Browse Prior Art Database

Method and System for Utilizing Network Interface Card Virtual Ports for Data Center Secure Cloud/Shared Host Migration

IP.com Disclosure Number: IPCOM000236628D
Publication Date: 2014-May-06
Document File: 4 page(s) / 69K

Publishing Venue

The IP.com Prior Art Database

Abstract

A method and system is disclosed for utilizing one or more Network Interface Card (NIC) virtual ports for data center secure cloud/shared host migration.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 45% of the total text.

Page 01 of 4

Method and System for Utilizing Network Interface Card Virtual Ports for Data Center Secure Cloud/Shared Host Migration

Cloud, or any shared Storage Area Network (SAN) environment requires one or more migration services for on-boarding, off-boarding and data replication purposes. For secure business-class customers, the one or more migration services require that data and connectivity be secured from not only customers in an environment, but from tooling and discovery. Given that there are a limited number of physical Network Interface Cards (NICs), one or more data centers can proactively use one or more virtual switches that are available in order to constrain tooling and discovery mechanisms to individual customers.

Servers and disk subsystems such as SAN on mainframe and midrange equipment can be shared in a public or private cloud environment utilizing a shared-host configuration. The challenges for security in the SANs include migration in (on-boarding) and migration out (off-boarding). Another potential challenge for data movement in the SANs includes data replication.

Currently, physical NICs can be used for data inclusion and exclusion. Since a server system has a fixed and limited number of NICs, the server cannot have enough NICs to support multiple customers. Currently, there are twenty available NIC slots in a Hypervisor Elastic Sky X (ESXi) host. Sometimes, one physical NIC is used as the boarding and off-boarding NIC. Data can then deliver to a portable storage device for inclusion/exclusion into the data shared environment and then the NIC is reused for a next incoming customer. This is a viable solution for serial on and off boarding but does not support the parallel transition of customers and does not support continuous data replication requirements in a shared host environment.

In the shared host environment, redundancy is required. Therefore in the twenty NICs available in the host, there are only six sets of NICs available (subtracting out the standard two NICs for dynamic reconfiguration and two NICs for intra-host communication). Each set of NICs could then support a different customer, allowing for at least six customers on the ESXi host. Also, multiple ESXi hosts can be attached to the SAN, allowing the shared computer system to support as many hosts as required for hardware utilization.

However, many times NICs are not fully configured on host systems. Therefore, the ability to physically separate NIC traffic by a customer when utilizing parallel on- or off-boarding and data replication requirements may not be possible.

Physical NICs contain a certain number of virtualized NICs called virtual switches (vSwitches). While, there are a limited number of NICs available on a physical host, many vSwitches can be generated per NIC, constrained by throughput requirements. Therefore, the ability to constrain customers falls down to the vSwitches. Given that there are fifty six ports available on each vSwitch, tr...