https://www.truenas.com/download-truenas-scale/
# NAS
http://192.168.1.7/
(1)改为中文版系统语言。system-general-语言改为 simple chinese-时区改为 asia shanghai
(2)修改网络接口。DHCP取消选定-ipv6勾上选定-添加ip地址(IP不会变动)-应用-测试更改
ipv4_dhcp 设置成NO,
aliases 输入IP地址192.168.1.7/24
(3)创建账户/群组用户, 开启Samba认证
(4)创建池与数据集,为数据集配置群组权限
-
创建池(我这里两个盘已经设置过,因此下图2步中没有硬盘选项):
【存储】-【池】-【创建新池】-【命名】-【选择一个机械硬盘(1.8T)】-【点击旁右蓝箭→】-【创建】
-
创建数据集 (我这里设置有数据集data),添加数据集只需填写名称
-
为数据集配置权限(我这里将其它ACL删除了)
(5)网络授时服务器(NTP): ntp.aliyun.com
-
(6)windows(SMB)【与unix(NFS)】共享
-
服务启动:SMB ;NFS
-
共享: 名称
(6)win网盘映射:
右键:映射网络驱动器
(7)Linux支持
yum install cifs-utils -y
yum -y install samba-client
-
smbclient -L 192.168.1.7 -U ihunter
smbclient //192.168.1.7/pan -U ihunter
-挂载
mkdir -p /data/site /data/pan
chmod -R 777 /data/site /data/pan
mount.cifs -o user=ihunter,pass=wdqdmm@0 //192.168.1.7/pan /data/site
vim /etc/fstab
//192.168.1.7/pan /data/site cifs rw,username=ihunter,password=wdqdmm@0 0 0
chmod 755 /etc/fstab
-pan
mount.cifs -o user=ihunter,pass=wdqdmm@0 //192.168.1.7/pan /data/pan
vim /etc/fstab
//192.168.1.7/pan /data/pan cifs rw,username=ihunter,password=wdqdmm@0 0 0
chmod 755 /etc/fstab
-自动挂载 /etc/fstab 里面的东西
mount -a
-增量同步
rsync -avz --delete /data/site/htmltoo.opt/* /data/pan/htmltoo.opt
-卸载
fuser -mk /data/site
fuser -mk /data/pan
umount /data/site
umount /data/pan
访问权限
控制读写权限
writable = yes/no
readonly = yes/no
如果资源可写,但只允许某些用户可写,其他都是只读
write list = admin, root, @staff(用户组)
read list = mary, @students
控制访问对象
valid users = tom,mary,@itcast
invalid users = tom
注意:以上两个选项只能存在其中一个
网络访问控制:
hosts deny = 192.168.0. 拒绝某个网段
hosts allow = 192.168.0.254 允许某个IP
hosts deny = all 拒绝所有
hosts allow = 192.168.0. EXCEPT 192.168.0.254 允许某个网段,但拒绝某个单个IP
注意:deny和allow同时存在,allow优先
-debian
apt install -y cifs-utils
-挂载SMB
方法1
mount.cifs //192.168.1.7/pan /data/pan -o username=ihunter,password=wdqdmm@0,vers=1.0
方法2
mount -t cifs -o username=root,password=wdqdmm@L,vers=1.0 //192.168.1.7/pan /data/pan
-开机挂载SMB
vim /etc/fstab
方法1
//192.168.1.7/pan /data/pan cifs rw,file_mode=0777,dir_mode=0777,uid=***,gid=***,username=ihunter,password=wdqdmm@0 0 2
方法2
//192.168.1.7/pan /data/pan cifs rw,username=ihunter,password=wdqdmm@0 0 0
-修改权限
chmod 755 /etc/fstab
vers=1.0
vers=2.0
vers=3.0
---FTP、NFS、SAMBA的区别
ftp 局域网和外网都可以
nfs 局域网 挂载方式访问 mount.nfs 侧重于Linux与Linux之间
samba 局域网 直接访问(smbclinet)挂载的方式mount.cifs 侧重于Windows与Linux之间
# 开启root登陆
附加组: root
ssh密码登陆启用
命令行: bash
允许使用所有sudo命令
# 升级
https://www.truenas.com/docs/softwarereleases/
https://update.sys.truenas.net/scale/TrueNAS-SCALE-Fangtooth-Nightlies/
https://update.sys.truenas.net/scale/TrueNAS-SCALE-ElectricEel-Nightlies/
https://update.sys.truenas.net/scale/TrueNAS-SCALE-Dragonfish-Nightlies/
# Package management tools are disabled on TrueNAS appliances
sudo install-dev-tools
# /etc/apt/sources.list
deb https://apt.sys.truenas.net/electriceel/nightlies/debian/ bookworm main
deb https://apt.sys.truenas.net/electriceel/nightlies/libnvidia/ bookworm main
deb https://apt.sys.truenas.net/electriceel/nightlies/debian-security/ bookworm-security main
deb https://apt.sys.truenas.net/electriceel/nightlies/debian-backports/ bookworm-backports main contrib non-free
deb https://apt.sys.truenas.net/electriceel/nightlies/debian-debug/ bookworm-debug main
deb https://apt.sys.truenas.net/electriceel/nightlies/yarn/ stable main
deb https://apt.sys.truenas.net/electriceel/nightlies/nvidia/ bookworm main
deb https://apt.sys.truenas.net/electriceel/nightlies/pcm/ bookworm main
deb https://apt.sys.truenas.net/electriceel/nightlies/docker/ bookworm stable
deb http://mirrors.163.com/debian bookworm main
deb-src http://mirrors.163.com/debian bookworm main
deb http://mirrors.163.com/debian-security/ bookworm-security main
deb-src http://mirrors.163.com/debian-security/ bookworm-security main
deb http://mirrors.163.com/debian bookworm-updates main
deb-src http://mirrors.163.com/debian bookworm-updates main
# smartd是一个用于监视硬盘健康状况的守护进程,通过SMART(自检测、分析与报告技术)系统实现
systemctl stop smartd
systemctl disable smartd
-开启root
cat /etc/ssh/sshd_config |grep PubkeyAuthentication
cat /etc/ssh/sshd_config |grep PasswordAuthentication
cat /etc/ssh/sshd_config |grep PermitRootLogin
vi /etc/ssh/sshd_config
PasswordAuthentication yes
PermitRootLogin yes
systemctl restart sshd
