251 lines
7.3 KiB
Org Mode
251 lines
7.3 KiB
Org Mode
|
#+TITLE: Backup server montiranje
|
||
|
#+DATE: <2021-08-22 ned>
|
||
|
|
||
|
Nameščamo nove diske (5 x 4TB). RAID kontroler: Smart Array P410 (Firmware Version: 6.64-0)
|
||
|
Ukazna vrstica za raid konfiguracijo: ssacli
|
||
|
|
||
|
* RAID konfiguracija - SSA cli ukazi
|
||
|
** ctrl all show config
|
||
|
Izpiše trenutno konfiguracijo
|
||
|
*** izpis
|
||
|
|
||
|
#+BEGIN_SRC
|
||
|
=> ctrl all show config
|
||
|
|
||
|
Smart Array P410 in Slot 1 (sn: PACCR0M9VZ41R3J)
|
||
|
|
||
|
|
||
|
|
||
|
DL18xG6BP at Port 2I, Box 1, OK
|
||
|
|
||
|
|
||
|
Port Name: 1I
|
||
|
|
||
|
Port Name: 2I
|
||
|
|
||
|
Array A (Solid State SATA, Unused Space: 2 MB)
|
||
|
|
||
|
logicaldrive 1 (223.54 GB, RAID 0, OK)
|
||
|
|
||
|
physicaldrive 2I:1:9 (port 2I:box 1:bay 9, SATA SSD, 240 GB, OK)
|
||
|
|
||
|
|
||
|
Array B (SAS,
|
||
|
logicaldrive 2 (931.48 GB, RAID 1, Failed)
|
||
|
|
||
|
physicaldrive 2I:1:3 (port 2I:box 1:bay 3, SAS HDD, 0 GB, Failed)
|
||
|
physicaldrive 2I:1:10 (port 2I:box 1:bay 10, SAS HDD, 0 GB, Failed)
|
||
|
|
||
|
Unassigned
|
||
|
|
||
|
physicaldrive 2I:1:4 (port 2I:box 1:bay 4, SATA HDD, 4 TB, OK)
|
||
|
physicaldrive 2I:1:5 (port 2I:box 1:bay 5, SATA HDD, 4 TB, OK)
|
||
|
physicaldrive 2I:1:6 (port 2I:box 1:bay 6, SATA HDD, 4 TB, OK)
|
||
|
physicaldrive 2I:1:7 (port 2I:box 1:bay 7, SATA HDD, 4 TB, OK)
|
||
|
physicaldrive 2I:1:8 (port 2I:box 1:bay 8, SATA HDD, 4 TB, OK)
|
||
|
|
||
|
Enclosure SEP (Vendor ID HP, Model DL18xG6BP) 248 (WWID: 5001438008ACB623, Port: 2I, Box: 1)
|
||
|
|
||
|
Expander 250 (WWID: 5001438008ACB610, Port: 2I, Box: 1)
|
||
|
|
||
|
SEP (Vendor ID PMCSIERA, Model SRC 8x6G) 249 (WWID: 5001438009305DBF)
|
||
|
#+END_SRC
|
||
|
|
||
|
** ctrl slot=2 ld 2 delete
|
||
|
Izbrišemo logical drive 2 iz dveh starih 1TB diskov (ker nimamo dovolj caddyjev)
|
||
|
|
||
|
POZOR: ta ukaz briše podatke
|
||
|
|
||
|
** help ld
|
||
|
Pomoč - primeri ukazov
|
||
|
|
||
|
** ctrl slot=1 create type=ld drives=2I:1:4,2I:1:5,2I:1:6,2I:1:7 raid=5
|
||
|
RAID 5 polje iz diskov 4-7
|
||
|
|
||
|
RAID 5 zapiše pariteto; eden disk lahko odpove brez da bi izgubili podatke.
|
||
|
Iz 4x4TB (16TB surovega) dobimo 10.92TB uporabnega prostora.
