On Wed, 2018-02-07 at 18:18 +0100, Roman Penyaev wrote: > So the question is: are there real life setups where > some of the local IB network members can be untrusted?
Hello Roman, You may want to read more about the latest evolutions with regard to network security. An article that I can recommend is the following: "Google reveals own security regime policy trusts no network, anywhere, ever" (https://www.theregister.co.uk/2016/04/06/googles_beyondcorp_security_policy/). If data-centers would start deploying RDMA among their entire data centers (maybe they are already doing this) then I think they will want to restrict access to block devices to only those initiator systems that need it. Thanks, Bart.
