From owner-freebsd-geom@FreeBSD.ORG Mon Apr 17 08:51:14 2006 Return-Path: X-Original-To: freebsd-geom@hub.freebsd.org Delivered-To: freebsd-geom@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F239B16A400; Mon, 17 Apr 2006 08:51:13 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id ADFB543D46; Mon, 17 Apr 2006 08:51:13 +0000 (GMT) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (linimon@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.4/8.13.4) with ESMTP id k3H8pDuO032459; Mon, 17 Apr 2006 08:51:13 GMT (envelope-from linimon@freefall.freebsd.org) Received: (from linimon@localhost) by freefall.freebsd.org (8.13.4/8.13.4/Submit) id k3H8pDP3032455; Mon, 17 Apr 2006 08:51:13 GMT (envelope-from linimon) Date: Mon, 17 Apr 2006 08:51:13 GMT From: Mark Linimon Message-Id: <200604170851.k3H8pDP3032455@freefall.freebsd.org> To: linimon@FreeBSD.org, freebsd-amd64@FreeBSD.org, freebsd-geom@FreeBSD.org Cc: Subject: Re: kern/95771: geom mirror provider destroyed (machine crashed) X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Apr 2006 08:51:14 -0000 Synopsis: geom mirror provider destroyed (machine crashed) Responsible-Changed-From-To: freebsd-amd64->freebsd-geom Responsible-Changed-By: linimon Responsible-Changed-When: Mon Apr 17 08:50:58 UTC 2006 Responsible-Changed-Why: Over to maintainer(s). http://www.freebsd.org/cgi/query-pr.cgi?pr=95771 From owner-freebsd-geom@FreeBSD.ORG Tue Apr 18 14:49:48 2006 Return-Path: X-Original-To: freebsd-geom@freebsd.org Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 51F1716A400 for ; Tue, 18 Apr 2006 14:49:48 +0000 (UTC) (envelope-from frank@barda.agala.net) Received: from mail.agala.net (Qa004.q.pppool.de [89.53.160.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id D951843D45 for ; Tue, 18 Apr 2006 14:49:46 +0000 (GMT) (envelope-from frank@barda.agala.net) Received: from mail.agala.net (barda [192.168.20.1]) by barda.agala.net (Postfix) with ESMTP id 24C83119D0E for ; Tue, 18 Apr 2006 16:49:45 +0200 (CEST) From: "Frank J. Beckmann" Organization: agala naga doron To: freebsd-geom@freebsd.org Date: Tue, 18 Apr 2006 16:49:43 +0200 User-Agent: KMail/1.9.1 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Message-Id: <200604181649.44259.frank@barda.agala.net> Subject: (no subject) X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 14:49:48 -0000 Hi, I plan to encrypt the whole hard drive with geli. That is reaaly well=20 documented and every thing went ok. But there is one thing that does not=20 work. How do I make a bootable USB stick? I need it because the root=20 partition of the hard drive is encrypted too. I tried to make a bootable US= B=20 stick with sysinstall and also with fdisk. I tried to do it on my new Athlo= n=20 64 board and on and old Pentium III board. The result is always the same:=20 When I try to boot from the stick the Athlon 64 always says "invalid slice"= =2E=20 And the P III always tells my "invalid label". That look like some kind of= =20 geometry problem. Can anybody help my please? I'm using FreeBSD 6.1-RC. =2D-=20 Tsch=FCss =46rank From owner-freebsd-geom@FreeBSD.ORG Tue Apr 18 14:53:57 2006 Return-Path: X-Original-To: freebsd-geom@freebsd.org Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9C58716A400 for ; Tue, 18 Apr 2006 14:53:57 +0000 (UTC) (envelope-from frank@barda.agala.net) Received: from mail.agala.net (Qa004.q.pppool.de [89.53.160.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 28EA043D48 for ; Tue, 18 Apr 2006 14:53:56 +0000 (GMT) (envelope-from frank@barda.agala.net) Received: from mail.agala.net (barda [192.168.20.1]) by barda.agala.net (Postfix) with ESMTP id 136F2119D0E for ; Tue, 18 Apr 2006 16:53:56 +0200 (CEST) From: "Frank J. Beckmann" Organization: agala naga doron To: freebsd-geom@freebsd.org Date: Tue, 18 Apr 2006 16:53:54 +0200 User-Agent: KMail/1.9.1 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200604181653.55129.frank@barda.agala.net> Subject: How to make a bootable USB stick for booting a geli encryptet hard disk? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 14:53:57 -0000 Hi, I plan to encrypt the whole hard drive with geli. That is reaaly well documented and every thing went ok. But there is one thing that does not work. How do I make a bootable USB stick? I need it because the root partition of the hard drive is encrypted too. I tried to make a bootable USB stick with sysinstall and also with fdisk. I tried to do it on my new Athlon 64 board and on and old Pentium III board. The result is always the same: When I try to boot from the stick the Athlon 64 always says "invalid slice". And the P III always tells my "invalid label". That look like some kind of geometry problem. Can anybody help my please? I'm using FreeBSD 6.1-RC. Sorry if this gets posted twice. -- Bye Frank From owner-freebsd-geom@FreeBSD.ORG Tue Apr 18 16:15:22 2006 Return-Path: X-Original-To: freebsd-geom@freebsd.org Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 73B1B16A400 for ; Tue, 18 Apr 2006 16:15:22 +0000 (UTC) (envelope-from aswood@gmail.com) Received: from nz-out-0102.google.com (nz-out-0102.google.com [64.233.162.195]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0D44A43D45 for ; Tue, 18 Apr 2006 16:15:21 +0000 (GMT) (envelope-from aswood@gmail.com) Received: by nz-out-0102.google.com with SMTP id l8so935161nzf for ; Tue, 18 Apr 2006 09:15:21 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=TIz94GURmguvpRjVJsFIvo+VlH2Ebcljtd/ghyjum7a7vk2LNx5qoV2x9UKqIl+vdBD1m6zAb342ja0RLzzgskji0FZFu39EfwrcQ+4s/+78MteubzlpUx04U7ymkfle0vRqd8Bfr4lhPhUxQHCSbXjQ0r2plwVhJvE2b3ESdN0= Received: by 10.36.84.18 with SMTP id h18mr3104259nzb; Tue, 18 Apr 2006 09:15:21 -0700 (PDT) Received: by 10.36.138.6 with HTTP; Tue, 18 Apr 2006 09:15:21 -0700 (PDT) Message-ID: <77518d100604180915h734f859wb3f7877bf37c24c1@mail.gmail.com> Date: Tue, 18 Apr 2006 11:15:21 -0500 From: "Adam Wood" To: freebsd-geom@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Subject: GEOM_ELI in sysinstall? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 16:15:22 -0000 Hello, I was browsing around the various websites on http://people.freebsd.org/ and stumbled upon the following patch for sysinstall: http://people.freebsd.org/~jhb/patches/sysinstall.vinum.patch As I'm sure you can infer from the filename, it allows the standard FreeBSD sysinstall utility to manipulate vinum configurations. Please pardon my ignorance, as I'm still very new to these low-level concepts, but would it be possible to create a similar patch for GEOM_ELI configurations? Would it be as simple as defining it as an available type? Or must other considerations be made? It seems the above-referenced patch deals only with the labelling, which means a new patch would be necessary to allow the .eli disk to be selected in the first place. After that though, wouldn't everything "just work"? Sincerely, Adam Wood From owner-freebsd-geom@FreeBSD.ORG Tue Apr 18 18:47:20 2006 Return-Path: X-Original-To: freebsd-geom@freebsd.org Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7CE6316A400 for ; Tue, 18 Apr 2006 18:47:20 +0000 (UTC) (envelope-from thomas.coppens@ceupers.be) Received: from adicia.telenet-ops.be (adicia.telenet-ops.be [195.130.132.56]) by mx1.FreeBSD.org (Postfix) with ESMTP id 197AB43D48 for ; Tue, 18 Apr 2006 18:47:19 +0000 (GMT) (envelope-from thomas.coppens@ceupers.be) Received: from localhost (localhost.localdomain [127.0.0.1]) by adicia.telenet-ops.be (Postfix) with SMTP id 57B007016C for ; Tue, 18 Apr 2006 20:47:18 +0200 (CEST) Received: from chimay (d54C1EC63.access.telenet.be [84.193.236.99]) by adicia.telenet-ops.be (Postfix) with ESMTP id 254477001E for ; Tue, 18 Apr 2006 20:47:18 +0200 (CEST) From: "Thomas Coppens" To: Date: Tue, 18 Apr 2006 20:47:14 +0200 Message-ID: <000001c66318$82b3bc60$0f02a8c0@chimay> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook 11 Thread-Index: AcZjGIIeHCKh/nPGSs2P7yMGDfuztA== X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2869 