HBS via VPN?

Discussion on remote replication.
Pike_Eight
New here
Posts: 5
Joined: Fri Mar 05, 2021 9:02 pm

HBS via VPN?

Post by Pike_Eight »

Hi all,

I'm quite new to all this stuff here, so in case the question should be too silly, please be kind and gentle... :-)

I have two QNAP systems running, a TS251+ and a TS459 Pro Plus. Both in different locations and networks. I have a rsync replication running between the two NAS, but they of course use the 873 port (default). Now I wanted to make the connection safer by using a VPN connection. I was able to establish a vpn connection via openvpn between both of them (QBelt isn't supported unter TS459 Pro Plus), but: what do I need to do now? The replication job still uses the open default port as mentioned before. So basically, I have the impression that I established a VPN connection without using it. And now?

Thanks and best
Pike
ForMar
New here
Posts: 3
Joined: Mon Jan 27, 2020 2:49 pm

Re: HBS via VPN?

Post by ForMar »

Hi,

i tried to do something similar.
RTRR between two qnaps.
VPN IPSEC/L2TP directly between the 2 qnap.

I never got it working, even not with qnap support.
Speed test was successful, the job started, but stuck at the first file ...
To come this fair ...
I had to put in the first ip of the vpn ip pool as partner address to make it work, so far.
And hoped that the remote qnap will alwayws be the first vpn partner.


I ended up with a direct RTRR connection and enabled TLS on the connection.

Kind regards.
P3R
Guru
Posts: 13183
Joined: Sat Dec 29, 2007 1:39 am
Location: Stockholm, Sweden (UTC+01:00)

Re: HBS via VPN?

Post by P3R »

Pike_Eight wrote: Fri Mar 05, 2021 9:13 pm The replication job still uses the open default port as mentioned before. So basically, I have the impression that I established a VPN connection without using it. And now?
Assuming you have the VPN working properly, the remote system should be reachable through a remote local IP address instead of the remote public IP address you use now.

Remember to close the open port in the router/firewall at the remote site when you have it up and running over the VPN.
RAID have never ever been a replacement for backups. Without backups on a different system (preferably placed at another site), you will eventually lose data!

A non-RAID configuration (including RAID 0, which isn't really RAID) with a backup on a separate media protects your data far better than any RAID-volume without backup.

All data storage consists of both the primary storage and the backups. It's your money and your data, spend the storage budget wisely or pay with your data!
ColHut
Know my way around
Posts: 248
Joined: Sat Oct 14, 2017 12:13 am

Re: HBS via VPN?

Post by ColHut »

G’day Pike,

Did you resolve the issue?
Pike_Eight
New here
Posts: 5
Joined: Fri Mar 05, 2021 9:02 pm

Re: HBS via VPN?

Post by Pike_Eight »

I did. VPN works fine. Just wondering why I sometimes receive an error message „server was terminated by a request. Jobs work perfectly fine so no clue why there‘s this error message.
User avatar
Moogle Stiltzkin
Guru
Posts: 11448
Joined: Thu Dec 04, 2008 12:21 am
Location: Around the world....
Contact:

Re: HBS via VPN?

Post by Moogle Stiltzkin »

Pike_Eight wrote: Sun Apr 25, 2021 1:54 pm I did. VPN works fine. Just wondering why I sometimes receive an error message „server was terminated by a request. Jobs work perfectly fine so no clue why there‘s this error message.
so what kind of performance through hbs did you get using vpn, just wondering? :' and what router
NAS
[Main Server] QNAP TS-877 (QTS) w. 4tb [ 3x HGST Deskstar NAS & 1x WD RED NAS ] EXT4 Raid5 & 2 x m.2 SATA Samsung 850 Evo raid1 +16gb ddr4 Crucial+ QWA-AC2600 wireless+QXP PCIE
[Backup] QNAP TS-653A (Truenas Core) w. 4x 2TB Samsung F3 (HD203WI) RaidZ1 ZFS + 8gb ddr3 Crucial
[^] QNAP TL-D400S 2x 4TB WD Red Nas (WD40EFRX) 2x 4TB Seagate Ironwolf, Raid5
[^] QNAP TS-509 Pro w. 4x 1TB WD RE3 (WD1002FBYS) EXT4 Raid5
[^] QNAP TS-253D (Truenas Scale)
[Mobile NAS] TBS-453DX w. 2x Crucial MX500 500gb EXT4 raid1

