NetApp ONTAP VScan Technology

-

Where I used to come from VMware, it build an ecosystem of integration with its vendors. And have a massive interops from compute, storage and network. It does this through an extensive API within its full software stack.

When I joined NetApp earlier this year, NetApp have a Cyber Resilience Partner Ecosystem surrounding data. One of the category is Virus Detection. This was made possible with ONTAP Vscan technology which is a proprietary to NetApp. Which also means, not all AV vendor can just integrate. They need to be using ONTAP Vscan technology for that integration. 


Now the questions is won't that made it less compiling? Maybe, but for the sake of security, this is needed. Why do I say so?

Generally on the market, storage vendors all have integration to AV vendors in some way, However, most choose the "easy way out". They leverage on ICAP (Internet Content Adaptation Protocol). As ICAP is a generic protocol, it can be easily utilized. However, one issue with ICAP is, it is not filtered. Which means it requires additional network traffic sending information whether needed or not for the integration. This can affect performance and latency. Why do you need unneeded data?

And since it utilize ICAP, ICAP will require an additional server as a proxy. Which also results in higher compute resources when demand increases, especially when it scales, the additional traffic will be very demanding. This also due to the unnecessary data sent.

On security, ICAP sends the exact files to the ICAP server. Which means while protecting against virus, we just introduce a new exposure of security vulnerability.

ONTAP Vscan since its native part of the ONTAP system, everything happens within the storage without sending any traffic across the network. There is a ONTAP Antivirus Connector, to handle the request between the AV server and NetApp storage. This not only make it easy to enable but also help to scale much more easily without the complexity.

Here is a short writeup on how ONTAP Vscan works.

In summary, NetApp has been the most secure storage on the planet for a reason. Taking security at it's utmost priority to ensure purposefully addressing the needs instead of fufilling a check box.

Comments

Post a Comment

Popular posts from this blog

Aria Operations Management Packs End of Life

-
Coming 1st Oct 2024, the Aria Operations Management Packs will be end of general support (EoGS). Here is the KB . The affected management packs are as follow: vRealize Operations Management Pack for VMware Integrated OpenStack vRealize Operations Federation Management Pack VMware vRealize Operations Management Pack for CloudHealth VMware Aria Operations Management Pack for Flowgate VMware Aria Operations Management Pack for Aria Hub VMware vRealize Operations Management Pack for VMware Smart Assurance Aria Operations Management Pack for Aria Operations for Apps Aria Operations Management Pack for VMware Tanzu Application Service Aria Operations Management Pack for Microsoft Hyper-V Aria Operations Management Pack for NetApp FAS/AFF Aria Operations Management Pack for Microsoft SCOM Aria Operations Management Pack for Citrix Virtual Apps & Desktops Aria Operations Management Pack for Dell EMC OpenManage Enterprise Aria Operations Management Pack for HPE OneView Aria Operations Manag...
Read more

VMware VCF Minimum Cores Purchases Changes

-
As per the article and confirmation from email from Broadcom to all their partners, there will be a minimum purchase for New VCF license purchase for new order starting 10th April 2025.  What will be your impact to customers like yourself? Basically for any new project, a minimal purchase of 72 cores license is required whether or not your compute workload is going to be lesser. This does not change the minimum purchase of 16 cores per CPU which still stand. While that is true, the above statement only applies to new purchase, if you are doing expansion or renewal of licenses, this does not change. So if you really just need a small setup using 3 servers each, taking a supported Dell PowerEdge R350 with vSphere 8.0U3 as per VMware site , with a minimum of 8 cores per CPU, you will need 24 cores license which will have a surplus of 48 cores (72-24). That is a bumper. For the above example, this will be wastage. However, as I mentioned, expansion and renewal are not impacted....
Read more

Unable to verify certificate for vCenter on Horizon View Connection Server

-
Image
Recently during an outage of my host during to hardware issue in my home lab where my vCenter 6.0 sit on it, resulted some strange behaviour on my View Connection Server 6.1.  I encounter the below error message: When I go to my Horizon View Dashboard, it looks fine. When I try to remove the vCenter entry under the Server options and adding it back I end up with another error when trying to add the View Composer. However this is not related to the strange behaviour above.  But rather this is due to my login did not contain a domain\username but instead of use just username . Back to the strange behaviour.  It seems my connection to my vCenter via Connection Server has a sudden slowness and the certificate seems to be corrupted.  I tried to find a solution to replace the self-signed (in my case) certificate on my View Connection Server however in vain.  I tried removing the vCenter and re-adding it back, that does not help. So I chanced upon some ...
Read more