So I'm finalizing a build setup for one of the servers I'm send out to be colocated. It will be sitting behind a physical PFsense appliance and be mainly used for storage and VMs.
With this being my first non-esxi colo build I was looking for any insight or advice into this.
- Setup:
- OS:
- Debian 8 Jessie
- Hardware:
- Supermicro 847 Chassis
- Supermicro X9DRi Motherboard
- 2x Intel e5-2670
- 128gb-192gb DDR3
- LSI 9211-8i SAS Card
- Adaptec 6805 SAS Card
- 28x 2TB HDD
- 6x 3TB HDD
- 2x 300GB SSD
- 4x 400GB SSD
- Steps:
- Create RAID1 of 2x 300GB SSD (Intel S3500) with Adaptec SAS Card
- Install Debian on RAID1 with luks for all partitions but boot
- Install dropbear, setup keypairs, and setup for boot decryption of luks
- FDE Encrypt all other disks, created derived keys for unlocking, and save to root fs
- Create Snapraid setup using 8x 2TB as data, 4x 3TB as parity, and 2x 3TB as spares
- User mergerfs on Snapraid setup
- Install zfs on linux
- Create pool of 3x vdev, each containing 6x 2TB in RAIDZ2 (2x 2TB Spares, 1x 400GB Cache, 1x 400GB ZIL)
- Install kvm, libvirt, and virt-manager
- After Thoughts:
- How to leverage the mergerfs mount for plex (I'm thinking cifs from samba in debian, or a pass-through like bsd jails in some fashion to kvm)
- Need to find a good webui for kvm
- Need to lookup security models regarding libvirt networking
With this being my first non-esxi colo build I was looking for any insight or advice into this.