BSDNow.TV Episode 50: VPN, My Dear Watson

In this BSD Now episode, hosts Kris Moore and Allan Jude show us how to protect our internet traffic with a BSD-based VPN. In addition, they have an interview with Robert Watson, of the FreeBSD core team, regarding security research, exploit mitigation, etc. Click play below to tune in:

Check out the official page here: http://www.bsdnow.tv/episodes/2014_08_13-vpn_my_dear_watson

FreeBSD Journal July/August Issue now available

The 4th and July/August edition of the FreeBSD Journal is now available through Amazon, iTunes, and the Google store. In this issue, there are sections about FreeBSD and virtualization, Amazon’s EC2, bhyve, Xen, the USE Method, etc.

Check out the official post here: http://freebsdfoundation.blogspot.com/2014/08/julyaugust-issue-of-freebsd-journal-now.html

More information on how to subscribe here: https://www.freebsdfoundation.org/journal

Flash Memory Summit 2014 – FreeNAS

FreeNAS_logo_lightDuring the Flash Memory Summit, Chris (Tweaktown) spoke to Matt and Josh (iXsystems) about the future of the FreeNAS project. In addition, they discuss TrueNAS, an enterprise version of FreeNAS.

We sat down with Josh and Matt from iXsystems while at the show. Matt and Josh unloaded a lot of information about FreeNAS and where the project is headed. It sounds like the big push for the second half of this year revolves around making the product more user friendly. A new wizard system should tame the complicated but powerful storage specific operating system.

The FreeNAS developers also also pitched us TrueNAS, not that it was difficult to make us listen. iXsystems will soon offer TrueNAS in an all flash array, something we’re excited about. The current builds of TrueNAS use hybrid storage pools with flash acceleration.

Read more at http://www.tweaktown.com/news/39699/flash-memory-summit-2014-ixsystems-talks-about-the-future-of-freenas/index.html

Simple ZFS Backup Script

This article by Daemon Security shows us how to create a simple ZFS backup script in FreeBSD.

ZFS is a powerful filesystem that helps to maintain integrity by avoiding data corruption. A useful feature of ZFS is its ability to clone filesystems. Creating snapshots allows for filesystems to be cloned and restored if anything happens to the original data. Going beyond this is the ability to maintain incremental changes between snapshots. There are a number of scripts available that setup a similar backup system, but the idea here is to maintain a current dataset, with the ability to restore from two previous backups.

The first step is to setup a backup system, or backup drive to use for the ZFS snapshots. In this setup, there is a separate remote FreeBSD system where the snapshots will be stored. This remote system has an encrypted ZFS filesystem (AES XTS with geli on boot), which provides a secure backup of the data. The root account on the local system is setup with an SSH key and this is deployed to the remote system:

Check out the official post for step-by-step instructions: http://www.daemon-security.com/2014/08/zfsbackup-0805.html

FreeNAS 9.2.1.7 is released

FreeNAS_logo_light

The developers of FreeNAS have released version 9.2.1.7.

Well, we said 9.2.1.6 would be the last in the 9.2.1.x series, but CVE-2014-3560 (a possible remote Samba exploit) forced us to change those plans. Come and get it from here, as usual!

While we were at it, we also added a few small performance improvements and brought over a small feature from 9.3, namely the ability to do replication on a direct link without encryption, potentially speeding up replication anywhere from 3-4X (especially over 10GbE). This is generally most useful when doing initial replication to a backup box, while they are co-located together, after which normal encryption can be used in sending the deltas.

Appended are the release notes for 9.2.1.7. We encourage all existing 9.2.1.x users to upgrade. Thanks!

Download the ISO/image file here: http://download.freenas.org/9.2.1.7/RELEASE/

Check out the official announcement with the list of changes here: http://forums.freenas.org/index.php?threads/freenas-9-2-1-7-is-now-available.22601/