From owner-freebsd-questions@FreeBSD.ORG Thu Dec 9 19:55:28 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 40FFB16A4CE for ; Thu, 9 Dec 2004 19:55:28 +0000 (GMT) Received: from wproxy.gmail.com (wproxy.gmail.com [64.233.184.202]) by mx1.FreeBSD.org (Postfix) with ESMTP id D50DE43D53 for ; Thu, 9 Dec 2004 19:55:27 +0000 (GMT) (envelope-from j65nko@gmail.com) Received: by wproxy.gmail.com with SMTP id 70so411307wra for ; Thu, 09 Dec 2004 11:55:27 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:references; b=FD6alX5dCY5jir6bJce+jjhKWQqkYzad0EKu5QUHj7Vo60nhr+CA7/nygwGS8t942opv3Rlgrv/gk2QJBFBCuPx8pB9voaRb+PaV3KPU8R1J6MR/hHGnl3JZ886t2081DJQLAtuzK4o3MYGUz9zem7mEQFJtinmZ9fQ3V0U3+6k= Received: by 10.54.15.33 with SMTP id 33mr1481677wro; Thu, 09 Dec 2004 11:55:27 -0800 (PST) Received: by 10.54.37.62 with HTTP; Thu, 9 Dec 2004 11:55:27 -0800 (PST) Message-ID: <19861fba0412091155756c8d08@mail.gmail.com> Date: Thu, 9 Dec 2004 20:55:27 +0100 From: J65nko BSD To: questions@freebsd.org In-Reply-To: <000501c4de23$5d1b0510$0300000a@COMMUNICATIONS> Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit References: <000501c4de23$5d1b0510$0300000a@COMMUNICATIONS> cc: Communications Machine Subject: Re: OT: Backing up machine to machine, cvsup vs. rsync vs... ? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: J65nko BSD List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Dec 2004 19:55:28 -0000 On Thu, 9 Dec 2004 14:14:53 -0500, Communications Machine wrote: > Hey all, > > Looking for a (cheap but effective) solution to nightly backup or > synchronize about 100-200gigs of data. Figure this might be a tad bit > off-topic, but sent to the general questions list hoping to find anyone out > there doing something similar. I was hoping to do something along the lines > of cvsup or rsync, so-as to only have to sync changes daily. > > Here's a better picture of the scenario: > ~~~~~~~~~~~~~~~~~~~~~~~~~~ > File Server 1 has (roughly) 750GB Storage on RAID 5 Array, runs as a PDC > using combination of Samba, OpenLDAP and some in-house utilities. This > machine is very fast by comparasin to all of our other machines (dual AMD > Opteron 244, 2GB RAM, running 5.3-RELEASE/amd64), and runs under minimal > load/stress. > > Server two runs as an incoming filter for email > (spamassassin/mimedefang/custom stuff using milter interface), and as a > proxy server for network users during the day (running squid). This machine > is considerably slower (AMD 350Mhz K62, 768Mb RAM, ATA133 disks running > 4.9-RELEASE/i386), but should be adequate for the job. This machine has two > 80GB disks which we'd like to use to sync data to. > > Ideally, we would like to backup certain directories nightly, so as to have > a mirror of the important files (100-200GB or so) on the second server in > the event that the first ever goes down, (essentially avoiding a tape-backup > solution we cannot afford). > > The two machines will be connected with a dedicated ethernet link (cross > cable) driectly from to each other at 100Mbps. > > How do I reliably synchronize the data in selected directories from one > machine to the other on a nightly basis? Any > ideas/suggestions/comments/questions will be greatly appreciated. > > -- > Thank-you > Nathan Vidican > itstaff@wmptl.com I will skip the rsyn or cvsup issue;) Have you considered the security implications of such an setup? A publicly accessible email server, handling incoming mail directly connected to a corporate file server. That is a security nightmare. You would be playing with fire. In case the mail server gets hacked, the attacker has direct access to your mission critical file server. Please put this out of our mind ;) The sendmail box belongs in properly setup DMZ firewall and should not be allowed to initiate any connections with any of your internal network boxes. If that box gets hacked, it cannot be used to launch an attack against your local network. Get a refurbished PII or PIII box to do the backup. Adriaan