R&M Data Center Handbook

Recommendations

Info

www.datacenter.rdm.com Water Damage Among other causes, water damage in the data center results not only from the extinguishing water used in fighting fires, but also from pipe breaks, floods and building damage. A certain amount of water damage can therefore be prevented by avoiding the use of a sprinkler system. Nevertheless, the parties responsible for IT in the data center should also consider devices that protect against water damage. First on the list are humidity sensors that monitor a room and sound an alarm when humidity appears – on the floor, for example. Surveillance cameras can also be used for this same purpose; they keep security officers informed at all times of the state of individual rooms, and thus shorten reaction time in case of damage. In many cases, another sensible option is to place server cabinets and similarly delicate components in rooms in such a way that they do not suffer damage when small amounts of water set in. Ideally, those on watch, namely those responsible for the main tap of the defective pipe, will have already turned it off before the “great waters” come. Technical Malfunctions Technical malfunctions have a great effect on the availability of the applications that are operated in the data center. Power failures rank among the most common technical malfunctions, and can be prevented or have their effects reduced through the use of UPSs, emergency generators and redundant power supply systems. In many cases, electromagnetic fields can affect the data transfer. This problem primarily occurs when power and data cables are laid together in one cable tray. However, other factors like mechanical stresses and high temperatures also have a great effect on the functioning of cable connections. Most difficulties that arise in this area can therefore be easily avoided: It is enough to house power and data cables in physically separate locations, to use shielded data cables, prevent direct pressure on the cable and provide for sufficient cooling. The parties responsible for this latter measure must make sure that data center air conditioning systems do not just cool the devices that generate heat in server rooms, but also cool cable paths exposed to heat – for example, cables under the roof. Surveillance Systems Most of the points covered in the section on catastrophes, such as threats resulting from fire and water, only cause significant damage when they have the opportunity to affect IT infrastructures over a certain period of time. It is therefore especially important to constantly monitor server cabinets, computer rooms and entire buildings, so that reaction times are extremely short in the event of damage. Automatic surveillance systems provide great benefits in this area; they keep an eye on data center parameters like temperature, humidity, power supply, dew point and smoke development, and at the same time can automatically initiate countermeasures (like increasing fan speed when a temperature limit value is exceeded) or send warning messages. Ideally, systems like these do not operate from just one central point. Instead, their sensors should be distributed over the entire infrastructure and their results should be reported via IP to a console that is accessible to all IT employees. They therefore use the same cabling as data center IT components to transfer their data, which makes it unnecessary to lay new cables. In addition, they may be scalable in any fashion, so they can grow along with the requirements of the data center infrastructure. Some high-performance products have the ability to integrate IP-based microphones and video cameras so they can transmit a real-time image and audio recording of the environment to be protected. Many of these products even have motion detectors, door sensors and card readers, as well as the ability to control door locks remotely. If a company’s budget for a data center surveillance solution is not sufficient, the company can still consider purchasing and installing individual sensors and cameras. However, proceeding in this fashion only makes sense in smaller environments, since many sensors – for example, most fire sensors – cannot be managed centrally, and therefore must be installed at one location, in which an employee is able to hear at all times if an alarm has gone off. With cameras, especially in consideration of current price trends, it always makes sense to use IP-based solutions to avoid having to use dedicated video cables. R&M Data Center Handbook V2.0 © 08/2011 Reichle & De-Massari AG Page 77 of 156
www.datacenter.rdm.com Vandalism, Theft, Burglary and Sabotage Security products which control access to the data center building play a primary role in preventing burglaries, sabotage and theft. These products help to ensure that “villians” do not have any access whatsoever to the data center infrastructure. Modern access control systems manage individual employee authorizations, usually through a central server, and make it possible for employees to identify themselves by means of card readers, keypads, iris scanners, fingerprints and similar means. If data center management implements an ingenious system that only opens up the routes that employees need to perform their daily work, they automatically minimize the risk of misuse. However, this does not rule out professional evildoers from the outside attempting to enter the data center complex by force. Access control systems should therefore, if possible, be combined with camera surveillance systems, security guards and alarm systems, since these contribute greatly to unauthorized individuals not entering the building at all. As we saw in the preceding section, data center surveillance systems with door lock controls and door sensors that trigger alarms automatically (for example, between 8:00 in the evening and 6:00 in the morning) when room or cabinet doors are opened supplement the products mentioned above, increasing the overall level of security. “Vandalism sensors” measure vibrations and also help to record concrete data that document senseless destruction. The audio recordings already mentioned can also be of use in this area. Conclusion The possibilities for influencing the security of a data center security are by no means limited to the planning phase. Many improvements can still be implemented at a later point in time. The implementation of rare gas fire extinguishing systems and high-performance systems for data center surveillance and access control were just two examples given in this regard. It is therefore absolutely essential that those responsible for the data center continue, at regular intervals, to devote time to this topic and analyze the changes that have come to light in their environment, so they can then update their security concept to the modified requirements. 