows flexible configuration of computing and storage resources and easy upgrades and maintenance l The X6800 uses a modular design and supports hot swappable server nodes hard disks PSUs fan module and I O module which increases maintenance efficiency l The X6800 uses the iBMC and HMM to implement management The iBMC manages server nodes and the MMC manages the fan...

Страница 14: ... 3 1 Appearance The X6800 is 4U 176 0 mm or 7 0 in high It uses a modular design to separate its chassis from the server nodes The X6800 can hold server nodes of different widths and types Figure 3 1 shows an X6800 holding four server nodes HUAWEI X6800 Server Technical White Paper 3 Hardware Description Issue 02 2019 03 13 Copyright Huawei Technologies Co Ltd 8 ...

Страница 15: ... server nodes Front View Figure 3 2 shows the front view of an X6800 that houses four XH628 V5 server nodes HUAWEI X6800 Server Technical White Paper 3 Hardware Description Issue 02 2019 03 13 Copyright Huawei Technologies Co Ltd 9 ...

Страница 16: ...ort activity indicator 8 UID indicator 9 Operating status indicator Table 3 1 describes the indicators on the panel Table 3 1 Indicators on the panel Item Colo r State Description Operating status indicator Red Blinking at 1 Hz A major alarm has been generated Blinking at 5 Hz A critical alarm has been generated HUAWEI X6800 Server Technical White Paper 3 Hardware Description Issue 02 2019 03 13 C...

Страница 17: ...etwork port Management network port activity indicator Oran ge Off No data is being transmitted Steady on Data is being transmitted Rear View The X6800 chassis houses five fan modules four PSUs eight PCIe slots and two management modules MMs Figure 3 3 shows the rear view of an X6800 holding four server nodes Figure 3 3 Rear view of an X6800 1 PSU 1 2 PSU 2 3 MM 1 4 PCIe slot 8 5 PCIe slot 7 6 PCI...

Страница 18: ...ription No Item Description 1 Server node XH628 V5 2 Chassis The X6800 is 4U 176 0 mm or 7 0 in high It provides four dual width slots in the front and four PSU slots five fan module slots two MM slots and eight PCIe slots in the rear 3 I O module An X6800 provides up to eight standard PCIe x8 slots for eight half height half length PCIe cards or SSD cards providing more external ports or high per...

Страница 19: ...lexibly configured with different types of server nodes You can choose server nodes based on service requirements Figure 3 5 shows an XH628 V5 Figure 3 5 XH628 V5 appearance NOTE The X6800 supports mixed configuration of XH628 V5 and XH628 V3 server nodes In this case the operating temperature of the server is the same as that of the XH628 V5 server node HUAWEI X6800 Server Technical White Paper 3...

Страница 20: ...eft to right l The rear slots for PCIe cards and RAID controller cards are connected to CPU 2 3 4 PCIe The I O module in the rear of the X6800 chassis offers eight standard PCIe x8 slots for installing eight half height half length PCIe cards providing more external ports for each server node Figure 3 7 shows the PCIe slots Figure 3 7 PCIe slots Table 3 3 lists the mapping between PCIe slots and d...

Страница 21: ...about the standard PCIe cards see the Server Product Compatibility List 3 5 Fan Module The X6800 implements forced cooling by drawing in air from the front of the chassis and discharging air through the rear of the chassis The MM controls the fan speed based on the server node operating status The X6800 houses five pairs of counter rotating fans The heat dissipation is not affected if a single fan...

Страница 22: ... of the PSUs on the X6800 is as follows l AC PSUs 100 V to 240 V AC input frequency 50 Hz or 60 Hz l DC PSUs 36 V to 75 V DC l 380 V HV DC PSUs 260 V to 400 V DC l 240 V HV DC PSUs 192 V DC to 288 V DC The output voltage of the PSUs is 12 V DC Figure 3 9 shows an AC PSU Figure 3 9 AC PSU The AC PSU panel has a latch an AC power socket and an operating status indicator as shown in Figure 3 10 HUAWE...

Страница 23: ... Green and yellow Off No power is supplied Steady yellow The PSU is abnormal Blinking green The service system has been powered off Steady green The PSU is operating properly Figure 3 11 shows a DC PSU NOTE l A 240 V HV DC PSU has the same appearance as an AC PSU l A 380 V HV DC PSU has similar appearance to an AC PSU except that the power socket differs HUAWEI X6800 Server Technical White Paper 3...

