Hi folks,
I'm about to upgrade my 6x 4TB WD-Green raidZ1 vdev setup and enhance storage capabilities. Therefore I want to replace them with 6x 8TB Seagate IronWolf NAS drives, which arrived today. My Z1-pool is encrypted though and I'm still running the older freenas 9.3 version (FreeNAS-9.3-STABLE-201412090314). So far I've read the user-guide of FreeNas 9.3 in chapter "8.1.11. Replacing Drives to Grow a ZFS Pool" which suggest the following steps to grow an existing vdev:
Now I wonder if this is also applicable to encrypted drives, since a few steps above the guide suggest the following for replacing encrypted drives:
I do have an additional spare drive port available for the approach documented in 8.1.11 of the user guide. Before I mess things up, I wanted to clarify in the beginning how the proper way of replacing should be done. Has anyone ever done this before? Sorry if this question has already been answered, but I could not find anything to this specific topic with my search skills.
Thx in advance...
Sebastian
I'm about to upgrade my 6x 4TB WD-Green raidZ1 vdev setup and enhance storage capabilities. Therefore I want to replace them with 6x 8TB Seagate IronWolf NAS drives, which arrived today. My Z1-pool is encrypted though and I'm still running the older freenas 9.3 version (FreeNAS-9.3-STABLE-201412090314). So far I've read the user-guide of FreeNas 9.3 in chapter "8.1.11. Replacing Drives to Grow a ZFS Pool" which suggest the following steps to grow an existing vdev:
The safest way to perform this is to use a spare drive port or an eSATA port and a hard drive dock. In this case, you can perform the following steps:
- Shut down the system.
- Install one new disk.
- Start up the system.
- Go to Storage ‣ Volumes, select the pool to expand and click the “Volume Status” button. Select a disk and click the “Replace” button. Choose the new disk as the replacement.
- You can view the status of the resilver process by running zpool status. When the new disk has resilvered, the old one will be automatically offlined. You can then shut down the system and physically remove the replaced disk. One advantage of this approach is that there is no loss of redundancy during the resilver.
Now I wonder if this is also applicable to encrypted drives, since a few steps above the guide suggest the following for replacing encrypted drives:
8.1.10.1. Replacing an Encrypted Drive
If the ZFS pool is encrypted, additional steps are needed when replacing a failed drive.
First, make sure that a passphrase has been set using the instructions in Encryption before attempting to replace the failed drive. Then, follow the steps 1 and 2 as described above. During step 3, you will be prompted to input and confirm the passphrase for the pool. Enter this information then click the “Replace Disk” button. Wait until the resilvering is complete.
Next, restore the encryption keys to the pool. If the following additional steps are not performed before the next reboot, you may lose access to the pool permanently.
- Highlight the pool that contains the disk you just replaced and click the “Encryption Re-key” button in the GUI. You will need to enter the root password.
- Highlight the pool that contains the disk you just replaced and click the “Create Passphrase” button and enter the new passphrase. You can reuse the old passphrase if desired.
- Highlight the pool that contains the disk you just replaced and click the “Download Key” button in order to save the new encryption key. Since the old key will no longer function, any old keys can be safely discarded.
- Highlight the pool that contains the disk you just replaced and click the “Add Recovery Key” button in order to save the new recovery key. The old recovery key will no longer function, so it can be safely discarded.
I do have an additional spare drive port available for the approach documented in 8.1.11 of the user guide. Before I mess things up, I wanted to clarify in the beginning how the proper way of replacing should be done. Has anyone ever done this before? Sorry if this question has already been answered, but I could not find anything to this specific topic with my search skills.
Thx in advance...
Sebastian