|
||
|
|
||
|
** ctrl slot=1 array b add spares=2I:1:8
|
||
|
Dodamo rezerven (spare) disk, ki vskoči, če eden izmed obstoječih odpove
|
||
|
|
||
|
** ctrl all show config
|
||
|
Ponovno izpišemo konfiguracijo
|
||
|
|
||
|
*** izpis
|
||
|
#+BEGIN_SRC
|
||
|
|
||
|
=> ctrl all show config
|
||
|
|
||
|
Smart Array P410 in Slot 1 (sn: PACCR0M9VZ41R3J)
|
||
|
|
||
|
|
||
|
|
||
|
DL18xG6BP at Port 2I, Box 1, OK
|
||
|
|
||
|
|
||
|
Port Name: 1I
|
||
|
|
||
|
Port Name: 2I
|
||
|
|
||
|
Array A (Solid State SATA, Unused Space: 2 MB)
|
||
|
|
||
|
logicaldrive 1 (223.54 GB, RAID 0, OK)
|
||
|
|
||
|
physicaldrive 2I:1:9 (port 2I:box 1:bay 9, SATA SSD, 240 GB, OK)
|
||
|
|
||
|
|
||
|
Array B (SATA, Unused Space: 0 MB)
|
||
|
|
||
|
logicaldrive 2 (10.92 TB, RAID 5, OK)
|
||
|
|
||
|
physicaldrive 2I:1:4 (port 2I:box 1:bay 4, SATA HDD, 4 TB, OK)
|
||
|
physicaldrive 2I:1:5 (port 2I:box 1:bay 5, SATA HDD, 4 TB, OK)
|
||
|
physicaldrive 2I:1:6 (port 2I:box 1:bay 6, SATA HDD, 4 TB, OK)
|
||
|
physicaldrive 2I:1:7 (port 2I:box 1:bay 7, SATA HDD, 4 TB, OK)
|
||
|
physicaldrive 2I:1:8 (port 2I:box 1:bay 8, SATA HDD, 4 TB, OK, spare)
|
||
|
|
||
|
Enclosure SEP (Vendor ID HP, Model DL18xG6BP) 248 (WWID: 5001438008ACB623, Port: 2I, Box: 1)
|
||
|
|
||
|
Expander 250 (WWID: 5001438008ACB610, Port: 2I, Box: 1)
|
||
|
|
||
|
SEP (Vendor ID PMCSIERA, Model SRC 8x6G) 249 (WWID: 5001438009305DBF)
|
||
|
|
||
|
#+END_SRC
|
||
|
|
||
|
** quit
|
||
|
Izhod iz ssacli
|
||
|
|
||
|
|
||
|
* Proxmox config
|
||
|
** LVM konfiguracija
|
||
|
Ker uporabljamo strojni RAID krmilnik, ne bomo uporabljali sicer finega ZFS datotečnega sistema, temveč LVM sistem za upravljanje nosilcev.
|
||
|
|
||
|
*** Dodamo Skupino nosilcev (volume group) - hiska
|
||
|
#+BEGIN_SRC
|
||
|
root@pmbu:~# vgcreate hiska /dev/sdb
|
||
|
Volume group "hiska" successfully created
|
||
|
#+END_SRC
|
||
|
|
||
|
*** Dodamo thin LVM prostor za virtualke - prostor
|
||
|
#+BEGIN_SRC
|
||
|
root@pmbu:~# lvcreate -L 5T -T -n prostor hiska
|
||
|
Thin pool volume with chunk size 4.00 MiB can address at most 1012.00 TiB of data.
|
||
|
WARNING: Pool zeroing and 4.00 MiB large chunk size slows down thin provisioning.
|
||
|
WARNING: Consider disabling zeroing (-Zn) or using smaller chunk size (<512.00 KiB).
|
||
|
Logical volume "prostor" created.
|
||
|
#+END_SRC
|
||
|
|
||
|
*** Skonfiguriramo prostor, da ga lahko proxmox uporablja
|
||
|
V fajl /etc/pve/storage.cfg dodamo tole konfiguracijo:
|
||
|
|
||
|
#+BEGIN_SRC
|
||
|
lvmthin: prostor
|
||
|
thinpool prostor
|
||
|
vgname hiska
|
||
|
content rootfs,images,iso,vztmpl,backup
|
||
|
#+END_SRC
|
||
|
|
||
|
Tako prostor postane uporaben za ISO slike, predloge kontejnerjev, varnostne kopije, kontejnerje same, itd.
|
||
|
|
||
|
* Bazen virov
|
||
|
Bazen virov (resource pool) moramo ustvariti, da lahko dodamo virtualne mašine.
|
||
|
Lahko imamo več bazenov virov, služijo pa segmentiranju strežnika in lažjemu delegiranju dostopa.
