All of the "doomsaying" applies to all systems, not just FreeNAS. It's just most people don't talk about or even think about the reliability and safety of their data (until their single hard drive dies). In a forum dedicated to reliable storage of data, of course the discussion is going to revolve around worst-case scenarios.
I've been through several upgrades and never had a problem till 9.3. The issue with 9.3 is that it uses GPT, and not all systems support that. In particular my machine (an old 2006 Mac Pro 1,1) doesn't like booting non-OSX GPT partitions, and wouldn't boot. No problem, I just reinstalled 22.214.171.124 and restored my config, and was back in business. It will continue running until I get a proper machine, or I can just stay at 126.96.36.199 forever. Or try rEFInd, but I'm probably going to use this as an excuse to upgrade the hardware. :)
>but I still worry that this is somehow less robust than my dinky old ReadyNas.
Your ReadyNAS also has ECC RAM, requires a UPS, and if you click the wrong thing in the GUI, will destroy all your data.
Your exposure to danger hasn't changed; you're just more aware of it now.
We're you the guy that was in #freenas this morning the same thing?
There is a NTP DDOS going on. https://news.ycombinator.com/item?id=7223911
Suggest you block NTP traffic or apply the fix provided in the links from HN.
I've had great performance and an easy setup with a LSI Logic SAS 9207-8i. My box has an Intel CPU, but I don't believe that should matter.
Here's a link.
No! Do not do run raid 5 with large drives! I repeat, DO NOT RUN RAID 5!!! The likelihood of hitting a URE during a rebuild is near 100%. Check this out: http://www.zdnet.com/has-raid5-stopped-working-7000019939/
A URE during rebuild with 1 drive parity (raid 5) equals a lost array. You could probably get away with the ZFS equivalent of raid 5 (raidz1) but its deprecated too. You only need to get 8TB of usable storage from the 4x4TB drives so run raidz2. Why take chances with your data? Take it from someone who lost irreplaceable data (1st years of my child's life in photos) due to poor raid choices. You want to get this right the first time around.
Also, I just noticed a screaming 1 day deal on Hitachi Deskstar 4TB drives:
It's limit 1 per customer but I'm sure you can find a way to make 4 of them happen.
this is basically the truth.
Like it seems like you are new to unix/the command-line and the kind of ease and comfort of the command line will only come with more time on it. It is just that kind of thing. I would only elaborate with, you can specifically fire up freebsd digital ocean droplets for free to try.
that way you aren't messing with a system that you actually care about - and it takes like a minute to fire up. They also have tutorials on how to do stuff.
But basically you just need to do it. So much of the command line is just experiential - like everyone tells you logging in as root is a bad idea - but until you wipe out something it just won't stick. Best of luck.
i have the Intel Avoton C2750 as my plex server it is just the model up from you one you have, it is at 2.40GHz but it is an octo-core. i am able to get 3 transcoding working fine at 720p without an issue and that is while running some other plugins as well. so you will be able to do one transcoding easy. so some more information that might help you understand how much cpu power is needed to transcode is the guidelines on the plex page.
Very roughly speaking, for a single full-transcode of a video, the following PassMark scores are a good guideline for a requirement:
1080p/10Mbps: 2000 PassMark
720p/4Mbps: 1500 PassMark
The CPU Benchmark website is a good resource to see what sort of PassMark score a particular processor received
plex cpu gudielines
the score for the C2550 is 2329 so you should be fine
edit: if you are looking at doing more then one transcodes then you might want something with more power but for one transcode it should be fine
I used the Silverstone CS380 case (8 hot swap bays on the front, plus 2x5.25inch bays on the front also) and then I bought one of these 2x5.25 bay insters that has 3 additional hotswap bays for a total of 11 https://www.amazon.com/gp/product/B07YQKHL8N/ref=ppx_yo_dt_b_asin_title_o07_s00?ie=UTF8&psc=1
The C2750DI is, IMO, bloody awesome, if it weren't for the dumb fact that it loves to spontaneously just stop working.
A2SDi-H-TF ticks all those boxes (except maybe the IPMI one). Toss in a video card and you'll get the hardware transcoding but you lose the PCIe slot. If you want to use your own CPU (with an iGPU) you'll end up with a C422 or C426 chipset and lose out on SATA ports.
USB memory sticks are no longer recommended for the boot drive for TrueNAS or some of the previous FreeNAS releases. I believe this due to a there being a lot more writes to the boot drive now.
Best solution if you still want to use USB is to get a short M2 SSD drive and a case for it, and use that instead. Something like
While it might work, Marvel controllers are generally not very good. You'd be far better off finding a used LSI card, probably for less than half that price.
Or if you really want to stick to Amazon, https://www.amazon.com.mx/LSI-Logic-SAS9211-8I-8PORT-Sata/dp/B002RL8I7M would be both a better supported card and significantly cheaper. Depending on the firmware it comes with, you may have to flash the firmware for it to an "IT Mode" firmware, but there are plenty of good guides for doing that available.
