New to Freenas, need some informations.

[Oxygeen]

Hello everyone, as the title said i wanted to give a shot to freenas as i desired to centralised and share my data with my familly.

Here is the first question i have in mind, i used to share a NTFS drive via my ISP router, but this was really unstable. And i wanted to know if we can convert NTFS to UFS without data loss to import this drive on a pool ?

With that said, i also started to look at all the security options and plugins with have with Freenas.

We have Transmission, and i download a lot which is great, but in France we have a law which "look for our ISP Public IP and if we've been caught downloading we must pay a ticket and we are blacklisted so we can't subscribe to any ISP at all" They said. I've been caught 3 times. One more time and i'm done.

So in term of security Freenas offers SSH, Firewall, but is Freenas is capable of doing a Proxy or VPn, or anything capable of hiding my ISP's Public IP ?

Thanks everybody !

 

[m0nkey_]

Here is the first question i have in mind, i used to share a NTFS drive via my ISP router, but this was really unstable. And i wanted to know if we can convert NTFS to UFS without data loss to import this drive on a pool ?

No, it is not possible to convert file systems. What you can do however is import the data from a NTFS disk to a pool in FreeNAS.

We have Transmission, and i download a lot which is great, but in France we have a law which "look for our ISP Public IP and if we've been caught downloading we must pay a ticket and we are blacklisted so we can't subscribe to any ISP at all" They said. I've been caught 3 times. One more time and i'm done.

If you're getting caught, stop doing it.

So in term of security Freenas offers SSH, Firewall, but is Freenas is capable of doing a Proxy or VPn, or anything capable of hiding my ISP's Public IP ?

Probably. You'd need to Google, I doubt anyone will help you with this.

 

[Oxygeen]

Thanks. How can i import data from my NTFS drive into a pool ?

 

[jgreco]

We have Transmission, and i download a lot which is great, but in France we have a law which "look for our ISP Public IP and if we've been caught downloading we must pay a ticket and we are blacklisted so we can't subscribe to any ISP at all" They said. I've been caught 3 times. One more time and i'm done.

Perhaps it would be smarter not to do that, or to use a VPN service that involved some faraway VPN provider, or even to get a cheap virtual host in some other country to run your torrents?

 

[danb35]

Thanks. How can i import data from my NTFS drive into a pool ?

http://doc.freenas.org/9.10/freenas_storage.html#import-disk

So in term of security Freenas offers SSH, Firewall,

FreeNAS does not do a firewall; you should provide that separately.

is Freenas is capable of doing a Proxy or VPn,

Yes, you can install OpenVPN (or no doubt other VPN client software) in a jail following various guides around here. You'll need to be, or become, fairly familiar with the FreeBSD command line.

 

[Oxygeen]

Perhaps it would be smarter not to do that, or to use a VPN service that involved some faraway VPN provider, or even to get a cheap virtual host in some other country to run your torrents?

For now i use some free seedboxes, as FTP Protocol is not controlled by the law, it's only the p2p, So yeah i can still do that, i just wanted to know if freenas could add even more security.

 

[Oxygeen]

http://doc.freenas.org/9.10/freenas_storage.html#import-disk

FreeNAS does not do a firewall; you should provide that separately.

i've found this https://forums.freenas.org/index.php?threads/setting-up-a-firewall-on-freenas.19059/

Yes you can install OpenVPN (or no doubt other VPN client software) in a jail following various guides around here. You'll need to be, or become, fairly familiar with the FreeBSD command line.

Thanks, i'll check thoses guides ;)

 

[jgreco]

For now i use some free seedboxes, as FTP Protocol is not controlled by the law, it's only the p2p, So yeah i can still do that, i just wanted to know if freenas could add even more security.

FTP is the very definition of peer to peer file transfer. Take a look at RFC 114.

 

[danb35]

i've found this https://forums.freenas.org/index.php?threads/setting-up-a-firewall-on-freenas.19059/

Indeed. Be sure to read the whole thread, as there are some significant caveats raised there.

