*nix Thread, Help With Design For Automatic Remote Back System Wanted. in Technical; Design For Automatic Remote Back System Wanted.
I'm starting to think about what I need to do a 'Nightly' back ...
21st December 2011, 12:42 AM #1
Help With Design For Automatic Remote Back System Wanted.
Design For Automatic Remote Back System Wanted.
I'm starting to think about what I need to do a 'Nightly' back up on my daughters laptop (Acer With PCLinuxOS on it ) when she goes to uni next year.
I have contacted the two main uni's she is interested out of her five offers and it looks like the backup will have to be instigated from her laptop end, because with them using Nat For there IP address's as I will not be able to reach it from my end.
I will be using 'LuckyBackup' luckyBackup - backup and sync utility as it has a good ssh remote backup part.
I have a speedtouch 636 None NATing router with a block of my own fixed IP address's (with it's firewall turned off).
From the speedtouch it goes into my Dedicated Firewall 'Smoothwall' Express Open Source Firewall Project (The Free one ) I will put a DMZ.
From DMZ it will go to a 'to be built 'Backup server' (lightweight Linux based) .
I need any advice about making the connection from her laptop to my backup server and what I will have to do about making my server hidden but accessible from the internet.
Any tips about what to look out for and do to make it a safe system and not Hackable !.
IDG Tech News
21st December 2011, 12:59 AM #2
Use a service like backblaze?
21st December 2011, 02:06 AM #3
Not paying out for it !.
Originally Posted by plexer
My system is free !.
21st December 2011, 03:09 AM #4
surely it would just be easier to back it up over night to an external HDD? a) lot less fuss b)will be alot quicker than transferring all that data over the internet?
21st December 2011, 07:18 AM #5
Have you looked at the free version of CrashPlan? Their client software automatically deals with things such as NAT traversal, and as you can see from the picture below, you can backup your daughters laptop directly to your server over the Internet without her data being stored on an intermediary server in the cloud.
Originally Posted by tickmike
More info here...
21st December 2011, 11:49 PM #6
If her laptop got stolen at uni , they would probably steal the external hard drive as well !.
Originally Posted by mdench
@Arthur I will read up about 'Crash-plan'
I'm just doing a fist trial of my system using 'luckybackup' over my home network, to test the basics.
Last edited by tickmike; 21st December 2011 at 11:57 PM.
22nd December 2011, 10:57 AM #7
For security, you could set up at your end to only accept SSH connections with a certificate, rather than with a password. Just forward port 22 from your firewall straight to your backup server, I should think that will be secure enough. I don't know if your backup software supports logging in with SSH certificates, but if not you could always simply use rsync over SSH instead.
Originally Posted by tickmike
23rd December 2011, 01:27 AM #8
I think that my free Linux backup software 'Luckybackup' is the GUI front end for 'rsync' and I can set up passwordless remote ssh connections over port 22 .
Originally Posted by dhicks
I did a test over my home network last night and all went well.
On my 'Smoothwall' firewall I'm going to add a DMZ then connect that to my backup server.
26th January 2012, 03:09 AM #9
- Rep Power
First, you need to decide what you are trying to back up. The first step in disaster recovery -- as I evangelize often enough -- is deciding "what disaster am I preparing for ?"
(You'd be surprised how often that question gets overlooked. And then you have 4 blind men describing the elephant AFTER many plans have been created.)
Anyway, are you trying to be able recover the entire laptop ? You do need some way, unless you want to re-install from scratch, a major pain.
I consider this part a job for CloneZilla. Periodically. And a USB drive is an excellent place to put it. Plug in the USB drive, boot from a thumb drive, answer a few questions, let it chug.
But you will want to protect daily work as well -- say her home directory.
Are you okay with working at the command line ? For my wife's laptop, I use rsnapshot to dump it to my back-end server. Especially nice since it allows her to recover earlier versions. of certain documents. see rsnapshot for details. Note that while the setup part -- done only once -- takes some ability to work at the command line and to closely follow instructions. But the nightly execution of the backup is a single command -- you can create a 1-line script and link a button, icon, or menu choice to it. Or try a cron entry.
As for "getting in," from a remote location, with a Smoothwall and a DMZ, you can portmap to a DMZ server on the orange interface (presumes 3 NIC connections on the smoothie).
Use a NONstandard SSH port on the smoothie. No sense making it obvious.
Uou MUST use stricr key-based auth (which rsnapshot needs anyway). Do not allow password-based logins at all.
You MUST use a forced command with the associated ssh key. Then the only thing the key does is to allow an rsync. Attempts to login are rejected. Read and understand Using Rsnapshot and SSH
Now, what did I forget ?
By tickmike in forum Internet Related/Filtering/Firewall
Last Post: 13th December 2011, 03:35 PM
By imiddleton25 in forum Web Development
Last Post: 8th March 2011, 10:08 AM
By timbo343 in forum Windows
Last Post: 11th January 2011, 10:32 AM
By Little-Miss in forum Coding
Last Post: 10th February 2009, 07:01 PM
By woody in forum General Chat
Last Post: 28th February 2007, 12:39 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)