ExpressVPN is an external vpn service offered by another company. You need a VPN server/service setup in your network that you connect to directly. You already mentioned openvpn so it sounds like you are on the right track. Work from there.
well you could do that, there probably would be an issue with port conflicts because of the freenas webui. I run a full homelab so I have a VM that runs nginx and is the core proxy for all my internal web services.
maybe I'll write a blog post about this setup today.
Looks fine mostly, I'm a fan of the HGST Deskstar nas disks, but reds are ok but they are 5400RPM unless you get the pro drives.
According to this https://support.plex.tv/hc/en-us/articles/201774043-What-kind-of-CPU-do-I-need-for-my-Server-computer- and this http://www.cpubenchmark.net/cpu.php?cpu=Intel+Core+i3-6100+%40+3.70GHz&id=2617
You could do 2 concurrent streams of 1080 or 3ish concurrent streams of 720. Another thing to keep in mind is your internet upload speed. If you have 3Mbps up, then you're going to have a bad time.
EDIT: Also, in general freenas just sips the cpu most of the time, Plex is the only thing that will really max it out. If you're connecting via gig ethernet, then your build should be able to saturate that no problem. Dual intel NICs, you could always setup LACP with a managed/smart switch although that really only makes a difference if you have more than a few clients connecting to your freenas at a time.
I would install git on the jail, not on "freenas".
this may help you.
Plex give a rough guideline for cpu requirements for transcoding, 2000 passmark score per 1080p stream (10Mbps) and 1500 per 720p stream (4Mbps).
480p content like DVD's would be roughly 700 depending on the source bitrate.
The C2750 scores a quite reasonable 3929, so two full HD transcoded streams should be ok as long as there isn't anything else loading the system too hard.
Okay I've got these set, but the issue is still present. https://vgy.me/ZbrR4b.png
Browsing directories in general seems faster though at least. Just not when copies are happening. Everything still slows to a crawl.
wgetis complaining that it cannot verify the HTTPS certificate of the plex.tv domain. This is usually caused because wget (/your system) doesn't have the certificates of the Internet's root CAs available.
One way to solve by installing the CA certificates (usually a package called "ca-bundle" or similar, not sure what it is in FreeBSD).
Another (faster, less-secure) way is to simply skip checking the HTTPS certificate. You can run wget --no-certificate-check https://plex.tv/api/downloads/1.json?channel=plexpass.
wget --no-certificate-check https://plex.tv/api/downloads/1.json?channel=plexpass
Since the wget command is in a script, figuring out how to install the root CA's might be the easier option. Alternatively, you could find and replace every instance of "wget" with "wget --no-check-certificate" in the script (but who knows if the first script downloads other scripts with wget commands?).
EDIT: Try running pkg install ca_root_nss as root in the jail. That might install the needed CA certificates.
pkg install ca_root_nss
Not at all.
The script came from here:
I just do a
sudo jexec plexmediaserver_1
after logging into the NAS as my normal ID, then
Which just runs
./PMS_Updater.sh -c pmsID.txt -a -v
running it now gets me.
Searching https://plex.tv/api/downloads/1.json?channel=plexpass for
the FreeBSD download URL .....Done.
Already running latest version v188.8.131.5202-f54242b6
So, running this in a cron would be easy and it would update whenever a new version came out.
Not trying to be 'that guy,' but you should do a bit more research on ZFS. These are very basic questions, and if you put something into production you should have a lot more confidence in your operations.
zpool create POOLNAME raidz2 ada1 ada2 ada3 ada4 ada5 ada6 ada7 ada8
then after its done, zpool add POOLNAME raidz2 ada9 ada10... to ada 16, then again zpool add POOLNAME raidz2 ada17 ada18...to ada24. It stripes data across all 3 vdevs, giving you 3x the performance/iops (ish) and maintaining your 2 disk per vdev protection of raidz2. Would end up looking more like this but with raidz2 instead of mirrors: http://www.zfsbuild.com/2010/06/03/howto-create-striped-mirror-vdev-pool/
I don't use proton so any advise is what I can see from publically available websites. When I look at THESE instructions it looks like using VPN manually might use a second login
Well first of all we can all agree there is no official Dropbox client for FreeBSD. FreeNAS uses rclone and the docs for that is here https://rclone.org/dropbox/
What you describe feels like a poorly ad-hoc setup. If you intend to use FreeNAS on premise I would recommend that the first solution to look at would be to use Nextcloud, preferably with object storage due to the number of files you describe and then backup that system to Dropbox (or something better..) if the backup you send is in the form of replicated snapshots then you conform quite nicely with the 3-2-1 rule of backups
>aybe someone like me should just buy a NAS with proprietery software and tech support lol
Not your fault.. its over my head also...freenas or truenas core runs BSD... they are supposed to have easy point and click plugins but they are usually never updated...
This is why i setup a simple ubuntu server and installed installed syncthing
I then mount my freenas shares via NFS on my linux server hosting syncthing...