Страница 24: ...d cable 4 NEG 5 RTN 6 Latch Table 3 7 describes the PSU operating status indicator on the DC PSU panel Table 3 7 Description of the operating status indicator on the DC PSU Name Color Status Description Operating status indicator Green and yellow Off No power is supplied HUAWEI X6800 Server Technical White Paper 3 Hardware Description Issue 02 2019 03 13 Copyright Huawei Technologies Co Ltd 18 ...

Страница 25: ...2130985 AC DC Power Module 1200 W 100 V 240 V 6 6 9 3 A OR 240 V DC 8 A 12 V 100 A 94 0 Platinum 2731 BTU hr at 100 V AC 3071 BTU hr at 110 120 V AC 4094 BTU hr at 200 240 V AC 02270146 DC DC Power Module 1200 W 260 400 V 6 A 12 V 100 A 94 Platinum 4094 BTU hr Only for china NOTE For more details see the Huawei Server Compatibility Checker 3 7 Backplane The X6800 uses a passive backplane The backp...

Страница 26: ...t and node management The fan switch board provides fan management ports and system aggregation management functions Figure 3 14 shows the positions of the HMMs and fan switch board Figure 3 14 Positions of the system management board and fan switch board Figure 3 15 shows the front view of the MM HUAWEI X6800 Server Technical White Paper 3 Hardware Description Issue 02 2019 03 13 Copyright Huawei...

Страница 27: ... network port activity indicator 9 Serial port Table 3 9 describes the indicators on an MM panel Table 3 9 Indicators on an MM panel Name Color Status Description Operating status indicator Red Blinking at 1 Hz A major alarm has been generated Blinking at 5 Hz A critical alarm has been generated HUAWEI X6800 Server Technical White Paper 3 Hardware Description Issue 02 2019 03 13 Copyright Huawei T...

Страница 28: ...standby state On The MM is in the active state Management network port link indicator Green Off The network cable is not connected to the management network port Blinking The network cable is connected to the management network port Management network port activity indicator Orange Off No data is being transmitted On Data is being transmitted HUAWEI X6800 Server Technical White Paper 3 Hardware De...

Страница 29: ... Network Management Protocol SNMP encrypted authentication Hierarchical Command Protection To ensure operation security only the user who has passed the authentication can access the MM through an Ethernet port The MM provides hierarchical protection for command lines The commands are classified into commands of the monitoring level configuration level and management level in ascending order Login...

Страница 30: ...sure security of the MMs The MMs support MD5 or SHA SNMP V3 and SNMP Trap V3 authentication and DES or AES encryption The default authentication type is MD5 which is easy to crack You are advised to set the authentication type to SHA NOTE The MMs support SNMPv1 SNMPv2c FTP and Telnet protocol which are disabled by default for security purposes If you need to enable SNMPv1 or SNMPv2c contact Huawei...

Страница 31: ...ecifications and provides reliable hardware monitoring and management 5 1 iBMC Features 5 2 HMM Features 5 3 Management Principles 5 4 Management Modes 5 1 iBMC Features The iBMC provides the following features l Keyboard video and mouse KVM and text console redirection l Remote virtual media l IPMI V2 0 l Simple Network Management Protocol version 3 SNMPv3 l Common information model CIM l Web bas...

Страница 32: ...he virtual DVD ROM drive supports a transmission rate of up to 8 MB s WebUI Provides a visual WebUI for quick configuration and information queries The following web browsers are supported l Internet Explorer 9 0 10 0 11 0 l Mozilla Firefox 26 0 39 0 l Chrome 21 0 44 0 l Safari 8 0 l JRE 1 7 0 U40 l JRE 1 8 0 U45 Fault reproduction Reproduces faults to facilitate rapid fault diagnosis Screenshots ...

Страница 33: ...les Management principles of the X6800 are as follows l The Integrated Baseboard Management Controller iBMC and the Hyper Management Module HMM implement management and monitoring of the X6800 The iBMC on each node implements node management through the Intelligent Platform Management Interface IPMI KVM or virtual DVD ROM drive The HMM implements chassis management which includes management of fan...

Страница 34: ...e iBMC management network port on the server node Access the iBMC through a service network port on a network interface card NIC over a network controller sideband interface NC SI Access the HMM in transparent transmission mode through the iBMC management network port For details see Configuring Transparent Transmission l Through the converged management network port on the chassis mounting ear or...

