Lines Matching +full:access +full:- +full:controllers
47 .Bd -literal -offset indent
50 .No auth-group Ar name No {
55 .No portal-group Ar name No {
57 .\".Dl listen-iser Ar address
58 .Dl discovery-auth-group Ar name
62 .No transport-group Ar name No {
68 .Dl auth-group Ar name
69 .Dl portal-group Ar name
77 .Dl auth-group Ar name
78 .Dl transport-group Ar name
86 .Bl -tag -width indent
87 .It Ic auth-group Ar name
89 .Sy auth-group
91 defining a new auth-group,
105 .It Ic portal-group Ar name
107 .Sy portal-group
109 defining a new portal-group,
111 .It Ic transport-group Ar name
113 .Sy transport-group
115 defining a new transport-group,
116 which can then be assigned to any number of NVMeoF controllers.
121 or controllers.
139 .It Ic isns-server Ar address
141 .It Ic isns-period Ar seconds
145 .It Ic isns-timeout Ar seconds
149 .Ss auth-group Context
150 .Bl -tag -width indent
151 .It Ic auth-type Ar type
158 .Qq Ar chap-mutual .
161 .Sy auth-group .
165 .Sy auth-group ,
169 .Sy chap-mutual
171 .It Ic chap-mutual Ar user Ar secret Ar mutualuser Ar mutualsecret
174 .Sy auth-group ,
178 .Sy chap-mutual
180 .It Ic host-address Ar address Ns Op / Ns Ar prefixlen
187 .It Ic host-nqn Ar name
193 .It Ic initiator-name Ar initiator-name
199 .It Ic initiator-portal Ar address Ns Op / Ns Ar prefixlen
207 .Ss portal-group Context
208 .Bl -tag -width indent
209 .It Ic discovery-auth-group Ar name
213 .Sy auth-group
217 .Sy auth-group ,
218 .Qq Ar no-authentication ,
221 .It Ic discovery-filter Ar filter
226 .Qq Ar portal-name ,
228 .Qq Ar portal-name-auth .
236 .Sy initiator-portal .
238 .Qq Ar portal-name ,
240 .Sy initiator-portal
242 .Sy initiator-name .
244 .Qq Ar portal-name-auth ,
246 .Sy initiator-portal ,
247 .Sy initiator-name ,
253 .Qq Ar portal-name-auth ,
255 .Sy discovery-auth-group
261 .\".It Ic listen-iser Ar address
266 .Sy portal-group .
270 The CTL-specific port options passed to the kernel.
275 .Sy portal-group
278 .Sy initiator-name
280 .Sy initiator-portal
283 Unique 16-bit tag value of this
284 .Sy portal-group .
288 .Sy portal-group
294 well-defined
307 .Ss transport-group Context
308 .Bl -tag -width indent
309 .It Ic discovery-auth-group Ar name
311 .Sy portal-group
313 .It Ic discovery-filter Ar filter
318 .Qq Ar address-name .
321 discovery will return all controllers assigned to that transport group.
324 discovery will not return controllers that cannot be accessed by the
326 .Sy host-address .
328 .Qq Ar address-name ,
330 .Sy host-address
332 .Sy host-nqn .
340 .Pq for NVMe/TCP I/O controllers
342 .Qq Ar discovery-tcp
343 .Pq for NVMe/TCP discovery controllers .
346 .Bl -column "max_admin_qsize" "Default" "Transports"
364 Unique 16-bit port ID for this
365 .Sy transport-group .
369 .Sy portal-group
373 .Sy portal-group
377 .Bl -tag -width indent
379 Assign a human-readable description to the target.
381 .It Ic auth-group Ar name
387 .Sy initiator-name ,
390 .Sy auth-group
392 which denies all access.
394 .Sy auth-group ,
395 .Qq Ar no-authentication ,
396 may be used to permit access
400 .Sy portal-group
402 .It Ic auth-type Ar type
409 .Qq Ar chap-mutual .