This sounds a little overly complex but freenas has now made truenas SCALE which has linux under the hood... and you can run docker containers natively so you wont have to run 2 computers.. this is early days for SCALE and it isnt even Alpha yet lol...
but the idea is you will get unraid or OMV level of functionality.... but using truenas SCALE with underlying ZFS... it will be the best of all worlds if they could just get moving a little faster on SCALE... been literally waiting for like 2 years for this
I've done this recently.
I created a new server on the MineOS box named the same as the one i was running on the windows box.
Use WinSCP to connect to the MineOS box.
Copy the windows minecraft server folder to /var/games/minecraft/servers (Make sure it's named the same)
Start the server in MineOS and it should start up.
Running a ramdisk.
So, basically it PXE boots a CoreOS image and then just runs in RAM, never touching disk.
It does support it. https://coreos.com/os/docs/latest/booting-with-pxe.html
I see Rancher has an option for HA. Have you messed with that at all?
docker containers are basically like very small VMs. they get their own kernel stack and you can map things like in jails host level datasets to folders inside of the docker containers you can then expose those ports for plex for example 32400 to the host which then makes them available to the rest of your network.
/mnt/VAULT/data/plexdata -> /config
dockers own site has some good information here
I can't imagine this helping much, buy you could try making a Ventoy USB and just booting the ISO directly from there (maybe it'll get around some weird issue with the BIOS not recognising the FreeNAS USB). It supports both UEFI as well as traditional BIOS
When I use OpenELEC (XBMC) I sometimes have better luck with the Zeroconf Browser.
You still can't install plugins? Try making a simple jail if that works.
For web sharing I'd recommend OwnCloud. I don't use plugins much, instead I have a jail with apache for stuff like rtorrent, syncthing, lychee photo gallery, calibre ebooks feed, etc.
Sounds like a plan!
I'll use my example above again to explain in more detail.
eth0 - 10.0.0.151/24 (connect to switch/router)
eth1 - 10.0.1.151/24 (connect directly to backup server eth1)
eth0 - 10.0.0.152/24 (connect to switch/router)
eth1 - 10.0.1.152/24 (connect directly to main server eth1)
Then to administer the two servers type the IP address of each server one at a time in a web browser from another device on your network (computer/phone).
I guess it is important to note that your backup server will most likely get a random IP from your router on your main LAN. To find its IP address you can either look at your routers DHCP leases or use a network scan tool like SoftPerfect Network Scanner. https://www.softperfect.com/products/networkscanner/
Once you set eth1 staticly on both your main and backup server you'll also want to set a static IP for eht0 on both devices. However this is done from the ROUTER not the TrueNAS GUI because you want the router to be aware that IPs 10.0.0.151/24 and 10.0.0.152/24 are being used. If you set eth0 staticly at the TrueNAS GUI level instead your router might assign another device to that same IP address thus conflicting with your server.
Thank you for your response. I do have a dynamicdns setup using https://freedns.afraid.org . My original intention was that i want to be able to access my transmission torrent download list from my work so I can drop some torrents in on my breaktime. I dont think i have ports open to access the management interface, i used to be able to but honestly right now even i cant access it. perhaps deleted those open ports when i reset my google wifi.
same boat as you...i have 16xx movies, and it originally found 21.....this was due to only SOME of my movies having <movie name> <year>.whatever. So i ended up having to find a program to scan/scrape all my movies and create .nfo's with the info couchpotato wanted. see here i ended up using this program to scan/scrape and create the .nfo files...so out of my 1690 movies, couchpotato NOW 1560....much improved from the 21, so pretty much couchpotato is picky and isnt like plex where it can have a movie title and figure it out, it needs a title + year it seems or just an nfo
>If I reading its info correctly, rclone does NOT nor cannot make VERSIONS, is this correct?
Not not in the traditional since they you are talking about. However check this out... https://rclone.org/docs/#backup-dir-dir looks like that might do what you are wanting. Do you have the ability to run Windows VM on anything?
Office 365 personal is a pretty good deal currently at $69.99 for a year and allows for up to 1tb. Then use something like Duplicati on your home PC or a VM, map a drive, and you can encrypt all data before it gets uploaded and stored on OneDrive.
I've just done something similar.
Export a snapshot to file with zfs send. Encrypt it with for example GnuPG. Then upload it to some remote storage. This easily done with cronjob
I wrote about it here https://dev.to/jmourtada/freenas-zfs-snapshot-backup-to-amazon-s3. I'm uploading the backups to Amazon S3 but i should be easy to upload somwhere else.
These might not be a cost effective solution, but there are adapters for m.2 to sata. Assuming they are sata and not pcie, something like these could work: link
For my AM4 motherboard I bought amazon link to the RAM
Samsung has a memory finder tool on their site. Plug in DDR4, ECC UDIMM and the size you need per stick and it will cough out all the part numbers so you can search online for the best price Samsung memory finder tool
Here is the cable on Amazon, I checked with the seller to see if it would also fit an r510, he said it does. I did not have to switch slots with my H200. Cold boot and then a reseat and a cold boot again and it worked.
