# noqa yaml[truthy]--- # rpool ist unverschlüsselt als Boot-Medium # der Speicherort fur die VMs ist verschlüsselt # zfs create -o encryption=aes-256-gcm -o keyformat=passphrase rpool/vm # entschlüsseln nach Boot mit: sudo zpool import -d /dev/disk/by-id/ -a && sudo zfs mount -a -l ## HDD_DATA_RAIDZ ### sudo zpool create -o ashift=12 -o feature@encryption=enabled -O encryption=on -O keylocation=prompt -O keyformat=passphrase hdd_data_raidz mirror /dev/disk/by-id/ata-TOSHIBA_MG09ACA18TE_Z1B0A27KFJDH /dev/disk/by-id/ata-TOSHIBA_MG09ACA18TE_Z1B0A28LFJDH # mgrote.zfs_manage_datasets ### mgrote.zfs_extra # Variablen für mgrote.zfs_health/trim/scrub/zed/arc_mem/ sind zusammengefasst unter zfs_extra_* zfs_datasets: # DatenPools werden hier nicht verwaltet # rpool - System-Datasets - dataset: rpool state: present compression: zstd sync: disabled xattr: sa dnodesize: auto atime: on # noqa yaml[truthy] snapdir: hidden reservation: 1G refreservation: 10G - dataset: rpool/ROOT state: present refreservation: 10G - dataset: rpool/ROOT/pve-1 state: present refreservation: 10G # rpool - Data - dataset: rpool/data state: present # rpool - VMs - dataset: rpool/vm state: present - dataset: rpool/vm/zvol state: present - dataset: rpool/vm/lxc state: present - dataset: rpool/data state: present # hdd_data_raidz - dataset: hdd_data_raidz state: present compression: zstd sync: disabled xattr: sa dnodesize: auto atime: on # noqa yaml[truthy] snapdir: hidden reservation: 1G - dataset: hdd_data_raidz/papa_backup state: present - dataset: hdd_data_raidz/pve_backup state: present recordsize: 1M - dataset: hdd_data_raidz/videos state: present recordsize: 1M - dataset: hdd_data_raidz/music state: present recordsize: 1M - dataset: hdd_data_raidz/tmp state: present - dataset: hdd_data_raidz/archiv state: present - dataset: hdd_data_raidz/bilder state: present recordsize: 1M - dataset: hdd_data_raidz/scans state: present - dataset: hdd_data_raidz/restic state: present - dataset: hdd_data_raidz/backup state: present - dataset: hdd_data_raidz/buecher state: present - dataset: hdd_data_raidz/programme state: present - dataset: hdd_data_raidz/vm state: present zfs_extra_arc_max_size: "8589934592" # 8GB in Bytes zfs_extra_zfs_pools: - name: "rpool" systemd_timer_schedule: "*-01,04,07,10-01 23:00" # jeden ersten eines jeden Quartals - name: "hdd_data_raidz" systemd_timer_schedule: "*-01,04,07,10-01 23:00" ### mgrote.zfs_sanoid sanoid_snaps_enable: true ## enable sending snaps sanoid_syncoid_source_host: true sanoid_syncoid_ssh_pubkey: "{{ lookup('keepass', 'sanoid_syncoid_public_key', 'notes') }}" sanoid_datasets: ### hdd_data_raidz - path: 'hdd_data_raidz/videos' template: '3tage' recursive: 'yes' snapshots: true - path: 'hdd_data_raidz/music' template: '14tage' recursive: 'yes' snapshots: true - path: 'hdd_data_raidz/papa_backup' template: '14tage' recursive: 'yes' snapshots: true - path: 'hdd_data_raidz/tmp' template: '3tage' recursive: 'yes' snapshots: true - path: 