Страница 35: ...5 3 shows the cable connections Figure 5 3 Cabling from the mounting ear converged management l Cabling from the HMM for converged management The X6800 is connected to the switch outside the X6800 chassis through a cable led out from the converged management port on the HMM in the X6800 chassis The out of band management network communicates with the X6800 server nodes through the LSW chip in the ...

Страница 36: ... management plane switching chip while the HMM only provides an external port for the management plane switch l Enhancement has been made on the management network ports on the mounting ear and on the HMM to prevent self loop between the LSW and management switches in the equipment room If both of the ports are connected to the management network the port on the mounting ear has higher priority an...

Страница 37: ...sis specifications Component Description Form factor The X6800 is a 4U multi node server Supported nodes 4 dual sot nodes PCIe slot The rear panel of the X6800 provides a maximum of eight PCIe x8 slots Management interface l One converged management port on the mounting ear l One converged management port provided by each HMM HUAWEI X6800 Server Technical White Paper 6 Technical Specifications Iss...

Страница 38: ...ermine whether the server supports N N redundancy Fan module Five fan modules working in N 1 redundancy Dimensions H x W x D 175 mm x 447 mm x 898 mm x 175 mm 6 89 in x 17 60 in x 35 35 in Weight l Net weight 29 kg 63 95 lb l Fully configured with XH628 V5 109 kg 240 35 lb l Package weight 6 5 kg 14 33 lb Cabinet requirements The depth of an X6800 chassis is 898 mm and therefore the cabinet depth ...

Страница 39: ...n X6800 chassis is 4U It provides four dual slot server nodes Server node XH628 V5 The XH628 V5 is a dual slot storage node that supports l Up to two Intel Xeon Scalable 3100 4100 5100 6100 8100 some models series processors l Up to 16 DDR4 DIMMs l 12 x 2 5 inch 3 5 inch SAS SATA HDDs or SSDs in the disk drawer l 2 x 2 5 inch front SAS SATA HDDs or SSDs l Four half height half length HHHL standard...

Страница 40: ...6 A 1200 W 380 V HVDC PSU 260 V to 400 V DC 6A The output power of each AC PSU is 1200 W The X6800 supports four PSUs in N N redundancy mode with a maximum output power of 2400 W 800 W DC PSU 36 V to 75 V DC 26 A The output power of each DC PSU is 800 W The X6800 supports four PSUs in N N redundancy mode with a maximum output power of 1600 W NOTE For details about PSU part numbers see the Huawei S...

Страница 41: ...perature change rate 20 C h 36 F h Relative humidity RH non condensing l Operating 10 to 85 l Storage 5 to 95 l Long term storage humidity 30 RH to 69 RH non condensing Altitude l Operating altitude 3000 m 9842 4 ft l Storage altitude 12 000 m 39369 6 ft NOTE When the altitude is higher than 900 m 2952 72 ft the operating temperature decreases by 1 C 1 8 F for every altitude increase of 300 m 984 ...

Страница 42: ...re Corrosive gaseous contaminant l Copper corrosion rate test requirements The corrosion product thickness growth rate is lower than 300 Å month meeting level G1 requirements of the ANSI ISA 71 04 2013 standard on gaseous corrosion l Silver corrosion rate test requirements The corrosion product thickness growth rate is lower than 200 Å month Particulate pollutant l The equipment room environment m...

Страница 43: ...is used Not all services described in the Warranty Policy are provided to users in all countries For more information about warranty services in your country contact Huawei technical support or your local representative office Table 7 1 describes the warranty service response time Table 7 1 Response time Service Response Time Description Remarks Help Desk 24 x 7 Available 24 hours a day 7 days a w...

Страница 44: ...able 7 2 Warranty services Service Description Help Desk Huawei provides 24 hour after sales technical support such as handling customers requests for troubleshooting or hardware replacement responding to customer inquiries handling customer complaints and collecting suggestions using the dedicated hotline Remote troubleshooting After receiving a service request for rectifying a network or system ...

Страница 45: ...r spare parts You can return defective parts to the designated Huawei customer service center after submitting a service request For the products with a three year warranty used in China Huawei provides NBD service 9 hours a day 5 days a week For the products with a three year warranty used outside China Huawei provides CDS service 9 hours a day 5 days a week HUAWEI X6800 Server Technical White Pa...

