PowerProtect Data Manager 19.17 Storage Array User Guide

PDF

PowerMax solution architecture

Review the network communication and protection architecture information.

Network communication

The following example shows the management and data transfer communication between PowerProtect Data Manager, PowerMax, and protection storage (PowerProtect DD).

NOTE:Connections to the protection engine can apply to one or multiple proxies, depending on how many protection engines are deployed in the environment.
Figure 1. Network communication between PowerProtect Data Manager, PowerMax, and protection storage (PowerProtect DD)
PowerMax network communication
NOTE: If required, protection storage (PowerProtect DD) supports configuring the same interface for both data and management traffic. However, it is recommended that you use different interfaces for each traffic type so that neither traffic type impacts the other.

The following table provides more information about the communication paths and the protection mechanisms that are in place.

Table 1. Network communication detailsTable that describes the communication paths and the protection mechanisms that are in place.
Component Description
Unisphere for PowerMax management server

Unisphere REST API (TCP 8443)

The following operations are initiated by PowerProtect Data Manager and the protection engines:

  • Discovery
  • Configuration
  • Snapshot management
  • Allocation bitmap retrieval.
NOTE:Unisphere is only used to configure resources during data protection operations because backups and restores are run on protection engines.

Communications are encrypted over HTTPS (TLS 1.2).

Authenticated with the Unisphere security certificate that is obtained during asset source creation, corresponding to the Unisphere administrator.

The Unisphere security certificate and administrator credentials are stored in the PowerProtect Data Manager lockbox.

Protection Traffic

DD Boost (TCP 111, 2049, 2052)

  • Backup
  • Restore

DD Boost traffic is encrypted by default.

The DD Boost connection from the protection engines is authenticated with the DD Boost username and password.

Protection architecture

The following diagram shows the supported operations for protecting data on PowerMax storage arrays.

Figure 2. Supported protection operations
PowerMax solution architecture

Rate this content

Accurate
Useful
Easy to understand
Was this article helpful?
0/3000 characters
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please select whether the article was helpful or not.
  Comments cannot contain these special characters: <>()\