LVM Verschlüsselung: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
| Zeile 45: | Zeile 45: | ||
=/etc/crypttab= | =/etc/crypttab= | ||
crypt-part UUID=ed724c90-84e3-4236-8417-4fd34c760bdb none luks | crypt-part UUID=ed724c90-84e3-4236-8417-4fd34c760bdb none luks | ||
| + | =/etc/fstab= | ||
| + | /dev/mapper/vgdata-data /mnt/data ext4 auto | ||
| + | /dev/mapper/vgdata-media /mnt/media ext4 auto | ||
=Systemstart= | =Systemstart= | ||
Version vom 16. Mai 2026, 11:18 Uhr
Install
- apt-get install lvm2
Szenario
- fdisk -l /dev/sdb
Device Boot Start End Sectors Size Id Type /dev/sdb1 * 2048 41940991 41938944 20G 8e Linux LVM
LUKS-Medium erstellen
- cryptsetup luksFormat -c aes-xts-plain64 -s 512 -h sha512 /dev/sdb1
WARNING! ======== This will overwrite data on /dev/sdb1 irrevocably. Are you sure? (Type uppercase yes): YES Enter passphrase for /dev/sdb1: Verify passphrase:
LUKS-Medium öffnen mit dem Namen crypt-part1
- cryptsetup luksOpen /dev/sdb1 crypt-part
Enter passphrase for /dev/sdb1:
Device vorbereiten für LVM
- pvcreate /dev/mapper/crypt-part
Erstellen der Volumegruppe
- vgcreate vgdata /dev/mapper/crypt-part
Erstellen der Logical Volumes data und media
- lvcreate -L 7G -n data vgdata
Logical volume "data" created.
- lvcreate -L 7G -n media vgdata
Logical volume "media" created.
Formatieren
- mkfs.ext4 /dev/mapper/vgdata-data
- mkfs.ext4 /dev/mapper/vgdata-media
Mountpoints erstellen
- mkdir /mnt/media
- mkdir /mnt/data
Ermitteln der UUID
- blkid /dev/sdb1
/dev/sdb1: UUID="ed724c90-84e3-4236-8417-4fd34c760bdb" TYPE="crypto_LUKS" PARTUUID="068d5994-01"
/etc/crypttab
crypt-part UUID=ed724c90-84e3-4236-8417-4fd34c760bdb none luks
/etc/fstab
/dev/mapper/vgdata-data /mnt/data ext4 auto /dev/mapper/vgdata-media /mnt/media ext4 auto
Systemstart
So soll es aussehen
- df -h | grep mapper
/dev/mapper/vgdata-data 6.9G 32M 6.5G 1% /mnt/data /dev/mapper/vgdata-media 6.9G 32M 6.5G 1% /mnt/media