SMB Direct
Windows Server includes a feature called Server Message Block (SMB) Direct, which supports the use of network adapters that have Remote Direct Memory Access (RDMA) capability. Network adapters that have RDMA can function at full speed with lower latency without compromising CPU utilization. For workloads such as Hyper-V or Microsoft SQL Server, this feature enables a remote file server to resemble local storage. SMB Direct is automatically configured and enabled by default in Windows Server 2012 and future iterations.
Using SMB Direct provides:
- Increased throughput: Applies the full throughput of high speed networks where the network adapters coordinate the transfer of large amounts of data at line speed.
- Low latency: Provides fast responses to network requests, which makes remote file storage feel like directly attached block storage.
- Low CPU utilization: Uses fewer CPU cycles when transferring data over the network, which leaves more power available to server applications.
You can use SMB Direct in a failover cluster; however, you need to make sure that the cluster networks used for client access are adequate for SMB Direct. Failover clustering supports using multiple networks for client access, along with network adapters that are RSS (Receive Side Scaling)-capable and RDMA-capable.
Note
You can use SMB Direct on the Hyper-V management operating system to support using Hyper-V over SMB, and to provide storage to a virtual machine that uses the Hyper-V storage stack. However, RDMA-capable network adapters aren't directly exposed to a Hyper-V client. Even if you connect an RDMA-capable network adapter to a virtual switch, the virtual network adapters created by the switch can't support RDMA.
Requirements
The following are SMB Direct requirements:
- One or more network adapters with RDMA capability.
- At least two computers running one or more of the following operating systems:
- Windows Server 2012 and later.
- Windows 10 Enterprise and later.
- Windows 10 Education and later.
- Windows 10 Pro for Workstations and later
- Windows 10 Pro 22H2 (clean install, not upgraded from older versions) and later.
Note
Windows 10 and Windows 11 family are restricted to client-only and can't act as an SMB Direct server.
SMB Multichannel
SMB Multichannel is the feature responsible for detecting the RDMA capabilities of network adapters to enable SMB Direct. Without SMB Multichannel, SMB uses regular TCP/IP with the RDMA-capable network adapters (all network adapters provide a TCP/IP stack along with the new RDMA stack).
With SMB Multichannel, SMB detects whether a network adapter has RDMA capability, and creates multiple RDMA connections for that single session (two per interface). This feature allows SMB to use the high throughput, low latency, and low CPU utilization offered by RDMA-capable network adapters. It also offers fault tolerance if you're using multiple RDMA interfaces.
You can team RDMA-capable network adapters using Switch Embedded Teaming (SET) starting with Windows Server 2016. After at least one RDMA network connection is created, the TCP/IP connection used for the original protocol negotiation is no longer used. However, the TCP/IP connection is retained in case the RDMA network connections fail.
Disabling SMB Multichannel also disables SMB Direct. SMB Multichannel detects network adapter capabilities and determines whether a network adapter is RDMA-capable. Client devices can't use SMB Direct if SMB Multichannel is disabled.
SMB Encryption
Beginning in Windows Server 2022 and Windows 11, SMB Direct now supports encryption. Previously, enabling SMB encryption disabled direct data placement, making RDMA performance as slow as TCP. Now data is encrypted before placement, leading to relatively minor performance degradation while adding AES-128 and AES-256 protected packet privacy. For more information on configuring SMB encryption, see SMB security enhancements.
Furthermore, Windows Server failover clusters now support granular control of encrypting intra-node storage communications for Cluster Shared Volumes (CSV) and the storage bus layer (SBL). This means that when using Storage Spaces Direct and SMB Direct, you can decide to encrypt east-west communications within the cluster itself for higher security.
Disabling and enabling SMB Direct features
The SMB client automatically detects and uses multiple network connections if an appropriate configuration is identified. As SMB Direct is enabled by default, once disabled, it needs to be manually re-enabled whenever needed.
Typically, you don't need to disable SMB Direct, however, you can disable it along with its features, by running the following Windows PowerShell commands.
To disable SMB Direct, type:
Disable-WindowsOptionalFeature -Online -FeatureName SMBDirect
To disable SMB Multichannel on the server-side, type:
Set-SmbServerConfiguration -EnableMultiChannel $false
To disable SMB Multichannel on the client-side, type:
Set-SmbClientConfiguration -EnableMultiChannel $false
To disable RDMA for a specific interface, type:
Disable-NetAdapterRdma <name>
To disable RDMA for all interfaces, type:
Set-NetOffloadGlobalSetting -NetworkDirect Disabled
When you disable RDMA on either the client or the server, the systems can't use it. Network Direct is the internal name for Windows Server basic networking support for RDMA interfaces.
To verify which state of operability SMB Direct is currently configured to, run the following cmdlet:
Get-WindowsOptionalFeature -Online -FeatureName SMBDirect
Testing SMB Direct
You can test the performance of SMB Direct by measuring the throughput when running a large file copy. Before testing, verify that the network adapter supports RDMA using PowerShell.
On the server-side, type:
Get-SmbServerNetworkInterface
On the client-side, type:
Get-SmbClientNetworkInterface
Once the network adapter is verified RDMA-capable, perform the following actions:
- Disable RDMA on the network adapter, see Disabling and Enabling SMB Direct features.
- Measure the amount of time taken to run a large file copy without using SMB Direct.
- Re-enable RDMA on the network adapter, perform the same file copy, and then compare the two results.
- To avoid the impact of caching, perform the following actions:
- Copy a large amount of data (more data than memory is capable of handling).
- Copy the data twice, with the first copy as practice and then timing the second copy.
- Restart both the server and the client before each test to ensure they operate under similar conditions.
Additionally, you can observe the performance counters during testing using the same scenario utilizing the Performance Monitor tool by performing the following steps:
- Select Start, type perfmon, hit Enter.
- In the left pane, under Monitoring Tools > select Performance Monitor.
- In the right pane, select the green "+" icon to add a new counter.
- In the Add Counters dialog box, expand SMB Direct Connection.
- Select both Bytes RDMA Read/sec and Bytes RDMA Written/sec, select Add, then select OK.
SMB Direct failover capability
Here's how to confirm the failover capability of SMB Direct:
- Ensure that SMB Direct is functioning in a multiple network adapter configuration.
- Run a large file copy. During the copy process, simulate a failure of one of the network paths by disconnecting one of the cables or by disabling one of the network adapters.
- Confirm that the file copying continues using one of the remaining network adapters, and that there are no file copy errors.
Tip
To avoid failures of a workload that doesn't use SMB Direct, make sure there are no other workloads using the disconnected network path.