Overview

The TSSC provides Ethernet connectivity through a private internal network for the TS7700.

The TS7700 uses the TSSC to communicate back to IBM to accommodate different client environments. The TS7700 is configured by the SSR to define how the outbound connectivity back to IBM will occur. The TS7700 uses the TSSC to connect to IBM for various situations including reporting problems, downloading system fixes, reporting inventory, and transmitting error data.

The Call Home feature sends service related information from the TS7700 to the Cognitive Support Platform (CSP). Call Home uses a broadband internet connection to perform this “Dial-Out” function.

Remote support capabilities of the TSSC, in conjunction with tape systems, include:
  • Call Home problem reporting capability with staged, error-specific Data Gathering for support
  • Call-in capability with authenticated access including file transfer and multiple connections with attached systems
  • Simultaneous call home and call-in capability using broadband
  • Automatic wellness checking for attached systems
  • Automatic download and storage of tape tools and codes images
Additionally, the TSSC provides a convenient focal point for local service activities within the data center. The system console is attached via 1 Gbps Ethernet to each tape system. Many tape system service functions can be performed at the console. The TSSC provides the following local service tool applications for the IBM support representative:
  • Ability to connect to multiple tape systems and simultaneously perform multiple service tasks from the system console
  • Graphical user interface for tape system and tape drive service diagnostic utilities
  • Ability to broadcast control unit and tape drive code images to tape systems for subsequent activation from the system console
  • Diagnostic tools for verifying communications with CSP
  • Graphical user interface for configuring, backing up, and restoring system console settings
Note: For customer functions, go to System console management GUI.
The TSSC provides Ethernet outbound connectivity through the customer's network to CSP. The TSSC uses the following protocols to port numbers, as shown in Table 1:
  • Call Home:
    • HTTPS: Port 443
    • HTTP: Port 80
    • DNS: Port 53
  • Web Access:
    • HTTPS: Port 443
    • HTTP: Port 80
    • LDAP: Port 389
    • LDAP with SSL: Port 636
    • LDAP using SAS: Port 16311
    Note: The standard HTTP/S port, 80/443, allows inbound communication to the TSSC.
  • SNMP Trap Notification:
    • SMNP: Port 161/162
      Note: Ports 161 and 162 are the standard ports for sending SNMP traps. (SNMP traps can be sent from the TSSC. The TSSC can be configured to send traps to SNMP target machines. In this case, the firewall needs to allow outbound connections from the library from its port 161 to port 162 on the listening SNMP target machine.
Remember: Using these ports are optional, depending on if the user decides to enable Call Home, web access, or SNMP.
Table 1. TSSC External Port Information
Port Type of data Direction Protocol
  PING Outbound ICMP
53 DNS Outbound UDP
80 HTTP Bidirectional TCP
161/162 SNMP Bidirectional UDP
389 LDAP Outbound TCP
443 HTTPS Bidirectional TCP
636 LDAP with SSL Outbound TCP
16311 LDAP using SAS Outbound TCP
Note: Bidirectional in case of customer web access, otherwise Outbound only.
Dial-out security features of the TSSC
Dial-out is used by the Call Home feature to send service-related information from the attached systems to CSP. Dial-out is available through the system console and the modem. Dial out security properties for the attached systems are as follows:
  1. Dial-out is from the customer location to the IBM connection point. CSP does not initiate connections to the attached systems.
  2. Dial-out through the system console can be over an outbound Ethernet connection to the customer network. All outbound traffic is limited to HTTP, HTTPS, and DNS information. All service-related data is communicated by using HTTPS and is therefore encrypted.
  3. The data that is exchanged between the attached systems and CSP is service-related data. The protocol that is used is specific to this application and not publicly available.
  4. On the first data exchange of each transmission, CSP validates that the calling system is entitled to service. If the calling system is not validated, it is disconnected.
  5. The default setting for the Call Home feature is enabled. The Call Home feature can be disabled by an IBM service representative.
Dial in security features of the TSSC
Dial-in is used by IBM service representatives to log on to the system console and provide service support. All dial-in connectivity to the system console is through a broadband connection, which restricts all incoming traffic. Separate logon IDs are required for access to each attached system.

Figure 1 is a representation of a potential connection scheme for the TSSC.

Figure 1. TSSC Connection Diagram
Table 2. TSSC Components
 1  Serial connector  6  Ethernet expansion FC2714
 2  Ethernet switch FC 2704/FC2732  7  Cable supplied with FC2714
 3  Cable supplied with FC 2704/FC2732  9  Customer supplied Ethernet connection
1 Gbps can use CAT 5e or CAT 6, 10 Gbps will need CAT 6.
 4  Cable supplied with FC 2715  
 5  Cable supplied with FC2714