Ezjail host

From TykWiki
Revision as of 19:19, 8 December 2011 by Tykling (talk | contribs)
Jump to navigationJump to search

Encrypted zvol

[tykling@latency ~]$ zfs list
NAME               USED  AVAIL  REFER  MOUNTPOINT
zfstank           1.41G  72.9G    21K  none
zfstank/root      1.41G  72.9G  1.32G  /
zfstank/root/tmp    35K  72.9G    35K  /tmp
zfstank/root/var  94.4M  72.9G  94.4M  /var

[tykling@latency ~]$ sudo zfs create -V 65G zfstank/encrypted

[tykling@latency ~]$ zfs list
NAME                USED  AVAIL  REFER  MOUNTPOINT
zfstank            66.4G  7.89G    21K  none
zfstank/encrypted    65G  72.9G    16K  -
zfstank/root       1.43G  7.89G  1.34G  /
zfstank/root/tmp     35K  7.89G    35K  /tmp
zfstank/root/var   95.2M  7.89G  95.2M  /var

[tykling@latency ~]$ ls -l /dev/zvol/zfstank/encrypted
crw-r-----  1 root  operator    0,  81 Dec  8 19:42 /dev/zvol/zfstank/encrypted

[tykling@latency ~]$ sudo geli init -s 4096 -K /root/encrypted.key /dev/zvol/zfstank/encrypted
Enter new passphrase:
Reenter new passphrase:

[tykling@latency ~]$ sudo geli attach -k /root/encrypted.key /dev/zvol/zfstank/encrypted
Enter passphrase:

[tykling@latency ~]$ sudo zpool create cryptopool /dev/zvol/zfstank/encrypted.eli

[tykling@latency ~]$ sudo zpool list
NAME         SIZE   USED  AVAIL    CAP  HEALTH  ALTROOT
cryptopool  64.5G   572K  64.5G     0%  ONLINE  -
zfstank     75.5G  1.73G  73.8G     2%  ONLINE  -

[tykling@latency ~]$ zpool status cryptopool
  pool: cryptopool
 state: ONLINE
 scrub: none requested
config:

        NAME                          STATE     READ WRITE CKSUM
        cryptopool                    ONLINE       0     0     0
          zvol/zfstank/encrypted.eli  ONLINE       0     0     0

errors: No known data errors
[tykling@latency ~]$
Retrieved from "https://tyk.wiki/index.php?title=Ezjail_host&oldid=405"