You are welcome ;-)
Get a couple Mellanox ConnectX-3 cards. You should be able to get them on ebay for $35 or less each. A lot of people use x-2 cards, which you can get for much less, but they are no longer supported (by Mellanox and the mlx4 drivers). The x-3 cards are still fully supported and you can still get firmware updates. I'm using MCX311A-XCAT cards between freenas and linux and I have no problem maxing them out. That model has SFP+ connectors so you can connect them using a DAC cable. I use a cable I got on Amazon.
EDIT: Another thing to be aware of when buying used cards is the bracket height. A lot of them come with SFF (short) brackets. You may need a tall bracket instead.
If you are planning to use SATA HDD/SSD make sure to use SAS to SATA forward breakout cables like these:
SAS to SATA Breakout Cable
What router do you have? Several are available now that allow user's to configure an OpenVPN client in the router. You would then select one physical port on your router to be dedicated to VPN traffic. Build your network off of that and you will have a VPN protected LAN that is physically isolated from your unprotected network. Generate firewall rules to allow traffic through the gateway, between your LAN and VPN protected LAN, and you're set. Make sure you thoroughly leak test afterwards.
Edit: I found the manual for that AX12. Apparently it requires that you install a client on each machine that you want to pass through the VPN tunnel, so that isn't going to work for you exactly the same way.
This is how I have my home network set up using pfsense as my firewall appliance. It works like a charm. My wife likes it too because when I'm experimenting and inevitably drop my VPN network, her internet is unaffected. This option also only uses a single VPN client, so you have however many additional clients your provider allows remaining. I have five available from ExpressVPN. Four operate in a load balancer in pfsense for my VPN protected LAN, leaving one available for my phone.
If you want to delve even deeper, you can also configure an OpenVPN server in pfsense. This is what I use to remotely and safely access my home network anywhere I have access to the internet.
A SAS expander like the Intel RES2SV240 will go WITH the M1015. So how you could do it with your setup would be use a SAS 8087 to 8087 cable between the M1015 and the RES2SV240, power the single molex connector on the RES2SV240 from your external PSU. then you can add up to 5 break out cables to add up to 20 drives.
They probably didn't suggest this before because it is kind of a jerryriged way to do it. but so are most of our setups :-D
I am using a couple of inexpensive 32GB Transcend M.2s (80mm) using this USB enclosure (both from Amazon, but the m.2s I bought are no longer available). I have the usb enclosure basically double sided taped to the side of my box with the usb cable running to the back to plug in. Not the most professional looking job but it works :). The cable is Type C on the enclosure side and Type A on the computer side, so you do not need Type C on your motherboard to use. Claims up to 10Gbps speeds if connected to USB 3.1 port.
One way you can check security is by visiting Mullvad's own leak test,
I used that same guide to recreate my transmission jail yesterday, it works great. Your OpenVPN config file provided by NordVPN should contain everything you need to connect though. That's how my VPN works anyway. I just had to add the user/password to the config so it worked automatically.
>There are MANY guides around
I would suggest you ignore anything that isn't on the forums. Random blogpost X that suggests you use your 15 year old PC for a FreeNAS box is seriously out of touch.
>Some guides are outdated, or related to an old version of FreeNAS
The basic concepts haven't changed since 8.3(?). There's not anything special you will get out of 'newer' guides. Just make sure it's for at least version 9.3 because that's when the biggest changes occurred for the filesystem and jails. Doesn't really change the process though.
>There seems to be different routes for the same thing and I am a little lost.
>Could anyone point me to the right directions for my following needs, or just give me a summary of what I need to do? No need to enter into details, but once I have a summary I will better know what to look for.
>I would also like to be able to use my NAS to download torrents, using Radarr, Utorrent and my IPVanish VPN subscription. I would like IPVanish to activates as soon as Utorrent starts, and disconnect when it is not downloading.
Does ipvanish work on FreeBSD?
The script reported at the beginning of the thread works fine as a standalone script when loaded manually (bash ). Trying to automate the procedure when openvpn connects is trickier and requires some fiddling. Essentially my solution is to split the original script in three parts. The three scripts are reported in my comment above, the one you replied to. The first script is loaded by openvpn using the --up function (you need to edit its configuration file by adding the line *up *). I assume you are using Private Internet Access VPN and that you connect to one of their servers that allows port forwarding (see here. You also have to make the scripts executable with *chmod +x *.
I previously had a fiddly set of IPFW rules where I had to define my VPNs IP address, but that meant I couldn't use PureVPNs automatic 'fastest server' option.
With this, that works perfectly - fewer rules, connect to any VPN!
Thank you! :)
Here's a link to my IPFW config file. I believe the first entries are DNS servers. I use AirVPN as well so I followed the tutorial almost exactly if I remember correctly
edit: I have so many entries for my VPN's IP address because they seem to constantly change IPs. When I notice my Transmission jail is not connecting I'll disable the firewall, connect to the VPN and get the new IP, and then add a new entry to my IPFW file and start it back up and make sure everythings working. I just haven't bothered removing old IPs.