Subject: Replacing Failed Drive... with gvinum... again X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 18:47:20 -0000 I've found a message posted by another user in the freebsd-geom mailing list archive. However, no response came. I have included this message since more users are interested in this. Replacing Failed Drive... with gvinum Olivier Cochard cochard at gmail.com Mon Feb 13 13:12:36 PST 2006 * Previous message: Replacing Failed Drive * Next message: Replacing Failed Drive... with gvinum * Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] Hi all, I've just read the post about replacing a failed drive with gmirror, How doing the same with gvinum (for RAID 1 and RAID 5) volume ? Thanks, Olivier -- Olivier Cochard FreeNAS main developer http://www.freenas.org Skype: callto://ocochard More users are interested in this issue. Could someone give some directions on how to replace a failed drive with gvinum (RAID 1 and 5)? Best regards, Thomas Coppens From owner-freebsd-geom@FreeBSD.ORG Wed Apr 19 14:00:04 2006 Return-Path: X-Original-To: freebsd-geom@freebsd.org Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 66FD816A402 for ; Wed, 19 Apr 2006 14:00:04 +0000 (UTC) (envelope-from aswood@gmail.com) Received: from nz-out-0102.google.com (nz-out-0102.google.com [64.233.162.200]) by mx1.FreeBSD.org (Postfix) with ESMTP id AF2CA43D45 for ; Wed, 19 Apr 2006 14:00:03 +0000 (GMT) (envelope-from aswood@gmail.com) Received: by nz-out-0102.google.com with SMTP id l8so1210580nzf for ; Wed, 19 Apr 2006 07:00:03 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=gqcsyH/aQKcIJ/Su5XW1WX2dFeB6GEei5x6iz/1BFP9klrLzCIVc+6ytFi0MwAZKDRHL3gi/jnp33+CLuczmNUqX5H+wzrcfs3gVDkKpRLxvlRgji/zhKOK2RYRR76In7iZGqJI5NWsOPkQ3MA5YdPePlZvk6p13rtQtXRyOdAE= Received: by 10.37.13.60 with SMTP id q60mr735291nzi; Wed, 19 Apr 2006 07:00:03 -0700 (PDT) Received: by 10.36.138.6 with HTTP; Wed, 19 Apr 2006 07:00:03 -0700 (PDT) Message-ID: <77518d100604190700o7b1a3e0en301121517c4d77d1@mail.gmail.com> Date: Wed, 19 Apr 2006 09:00:03 -0500 From: "Adam Wood" To: "Frank J. Beckmann" In-Reply-To: <200604181653.55129.frank@barda.agala.net> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline References: <200604181653.55129.frank@barda.agala.net> Cc: freebsd-geom@freebsd.org Subject: Re: How to make a bootable USB stick for booting a geli encryptet hard disk? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Apr 2006 14:00:04 -0000 I've been working on writing a guide for creating a bootable CD-R for those of us who cannot boot USB devices, but, since you can, you might try this: Boot up the 6.1-RC install CD (disc1) and start the Fixit shell. If you've already built a custom kernel or something on your encrypted disk, you'll need to go through whatever steps necessary to mount it and gain access to its /boot. Otherwise, you can just use the kernel on the boot CD. Prepare the USB device and make it bootable: fdisk -BI /dev/ad0 bsdlabel -Brw /dev/ad0s1 bsdlabel -e /dev/ad0s1 Note that -e invokes $EDITOR, so you might have to set it to the correct pa= th. export EDITOR=3D/dist/usr/bin/vi bsdlabel can be tricky if you're entering it in manually. You don't want to touch the c: listing. You just want to add an a: listing before it, and give it the same values that the c: entry has, except change "unused" to "4.2BSD". Save and exit. Now you need to give it a filesystem: newfs /dev/ad0s1 And mount it: mkdir /mnt mount /dev/ad0s1 /mnt Now copy the kernel: cp -Rp /dist/boot /mnt/ You'll need to create a loader.conf unless you've compiled geom_eli into the kernel: echo geom_eli_load=3D\"YES\" >> /mnt/boot/loader.conf You should also create an etc/fstab file on the root of the USB disk: mkdir /mnt/etc vi /mnt/etc/fstab If you already have an /etc/fstab file on your encrypted disk, this new fstab may only need to contain the root partition location. I could be wrong, though, so you might just include all of the partitions. If you have access to the /etc/fstab on the encrypted disk, it'll probably be easier to just copy it. Afterwards, you should be able to reboot and hope everything works. --adam Note: The commands to prepare the USB disk WILL erase everything on it. I assume you know that. On 4/18/06, Frank J. Beckmann wrote: > Hi, > > I plan to encrypt the whole hard drive with geli. That is reaaly well > documented and every thing went ok. But there is one thing that does not > work. How do I make a bootable USB stick? I need it because the root > partition of the hard drive is encrypted too. I tried to make a bootable = USB > stick with sysinstall and also with fdisk. I tried to do it on my new Ath= lon > 64 board and on and old Pentium III board. The result is always the same: > When I try to boot from the stick the Athlon 64 always says "invalid slic= e". > And the P III always tells my "invalid label". That look like some kind o= f > geometry problem. Can anybody help my please? I'm using FreeBSD 6.1-RC. > > Sorry if this gets posted twice. > -- > Bye > Frank > _______________________________________________ > freebsd-geom@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-geom > To unsubscribe, send any mail to "freebsd-geom-unsubscribe@freebsd.org" > From owner-freebsd-geom@FreeBSD.ORG Wed Apr 19 14:15:39 2006 Return-Path: X-Original-To: freebsd-geom@freebsd.org Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0026116A401 for ; Wed, 19 Apr 2006 14:15:38 +0000 (UTC) (envelope-from frank@barda.agala.net) Received: from mail.agala.net (Qca22.q.pppool.de [89.53.202.34]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7134143D49 for ; Wed, 19 Apr 2006 14:15:37 +0000 (GMT) (envelope-from frank@barda.agala.net) Received: from mail.agala.net (barda [192.168.20.1]) by barda.agala.net (Postfix) with ESMTP id D18B7119D15 for ; Wed, 19 Apr 2006 16:15:32 +0200 (CEST) From: "Frank J. Beckmann" Organization: agala naga doron To: freebsd-geom@freebsd.org Date: Wed, 19 Apr 2006 16:15:30 +0200 User-Agent: KMail/1.9.1 References: <200604181653.55129.frank@barda.agala.net> <77518d100604190700o7b1a3e0en301121517c4d77d1@mail.gmail.com> In-Reply-To: <77518d100604190700o7b1a3e0en301121517c4d77d1@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200604191615.31768.frank@barda.agala.net> Subject: Re: How to make a bootable USB stick for booting a geli encryptet hard disk? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Apr 2006 14:15:39 -0000 Hi, am Mittwoch, 19. April 2006 16:00 schrieb Adam Wood: > I've been working on writing a guide for creating a bootable CD-R for > those of us who cannot boot USB devices, but, since you can, you might > try this: Thank you very much for your detailed description. It tells me that I have done everything right. I prepared the USB device like you described it, but none of my two computers is alble to boot the USB device. One always tells me "ivalid slice" and the other "invalid label". Because of that I think there is some geometry problem. I guess the bios uses another geometry than FreeBSD does. Or something else is completely wrong. -- Bye Frank From owner-freebsd-geom@FreeBSD.ORG Wed Apr 19 16:45:20 2006 Return-Path: X-Original-To: freebsd-geom@freebsd.org Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8476416A401 for ; Wed, 19 Apr 2006 16:45:20 +0000 (UTC) (envelope-from aswood@gmail.com) Received: from nz-out-0102.google.com (nz-out-0102.google.com [64.233.162.205]) by mx1.FreeBSD.org (Postfix) with ESMTP id C6D4643D46 for ; Wed, 19 Apr 2006 16:45:04 +0000 (GMT) (envelope-from aswood@gmail.com) Received: by nz-out-0102.google.com with SMTP id l8so1285780nzf for ; Wed, 19 Apr 2006 09:45:04 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=TBCjdDVJ5sgPVGOcylRvo4K0VZB1vS6obwhiqIjYM8o+ByPrUghtdY5Cuv+7uXLZOeyA/gT3fjxq2goOp7YBxLc60f39ZaQIU9lVDXYyiSzrzwot/cDozGElvK5qYwpCMaYqKLc22zUr1R9Bz9Tq/lMQPr1IZNHyJiZHLz8lupg= Received: by 10.36.129.20 with SMTP id b20mr510614nzd; Wed, 19 Apr 2006 09:45:03 -0700 (PDT) Received: by 10.36.138.6 with HTTP; Wed, 19 Apr 2006 09:45:03 -0700 (PDT) Message-ID: <77518d100604190945o66fa078fhb36f8015e7a2406a@mail.gmail.com> Date: Wed, 19 Apr 2006 11:45:03 -0500 From: "Adam Wood" To: "Frank J. Beckmann" In-Reply-To: <200604191615.31768.frank@barda.agala.net> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline References: <200604181653.55129.frank@barda.agala.net> <77518d100604190700o7b1a3e0en301121517c4d77d1@mail.gmail.com> <200604191615.31768.frank@barda.agala.net> Cc: freebsd-geom@freebsd.org Subject: Re: How to make a bootable USB stick for booting a geli encryptet hard disk? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Apr 2006 16:45:20 -0000 On 4/19/06, Frank J. Beckmann wrote: > Thank you very much for your detailed description. It tells me that I hav= e > done everything right. I prepared the USB device like you described it, b= ut > none of my two computers is alble to boot the USB device. One always tell= s me > "ivalid slice" and the other "invalid label". Because of that I think the= re > is some geometry problem. I guess the bios uses another geometry than Fre= eBSD > does. Or something else is completely wrong. You might try using a CD-R, then. For this, you'll need access to another (FreeBSD) system that has sysutils/cdrtools installed on it (mkisofs is part of sysutils/cdrtools). Boot your Live CD and mount some storage, like your USB key for example. mount /dev/storage /mnt Tar up the /dist/boot directory: cd /dist; tar -zcvpf /mnt/boot.tgz boot umount /dev/storage Take the storage media and transfer this to another system, the one with sysutils/cdrtools installed. If it's all networked, you can just SCP it over (scp /dist/boot user@otherhost:~/boot). On the other machine, unpack the boot.tgz into a new directory: mkdir mybootcd; mv boot.tgz mybootcd/; cd mybootcd; tar -zxvf boot.tgz rm boot.tgz Create a boot/loader.conf like you did previously: echo geom_eli_load=3D\"YES\" >> boot/loader.conf Create an /etc/fstab as you did before and place it in mybootcd/etc: mkdir etc vi etc/fstab Now the fun part. Create the bootable ISO image with mkisofs: mkisofs -R -no-emul-boot -b boot/cdboot -o /tmp/bootcd.iso mybootcd Then in whatever manner you deem necessary, burn the /tmp/bootcd.iso image to CD-R, load it up, and reboot. You should be good to go at that point. --adam From owner-freebsd-geom@FreeBSD.ORG Wed Apr 19 21:10:20 2006 Return-Path: X-Original-To: freebsd-geom@freebsd.org Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 71CA416A402 for ; Wed, 19 Apr 2006 21:10:20 +0000 (UTC) (envelope-from frank@barda.agala.net) Received: from mail.agala.net (Qca22.q.pppool.de [89.53.202.34]) by mx1.FreeBSD.org (Postfix) with ESMTP id A742743D45 for ; Wed, 19 Apr 2006 21:10:18 +0000 (GMT) (envelope-from frank@barda.agala.net) Received: from mail.agala.net (barda [192.168.20.1]) by barda.agala.net (Postfix) with ESMTP id B1926119D5D for ; Wed, 19 Apr 2006 23:10:13 +0200 (CEST) From: "Frank J. Beckmann" Organization: agala naga doron To: freebsd-geom@freebsd.org Date: Wed, 19 Apr 2006 23:10:12 +0200 User-Agent: KMail/1.9.1 References: <200604181653.55129.frank@barda.agala.net> <200604191615.31768.frank@barda.agala.net> <77518d100604190945o66fa078fhb36f8015e7a2406a@mail.gmail.com> In-Reply-To: <77518d100604190945o66fa078fhb36f8015e7a2406a@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Message-Id: <200604192310.12885.frank@barda.agala.net> Subject: Re: How to make a bootable USB stick for booting a geli encryptet hard disk? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Apr 2006 21:10:20 -0000 Hi, am Mittwoch, 19. April 2006 18:45 schrieb Adam Wood: > OdO3ULuGyo4tN6d8ZP1h1w=3D > > On 4/19/06, Frank J. Beckmann wrote: > > Thank you very much for your detailed description. It tells me that I > > have done everything right. I prepared the USB device like you described > > it, but none of my two computers is alble to boot the USB device. One > > always tells me "ivalid slice" and the other "invalid label". Because of > > that I think there is some geometry problem. I guess the bios uses > > another geometry than FreeBSD does. Or something else is completely > > wrong. > > You might try using a CD-R, then. For this, you'll need access to > another (FreeBSD) system that has sysutils/cdrtools installed on it > (mkisofs is part of sysutils/cdrtools). A CD or DVD is not an option. It has to be an USB device. The big question = is=20 why does booting the USB device not work? =2D-=20 Tsch=FCss =46rank From owner-freebsd-geom@FreeBSD.ORG Wed Apr 19 22:42:54 2006 Return-Path: X-Original-To: freebsd-geom@freebsd.org Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 58D5416A403 for ; Wed, 19 Apr 2006 22:42:54 +0000 (UTC) (envelope-from terje@elde.net) Received: from smtp.elde.net (us.elde.net [66.246.223.215]) by mx1.FreeBSD.org (Postfix) with ESMTP id ECC8643D48 for ; Wed, 19 Apr 2006 22:42:53 +0000 (GMT) (envelope-from terje@elde.net) Received: from smtp.elde.net (343006.ds.nac.net [127.0.0.1]) by smtp.elde.net (Postfix) with ESMTP id E0C3965003; Thu, 20 Apr 2006 00:42:52 +0200 (CEST) Received: from [127.0.0.1] (60.80-203-96.nextgentel.com [80.203.96.60]) (Authenticated sender: terje@elde.net) by smtp.elde.net (Postfix) with ESMTP id 1799664F56; Thu, 20 Apr 2006 00:42:51 +0200 (CEST) Message-ID: <4446BB56.9080006@elde.net> Date: Thu, 20 Apr 2006 00:36:06 +0200 From: Terje Elde User-Agent: Thunderbird 1.5 (Windows/20051201) MIME-Version: 1.0 To: "Frank J. Beckmann" References: <200604181653.55129.frank@barda.agala.net> <200604191615.31768.frank@barda.agala.net> <77518d100604190945o66fa078fhb36f8015e7a2406a@mail.gmail.com> <200604192310.12885.frank@barda.agala.net> In-Reply-To: <200604192310.12885.frank@barda.agala.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV using ClamSMTP Cc: freebsd-geom@freebsd.org Subject: Re: How to make a bootable USB stick for booting a geli encryptet hard disk? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Apr 2006 22:42:54 -0000 Frank J. Beckmann wrote: >> You might try using a CD-R, then. For this, you'll need access to >> another (FreeBSD) system that has sysutils/cdrtools installed on it >> (mkisofs is part of sysutils/cdrtools). >> > > A CD or DVD is not an option. It has to be an USB device. The big question is > why does booting the USB device not work? > This is a classic problem, both with PenDrives and CF cards. I remember I had some issues with this, and finally adopted a method which seemed to work reliably. I stopped working on that stuff, and promptly forgot exactly what I did. I am however fairly certain it involved plugging it into a machine supporting it, going to it's BIOS, seeing what geometry it used, then using that on FreeBSD. I am however less sure which of the possible modes I used. Shouldn't be more than a couple of trial and error operations before you're up and running. Two things to keep in mind: a) You might need to set your BIOS to the geometry mode you're using, and b) Some BIOSes differentiate between USB "floppies", and USB "harddrives". Terje (which is tired, and might be thinking all wrong here) From owner-freebsd-geom@FreeBSD.ORG Thu Apr 20 00:23:37 2006 Return-Path: X-Original-To: freebsd-geom@freebsd.org Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 93BDE16A413 for ; Thu, 20 Apr 2006 00:23:37 +0000 (UTC) (envelope-from frank@barda.agala.net) Received: from mail.agala.net (Qc599.q.pppool.de [89.53.197.153]) by mx1.FreeBSD.org (Postfix) with ESMTP id 77CCB43D55 for ; Thu, 20 Apr 2006 00:23:31 +0000 (GMT) (envelope-from frank@barda.agala.net) Received: from mail.agala.net (barda [192.168.20.1]) by barda.agala.net (Postfix) with ESMTP id 8A563119D78 for ; Thu, 20 Apr 2006 02:23:26 +0200 (CEST) From: "Frank J. Beckmann" Organization: agala naga doron To: freebsd-geom@freebsd.org Date: Thu, 20 Apr 2006 02:03:44 +0200 User-Agent: KMail/1.9.1 References: <200604181653.55129.frank@barda.agala.net> <200604192310.12885.frank@barda.agala.net> <4446BB56.9080006@elde.net> In-Reply-To: <4446BB56.9080006@elde.net> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200604200203.45853.frank@barda.agala.net> Subject: Re: How to make a bootable USB stick for booting a geli encryptet hard disk? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Apr 2006 00:23:37 -0000 Hi, am Donnerstag, 20. April 2006 00:36 schrieb Terje Elde: > Frank J. Beckmann wrote: > >> You might try using a CD-R, then. For this, you'll need access to > >> another (FreeBSD) system that has sysutils/cdrtools installed on it > >> (mkisofs is part of sysutils/cdrtools). > > > > A CD or DVD is not an option. It has to be an USB device. The big > > question is why does booting the USB device not work? > > This is a classic problem, both with PenDrives and CF cards. I remember > I had some issues with this, and finally adopted a method which seemed > to work reliably. I stopped working on that stuff, and promptly forgot > exactly what I did. I am however fairly certain it involved plugging it > into a machine supporting it, going to it's BIOS, seeing what geometry > it used, then using that on FreeBSD. I am however less sure which of > the possible modes I used. Shouldn't be more than a couple of trial and > error operations before you're up and running. > > Two things to keep in mind: a) You might need to set your BIOS to the > geometry mode you're using, and b) Some BIOSes differentiate between USB > "floppies", and USB "harddrives". > > Terje (which is tired, and might be thinking all wrong here) The BIOS of both computers don't tell me anything about the connected USB devices. They both treat my USB device as an USB harddrive. -- Bye Frank From owner-freebsd-geom@FreeBSD.ORG Thu Apr 20 11:12:37 2006 Return-Path: X-Original-To: freebsd-geom@freebsd.org Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BF7EE16A402 for ; Thu, 20 Apr 2006 11:12:37 +0000 (UTC) (envelope-from frank@barda.agala.net) Received: from mail.agala.net (Qb127.q.pppool.de [89.53.177.39]) by mx1.FreeBSD.org (Postfix) with ESMTP id 26CBD43D46 for ; Thu, 20 Apr 2006 11:12:33 +0000 (GMT) (envelope-from frank@barda.agala.net) Received: from mail.agala.net (barda [192.168.20.1]) by barda.agala.net (Postfix) with ESMTP id CC843119D27; Thu, 20 Apr 2006 13:12:23 +0200 (CEST) From: "Frank J. Beckmann" Organization: agala naga doron To: daniele.pilenga@atosorigin.com, freebsd-geom@freebsd.org Date: Thu, 20 Apr 2006 13:12:21 +0200 User-Agent: KMail/1.9.1 References: In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200604201312.22878.frank@barda.agala.net> Cc: Subject: Re: How to make a bootable USB stick for booting a geli encryptethard disk? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Apr 2006 11:12:37 -0000 Hi, am Donnerstag, 20. April 2006 08:59 schrieb daniele.pilenga@atosorigin.com: > owner-freebsd-geom@freebsd.org wrote on 20/04/2006 02:03:44: > > Hi, > > > > am Donnerstag, 20. April 2006 00:36 schrieb Terje Elde: > > > Frank J. Beckmann wrote: > > > >> You might try using a CD-R, then. For this, you'll need access to > > > >> another (FreeBSD) system that has sysutils/cdrtools installed on it > > > >> (mkisofs is part of sysutils/cdrtools). > > > > > > > > A CD or DVD is not an option. It has to be an USB device. The big > > > > question is why does booting the USB device not work? > > Why don't you just create an unencrypted /boot partition to boot from? Than everybody who has acces to the computer can get the encryptet data. I need an easy removable boot device that I can easily carry around with me. > I did that on my home computer and after I added > > vfs.root.mountfrom="ufs:mirror/system.elia" > > to /boot/loader.conf it boots with all the system on GELI. > > To find out the above setting was the tricky part as the Handbook is poor > of details. :-) Yes, but there are many kind people here who explain waht to do. -- Bye Frank