Issues manually creating and attaching geli encrypted drive.

A

aspeagle

Cadet
Joined
Nov 16, 2022
Messages
5
Hey Folks,

So, I mistakenly detached a drive from a geli encrypted mirror vdev... which, of course, turned that vdev into a single drive. There doesn't seem to be any way via the TrueNAS UI to attach a drive to a single-disk vdev to turn it back into a mirror... so, I'm trying to do this all via the cli... which is no problem... I can create the disk layout... attach the drive... but, what doesn't happen is the geli encryption. So.. I end up with a mirror vdev with an encrypted drive... and an unencrypted drive.

I'm trying to reason out how to do that via the cli ... I detached the disk again and did this:

geli init -s 4096 -K /path/to/key /dev/gptid/<disk-uuid>

That gives what I expect is a normal response about metadata backup file... but what DOESN'T happen... is it doesn't create the /dev/gptid/<disk-uuid>.eli file that I was expecting.

What this is telling me is that my understanding of how this works is probably askew...

Could someone clue me in on how this is supposed to work? I'm on TrueNAS 12.2.x...

Thanks!
 
A

aspeagle

Cadet
Joined
Nov 16, 2022
Messages
5
Okay... so, nevermind... looks like the TrueNAS UI just isn't very intuitive about the "extend" operation. That seemed to do everything I wanted... it converts a single-disk vdev to mirror when you extend.

iXsystems really needs to make that stuff more intuitive... please... when dealing with potentially disastrous data integrity issues... could ya... you know... be SUPER-EXTRA-MEGA clear about what operations do what... pretty please?
 
artlessknave

artlessknave

Wizard
Joined
Oct 29, 2016
Messages
1,506
GELI, and TrueNAS 12, is legacy. you should be getting off of it entirely. it's not going to be well maintained and will probably break sometime.
 
A

aspeagle

Cadet
Joined
Nov 16, 2022
Messages
5
artlessknave said:
GELI, and TrueNAS 12, is legacy. you should be getting off of it entirely. it's not going to be well maintained and will probably break sometime.
Click to expand...
Yeah... I know... but, while that plan is enacted... still gotta support a live running system. Thanks for the helpful reply with lots of good info on my issue. ;)
 
artlessknave

artlessknave

Wizard
Joined
Oct 29, 2016
Messages
1,506
well, you say you solved it, and that the UI is poor, however, we know the UI is not going to get updated.
there is no issue remaining to solve?
 
You must log in or register to reply here.

Similar threads

G
Replace failed geli partitioned disk in vers. 12.0
Replies
0
Views
874
G Brown
G
kdragon75
Supported way of converting vdev to a mirror
Replies
5
Views
1K
kdragon75
kdragon75
G
SOLVED removed geli encryption on my pools, but see swap0.eli and swap1.eli
Replies
3
Views
1K
Guri89
G
MrHans
Error: Import encrypted pool (FreeNAS 11.2U8 ==> 12.0 U6.1)
Replies
1
Views
714
MrHans
MrHans
dxun
SOLVED Rebalancing the pool - but how to get the /dev/disk/by-id/disk1
Replies
2
Views
2K
dxun
dxun
Top