Ezjail host
From TykWiki
Jump to navigationJump to search
Encrypted zvol
[tykling@latency ~]$ zfs list NAME USED AVAIL REFER MOUNTPOINT zfstank 1.41G 72.9G 21K none zfstank/root 1.41G 72.9G 1.32G / zfstank/root/tmp 35K 72.9G 35K /tmp zfstank/root/var 94.4M 72.9G 94.4M /var [tykling@latency ~]$ sudo zfs create -V 65G zfstank/encrypted [tykling@latency ~]$ zfs list NAME USED AVAIL REFER MOUNTPOINT zfstank 66.4G 7.89G 21K none zfstank/encrypted 65G 72.9G 16K - zfstank/root 1.43G 7.89G 1.34G / zfstank/root/tmp 35K 7.89G 35K /tmp zfstank/root/var 95.2M 7.89G 95.2M /var [tykling@latency ~]$ ls -l /dev/zvol/zfstank/encrypted crw-r----- 1 root operator 0, 81 Dec 8 19:42 /dev/zvol/zfstank/encrypted [tykling@latency ~]$ sudo geli init -s 4096 -K /root/encrypted.key /dev/zvol/zfstank/encrypted Enter new passphrase: Reenter new passphrase: [tykling@latency ~]$ sudo geli attach -k /root/encrypted.key /dev/zvol/zfstank/encrypted Enter passphrase: [tykling@latency ~]$ sudo zpool create cryptopool /dev/zvol/zfstank/encrypted.eli [tykling@latency ~]$ sudo zpool list NAME SIZE USED AVAIL CAP HEALTH ALTROOT cryptopool 64.5G 572K 64.5G 0% ONLINE - zfstank 75.5G 1.73G 73.8G 2% ONLINE - [tykling@latency ~]$ zpool status cryptopool pool: cryptopool state: ONLINE scrub: none requested config: NAME STATE READ WRITE CKSUM cryptopool ONLINE 0 0 0 zvol/zfstank/encrypted.eli ONLINE 0 0 0 errors: No known data errors [tykling@latency ~]$ [tykling@latency ~]$ zfs list NAME USED AVAIL REFER MOUNTPOINT cryptopool 352K 63.5G 112K /cryptopool zfstank 66.9G 7.45G 21K none zfstank/encrypted 65G 72.5G 32K - zfstank/root 1.87G 7.45G 1.78G / zfstank/root/tmp 35K 7.45G 35K /tmp zfstank/root/var 95.3M 7.45G 95.3M /var [tykling@latency ~]$ sudo zfs set mountpoint=none cryptopool [tykling@latency ~]$ sudo zfs create -o compression=gzip -o mountpoint=/usr/jails cryptopool/jails [tykling@latency ~]$ zfs list NAME USED AVAIL REFER MOUNTPOINT cryptopool 536K 63.5G 112K none cryptopool/jails 112K 63.5G 112K /usr/jails zfstank 66.9G 7.44G 21K none zfstank/encrypted 65G 72.4G 2.17M - zfstank/root 1.88G 7.44G 1.79G / zfstank/root/tmp 35K 7.44G 35K /tmp zfstank/root/var 95.3M 7.44G 95.3M /var [tykling@latency ~]$