Страница 46: ... X6800 Table 8 1 X6800 certifications Region Country Certificate Name Label China China CCC RoHS Europe EU RoHS NA REACH NA WEEE CE Russia EAC North America America NRTL UL MET America Canada FCC IC HUAWEI X6800 Server Technical White Paper 8 Certifications Issue 02 2019 03 13 Copyright Huawei Technologies Co Ltd 40 ...

Страница 47: ...l Specifications Standards IEEE 802 1P QoS IEEE 802 1Q VLAN IEEE 802 1D Bridge Spanning Tree IEEE 802 3 Ethernet IEEE 802 3u FE IEEE 802 3x Flow control IEEE 802 3z GE IEEE 1149 1 2001 IEEE Standard Test Access Port and Boundary Scan Architecture IEC 812 Procedure for Failure Mode and Effects Analysis FMEA IEC 863 Presentation of Reliability Maintainability and Availability Predictions IEC60297 Ch...

Страница 48: ...ol ARP Address Resolution Protocol ICMP Internet Control Message Protocol IGMP Internet Group Management Protocol SNMP Simple Network Management Protocol TELNET Remote terminal protocol HTTP Hypertext Transfer Protocol TFTP Trivial File Transfer Protocol FTP File Transfer Protocol IPMI Intelligent Platform Management Interface HUAWEI X6800 Server Technical White Paper 8 Certifications Issue 02 201...

Страница 49: ...er C CD Calendar Day CIM Common Information Model CLI Command line Interface D DC Direct Current DDR3 Double Data Rate 3 DEMT Dynamic Energy Management Technology DIMM Dual In line Memory Module DVD Digital Video Disc E ECC Error Checking and Correcting ECMA European Computer Manufacturers Association HUAWEI X6800 Server Technical White Paper A Acronyms and Abbreviations Issue 02 2019 03 13 Copyri...

Страница 50: ...nternet Control Message Protocol IDC Internet Data Center IEC International Electrotechnical Commission IEEE Institute of Electrical and Electronics Engineers IGMP Internet Group Message Protocol iBMC Integrated Baseboard Management Controller IOPS Input Output Operations per Second IP Internet Protocol IPC Intelligent Power Capability IPMB Intelligent Platform Management Bus IPMI Intelligent Plat...

Страница 51: ...onnect R RAID Redundant Array of Independent Disks RDIMM Registered Dual In line Memory Module RJ45 Registered Jack 45 S SAS Serial Attached Small Computer System Interface SATA Serial Advanced Technology Attachment SGMII Serial Gigabit Media Independent Interface SMTP Simple Mail Transfer Protocol SM_CLP Server Management Command Line Protocol SNMP Simple Network Management Protocol SSD Solid sta...

Страница 52: ...PM Trusted Platform Module U UDIMM Unbuffered Dual In line Memory Module UEFI Unified Extensible Firmware Interface UID Unit Identification Light UL Underwriter Laboratories Inc USB Universal Serial Bus V VGA Video Graphics Array VRD Voltage Regulator Down W WSMAN Web Service Management HUAWEI X6800 Server Technical White Paper A Acronyms and Abbreviations Issue 02 2019 03 13 Copyright Huawei Tech...

Отзывы:

Нет отзывов

Похожие инструкции для X6800

Бренд: F5 Страницы: 72

UniServer T1100 G3

Бренд: H3C Страницы: 66

UniServer R6900 G3

Бренд: H3C Страницы: 214

UniServer R6700 G3

Бренд: H3C Страницы: 151

UniServer R4900 G5

Бренд: H3C Страницы: 16

totalstorage 200

Бренд: IBM Страницы: 152

Бренд: Patton electronics Страницы: 121

WECS II 2048/DMX/02

Бренд: Oase Страницы: 67

H SERIES RS/6000

Бренд: IBM Страницы: 424

Бренд: Fibrenetix Страницы: 17

Бренд: Acard Страницы: 43

NovaScale T840 E2

Бренд: Bull Страницы: 210

Бренд: Tekron Страницы: 31

Бренд: Tekron Страницы: 32

Бренд: Vitek Страницы: 55

Бренд: Vision Hi-Tech Страницы: 2

A+ SERVER 1022G-URF

Бренд: Supero Страницы: 95

Бренд: Xiva Страницы: 37

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды