Hello,
please excuse me if there is already an answer to my question. I could not find one.
So far my question is hypothetical. I plan to install FreeBSD on an encrypted and mirrored zroot. But before I do this, I want to make sure that in case of a disk failure, I also know how to repair the pool.
Installing FreeBSD on a mirrored and encrypted pool is no problem, the installer takes care of that.
I have already found some information on how to replace a disk in a mirrored zroot pool: create a boot partition, copy the boot code to that partition, and create a partition for the zroot, etc. (The question also concerns other encrapted pools than the zroot, i.e. storagepools. Whereas I see here the possibility to resilver the pool in the encrypted state, after the disk swap.)
But in case of the root pool, the working volume must be 'opened' for the system to work.
It should be much more complicated if the root-pool was encrypted using geli.
So, how does this work?
Sincierly
please excuse me if there is already an answer to my question. I could not find one.
So far my question is hypothetical. I plan to install FreeBSD on an encrypted and mirrored zroot. But before I do this, I want to make sure that in case of a disk failure, I also know how to repair the pool.
Installing FreeBSD on a mirrored and encrypted pool is no problem, the installer takes care of that.
I have already found some information on how to replace a disk in a mirrored zroot pool: create a boot partition, copy the boot code to that partition, and create a partition for the zroot, etc. (The question also concerns other encrapted pools than the zroot, i.e. storagepools. Whereas I see here the possibility to resilver the pool in the encrypted state, after the disk swap.)
But in case of the root pool, the working volume must be 'opened' for the system to work.
It should be much more complicated if the root-pool was encrypted using geli.
So, how does this work?
Sincierly