IBM z/OS Communications Server

A high-performance foundation for building and deploying networking applications on z/OS

Get an overview

IBM z/OS® Communications Server, a high availability enterprise transaction and data server, provides common applications, such as FTP, Telnet and the remote execution of applications. Built for optimum productivity, it provides a secure platform for developing and sharing mainframe workloads.

IBM z/OS Encryption Readiness Technology (zERT) Network Analyzer, a new z/OSMF plugin, is now available for you to easily query and analyze the cryptographic protection attributes of your z/OS TCP/IP and Enterprise Extender connections.

What's new in z/OS 3.1 Communications Server

Reference guide

Benefits High-speed connectivity

Supports high-bandwidth and high-speed networking technologies, including Shared Memory Communications (SMC), which provides significant performance improvements for TCP protocol workloads.

High availability

Uses z/OS Parallel Sysplex® technology to enable high availability application support.

Network security

Protects sensitive data and the operation of the TCP/IP stack on z/OS.

IPv6 enablement

Enables IPv6, the successor to aging IPv4 technology, to handle the demands of internet usage with 128-bit addressing.

Network management

Collects network topology, status, and performance information.

Simplification and usability

Makes it faster and easier to configure policy-based networking functions by using Configuration Assistant.

Client quotes

"zERT is simple and fast to setup and implement. It gives me immediate results and it increases z/OS network security in its full breadth at once - not just for a single component!"

"zERT is my one stop shop to monitor and manage the usage of all cryptographic algorithms within my z/OS network stack. It even provides real-time policy-based notifications when cryptographic usage doesn’t match my expectations!"

- Swiss Re Group
 
 

 

"zERT brings all the requested information that we need for our security business and to achieve our described security policy. I am using the zERT Reports in my daily business. For us, zERT is a big relief! We have used the zERT aggregation records to totally eliminate the TLS 1.0 protocol and SHA1/HMAC suites. zERT reporting also enabled us to find various problems in environment settings and configurations. I think we never would have had a chance to do this without the zERT support!"

- Svend Zaunick, Finanz Informatik
Features
z/OS Encryption Readiness Technology (zERT)

z/OS Encryption Readiness Technology (zERT), a core capability of IBM Z pervasive encryption, is an intelligent network security discovery and monitor feature of z/OS Communications Server. IBM zERT Network Analyzer, a web-based interface on z/OSMF, helps you determine which z/OS TCP and Enterprise Extender traffic is or isn’t protected according to specific query criteria. With z/OS V2R5, here comes zERT Policy-based Enforcement which allows policy-based rules that describe different levels of cryptographic protection along with optional actions to take when TCP connections match those rules. With z/OS 3.1, IBM zERT Network Analyzer provides enhancements for database connection authentication, improved upgrade support, and a user interface refresh.

Things you should know about zERT

AT-TLS enhancements

AT-TLS (Application Transparent — Transport Layer Security), is a z/OS Communications Server feature that provides TLS encryption and decryption of TCP/IP connections based on policies created with the IBM Network Configuration Assistant. The z/OS sockets application sends and receives clear text (unencrypted) data as usual while AT-TLS applies TLS protection to the data at the TCP transport layer. With z/OS 3.1, AT-TLS supports several new System SSL features.

Visit AT-TLS information hub

New network security enhancements in z/OS 3.1

z/OS 3.1 Communications Server also provides the following network security and compliance enhancements for more secure data transfer and higher productivity:

  • z/OS UNIX syslogd support for secure logging over TCP
  • FTP Server JES access control
  • New SMF 1154 records for compliance evidence
Get more technical information

New modernization and simplification enhancements in z/OS 3.1

z/OS 3.1 Communications Server enhances application modernization and simplifies OS management for optimized business operation, including the following enhancements:

  • Communications Server exploitation of the IBM Function Registry for z/OS
  • Support for 64-bit Java
Get more technical information

Network support for z/OS Container Extensions

z/OS V2R4 Communications Server has added network support for z/OS Container Extensions which provides native z/OS support for Linux Docker based application workloads.