'hdd_data_raidz/pve_backup' template: '3tage' recursive: 'yes' snapshots: true - path: 'hdd_data_raidz/archiv' template: '14tage' recursive: 'yes' snapshots: true - path: hdd_data_raidz/bilder recursive: 'no' # noqa yaml[truthy] snapshots: true template: '14tage' - path: hdd_data_raidz/scans recursive: 'no' # noqa yaml[truthy] snapshots: true template: '3tage' - path: hdd_data_raidz/backup recursive: 'no' # noqa yaml[truthy] snapshots: true template: '31tage' - path: hdd_data_raidz/restic recursive: 'no' # noqa yaml[truthy] snapshots: true template: '3tage' - path: hdd_data_raidz/programme recursive: 'no' # noqa yaml[truthy] snapshots: true template: '14tage' - path: hdd_data_raidz/buecher recursive: 'no' # noqa yaml[truthy] snapshots: true template: '14tage' - path: hdd_data_raidz/vm recursive: 'no' # noqa yaml[truthy] snapshots: true template: '3tage' ### rpool - path: rpool recursive: 'no' # noqa yaml[truthy] snapshots: true template: 'pve3tage' - path: rpool/ROOT recursive: 'no' # noqa yaml[truthy] snapshots: true template: 'pve3tage' - path: rpool/ROOT/pve-1 recursive: 'no' # noqa yaml[truthy] snapshots: true template: 'pve3tage' ### mgrote.cv4pve-autosnap cv4pve_api_user: root@pam!cv4pve-autosnap cv4pve_api_token: "{{ lookup('keepass', 'cv4pve_api_token', 'password') }}" cv4pve_vmid: all,-115 cv4pve_keep_snapshots: 5 cv4pve_dl_link: "https://github.com/Corsinvest/cv4pve-autosnap/releases/download/v1.14.7/cv4pve-autosnap-linux-x64.zip" ### mgrote.proxmox_bind_mounts pve_bind_mounts: ### fileserver3 - vmid: 115 mp_nr: 0 mp_path_host: /hdd_data_raidz/videos mp_path_guest: /shares_videos - vmid: 115 mp_nr: 2 mp_path_host: /hdd_data_raidz/pve_backup mp_path_guest: /shares_pve_backup - vmid: 115 mp_nr: 3 mp_path_host: /hdd_data_raidz/papa_backup mp_path_guest: /shares_papa_backup - vmid: 115 mp_nr: 4 mp_path_host: /hdd_data_raidz/music mp_path_guest: /shares_music - vmid: 115 mp_nr: 5 mp_path_host: /hdd_data_raidz/tmp mp_path_guest: /shares_tmp - vmid: 115 mp_nr: 6 mp_path_host: /hdd_data_raidz/archiv mp_path_guest: /shares_archiv - vmid: 115 mp_nr: 7 mp_path_host: /hdd_data_raidz/bilder mp_path_guest: /shares_bilder - vmid: 115 mp_nr: 9 mp_path_host: /hdd_data_raidz/scans mp_path_guest: /shares_scans - vmid: 115 mp_nr: 10 mp_path_host: /hdd_data_raidz/restic mp_path_guest: /shares_restic - vmid: 115 mp_nr: 12 mp_path_host: /hdd_data_raidz/backup mp_path_guest: /shares_backup - vmid: 115 mp_nr: 14 mp_path_host: /hdd_data_raidz/buecher mp_path_guest: /shares_buecher - vmid: 115 mp_nr: 15 mp_path_host: /hdd_data_raidz/programme mp_path_guest: /shares_programme - vmid: 115 mp_nr: 16 mp_path_host: /hdd_data_raidz/vm mp_path_guest: /shares_vm # mgrote.pbs_pve_integration pve_pbs_datastore: - name: pbs server: pbs.mgrote.net datastore: zfs_backup username: user_pve5@pbs password: "{{ lookup('keepass', 'pbs_pve_user', 'password') }}" fingerprint: "7F:AC:54:75:1C:33:55:84:1E:1E:3A:15:5A:5E:AF:79:33:C9:D4:E1:C0:A0:1C:0D:9E:6A:EA:82:F9:27:57:79"