File system for virtual local area network
First Claim
1. A method comprising:
- assigning logical identifiers to at least two groups of clients;
assigning, to each of at least two of multiple file systems resident in a single file server, the same logical identifiers assigned to the two groups of clients, access to a given file system being restricted to client data processors that are members of specified groups, each file system being assigned a different logical identifier than the other file systems resident in the single file server, so that each group of clients is associated with a respective one of the file systems;
originating a file system request message at one of the clients;
tagging the file system request with the logical identifier of the group to which the client belongs;
routing the file system request message through a data network, including at least one step of examining the logical identifier in connection with making a message routing decision so that the message is only routed to a file server having the file system associated with the logical identifier;
receiving the file system request at the file server;
within a designated protocol layer at the file server higher than a data link layer, passing the logical identifier information to the next higher layer; and
at a selected protocol layer which is responsible for passing messages to the file systems in the single file server,examining the logical identifier information to select a file system as a selected file system to which the message is to be routed, the selected file system effectively an addressable element of the data network thereby requiring only a single physical network connection, so that only messages intended for the selected file system associated with the logical identifier are routed to the selected file system, and other messages with different logical identifiers are not routed to that selected file system;
wherein a communication protocol in use is Transmission Control Protocol (TCP), the selected protocol layer is the transport layer, and the logical identifier is passed up to the transport layer with a data payload provided by a network layer.
9 Assignments
0 Petitions
Accused Products
Abstract
A file system that utilizes Virtual Local Area Network (VLAN) addressing and routing schemes to permit implementing multiple networked file system applications in a single data processing system. In particular, a networked file server or data mover has associated with it a mass storage device such as one or more disk drives, as well as one or more Network Interface Cards (NICs). A network interface to the data mover is associated with VLAN identifiers (IDs) such that a VLAN ID can be assigned to each file system. At the physical layer of the data mover, VLAN information is encapsulated and passed up to various higher protocol layers, such as a network layer and/or a transport layer, eventually to a selected file system as dictated by the VLAN ID. The file system application in effect becomes an addressable element of the VLAN. A single data mover can thus be deployed to service multiple groups of end users, as long as the members of each group have different VLAN identifiers for the multiple file systems. The result provides security, access restrictions, and all the other benefits of VLAN protocols that would be obtained by deploying separate data movers for each VLAN, without incurring the acquisition expense and administrative overhead associated with having to purchase and maintain multiple data mover systems.
15 Citations
13 Claims
-
1. A method comprising:
-
assigning logical identifiers to at least two groups of clients; assigning, to each of at least two of multiple file systems resident in a single file server, the same logical identifiers assigned to the two groups of clients, access to a given file system being restricted to client data processors that are members of specified groups, each file system being assigned a different logical identifier than the other file systems resident in the single file server, so that each group of clients is associated with a respective one of the file systems; originating a file system request message at one of the clients; tagging the file system request with the logical identifier of the group to which the client belongs; routing the file system request message through a data network, including at least one step of examining the logical identifier in connection with making a message routing decision so that the message is only routed to a file server having the file system associated with the logical identifier; receiving the file system request at the file server; within a designated protocol layer at the file server higher than a data link layer, passing the logical identifier information to the next higher layer; and at a selected protocol layer which is responsible for passing messages to the file systems in the single file server, examining the logical identifier information to select a file system as a selected file system to which the message is to be routed, the selected file system effectively an addressable element of the data network thereby requiring only a single physical network connection, so that only messages intended for the selected file system associated with the logical identifier are routed to the selected file system, and other messages with different logical identifiers are not routed to that selected file system; wherein a communication protocol in use is Transmission Control Protocol (TCP), the selected protocol layer is the transport layer, and the logical identifier is passed up to the transport layer with a data payload provided by a network layer. - View Dependent Claims (2, 3, 4, 5)
-
-
6. An apparatus comprising:
-
a virtual local area network device for assigning logical identifiers to message traffic originating from at least two groups of clients such that the logical identifier assigned to traffic originating from a first group of clients is different from a logical identifier assigned to traffic originating from a second group of clients; and a message processor associated with a single file server having multiple file systems resident therein, access to a given file system being restricted to client data processors that are members of specified groups, for examining logical identifiers associated with received messages and routing such messages only to the respective file system having a logical identifier that is the same as the logical identifier of a client computer that originated the file system request, the processor further having multiple protocol layers to process received file system request messages of a designated protocol layer in the file server higher than a data link layer, and for passing the logical identifier information to a next higher layer such that the file system examines the logical identifier information to select a file system to which a message is to be routed, the selected file system effectively an addressable element of a data network thereby requiring only a single physical network connection, so that only messages intended for a selected file system associated with a logical identifier are routed to the selected file system and other messages with different logical identifiers are not routed to that selected file system; wherein a communication protocol in use is transmission controlled protocol (TCP), the selected protocol layer is the transport layer, and the logical identifier is passed up to the transport layer with a data payload provided by a network layer. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A method for controlling access to one of several file systems resident in a given file server, comprising:
-
originating a file system request at a client data processor; tagging the file system request with a Virtual Local Area Network (VLAN) identifier; routing the file system request through a data network from the client data processor to a file server, the file system request arriving at an application layer in the file server with the VLAN identifier associated with the file system request still intact; examining the VLAN identifier to determine how the file system request is to be routed to a particular one of several file systems resident in the same file server, the particular file system effectively an addressable element of the data network thereby requiring only a single physical network connection; within a designated protocol layer at the file server higher than a data link layer, passing the VLAN identifier information to the next higher layer; wherein a communication protocol used to route the file system request is Transmission Control Protocol (TCP), the VLAN identifier is examined at the transport layer, and the VLAN identifier is passed up to a transport layer with a data payload provided by a network layer. - View Dependent Claims (12, 13)
-
Specification