 

[jgreco]

Indeed. Be sure to read the whole thread, as there are some significant caveats raised there.

Including such nasties as "this can panic your FreeNAS host" and "it's a horrible idea to rely on this".

 

[Oxygeen]

FTP is the very definition of peer to peer file transfer. Take a look at RFC 114.

I trust you, well, by P2P and FTP, to be clear : this law controls our Bittorent trafic. and people tell us to take seedboxes, transfer our files via (i.e FileZila) OR Buy a VPN licence if we don't want to be seen by this law. However, it this law was only about downloading things, Okay, i'll assume to stop it. But this law is way more than just that and i would have some privacy over my network, i think you guys could understand ;)

 

[jgreco]

To get "privacy over your network" in a country with a repressive regulation regime, merely trying to install a firewall isn't going to do that for you. All you're doing is risking getting put on that blacklist.

It is kinda like getting several speeding tickets and then deciding that you'll slow down when you see a policeman. That's not good enough to stop another ticket, it merely reduces the likelihood.

 

[Oxygeen]

To get "privacy over your network" in a country with a repressive regulation regime, merely trying to install a firewall isn't going to do that for you. All you're doing is risking getting put on that blacklist.

It is kinda like getting several speeding tickets and then deciding that you'll slow down when you see a policeman. That's not good enough to stop another ticket, it merely reduces the likelihood.

i'm not talking specially about a firewall, you guys told me it's not reliable, Okay so no firewall, Maybe something else ?

Security against this law in general will be nice, however, when i meant security this wil also be against some random guys trying to sniff into my files you know ? Many peoples complain about their password, personnal stuff getting stealed. Better safe than sorry isn't it ?

 

[jgreco]

Since you shouldn't be exposing your NAS directly to the Internet, the question becomes, what about your setup is it that leads you to believe that someone would be snooping into your files?

Once you identify the realistic threats, you can address them. A firewall isn't particularly likely to be any better at defending your NAS against an attacker on the local network than the existing access control mechanisms.

 

[devnullius]

While VPN seems to be a nifty solution, it is not. Not in this specific case (though I really like TigerVPN 's lifetime subscriptions. Very cheap, I had speeds of 120Mb (== my max) with torrents. Contact them, say Devnullius sent you and ask for Laura ;) ).

The risk with a VPN is that the connection drops and then what? If you are lucky, no data gets through. IF you are lucky... Being caught 3 times, you are not :)

Currently, I don't know of an OS that will deny all lan traffic when your vpn connection drops, except for Windows Mobile. If somebody knows something here for Mac / **UX, do share :)

YOUR best bet is to get a proxy subscription. That will cost you money, no doubt about it. Do *NOT* go with the 'public' proxies offered every day. Mostly they don't work and you have no idea who's reading along on that proxy.

Once you have a proxy subscription, you can enter the details in your internet programs; most have options to enter proxy details, including utorrent. While no experience (test! research!), this should keep you 100% safe, even if the proxy connection gets disconnected for some reason. No data leakage is extreme difficult to achieve; low-level there's almost always *some* leakage.

Also, Firewalls do squad. At best it's a logging tool to see what traffic is happening. Or if you want to block very specific protocols (nobody wants that, not in a home situation: it's a form of censorship) some specific programs use.

Hope this helps. It sucks to be in France and I really feel European law could overrule France here. Denying internet access after you've been punished looks to me like taking away basic human rights. Internet is such a thing: a basic right in any civilized country. Is it a lifetime ban?

Do read https://www.bestvpn.com/blog/4085/proxies-vs-vpn-whats-the-difference/

Devnullius

 

[m0nkey_]

It sucks to be in France and I really feel European law could overrule France here. Denying internet access after you've been punished looks to me like taking away basic human rights. Internet is such a thing: a basic right in any civilized country.

As far as I know, this is EU law. Hate to say it, but the OP has been wreckless and has already been caught with his hand in the cookie jar far too many times already. Take a break.