|
||
|
|
||
|
** Nov bazen virov
|
||
|
V proxmox vmesniku kliknemo "Datacenter", gremo pod "Permissions" -> "Pools", nato kliknemo "Create" (dodamo "sredstva-produkcije")
|
||
|
|
||
|
** Odstranimo nagscreen iz proxmox (ne bomo kupili subskripcije in posledično sporočilo nima nobene vloge razen tega da teži čisto vsakič ko želiš kaj postoriti)
|
||
|
#+BEGIN_SRC
|
||
|
cd /usr/share/javascript/proxmox-widget-toolkit
|
||
|
cp proxmoxlib.js proxmoxlib.js.bak
|
||
|
nano proxmoxlib.js
|
||
|
|
||
|
# Spremenimo tole:
|
||
|
Ext.Msg.show({
|
||
|
title: gettext('No valid subscription'),
|
||
|
|
||
|
# V tole:
|
||
|
void({ //Ext.Msg.show({
|
||
|
title: gettext('No valid subscription'),
|
||
|
|
||
|
#########
|
||
|
|
||
|
# Na koncu
|
||
|
systemctl restart pveproxy.service
|
||
|
#+END_SRC
|
||
|
|
||
|
* Nove virtualke
|
||
|
** Dodana "bekap" za varnostne kopije
|
||
|
** TODO armbian mirror, peskovnik, galova virtualka, http proxy, za liota
|
||
|
|
||
|
* VPN povezava
|
||
|
** Namestiš softether client
|
||
|
#+BEGIN_SRC
|
||
|
sudo apt install softether-vpnclient
|
||
|
#+END_SRC
|
||
|
|
||
|
** Poženeš vpnclient
|
||
|
#+BEGIN_SRC
|
||
|
sudo vpnclient start
|
||
|
#+END_SRC
|
||
|
|
||
|
** Poženeš vpncmd
|
||
|
- najprej izbereš 2, management of VPN Client
|
||
|
- pri hostname samo klikneš enter, da vnese privzet "localhost"
|
||
|
- nato se odpre lupina, v katero vpišeš naslednje ukaze:
|
||
|
1. NicCreate vpn_se (ime mrežne naprave)
|
||
|
2. AccountCreate kompotVPN (ime VPN povezave)
|
||
|
3. vpn.kompot.si (hostname)
|
||
|
4. PC-V_povezava (destination virtual hub name)
|
||
|
5. **** (uporabniško ime)
|
||
|
6. vpn_se (ime VPN mrežnega vmesnika)
|
||
|
- vpisati moramo še geslo:
|
||
|
1. AccountPassword kompotVPN
|
||
|
2. ***** (vpišeš geslo)
|
||
|
- poveži na tale VPN avtomatsko, ko poženeš vpnclient
|
||
|
AccountStartupSet kompotVPN (naj se poveže ob zagonu)
|
||
|
- poveži se zdaj!
|
||
|
AccountConnect kompotVPN (poveži se zdaj)
|
||
|
- povezavo lahko preveriš z ukazom "AccountList"
|
||
|
#+BEGIN_SRC
|
||
|
AccountList command - Get List of VPN Connection Settings
|
||
|
Item |Value
|
||
|
----------------------------+-----------------------------------------------
|
||
|
VPN Connection Setting Name |kompotVPN
|
||
|
Status |Connecting
|
||
|
VPN Server Hostname |*** (Direct TCP/IP Connection)
|
||
|
Virtual Hub |kompotVPNhub
|
||
|
Virtual Network Adapter Name|vpn_se
|
||
|
The command completed successfully.
|
||
|
#+END_SRC
|
||
|
|
||
|
** Konfiguracija mrežne naprave
|
||
|
*** Preveriš, ali obstaja nov mrežni adapter
|
||
|
#+BEGIN_SRC
|
||
|
sudo ifconfig -a
|
||
|
#+END_SRC
|
||
|
|
||
|
**** Command not found?
|
||
|
#+BEGIN_SRC
|
||
|
sudo apt install net-tools
|
||
|
#+END_SRC
|
||
|
|
||
|
*** IP / netmask
|
||
|
#+BEGIN_SRC
|
||
|
sudo ifconfig vpn_vpn_se 192.168.*.* (prosi za tole)
|
||
|
#+END_SRC
|
||
|
|
||
|
** Poveži povezavo ob zagonu računalnika
|
||
|
@TODO
|
||
|
|
||
|
* Razni popravki
|
||
|
- popravljen admin gui yunohosta
|
||
|
- popravljeno obnavljanje domen
|
||
|
- popravka sta bila dosezena z dodajanjem sledeče konfiguracije v `/etc/ssowat/conf.json.persistent` (v `permissions.core_skipped.uris`):
|
||
|
#+BEGIN_SRC
|
||
|
"re:.+/%.well%-known/ynh%-diagnosis/.*$",
|
||
|
"re:.+/%.well%-known/acme%-challenge/.*$",
|
||
|
"kompot.si/yunohost/admin",
|
||
|
"kompot.si/yunohost/api"
|
||
|
#+END_SRC
|