Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News

2/25/2011
11:03 AM
George Crump
George Crump
Commentary
50%
50%

The Downsides Of OpenFCoE

A few weeks ago I wrote an entry about software based Fibre Channel over Ethernet (FCoE) called Open FCoE being offered by Intel. The immediate responses were questions asking if this is a sign of the end for the hardware based HBA providers? Open FCoE has a lot of promise but the downsides of OpenFCoE prove that it may not be for everyone.

A few weeks ago I wrote an entry about software based Fibre Channel over Ethernet (FCoE) called Open FCoE being offered by Intel. The immediate responses were questions asking if this is a sign of the end for the hardware based HBA providers? Open FCoE has a lot of promise but the downsides of OpenFCoE prove that it may not be for everyone.The advantage that Open FCoE should bring to the storage world is extremely cost effective block storage by leveraging 10GbE LAN on Motherboard (LOM) chips instead of expensive Converged Network Adapters (CNA). As I stated in the prior entry, this would allow a broader range of servers to participate in the fibre channel experience. Open FCoE is not nirvana though, we need to know what its limitations are.

The big problem that I think Open FCoE is going to have is providing consistent performance. While for the most part performance is still an unknown, we can make some assumptions. Open FCoE is going to almost certainly consume some of the server's CPU resources. The question is how much and whether or not that will be enough that you care. If you have powerful processors that are not being heavily utilized it probably will not matter. However if you have processors that will be taxed even occasionally software based FCoE may not be for you. This is especially important if you need a level of consistency in that performance. That is the challenge with a software based deliverable, it is counting on processor resources that it is sharing with other software on that server. As a result one of those other software components (operating system, hypervisor, application) can have a sudden spike in the processing resources it needs and with that you loose the predictability that is required for making service level commitments to application owners.

A hardware based Converged Network Adapter (CNA) is going to give you that predictability. Its performance will not be as impacted by a busy server whose CPU is off doing other things. In environments where predicable performance is needed CNAs are still going to be the best practice. As application performance becomes increasingly important and server virtualization continues its rapid growth the number of cases where predicable performance is going to be required will be a significant percentage of the HBA population.

A second challenge is that we are seeing an increasing number of cards provide special capabilities. In some cases that is an advanced Quality of Services (QoS) for bandwidth optimization or internal virtual switching on the card. In these cases not only does the card increase predictability by offloading the protocol from the main CPU, it also offloads another function (QoS or switching) from the CPU. As a result it increases predicability in two areas.

There are also some tactical potential downsides. First, somewhat obviously this is going to be an Ethernet only deliverable. This means that if you have an existing infrastructure with mostly fibre channel cards and switches or if you need 16GB fibre channel performance, Open FCoE is not going to be for you either. Also, you have to wait for the Operating System or Hypervisor that you use to actually pick up support for the standard.

What will happen in most data centers is that a mix of Open FCoE and CNAs will be deployed. Underutilized servers with minimal concern about applications suddenly spiking will be well served by Open FCoE. For applications that need consistent, predictable performance go with a CNA or a Fibre HBA card.

Track us on Twitter: http://twitter.com/storageswiss

Subscribe to our RSS feed.

George Crump is lead analyst of Storage Switzerland, an IT analyst firm focused on the storage and virtualization segments. Find Storage Switzerland's disclosure statement here.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 10/23/2020
Russian Military Officers Unmasked, Indicted for High-Profile Cyberattack Campaigns
Kelly Jackson Higgins, Executive Editor at Dark Reading,  10/19/2020
Modern Day Insider Threat: Network Bugs That Are Stealing Your Data
David Pearson, Principal Threat Researcher,  10/21/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-27187
PUBLISHED: 2020-10-26
An issue was discovered in KDE Partition Manager 4.1.0 before 4.2.0. The kpmcore_externalcommand helper contains a logic flaw in which the service invoking D-Bus is not properly checked. An attacker on the local machine can replace /etc/fstab, and execute mount and other partitioning related command...
CVE-2020-7752
PUBLISHED: 2020-10-26
This affects the package systeminformation before 4.27.11. This package is vulnerable to Command Injection. The attacker can concatenate curl's parameters to overwrite Javascript files and then execute any OS commands.
CVE-2020-7127
PUBLISHED: 2020-10-26
A remote unauthenticated arbitrary code execution vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2.
CVE-2020-7196
PUBLISHED: 2020-10-26
The HPE BlueData EPIC Software Platform version 4.0 and HPE Ezmeral Container Platform 5.0 use an insecure method of handling sensitive Kerberos passwords that is susceptible to unauthorized interception and/or retrieval. Specifically, they display the kdc_admin_password in the source file of the ur...
CVE-2020-7197
PUBLISHED: 2020-10-26
SSMC3.7.0.0 is vulnerable to remote authentication bypass. HPE StoreServ Management Console (SSMC) 3.7.0.0 is an off node multiarray manager web application and remains isolated from data on the managed arrays. HPE has provided an update to HPE StoreServ Management Console (SSMC) software 3.7.0.0* U...