Sorry for very late reply but unfortunately I had no time to move forward with that due to personal reasons. That's also the reason I wasn't here for such a long time.
I'd suggest to contact Volker for wiki account and put all such tutorials on wiki.
I managed to build fully encrypted OMV (well, everything besides /boot) and described it at http://wiki.openmediavault.org…f_boot_disk_to_store_data
I've created a separate thread for discussion on the manual: http://forums.openmediavault.org/viewtopic.php?f=12&t=984
I've just posted on wiki the very first draft of manual describing how to set up an encrypted OMV installation with aes-xts-plain64 cipher, random key for swap and exposing the rest of boot disk to store data.
I'll update it with screenshots soon. I hope you'll find it useful and maybe help to improve it.
This thread is meant for feedback, discussion and ideas related to that manual.
What kind of display do you use and how it's connected?
Quote from "fetto"
This could probably be setup with dmcrypt quite easily, or even be integrated with a plugin or built into the control panel as default. Someone has to do it though
Such a plugin would be great. I see from http://bugtracker.openmediavault.org/view.php?id=7 that support for encryption is planned, but with no work on the subject as of now.Quote from "ptruman"
Do a custom install and/or select LVM with encryption. You'll have to enter the decrypt key on every boot however (meaning you'll need to be present or have an IP KVM).....
I don't mind to enter the key manually on every boot.
What are the pros and cons of each method (dm-crypt vs LVM)? Maybe other methods are worth considering (e.g. TrueCrypt)?
I'm sorry for lame questions, but I'm new to encryption under Linux. Maybe somebody can write some tutorial or point to a good one?
I marked the ports and kept the same disks connected always to the same ones. OK, I'm away from my system now, but I'll check if there's no side effects in a couple of days. Thanks.
Thanks for the hint on the filesystem, I can still switch as I don't have a lot of data there yet. I built the NAS for reliability only, speed is not an issue (it works on USB drives anyway) so if there's something scary about XFS I'd prefer to switch to good old ext4.
Nevertheless, I'd like to know why those mount points change...
Any clue why the mountpoint changes? Shall I be afraid of this?
Can anybody experienced comment on this, please?
I tried to rebuild the array manually as described http://forums.openmediavault.o…p?f=11&t=334&p=1139#p1103
I get clean array on /dev/md0 but after reboot it switched to /dev/md127... described on next post http://forums.openmediavault.o…p?f=11&t=334&p=1139#p1139
Is it due to this missing "mdadm /dev/md100 --create --force --level=linear --raid-devices=1 /dev/sda3" step?
When rebuild finished everything seemed to be ok, mirror was mounted as originally defined to /dev/md0. However, after reboot the mirror is still clean but again changed mount point to /dev/md127 this time:
This instability scares me a bit... Why it behaves in such a strange manner?
For reference, current /proc/mdstat
I tried to fix the array in following way:
And it started re-building the array:Code
It will take quite a while. Is there any other way avoiding recovery? Both disks should already contain perfectly synchronized data in this case...
Quote from "ppfdez"
I need more information. CLI commands, df, mounts, gui screens ...........
Thanks for your willingness to look into this
I posted all configuration data at separate thread http://forums.openmediavault.org/viewtopic.php?f=11&t=334 to avoid morphing this one.
And filesystems configuration below. As you see, it's /dev/sda3 I mounted from local system disk and a half of the mirror I created as
/dev/md0 but now visible as /dev/md126
I have rather unusual setup, namely I have two external USB disks connected to old netbook configured in raid1 (mirror). I set it up and it worked well for ~2 days. Today, however, when I turned my NAS on instead one mirror on /dev/md0 I see two degraded ones /dev/md126 and /dev/md127. The same disks are connected to the same USB ports all the time. The only thing which comes to my mind is the fact I was playing with partitions on system disk (not touching the mirror, both disks were disconnected that time) according to the method 4 from http://forums.openmediavault.o…topic.php?f=10&t=192#p734 (but I haven't run "mdadm /dev/md100 --create --force --level=linear --raid-devices=1 /dev/sda3" instruction proposed there to create linear array, I just simply mounted new /dev/sda3 from the Filesytems tab in the UI) - I wonder if that could do something wrong to the raid? Please find below all my current configuration.
