-
Important Announcement for The TrueNAS Community.
The TrueNAS Community has now been moved. This forum will now become READ-ONLY for historical purposes. Please feel free to join us on the new TrueNAS Community Forums
Replication of encrypted pool
- Thread starter PetrZ
- Start date
-
- Tags
- encryption replicaiton
- Status
- Joined
- Feb 15, 2014
- Messages
- 20,194
There are two situations here:
FreeNAS GELI disk encryption - This has zero effect on zfs send. All operations are on unencrypted data and you need to secure the transport and the other end as needed.
ZFS native dataset encryption - Using encrypted send, most user data is sent encrypted, with metadata not being encrypted (it's necessarily unencrypted to allow for stuff like scrubs on encrypted pools). You may want to still encrypt the transport. Regular unencrypted send is still a possibility here and the first point applies. Native encryption is not yet available in FreeNAS.
FreeNAS GELI disk encryption - This has zero effect on zfs send. All operations are on unencrypted data and you need to secure the transport and the other end as needed.
ZFS native dataset encryption - Using encrypted send, most user data is sent encrypted, with metadata not being encrypted (it's necessarily unencrypted to allow for stuff like scrubs on encrypted pools). You may want to still encrypt the transport. Regular unencrypted send is still a possibility here and the first point applies. Native encryption is not yet available in FreeNAS.
- Status
