Create Volumes for a Gateway-Cached Configuration
Previously, you allocated one of two disks that you had added to the VM for cache storage and the other disk for an upload buffer. You will now create a storage volume in Amazon S3 and configure CHAP authentication for your volumes. Your on-premises applications writes data to this volume and stores the data in Amazon S3. The gateway maintains the volume's recently accessed data locally in cache storage.
The following architectural overview diagram shows the part of the gateway-cached setup that you are creating.
Create a Volume in Amazon S3
To create a volume in Amazon S3 for a gateway-cached configuration
In the Configure Your Activated Gateway dialog box, create an iSCSI storage volume in Amazon S3.
For Capacity, specify the appropriate capacity to hold the data you plan to store in AWS. If you are creating the gateway as an example setup, you can specify 50 GB.
The maximum size you can specify is 32 TB.
Type a name in the iSCSI Target Name box.
The target name can contain lowercase letters, numbers, periods (.), and hyphens (-). This target name appears as the iSCSI Target Node name in the Targets tab of the iSCSI Microsoft Initiator UI after discovery. For example, the name
iqn.1007-05.com.amazon:target1. Ensure that the target name is globally unique within your storage area network (SAN).
For this exercise, you can use myvolume as the target name.
Leave the Based on Snapshot ID box empty.
If you want to restore an existing Amazon EBS snapshot or a gateway snapshot on the storage volume that you are creating, you must specify the snapshot ID. The gateway downloads your existing snapshot data to the storage volume. For more information, see Restoring a Snapshot to a Storage Volume.
Verify that the Host IP setting is the IP address of your gateway, and then click Create Cached Volume.
In the Configure iSCSI Initiators dialog box, click Close.
For more information, see Adding a Storage Volume.
The Configure CHAP Authentication wizard appears.
Configure CHAP Authentication for Your Volumes
You can configure your volumes to use Challenge-Handshake Authentication Protocol (CHAP). CHAP provides protection against playback attacks by requiring authentication to access your storage volume targets.
In the Configure CHAP Authentication dialog box, you provide information so that you can configure CHAP for your volumes.
To configure CHAP
In the Configure CHAP Authentication dialog box, click the Enabled check box.
In the Initiator Name box, type the name of your initiator.
In the Secret Used to Authenticate Initiator box, type the secret phrase you used to authenticate your iSCSI initiator.
In the Secret Used to Authenticate Target (Mutual CHAP) box, type the secret phrase used to authenticate your target for mutual CHAP.
Click Save to save these values.
For more details on setting up CHAP authentication, see Configuring CHAP Authentication for Your Storage Volume.