geli - is it better to partition then encrypt, or vice versa ?
Clayton Milos
clay at milos.co.za
Sat Apr 17 20:04:18 UTC 2021
I encrypt the whole disk and then add it to the pool. No need to partition it. If I remember correctly zfs prefers unpartitioned disks.
\\Clay
> On 17 Apr 2021, at 21:54, Pete French <petefrench at ingresso.co.uk> wrote:
>
> So, am building a zpool on some encrypted discs - and what I have done is to partition the disc with GPT add a single big partition, and encrypt that. So the pool is on nda1p1.eli.
>
> But I could, of course, encrypt the disc first, and then partition the encrypted disc, or indded just put the zpool directly onto it.
>
> Just wondering what the general consensus is as to the best way to go here ... if there is one! :-) What do other people do ?
>
> -pete.
> _______________________________________________
> freebsd-stable at freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-stable
> To unsubscribe, send any mail to "freebsd-stable-unsubscribe at freebsd.org"
More information about the freebsd-stable
mailing list