Just a sidenote that had me very annoyed for a few days:
The /etc/periodic/security/520.pfdenied periodic script that runs
every night at 3AM would cause panics and reboots, some kind of conflict
between openvpn and pfctl, I guess. I disabled it, but the box would still reboot every night at 3AM. Took me a few days to realize that every jail has a copy of that script and runs periodic as well.
>I have 3 x 3TB drives in a RaidZ1
Please don't. Start reading here on the why
But if for some sick reason you really have to - make 200% sure you have a good backup!
To answer your question: just use a second usb stick to install Freenas 9.3 on and see if you like it and if it works like it should.
You might be better off with the Intel Pentium G4600. It is faster, cheaper, & has more threads.
Also, yes I know you already made you purchase. But, you can return if needed (yay, buyers remorse period). 8GB of ram will get you to about 24TB of storage. 16GB of ram gets you to about 100Tb of storage.
Also though, 16GB of ram is good since ZFS is ram hungry. So, just a heads up if you plan to expand you will be fine for the future.
Second note you will not need an SSD for the OS or cache for basic media. I have one & it does not get used at all. The SSD will basically help only start up & updating. Which since you will update maybe once a month (not a huge deal). Also, since you won't be turning it off (start up speed not a huge deal)
You are better off putting your OS on a USB (because they are cheap, USB3.0 is decently fast,& easily replaceable) & keeping a back up of your config. The OS primarily runs in RAM. That is why you do not need an SSD for the OS.
I have had a USB fail on me, all I did was reload the OS load my config & everything was back go normal.
Edits: added information.
I had a similar issue where public-key auth was being vetoed. For me, it was because my authorized_keys file on FreeNAS had somehow been changed to be world readable, which SSH does not like. See more info here.
Openmediavault is effectively what FreeNAS would be if it went to debian. There is an interesting article on it. If IX really does this it would be insane given their reputation.
Run a Mail-in-a-Box server on DigitalOcean if you want to do it DIY with full control.
They even have a reasonably simple guide to follow.
>What drivers do you need
>What kind of hardware are you using?
Thank you very much!
After looking into the Avaton CPU; I saw this from a forum post regarding this motherboard and transcoding (below). I only have 1 Roku that would be accessing the plex data, and I assume this setup would suffice. Otherwise, perhaps I may look into i5 mini-itx motherboards...
The C2750 gets a Passmark score of 3929 according to
The general guideline is that you will need, very roughly speaking, a passmark score of roughly 2000 per 1080p/10Mbps transcode. Less for 720 and less for SD.
So you will get 2 1080p streams, maybe 3 720, and more SD...all assuming you have enough upload speed to handle all of that.
> As I thought a quad core 2.6 ghz cpu would eat transcoding a single 1080p stream for breakfast.
Just FYI, the rule of thumb for Plex transcoding is 2000 Passmark points per 1080p stream. The C2550 scores 2329 Passmarks, which is just over the rule of thumb. And that's pretty much exactly what you saw -- a single 1080p transcode taking 80-100% of your CPU during the transcoding process.
This is why I keep my plex server separate from my FreeNAS server. FreeNAS serves the data via SMB shares, and a beefier machine does the transcoding. That way I don't have to waste idle wattage on a more powerful FreeNAS machine.
File history works much like Time Machine on OSX. It available in Win8. Backup in Win7 works a bit differently.
You can set the scheduler to your preferences in Win7 though.
All the information is available without signing in. https://docs.aws.amazon.com/ses/latest/DeveloperGuide/getting-started.html It's a little dense since its for developers but you basically just create credentials that you'll copy&paste into FreeNAS and it works.
The prices are very low like /u/atlgeek007 is saying. I have my creditcard connected to AWS since long time ago but if you don't, I'd recommend signing up for https://aws.amazon.com/free/ . You'll get some free services for 12 months. Great for playing around and learning a little about cloud services.
update: forgot to mention that I have my own domain and you need that for this - first time you use SES you need to do a little bit of messing around to verify that you own the domain but its all described in the documentation.
nginx and proxy_pass..
same basic concept as this tutorial, just instead of apache redirection its to whatever your IP is..
Yeah, I'm just reading up on it. I was initially considering RaidZ1, but the hardware requirements are making me reconsider. I was assuming the Raid5 write hole was the main reason it had become unfashionable, but this article makes it sound like there's a good chance for failure during a rebuild if a drive fails.
The writing of this article does sound a little sensationalized- has anyone proved/debunked this?
Anyway, I'd be fine with RaidZ2 - I'll update my build list to six drives to reflect that.
Other server functions like running an Apache server scale with number of cores as well, so this is another way where this will be useful.
Sadly passmark seems to have a skewed result from what I've seen. I don't know the reason for this, the c2750 is less than half the e3-1231v3, and I find that hard to believe.