- What happened and how to fix it?
- How to prevent this in the future?
mdadm --detail /dev/md/mirror1Code
mdadm --detail /dev/md126Code
mdadm --detail /dev/md127Code
All 3 disks: internal system one and both USB drives are configured
the same way to use minimum power, spin down after 10 minutes and
I'll post filesystems configuration screenshot in another post due to limit of 3 attachments per post.
Unfortunately my account got mistakenly deleted together with all my posts hence I'm re-posting it again for reference. It's a copy from old forum: https://sourceforge.net/apps/p…&hilit=store+data+on+disk
Al credits to the original author, marknewfsdQuote
OpenMediaVault is a wonderful NAS solution if you want to build your own system. Is is derived from FreeNAS but uses GNU/Linux instead of FreeBSD. I am really happy with it, but one thing kept bugging me: For some reason, the developers decided that the main file system containing the OS and configuration can not be used for storage.
As I am using an old laptop for my NAS system (which is both cost-efficient and eco-friendly), I do not want to sacrifice my whole 320GB harddisk just for configuration files. I have found a way to work around this limitation in a robust fashion.
I've found 3 ways to do this. (I suggest you to read all the methods and then decide which one is the best for you (Step 3 is the most easiest way).
Create a file that will act as the container of all your files. There is only one downside of this; you aren't able to change the size of this container later on.
Instead of a file you can use a partition on the disk.
- You must boot from the live cd and reduce the size of partition where you installed OpenMediaVault.
- Create another unallocated partition and then follow the instructions.
- Continue Method 1, but skip the creation of the file.
- Replace “losetup /dev/loop1 /virtualdisk” to “losetup /dev/loop1 /dev/sda3″ (where sda3 is your new partition).
- In lodev script replace “losetup /dev/loop1 /virtualdisk” to “losetup /dev/loop1 /dev/sda3″
Copyright IlgizKs comment on the website of Method 1
Volker suggested that I should be able to do this http://by using mount bind.
- Attach an USB stick to your system, mount it.
- Open CLI (Command Line Interface) and write these commands:
- Then look which disk is your usb stick.
(replace usb_stick_name with the name you see with the ls command)
- Now create a file by using your favorite file editor. I'll use nano for this;
Write something in the document, save it and exit the editor.
- Check if the file you created is really there:
- Create a shared folder on this location (by using the Web UI)
- Now remove your USB Flashdrive
- Check if the share and the folder /media/usb_stick_name are still there.
Now we've created a solution to store files. All files which are being stored in /media/usb_stick_name will actually be stored in /omv/ (a folder on the first harddisk).
There is one problem left, this mount command is gone after a reboot. This can be solved by creating a script that will automaticly mount the folder during the boot of the system.
Write this inside the file:Code
Save the file and exit the editor.
- Now reboot your system to check if everything works. Now simply create a share on the 'fake' usb stick.
I've tried Method 3 out and it works wonderfull. However, I've done and written these steps, but I didn't test them afterwards (by using this guide), so in case something isn't working, please tell me. (Sorry for the buggy layout of each step, this is the fault of the forum system here)
Warning: be sure to test each method first in VirtualBox before applying them into a production system. You don't want to break anything.
You're not alone, my account has been deleted with all posts, too. And I'm quite sure my accounts were not hacked, especially that I don't use Hotmail. I've re-created the account here and tried to re-post one post from old forum providing link to the source and this post was classified immediately as spam... I think something is wrong with the spam filter and we're getting false positives hence our accounts are deleted.
What are the rules checking is a post is a spam or not?