onlineforums
Explorer
- Joined
- Oct 1, 2017
- Messages
- 56
I have data that is stored for infrequent archival purposes only. This data grows one time each year as the new year of data gets moved into it. Because this data is primarily for archive reasons, I would prefer it encrypted while at rest while the FreeNAS box is on with other non-archival data that is not encrypted at rest. I simply want to decrypt (attach/mount) the archival data only when needed and then encrypt (unmount/detach) when not in use.
My understanding is that I can host this archival data in a memory disk or Zpool both of which can use GELI to encrypt. The idea is to not attach/decrypt the memory disk/Zpool until the data contained within is needed.
I intend to use replication tasks to move this data to another FreeNAS box, although I'm fairly certain either memory disk or Zpool would work the same as a memory disk would be in a dataset and a potential archival Zpool is a dataset. I could be wrong on this front and maybe this is the difference because I intend to replicate while the GELI is not attached and the data is encrypted.
My understanding above may be incorrect or maybe it is correct and there isn't any pro or con to using a memory disk or Zpool for archived data that needs to be encrypted when not in use.
I basically want to protect data that is rarely used by having it encrypted while at rest and only decrypted once or twice a year when needing something out of it all the while having other data that is constantly being used on the FreeNAS box hence the idea of either memory disk or another Zpool.
Comments?
My understanding is that I can host this archival data in a memory disk or Zpool both of which can use GELI to encrypt. The idea is to not attach/decrypt the memory disk/Zpool until the data contained within is needed.
I intend to use replication tasks to move this data to another FreeNAS box, although I'm fairly certain either memory disk or Zpool would work the same as a memory disk would be in a dataset and a potential archival Zpool is a dataset. I could be wrong on this front and maybe this is the difference because I intend to replicate while the GELI is not attached and the data is encrypted.
My understanding above may be incorrect or maybe it is correct and there isn't any pro or con to using a memory disk or Zpool for archived data that needs to be encrypted when not in use.
I basically want to protect data that is rarely used by having it encrypted while at rest and only decrypted once or twice a year when needing something out of it all the while having other data that is constantly being used on the FreeNAS box hence the idea of either memory disk or another Zpool.
Comments?