Skip to main content
Start a Conversation

Unsolved

S

Sapphire2022

2 Posts

1098

February 22nd, 2019 10:00

Will Connecting To a New LUN Disconnect Other LUNs?

I have a Dell PS6210 with LUNs configured that are in use on an old cluster. As part of a project, I am migrating everything to a brand new cluster. NONE of the currently connected LUNs have access permissions configured. The permissions are set to basically allow anyone with an iSCSI initiator connect to the PS6210 and connect to the LUNs. My question is this: If I use iSCSI initiator on the new cluster servers to connect to the IP of the PS6210, will it grab ALL the LUNs, and disconnect them from the current cluster servers? I have never worked with everyone perms on a SAN before, so I'm not sure how it will react. Obviously, I can't have the whole SAN going down because I connected a new server to it.

dwilliam62

3 Apprentice

 • 

1.5K Posts

February 22nd, 2019 11:00

Hello, 

  What you are doing is VERY dangerous!  When you have such an open access control, ANY initiator on that network can connect to it and overwrite the data.  It will show as a foreign disk to be reformatted. 

 To answer your direct question, NO.  Connecting other servers to these volumes, will NOT disconnect the old ones. 

 So the first thing you need to do is shutdown the old cluster.  Then change the access on the volumes so that ONLY the new servers can access the volumes. 

 Then bring up the new cluster.  You will likely have to import it into the cluster as a resource, since it's a new cluster. 

 If you have any other volumes with open access right, then please fix them too.  Any employee with a laptop and access to that network could destroy all your data. 

 For example when you bring up this new cluster if all of your volumes on that SAN are wide open, it will see them all. So you could by accident destroy data. 

Regards,

Don 

 

 

Sapphire2022

2 Posts

February 22nd, 2019 16:00

I'm well aware of how bad it is to have access perms set to all *'s. Unfortunately, I don't think the last IT guy/company knew much at all, so it was just setup to allow everyone to connect. The whole network is messy. One thing at a time... Thanks for the input!

dwilliam62

3 Apprentice

 • 

1.5K Posts

February 22nd, 2019 17:00

Hello, You are very welcome. I am glad I could help. Using the server IQN name is a very easy way to limit access. Is the MS iSCSI utility you can copy/paste it in to the EQL GUI access list. Good luck! Regards, Don

View More

View All

No Events found!

Top