3.6. Active Components / Network Hardware The purpose of this section is to give an overview of the active components in an ICT environment, as well as their functions. These include, on the one hand, terminal devices like servers, PCs, printers, etc. as well as network devices like switches, routers and firewalls, in which each of these components also contains software. One can also differentiate between passive hardware such as cabling, and active hardware such as the devices listed above. Active network components are electronic systems that are required to amplify, convert, identify, control and forward streams of data. Network devices are a prerequisite for computer workstations being able to communicate with one another, so they can send, receive and understand data. The network here consists of independent computers that are linked, but separate from one another, and which access common resources. In general, a distinction is made in the area of networks between LAN (local area network / private networks) and WAN (wide area network / public networks), MAN (metropolitan area network / city-wide networks) and SAN (storage area network / storage networks). Page 78 of 156 © 08/2011 Reichle & De-Massari AG R&M Data Center Handbook V2.0
Page 1 and 2:
R&M Data Center Handbook
Page 3 and 4:
www.datacenter.rdm.com Table of Con
Page 5 and 6:
www.datacenter.rdm.com 4. Appendix
Page 7 and 8:
www.datacenter.rdm.com File Server
Page 9 and 10:
www.datacenter.rdm.com Storage Arch
Page 11 and 12:
www.datacenter.rdm.com • Yahoo!:
Page 13 and 14:
www.datacenter.rdm.com Cabinet syst
Page 15 and 16:
www.datacenter.rdm.com 1.10. Energy
Page 17 and 18:
www.datacenter.rdm.com 1.12. Securi
Page 19 and 20:
www.datacenter.rdm.com In general,
Page 21 and 22:
www.datacenter.rdm.com 2. Planning
Page 23 and 24:
www.datacenter.rdm.com Typology bas
Page 25 and 26:
www.datacenter.rdm.com 2.2.2. Class
Page 27 and 28: www.datacenter.rdm.com For cabling
Page 29 and 30: www.datacenter.rdm.com 2.3.2. IT Ri
Page 31 and 32: www.datacenter.rdm.com • IT Basel
Page 33 and 34: www.datacenter.rdm.com Depending on
Page 35 and 36: www.datacenter.rdm.com 2.3.6. Poten
Page 37 and 38: www.datacenter.rdm.com The followin
Page 39 and 40: www.datacenter.rdm.com Moreover, th
Page 41 and 42: www.datacenter.rdm.com 2.4.3. Expec
Page 43 and 44: www.datacenter.rdm.com There are se
Page 45 and 46: www.datacenter.rdm.com 2.5. Aspects
Page 47 and 48: www.datacenter.rdm.com 3. Data Cent
Page 49 and 50: www.datacenter.rdm.com ENI: Externa
Page 51 and 52: www.datacenter.rdm.com 3.1.4. TIA-9
Page 53 and 54: www.datacenter.rdm.com Individual a
Page 55 and 56: www.datacenter.rdm.com 3.3. Network
Page 57 and 58: www.datacenter.rdm.com Aggregation
Page 59 and 60: www.datacenter.rdm.com The differen
Page 61 and 62: www.datacenter.rdm.com 3.4.2. End o
Page 63 and 64: www.datacenter.rdm.com 3.4.4. Two R
Page 65 and 66: www.datacenter.rdm.com In contrast
Page 67 and 68: www.datacenter.rdm.com 3.5. Data Ce
Page 69 and 70: www.datacenter.rdm.com In buildings
Page 71 and 72: www.datacenter.rdm.com Higher tempe
Page 73 and 74: www.datacenter.rdm.com The server c
Page 75 and 76: www.datacenter.rdm.com Tray The adv
Page 77: www.datacenter.rdm.com Fire and Lig
Page 81 and 82: www.datacenter.rdm.com Server (Sing
Page 83 and 84: www.datacenter.rdm.com The key perf
Page 85 and 86: www.datacenter.rdm.com Storage Solu
Page 87 and 88: www.datacenter.rdm.com Router A rou
Page 89 and 90: www.datacenter.rdm.com A GBIC modul
Page 91 and 92: www.datacenter.rdm.com 3.6.6. Trend
Page 93 and 94: www.datacenter.rdm.com Classic Stru
Page 95 and 96: www.datacenter.rdm.com 3.7.3. Trend
Page 97 and 98: www.datacenter.rdm.com Layer 1 - Ph
Page 99 and 100: www.datacenter.rdm.com Although the
Page 101 and 102: www.datacenter.rdm.com All optical
Page 103 and 104: www.datacenter.rdm.com Trend Server
Page 105 and 106: www.datacenter.rdm.com 3.8.4. Fibre
Page 107 and 108: www.datacenter.rdm.com The InfiniBa
Page 109 and 110: www.datacenter.rdm.com Shortest Pat
Page 111 and 112: www.datacenter.rdm.com 3.9.1 Coax a
Page 113 and 114: www.datacenter.rdm.com Since old ca
Page 115 and 116: www.datacenter.rdm.com The closenes
Page 117 and 118: www.datacenter.rdm.com R&M’s visu
Page 119 and 120: www.datacenter.rdm.com The followin
Page 121 and 122: www.datacenter.rdm.com As already m
Page 123 and 124: www.datacenter.rdm.com According to
Page 125 and 126: www.datacenter.rdm.com Summary Desp
Page 127 and 128: www.datacenter.rdm.com Two examinat
Page 129 and 130:
www.datacenter.rdm.com The criteria
Page 131 and 132:
www.datacenter.rdm.com Adapters The
Page 133 and 134:
www.datacenter.rdm.com Method R Met
Page 135 and 136:
www.datacenter.rdm.com Methode B Re
Page 137 and 138:
www.datacenter.rdm.com PD Operation
Page 139 and 140:
www.datacenter.rdm.com The investig
Page 141 and 142:
www.datacenter.rdm.com Thanks to th
Page 143 and 144:
www.datacenter.rdm.com The permanen
Page 145 and 146:
www.datacenter.rdm.com The intersec
Page 147 and 148:
www.datacenter.rdm.com Alien crosst
Page 149 and 150:
www.datacenter.rdm.com The Cat. 7 A
Page 151 and 152:
www.datacenter.rdm.com With the “
Page 153 and 154:
www.datacenter.rdm.com Stress condi
Page 155 and 156:
www.datacenter.rdm.com Immunity aga
Page 157 and 158:
www.datacenter.rdm.com 4. Appendix
show all

R&M Data Center Handbook

Create successful ePaper yourself

Delete template?

Save as template?