Maybe the e3-1231v3 does have significantly higher performance, I'm certainly open-minded to the thought that hyper-threading scales the same for Plex than actual physical cores do, but in my experience extra threads isn't the same as physical cores.
I set to enable, and TV connects to media now! Finally.
Windows connects via Plex GUI IP, but Macbook does not. Mac will connect via plex.tv/web though.
I thought Plex's Remote Access was for external only?
You should be able to access it via https://plex.tv/web with your plex pass. No public IP or port necessary.
I had the same error message when I first set mine up, and it was because my modem had a firewall built in that I wasn't aware of. You may need to make sure you have port forwarding setup on the modem if that's the case (or your router - or both).
I have never had any luck with running the plugins, so I've always opted for the jail approach. For me, the plugins have always been really unstable.
> My hypothesis is that this is because it's self-signed, so android knows it could be any old hacker making the cert. Is this correct?
> How do I obtain and use a fully secure and trustworthy certificate?
Have a look at Let's Encrypt
This is what I want to do, but I can't seem to connect to openvpn. Obviously I'm trying to use proton so I improvised a little. I copied my desired config file to the correct location, but when it asked for certs and keys I copied the cert from I downloaded from here I also didn't see the paths to the certs and keys when I went to ensure the ca, cert, key, and tls-auth were correct. I sort of summed this up to a difference between airvpn and proton. I successfully got my unprotected IP, but when I started openvpn the wget to get my public Ip began returning nothing. It just sat for a while and dumped me back into the command line. I tried to ping 184.108.40.206 and successfully did that, so I am a little confused. Did you use airVPN to follow this? Was it a solid tutorial? If we can't resolve it I may try to use airVPN. Thanks
Ok for anyone who comes across this later having the same question, I was able to find an answer from the rclone docs on B2:
> When rclone uploads a new version of a file it creates a new version of it. Likewise when you delete a file, the old version will be marked hidden and still be available. Conversely, you may opt in to a "hard delete" of files with the
>flag which would permanently remove the file instead of hiding it.
rclone's exit code 1 means that there is a syntax error.
If it's truly intermittent, I suspect that there is an argument to rclone that sometimes contains white space...
Looking at the source, if you are logging debug messages you should see "Running ['rclone', ...]".
Share that if you can.
Hello! Thanks for the reply. Noted, will read up on rclone.org tonight. Am gonna just set up some dummy files to test in order to go through the motions and learn the steps.
PUSH/PULL = Direction (PUSH = content moves from local to remote storage; PULL = content moves from remote to local storage)
COPY/SYNC = Should files be deleted at destination if they are missing from the source? So if you have a PUSH task setup and you "Sync" a perfect and accurate duplication is created at the destination. If you remove a file from the source it will also be removed at the destination. With copy, the file remains at the destination even if you removed it from the source.
Regarding your questions, this entire process relies on rclone. You should read up on it to really fully understand what is happening.
Question 1. --fast-list = Use recursive list if available. Uses more memory but fewer transactions (this is helpful if the cloud provider has slow api transactions or charges per api hit. (you should not assume the outcome will be better or worse because that depends on which cloud provider you use.
More information on rclone flags https://rclone.org/flags/
Question 2. I use sync against Google Drive and have experienced no issues. More info on sync can be found at https://rclone.org/commands/rclone_sync/
I've good experiences with rclone to upload photos to Google Photos, you might want to take a look.
I would like to point out that Google Photos has its drawbacks (in that it strips tags, etc), so it should be the end node in your workflow. I am saying, photos (original) should already be in your procession (FreeNAS or otherwise), from which you take a backup and upload to Google Photos. If you're taking a backup of Google Photos, you taking a "degraded" version of the photos. Just so you know.
On the other hand, it's worth keeping in mind that a RAIDZ2 array will fail with three drives lost, whereas a sufficiently large RAID10 array is likely to keep on trucking.
I just did a statistical monte carlo sim, and with two drives failed, here's the chance of a RAID10 array surviving, depending on the number of disks involved:
4: 4911/7496 - 65.514941%
6: 6725/8358 - 80.461833%
8: 7457/8711 - 85.604408%
10: 8038/9012 - 89.192188%
12: 8342/9162 - 91.049989%
14: 8586/9317 - 92.154127%
16: 8692/9359 - 92.873170%
18: 8857/9432 - 93.903732%
20: 9035/9532 - 94.785984%
With three disks failing:
6: 2264/5567 - 40.668223%
8: 3746/6524 - 57.418761%
10: 4762/7206 - 66.083819%
12: 5549/7634 - 72.687975%
14: 6067/7951 - 76.304867%
16: 6543/8174 - 80.046489%
18: 6936/8454 - 82.044003%
20: 7246/8571 - 84.540894%
RAIDZ2 would be solid 100%'s in the first chart and solid 0%'s in the second chart. I don't have any commentary on what the chance is of a 20-disk array having two disks fail vs. three disks fail, though.
(code here if you're curious)
Right so; I went to https://x.x.x.x:943/ and the OpenVPN client popped up on my Windows PC, and it /just connected/ after typing in the username and password.
