IaaS直接附加存储-缓存 [英] IaaS direct attached storage - caching
问题描述
IaaS直接连接的磁盘-我们是否启用缓存读取,读取/写入或不启用缓存?
我们是否启用加密?我们正在配置为托管磁盘.如果我们将其配置为未加密会怎样?
因此,我们担心加密,因为我们拥有可以从其他应用程序服务器读取和写入这些驱动器的应用程序.
创建磁盘后,我们可以更改为加密吗?将数据放到该磁盘上(加密未加密)后,我们可以更改吗?
dsk
- IaaS直接连接的磁盘-我们启用缓存读取,读取/写入或不读取缓存?
当数据为在输入输出操作之前读取,并存储到缓存中.另外缓存应该足够大 存储所有数据.
对于所有OS磁盘,内存中缓存默认情况下完成,除非用户手动将其关闭.如果对文件执行大量随机I/O操作 如果要在OS磁盘上完成操作,最好将它们移动到默认情况下已关闭缓存的数据磁盘中.可以使用PowerShell命令let,API和Azure管理门户来操纵缓存设置.我们可以在创建时从管理门户设置缓存 虚拟机和数据磁盘.
2.是否启用加密?我们正在配置为托管 磁盘.如果我们将其配置为未加密 ,会发生什么?
有两种讨论托管磁盘的加密:
1.存储服务加密(SSE),由存储服务执行.默认情况下,所有托管磁盘均启用存储服务加密(SSE). SSE使用Microsoft管理的密钥对静态数据进行加密.我们计划很快在门户中显示SSE加密状态.
您可以了解从Azure创建托管磁盘的时间 门户,Azure CLI和PowerShell.如果时间在2017年6月9日之后,那么您的磁盘将被加密.
2.Azure磁盘加密,您可以启用它在VM的OS和数据磁盘上.加密属性与Azure磁盘加密相关联, 是加密磁盘的另一种方法.Azure磁盘加密利用了行业标准 BitLocker 功能 Windows和 ; DM-Crypt 功能 为操作系统和数据磁盘提供卷加密.由于您尚未启用此加密,因此磁盘显示为未加密.
Azure Windows和Linux IaaS VM的磁盘加密
3.能否将更改为加密后磁盘创建了吗?将数据放在此磁盘上(加密未加密)后,我们可以更改吗?
是的,您创建磁盘/添加数据后可以更改为加密
-------------- -------------------------------------------------- ----------------------------------
如果此答案有帮助,点击"标记为答案"或 投票.要提供有关您的论坛体验的其他反馈,请单击 在这里 >
IaaS direct attached disk - do we enable cache read, read/write, or none?
Do we enable encryption? We are configuring as managed disks. what happens if we configure as not encrypted?
So we are worried about encryption because we have applications which read and write to these drives from by other application servers.
Can we change to encrypted after disk is created? Can we change after we put data on this disk ( encrypted<> not encrypted)?
dsk
- IaaS direct attached disk - do we enable cache read, read/write, or none?
Normally, cache settings make considerable improvement when read-write operations with large amount of data are done. However, if lot of random I/O operations are done, turning the cache off is preferable as operations on cache incur charges on the basis of number of transactions. Random operations will not make any signification improvement in performance.
Read cache improves the performance, when data is read before, during input-output operations, and stored into cache. Also cache should be big enough to store all the data.
For all the OS disks, in-memory caching is done by default unless it is turned off manually by the user. If lots of random I/O operations on files are done in OS disks, it is better to move them in a data disk where by default cache is turned off. Cache settings can be manipulated using PowerShell command lets, APIs and Azure management portal. We can set the cache from the management portal while creating virtual machines and data disks.
2.Do we enable encryption? We are configuring as managed disks. what happens if we configure as not encrypted?
There are two kinds of encryption to discuss about managed disks:
1. Storage Service Encryption (SSE), which is performed by the storage service. Storage service encryption (SSE) is enabled by default for all managed disks. SSE encrypts data at rest using keys managed by Microsoft. We are planning show the SSE encryption status soon in the portal.
You can find out the time when a managed disk was created from the Azure portal, the Azure CLI, and PowerShell. If the time is after June 9, 2017, then your disk is encrypted.
Reference: Managed Disks and Storage Service Encryption
2.Azure Disk Encryption, which you can enable on the OS and data disks for your VMs. encryption property is associated with Azure disk encryption which is another way of encrypting your disks. Azure Disk Encryption leverages the industry standard BitLocker feature of Windows and the DM-Crypt feature of Linux to provide volume encryption for the OS and the data disks. As you haven't enabled this encryption, your disks are shown as not encrypted.
For more information refer the below link: Azure Disk Encryption for Windows and Linux IaaS VMs
3.Can we change to encrypted after disk is created? Can we change after we put data on this disk ( encrypted<> not encrypted)?
Yes, you can change to encryption after disk is created/data added
--------------------------------------------------------------------------------------------------
If this answer was helpful, click "Mark as Answer" or Up-Vote. To provide additional feedback on your forum experience, click here
这篇关于IaaS直接附加存储-缓存的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