Read about network support

Shared Memory Communications - Direct multiple IP subnet support (SMC-Dv2)

z/OS V2R4 Communications Server, with TCP/IP APAR PH22695 and SNA APAR OA59152, is enhanced to support SMC-Dv2. Unlike the original Shared Memory Communication - Direct Memory Access (SMC-D) protocol, SMC-Dv2 does not require that the communication peers reside within the same IP subnet.

Read about SMC-Dv2

Shared Memory Communication - Remote multiple IP subnet support (SMC-Rv2)

In z/OS V2R5 Communications Server, SMC-Rv2 and IBM z15 with RoCE Express2 will support “routable RoCE” connectivity over multiple IP subnets for communications across IBM Z systems.

Read about SMC-Rv2

Supports OSA-Express7S and IBM 25 GbE RoCE Express2

z/OS V2R4 Communications Server is enhanced to support OSA-Express7S features with 25 GbE bandwidth and IBM 25 GbE RoCE Express2 features.

Hardware support for z/OS

Network Mgmt. for IBM Cloud Provisioning and Mgmt. for z/OS

IBM Configuration Assistant for z/OS Communications Server plays a key role for the network administrator as part of the IBM Cloud Provisioning and Management for z/OS solution.

Get more technical information

New TCP/IP usability enhancements in z/OS V2R5

z/OS V2R5 Communications Server provides the following TCP/IP usability enhancements to enable improved efficiency in system automation, the reduction of unwanted delays in system initialization, and improved certificate-related problem determination for AT-TLS and IPSec.

  - Notification of availability of TCP/IP extended services

  - AT-TLS and IPSec certificate diagnostics

  - IPSec certificate reporting enhancements

Get more technical information

Training IBM Open Badge: Networking on z/OS – Foundations

IBM open badge for you to easily and quickly share verified proof of your achievements on networking on z/OS.

IBM Open Badge: z/OS Network Security – Foundations

IBM open badge for you to easily and quickly share verified proof of your achievements on z/OS network security.

IBM Open Badge: z/OS TCP/IP Configuration with NCA

IBM open badge for you to easily and quickly share verified proof of your achievements on z/OS TCP/IP Configuration with NCA.

IBM Open Badge: TCP/IP on z/OS Essentials - Level 1

IBM open badge for you to have a general knowledge and understanding of TCP/IP on z/OS.

IBM Open Badge: zERT Policy Enforcement Configuration with NCA

IBM open badge for you to learn how to configure zERT Policy Enforcement using the IBM Configuration Assistant for z/OS Communications Server (NCA).

Resources z/OS 3.1 Communication Server New Function APAR Summary

Information on z/OS Communications Server new function APARs available for z/OS 3.1.

z/OS V2R5 Communication Server New Function APAR Summary

Information on z/OS Communications Server new function APARs available for z/OS V2R5.

z/OS Communications Server V2R4 New Function APAR Summary

Information on z/OS Communications Server new function APARs available for z/OS V2R4.

IBM z/OS Communications Server TCP/IP Implementation -- Volume 1 of 4

Base functions, connectivity, and routing.

IBM z/OS Communications Server TCP/IP Implementation -- Volume 2 of 4

Standard applications.

IBM z/OS Communications Server TCP/IP Implementation -- Volume 3 of 4

High availability, scalability, and performance.

IBM z/OS Communications Server TCP/IP Implementation -- Volume 4 of 4

Security and policy-based networking.

Related products IBM z16

The latest iteration of IBM Z® mainframes with on-chip AI inferencing and industry-first quantum-safe technologies.

IBM z15

The platform for privacy, security and resiliency in hybrid clouds.

IBM z/OS operating system

A highly secure and scalable operating system for running mission-critical applications.

Next steps

Discover how IBM z/OS Communications Server can do for your business. Schedule a no-cost 30-minute meeting with an IBM Z and LinuxONE representative.

Documentation Support Community Performance publications Global financing Developer Community