I also believe that discussing circumvention of law is not really a topic for this forum.

 

[jgreco]

The risk with a VPN is that the connection drops and then what? If you are lucky, no data gets through. IF you are lucky... Being caught 3 times, you are not :)

That's really a matter of crappy design; the usual problem is that newbies work at something until "suddenly it works" and then they just run with that, not really caring to test it at all. NAT adds to the evil there.

There's a 0.00000% chance with a properly designed VPN that a drop on the Internet-facing side will result in traffic doing something unexpected. This isn't a matter of luck. It's a matter of proper design.

 

[jgreco]

I also believe that discussing circumvention of law is not really a topic for this forum.

Circumventing the law isn't, but avoiding being deprived of what is very nearly an essential utility is probably a worthwhile discussion.

 

[Oxygeen]

.

While VPN seems to be a nifty solution, it is not. Not in this specific case (though I really like TigerVPN 's lifetime subscriptions. Very cheap, I had speeds of 120Mb (== my max) with torrents. Contact them, say Devnullius sent you and ask for Laura ;) ).

The risk with a VPN is that the connection drops and then what? If you are lucky, no data gets through. IF you are lucky... Being caught 3 times, you are not :)

Currently, I don't know of an OS that will deny all lan traffic when your vpn connection drops, except for Windows Mobile. If somebody knows something here for Mac / **UX, do share :)

YOUR best bet is to get a proxy subscription. That will cost you money, no doubt about it. Do *NOT* go with the 'public' proxies offered every day. Mostly they don't work and you have no idea who's reading along on that proxy.

Once you have a proxy subscription, you can enter the details in your internet programs; most have options to enter proxy details, including utorrent. While no experience (test! research!), this should keep you 100% safe, even if the proxy connection gets disconnected for some reason. No data leakage is extreme difficult to achieve; low-level there's almost always *some* leakage.

Also, Firewalls do squad. At best it's a logging tool to see what traffic is happening. Or if you want to block very specific protocols (nobody wants that, not in a home situation: it's a form of censorship) some specific programs use.

Hope this helps. It sucks to be in France and I really feel European law could overrule France here. Denying internet access after you've been punished looks to me like taking away basic human rights. Internet is such a thing: a basic right in any civilized country. Is it a lifetime ban?

Do read https://www.bestvpn.com/blog/4085/proxies-vs-vpn-whats-the-difference/

Devnullius

Thanks Devnullinus for your help, A lifetime ban, i don't know, buit there's a lot of "they said" about this law that it's pretty laughable at, some also said that they've been caught 6 times and still have not being blocked.

In the text of this law they said "2 e-mail notifications, then a letter, then if we don't stop we got blocked." i've already received 3 Mails. Seems not really exact isn't it. Then many people creates fake mail about that... the law his called "Hadopi" in france if you want to do some research.

Despite of the "we punish your downloading acts" side of the law, she's not only about that, and i'm not this kind of guy who likes knowing my internet trafic is being watched, Well, cool, my gouvernement knows i like going on Newegg, searching things on Tor, and everything, and what ? I'm pretty sure they are capable to tell me something like " We know you've been searching about Freewares, import abandonwares games on PSP, this is illegal !" I've been caught for that.

But please, Do you know what freewares and abandonwares means ? They even talk about punish people who would watch films on a streaming site. Okay i know that by doing that we don't pay anything about the copyright, But are people who watch this kind of sites are guilty ? I don't think so, it will be better to take down the site and make sites' creators pay... Welp, such a nice way to think.

As far as I know, this is EU law. Hate to say it, but the OP has been wreckless and has already been caught with his hand in the cookie jar far too many times already. Take a break.

I also believe that discussing circumvention of law is not really a topic for this forum.

See above, as i said it's not just a matter of downloading things ;)

Circumventing the law isn't, but avoiding being deprived of what is very nearly an essential utility is probably a worthwhile discussion.

Thanks for your understanding.