So I'm not sure where I collect these files:
> Now copy over your openvpn config file (usually your VPN service provider will supply this) make sure to name it openvpn.conf.
> [[email protected]_1 /]# cp /media/VPNproviderfile.ovpn /usr/local/etc/openvpn/openvpn.conf
> [[email protected]_1 /]# cp /media/ca.crt /usr/local/etc/openvpn/keys/ca.crt
> [[email protected]_1 /]# cp /media/user.crt /usr/local/etc/openvpn/keys/user.crt
> [[email protected]_1 /]# cp /media/user.key /usr/local/etc/openvpn/keys/user.key
> [[email protected]_1 /]# cp /media/ta.key /usr/local/etc/openvpn/keys/ta.key
I installed OpenVPN using this guide. https://www.digitalocean.com/community/tutorials/how-to-install-openvpn-access-server-on-ubuntu-12-04
You can install it manually.
To be fair, the freshport is out of date too, so even if they got a plugin going on, it would still be out of date
Got the WebUI up and running and from the jai's console I can curl ipinfo.io to see that I'm connected to my VPN. The /home/rtorrent/download is a mount to a dataset. I can connect with admin/admin, but the downloads don't start.
What did you change and where to get this to work?
Additionally, did you get to either change the password for the admin account or how did you add another user? I can't login at all with a user I added.
Where is the configuration file kept?
Crafty Controller is here:
MineOS is an actual stand-alone OS here:
You create a new VM, install MineOS into it as a clean OS (it's Linux-based, read the wiki), and you'll have a clean default Minecraft server running.
Crafty Controller is just a web front end for an existing server. I actually have this running on a separate Windows server because while Linux is super great and all, fuck the CLI when "unzip | run | follow prompts | it works" is an option.
I took the (TrueNAS-12.0-U1.1) and I was able to upgrade my original SSD in a new environment (do not format) keeping all the configs. I got my virtual machine back and now worried because I could of lost it and setting up pterodactyl was a pain and never ever want to do it again. Now I got to find out why it wasnt there when I booted in the newer usb. Are virtual machine not included in the freenas save config file?
I'm guessing in the users section of the freenas docs. you just paste your public key in for the user and disable password login.
no, that only disables root password login, not all root login with keys.
if you want to disable root completely you could also set 'PermitRootLogin' to "no" as documented here
I use HD Tune to test my USB\SD cards. It's great for testing USB drives. I found my 4yr old Kingston drives had a bad block on one of them when I started to have issues. There could be other hardware issues going on though. That screenshot does not really indicate an issue...
Try something from the hardware compatibility list (scroll down to the Ethernet section). This is not the only parts that will work well with FreeNAS, but if you can source these particular parts, it's a good start. I can't remember what NIC I have but it's one of the Intel PRO/1000 ones.
With all of this in mind, I would not recommend buying a dedicated NIC without identifying that the NIC is the actual problem first (my FreeNAS box was absolutely fine before I bought the NIC, just the transfer speeds weren't as fast as I would have liked using the onboard Ethernet). I would suggest doing SMART tests, RAM tests, and ping tests (from the box) to see if you can detect a particular group of things (hdd, ram, NIC) causing the issues.
You're welcome, glad to help, but still I recommend the reading :) Remember every jail has their own file/directory structure with system files etc.
If you do want to do the reading I picked out 2 pages you can start with to help with this in the future, remember to set all files to one permission is not at all good. System files etc needs other permissions at times:
The file and directory structure: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/dirstructure.html
File permissions: http://www.freebsd.org/doc/handbook/permissions.html
I've switch the hard drive from one bay to another. The working drive comes up fine on either open slot while the other still doesn't show. Just to be super cautious, I'll verify that again and replace sata cables if necessary.
I'll try Crystal Disk Info (https://portableapps.com/apps/utilities/crystaldiskinfo_portable) tonight.
Hmmm, I remember having a lot of issues when I tried to install Freenas the first time round but I somehow got it working. I recently wiped the SSD and installed truenas which went smoothly though. Try wiping the SSD and then using balena etcher to create the USB installer. Keep the bios in legacy throughout and select the bios option when installing. I followed that process and it has been okay for me so far!
That CPU will be fine for any NAS os.
I know you posted to FreeNAS, but also check out alternatives. FreeNAS is quite robust, but isn't as flexible with volume management after it's set up (as compared to, for example, Unraid). You can try both out for a spin for free. (I have one of each at home in small enclosures).
Whatever you end up going with, make sure you get the most out of your NAS by setting up data scrubbing and SMART checks.
OS X can't legally be virtualized except on Apple hardware. VMware enforces this restriction; I don't know if Virtualbox does. Even if it doesn't, OS X only has drivers for specific hardware.
You can run FreeNAS on your Mac, assuming it's an Intel Mac (anything in the last few years).
