Cara increase ZFS root-partition FreeBSD, saat ini saya menggunakan image .qcow2 dari freebsd untuk di jalankan di Proxmox, kita cek dulu kapasitasnya yg terbatasroot@kopler:~ # gpart show -lp
=> 34 12649917 ada0 GPT (6.0G)
34 345 ada0p1 bootfs (173K)
379 66584 ada0p2 efiesp (33M)
66963 2097152 ada0p3 swapfs (1.0G)
2164115 10485836 ada0p4 rootfs (5.0G)
root@kopler:~ # zpool list
NAME SIZE ALLOC FREE CKPOINT EXPANDSZ FRAG CAP DEDUP HEALTH ALTROOT
zroot 4.50G 3.93G 582M - - 22% 87% 1.00x ONLINE -
-
next kita increase kapasitas nya di menu Disk Action Proxmox, kira2 50GB, abis itu di reprobe pake camcontrolroot@kopler:~ # camcontrol reprobe ada0
root@kopler:~ # gpart show
=> 34 119604662 ada0 GPT (57G)
34 345 1 freebsd-boot (173K)
379 66584 2 efi (33M)
66963 2097152 3 freebsd-swap (1.0G)
2164115 10485836 4 freebsd-zfs (5.0G)
12649951 106954745 - free - (51G)
kemudian yang "free" tadi kita masukin ke partisi hardisknya, di rescan dulu pake camcontrol, trus masukinroot@kopler:~ # camcontrol rescan all
Re-scan of bus 0 was successful
Re-scan of bus 1 was successful
Re-scan of bus 2 was successful
Re-scan of bus 3 was successful
Re-scan of bus 4 was successful
Re-scan of bus 5 was successful
Re-scan of bus 6 was successful
Re-scan of bus 7 was successful
root@kopler:~ # gpart resize -i 4 /dev/ada0
root@kopler:~ # gpart show
=> 34 119604662 ada0 GPT (57G)
34 345 1 freebsd-boot (173K)
379 66584 2 efi (33M)
66963 2097152 3 freebsd-swap (1.0G)
2164115 117440581 4 freebsd-zfs (56G)
root@kopler:~ # zpool list
NAME SIZE ALLOC FREE CKPOINT EXPANDSZ FRAG CAP DEDUP HEALTH ALTROOT
zroot 55.5G 3.93G 51.6G - - 1% 7% 1.00x ONLINE -
root@kopler:~ # df -h
Filesystem Size Used Avail Capacity Mounted on
zroot/ROOT/default 54G 3.9G 50G 7% /
devfs 1.0K 0B 1.0K 0% /dev
/dev/gpt/efiesp 32M 647K 31M 2% /boot/efi
zroot/usr/ports 50G 420K 50G 0% /usr/ports
zroot/var/crash 50G 424K 50G 0% /var/crash
zroot/var/audit 50G 428K 50G 0% /var/audit
zroot/var/tmp 50G 424K 50G 0% /var/tmp
zroot/var/mail 50G 420K 50G 0% /var/mail
zroot/var/log 50G 512K 50G 0% /var/log
zroot/usr/obj 50G 420K 50G 0% /usr/obj
zroot/usr/src 50G 420K 50G 0% /usr/src
zroot/home 50G 420K 50G 0% /home
zroot/tmp 50G 428K 50G 0% /tmp
Tuesday, August 19, 2025
increase ZFS root-partition (image)FreeBSD
Self-Sign Cert NGINX
Copas aja langsung jalan kok :))
- sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/ssl/private/nginx-selfsigned.key -out /etc/ssl/certs/nginx-selfsigned.crt
- sudo openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048
- sudo nano /etc/nginx/snippets/self-signed.conf
ssl_certificate /etc/ssl/certs/nginx-selfsigned.crt;
ssl_certificate_key /etc/ssl/private/nginx-selfsigned.key;
- sudo nano /etc/nginx/snippets/ssl-params.conf
# from https://cipherli.st/
# and https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH";
ssl_ecdh_curve secp384r1;
ssl_session_cache shared:SSL:10m;
ssl_session_tickets off;
ssl_stapling on;
ssl_stapling_verify on;
resolver 8.8.8.8 8.8.4.4 valid=300s;
resolver_timeout 5s;
# Disable preloading HSTS for now. You can use the commented out header line that includes
# the "preload" directive if you understand the implications.
#add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload";
add_header Strict-Transport-Security "max-age=63072000; includeSubdomains";
add_header X-Frame-Options DENY;
add_header X-Content-Type-Options nosniff;
ssl_dhparam /etc/ssl/certs/dhparam.pem;
- sudo nano /etc/nginx/sites-available/default
server {Read More......
listen 80 default_server;
listen [::]:80 default_server;
listen 443 ssl http2 default_server;
listen [::]:443 ssl http2 default_server;
server_name server_domain_or_IP;
include snippets/self-signed.conf;
include snippets/ssl-params.conf;
---------
Subscribe to:
Posts (Atom)