Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/djeshkov/bareos-dir
Bareos Director
https://github.com/djeshkov/bareos-dir
Last synced: about 1 month ago
JSON representation
Bareos Director
- Host: GitHub
- URL: https://github.com/djeshkov/bareos-dir
- Owner: djeshkov
- Created: 2016-08-18T12:55:26.000Z (over 8 years ago)
- Default Branch: master
- Last Pushed: 2016-08-24T11:44:11.000Z (over 8 years ago)
- Last Synced: 2024-08-02T12:50:53.453Z (4 months ago)
- Language: Shell
- Size: 38.1 KB
- Stars: 2
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-starred - djeshkov/bareos-dir - Bareos Director (others)
README
# Bareos Director
[Open Source Data Protection](https://www.bareos.org)
* Based on CentOS7
* **Automatic Database initialization and updates**
* **Out of the box backup system**
* Splitted Config Defaults
* [docker-compose file](docker-compose.yml)### Bareos Components
* **Director**: Supervises all the backup, restore, verify and archive operations
* [**StorageDeamon**](https://github.com/shoifele/bareos-sd): Service to perform the storage and recovery to the physical backup media or volumes.
* [**FileDeamon**](https://github.com/djeshkov/bareos-fd): Service to perform backups.
* [**WebUI**](https://github.com/shoifele/bareos-ui): Communicate with the Director using a web browser
* **bconsol**: Communicate with the Director using a terminal
* [**Catalog**](https://github.com/sameersbn/docker-postgresql): A (postgres) Databases holding the Directors data### Docker composer
```
curl -L https://raw.githubusercontent.com/djeshkov/bareos-fd/master/docker-compose.yaml > /tmp/docker-compose.yaml
cd /tmp
docker-compose up```
### Bareos Director
* Image: `djeshkov/bareos-dir`
* Needs: `postgresql`
* Port: `9101`
* ENV-Vars: (For DB auto init/update)
- `DB_HOST="postgres"`
- `DB_NAME="bareos"`
- `DB_USER="bareos"`
- `DB_PASS="bareos"`
* Volume: `/etc/bareos````bash
# Postgres
docker run \
--rm \
--name bareos-postgres \
-v /opt/bareos/postgres:/var/lib/postgresql \
-e DB_USER=bareos \
-e DB_PASS=bareos \
sameersbn/postgresql:9.4-19# Bareos Director
docker run \
--rm \
--name bareos-dir \
--link bareos-postgres:postgres \
--link bareos-sd \
--env DB_PASS=bareos \
--volume $PWD/bareos-conf:/etc/bareos \
djeshkov/bareos-dir# Config check
docker exec bareos-dir bareos-dir -t -c /etc/bareos/bareos-dir.conf# bconsole
docker exec -ti bareos-dir bconsole# Config reload
docker exec bareos-dir /bin/bash -c 'echo reload | bconsole'
```# Monitoring
docker exec -ti bareos-dir /scripts/check_bareo/check_bareos.py -u bareos -p bareos -H postgres -d p job -js -w 50 -c 100
More examples are here - https://github.com/widhalmt/check_bareos
#### Security
Don't forget to change passwords in bareos-fd.conf, bareos-sd.conf, bareos-dir.conf and dir.conf.d/Clients/* accordingly
#### TLS Transport Encryption
see [Bareos Manual](http://doc.bareos.org/master/html/bareos-manual-main-reference.html#x1-33500027)
```bash
## Generate Diffie-Hellman Parameter File
openssl dhparam -out dh1024.pem -5 1024## Certified Authority
# Generate CA Key
openssl genrsa -out ca.key 4096
# Generate CA Cert
openssl req -x509 -new -nodes -extensions v3_ca -key ca.key -days 7300 -out ca.crt -sha512## Generate the Server Cert
openssl genrsa -out bareos.key 4096
openssl req -new -key bareos.key -out bareos.csr -sha512
openssl x509 -req -in bareos.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out bareos.crt -days 7300 -sha512### Generate a Cert for reach Client
openssl genrsa -out client1.key 4096
openssl req -new -key client1.key -out client1.csr -sha512
openssl x509 -req -in client1.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out client1.crt -days 7300 -sha512
```#### Data Encryption
see [Bareos Manual](http://doc.bareos.org/master/html/bareos-manual-main-reference.html#x1-33900028)
```bash
## Generate a Master Key Pair
openssl genrsa -out master.key 2048
openssl req -new -key master.key -x509 -out master.crt## Generate a File Daemon Key Pair for each FD
openssl genrsa -out storage01.key 2048
openssl req -new -key storage01.key -x509 -out storage01.crt
cat storage01.key storage01.crt > storage01.pem
```