If you're keeping around iTunes for streaming video to AppleTV, one replacement is PlexConnect, although it's not officially supported and could be broken by future software updates. The Roku HD is a decent replacement for the AppleTV, though doesn't support video AirPlay. I have both hooked up for that reason.
Plex in general is pretty cool and has iOS and Android apps, plus a plugin for FreeNAS.
If you're keeping iTunes around just for streaming music, iTunes Match is probably cheaper per year than the electricity you're spending on the Mac.
I know what I would be doing would violate the EULA. So far this is the best guide I have found, but it is geared towards a Windows host machine.
Ah okay. Yeah, I've heard Nginx is better in a few aspects, I'm just used to Apache.
So are you having the problem where it would redirect back to IPADDR:PORT/ which isn't reflective of the public URL you're using? Looking at the response headers during the logon, it does redirect to the full URL instead of just the request path, so that would be a problem. In that case I usually set the proxy destination to match the public destination, via DNS or hosts file, so that the internal and public URLs are the same. Other than that, you have to rewrite the headers and content on the proxy. I'm pretty sure Apache handles this with ProxyPassReverse and Rewrite. Sorry, I don't know the Nginx equivalent.
E: Okay, a quick search and it looks like the proxy_set_header Host $host; would set the host properly. http://serverfault.com/questions/598202/make-nginx-to-pass-hostname-of-the-upstream-when-reverseproxying
proxy_set_header Host $host;
First, run another scrub:
> zpool scrub pictures
You can check the status of that scrub with:
> zpool status
While that is running, try restsrting the nginx task:
Sorry, just realized I didn't mention all this would be run from the command line. Do you have shell access? If not, just reboot the machine; hard reboot if necessary.
But with ZFS 5000 with the 9.3 feature flags you can't even go back to 9.2? Wouldn't the other distos that use ZFS 5000 also need to have feature introduced in 9.3?
I believe your key is in the start up script, so ive completed some tasks for your :)
Might want to edit the how to for the user to add their key. I ran into some problems with the start up script if you care to have a look. https://boinc.berkeley.edu/forum_thread.php?id=13538
It's always going to give each user their own private home directory within the directory you specify when creating a user, so that users don't step on each other within a shared directory.
A quick google search came up with this thread, and it looks like you'll want to try:
usermod -m -d /path/to/new/login/home/dir user
> changes existing user home directory to a new login directory which is created if it does not already exist, option -m moves the contents of the current home directory to the new home dir
I suggest you install the NetData plugin for FreeNAS, which is in the community section. It will give you a full system monitoring dashboard for realtime analysis of resource usage from which you can determine bottlenecks.
Here's more info:
Ah... well you should have said that. I'd imagine most tutorials would have you setup freenas as a server. That's all I've done personally, so I won't claim to be an expert.
I believe step 8 is where you'd put your ovpn file here:
i'm a total linux noob and just followed step by step guides for anything yet, worked great so far :)
i found this one
that's basically it right?
after installing i config via ssh i guess?
You should look into a pfSense firewall. You can install it on any old computer, with a Dual NIC card. It has a built in VPN. Its free opensource and based on FreeBSD just like FreeNAS.
I don't have a setup guide for that in FreeNAS. But I personally use https://www.softether.org/ - setup was pretty forward.
There is a VPN manager (client software) for setting everything up from a remote windows machine. There are many supported protocols (OpenVPN, ipsec, l2tp).
ZeroTier is brilliant, as regular VPNs send all the traffic from your client to the server but with zerotier you only tunnel the traffic that is needed such as SSH or SMB shares.
And with freenas 11 zerotier is installed by default.
This is a permissions issue on the Ubuntu Sever you installed. This is more of a Ubuntu\rutorrent issue than FreeNAS IMO. Potentially you could resolve with leveraging the ACL manager on FreeNAS. Is rutorrent running as a specific user with a UID? If so, you just need to set the UID value as having write permissions.
Side Note: Check out QuickBox. It's amazing and an easy setup for such things.
Install TransGUI on your computer and connect it to the web interface of Transmission on the NAS. You'll have an app on your computer that accepts Magnet links but they'll download on the FreeNAS box.
No, it was the original FreeNAS. Here's your proof.
> XigmaNAS has gone through several name changes throughout its lifetime, but it has always been the original open source NAS distribution. Originally called “FreeNAS” when development began in 2005, the project changed its name to “NAS4Free” in 2011 to avoid legal issues when iXsystems acquired the trademark to the “FreeNAS” name.
Mirrored vdevs are considered by many to be the optimal pool solution. It has been posted many times here before. They have better performance, are easier to expand, and resilver much faster when replacing disks.
The fact that I have my data backed up to a drive on-site and another off-site should tell you I have a plan for when hard drives fail.
You can go ahead and move on. It's obvious you do not have the knowledge to contribute to the conversation, and you have contributed nothing so far.
I know this is an old thread, but just in case anyone comes across this via Google (as I did while searching for something else): Newer versions of XigmaNAS (NAS4Free) do have a basic GUI file manager via the webUI.
Screenshot on this XigmaNAS wiki page.