414 .Sy auth-group ;
420 .Sy auth-group , chap , No or Sy chap-mutual ;
422 .It Ic chap-mutual Ar user Ar secret Ar mutualuser Ar mutualsecret
425 .Sy auth-group , chap , No or Sy chap-mutual ;
427 .It Ic initiator-name Ar initiator-name
434 .Sy auth-group ;
437 .It Ic initiator-portal Ar address Ns Op / Ns Ar prefixlen
445 .Sy auth-group ;
450 .Sy auth-type ,
452 .Sy chap-mutual ,
453 .Sy initiator-name ,
455 .Sy initiator-portal
457 .Sy auth-group
460 .It Ic portal-group Ar name Op Ar ag-name
467 .Sy auth-group
470 .Sy auth-group
476 This is used to export the target through a specific physical - eg Fibre
477 Channel - port, in addition to portal-groups configured for the target.
503 .Bl -tag -width indent
504 .It Ic auth-group Ar name
506 By default, controllers that do not specify their own auth settings,
508 .Sy host-address
510 .Sy host-nqn ,
513 .Sy auth-group
515 which denies all access.
517 .Sy auth-group ,
518 .Qq Ar no-authentication ,
519 may be used to permit access
523 .Sy transport-group
525 .It Ic auth-type Ar type
535 .Sy auth-group ;
538 .It Ic host-address Ar address Ns Op / Ns Ar prefixlen
546 .Sy auth-group ;
549 .It Ic host-nqn Ar name
556 .Sy auth-group ;
561 .Sy auth-type ,
562 .Sy host-address ,
564 .Sy host-nqn
566 .Sy auth-group
569 .It Ic transport-group Ar name Op Ar ag-name
576 .Sy auth-group
579 .Sy auth-group
598 .Bl -tag -width indent
612 .It Ic ctl-lun Ar lun_id
616 .It Ic device-id Ar string
618 .It Ic device-type Ar type
620 Currently CTL supports Direct Access (type 0), Processor (type 3)
623 The CTL-specific options passed to the kernel.
624 All CTL-specific options are documented in the
646 .Bl -tag -width ".Pa /etc/ctl.conf" -compact
653 .Bd -literal
654 auth-group ag0 {
655 chap-mutual "user" "secret" "mutualuser" "mutualsecret"
656 chap-mutual "user2" "secret2" "mutualuser" "mutualsecret"
657 initiator-portal 192.168.1.1/16
660 auth-group ag1 {
661 auth-type none
662 initiator-name "iqn.2012-06.com.example:initiatorhost1"
663 initiator-name "iqn.2012-06.com.example:initiatorhost2"
664 initiator-portal 192.168.1.1/24
665 initiator-portal [2001:db8::de:ef]
668 portal-group pg0 {
669 discovery-auth-group no-authentication
675 target iqn.2012-06.com.example:target0 {
677 auth-group no-authentication
690 target iqn.2012-06.com.example:target1 {
691 auth-group ag0
692 portal-group pg0
706 controller nqn.2012-06.com.example:controller1 {
707 auth-group no-authentication;
719 .Bd -literal
720 auth-group {
722 chap-mutual = [
726 mutual-user = "mutualuser"
727 mutual-secret = "mutualsecret"
732 mutual-user = "mutualuser"
733 mutual-secret = "mutualsecret"
739 auth-type = none
740 initiator-name = [
741 "iqn.2012-06.com.example:initiatorhost1",
742 "iqn.2012-06.com.example:initiatorhost2"
744 initiator-portal = [192.168.1.1/24, "[2001:db8::de:ef]"]
748 portal-group {
750 discovery-auth-group = no-authentication
769 "iqn.2012-06.com.example:target0" {
771 auth-group = no-authentication
781 "iqn.2012-06.com.example:target1" {
782 auth-group = ag0
783 portal-group = pg0
804 "nqn.2012-06.com.example:controller1" {
805 auth-group = no-authentication