Network
Qotom Pfsense|100mbps FTTH | Win11, Ryzen 5600X Desktop (1x2tb Crucial P50 Plus M.2 SSD, 1x 8tb seagate Ironwolf,1x 4tb HGST Ultrastar 7K4000)


Resources
[Review] Moogle's QNAP experience
[Review] Moogle's TS-877 review
https://www.patreon.com/mooglestiltzkin
Pike_Eight
New here
Posts: 5
Joined: Fri Mar 05, 2021 9:02 pm

Re: HBS via VPN?

Post by Pike_Eight »

Need to check the logs. Earliest tomorrow. But transferred 80 GB during one session. Took time, but worked. Two AVM Fritz Boxes.
User avatar
Moogle Stiltzkin
Guru
Posts: 11448
Joined: Thu Dec 04, 2008 12:21 am
Location: Around the world....
Contact:

Re: HBS via VPN?

Post by Moogle Stiltzkin »

oo mean like transfer speed per sec :}

like when i do a local lan one way sync rtrr i can get somewhere between 80-110 MB/s (110-120 MB/s is roughly the max cap for 1gbe port speed)

80gb is merely the total size i assume, doesn't really tell you much about the transfer speed :)

you need the size of data being transfered per sec on average. usually once the transfer completes, you get the overall average speeds for that job.
Last edited by Moogle Stiltzkin on Sun Apr 25, 2021 3:29 pm, edited 1 time in total.
NAS
[Main Server] QNAP TS-877 (QTS) w. 4tb [ 3x HGST Deskstar NAS & 1x WD RED NAS ] EXT4 Raid5 & 2 x m.2 SATA Samsung 850 Evo raid1 +16gb ddr4 Crucial+ QWA-AC2600 wireless+QXP PCIE
[Backup] QNAP TS-653A (Truenas Core) w. 4x 2TB Samsung F3 (HD203WI) RaidZ1 ZFS + 8gb ddr3 Crucial
[^] QNAP TL-D400S 2x 4TB WD Red Nas (WD40EFRX) 2x 4TB Seagate Ironwolf, Raid5
[^] QNAP TS-509 Pro w. 4x 1TB WD RE3 (WD1002FBYS) EXT4 Raid5
[^] QNAP TS-253D (Truenas Scale)
[Mobile NAS] TBS-453DX w. 2x Crucial MX500 500gb EXT4 raid1

Network
Qotom Pfsense|100mbps FTTH | Win11, Ryzen 5600X Desktop (1x2tb Crucial P50 Plus M.2 SSD, 1x 8tb seagate Ironwolf,1x 4tb HGST Ultrastar 7K4000)


Resources
[Review] Moogle's QNAP experience
[Review] Moogle's TS-877 review
https://www.patreon.com/mooglestiltzkin
Pike_Eight
New here
Posts: 5
Joined: Fri Mar 05, 2021 9:02 pm

Re: HBS via VPN?

Post by Pike_Eight »

I know. Just wanted to express that the transfer happened at a reasonable time. Didn‘t check the transfer rate, though. I‘ll do maybe tom.
User avatar
Moogle Stiltzkin
Guru
Posts: 11448
Joined: Thu Dec 04, 2008 12:21 am
Location: Around the world....
Contact:

Re: HBS via VPN?

Post by Moogle Stiltzkin »

Pike_Eight wrote: Sun Apr 25, 2021 3:29 pm I know. Just wanted to express that the transfer happened at a reasonable time. Didn‘t check the transfer rate, though. I‘ll do maybe tom.
ty i appreciate it. because i also am curious :'
NAS
[Main Server] QNAP TS-877 (QTS) w. 4tb [ 3x HGST Deskstar NAS & 1x WD RED NAS ] EXT4 Raid5 & 2 x m.2 SATA Samsung 850 Evo raid1 +16gb ddr4 Crucial+ QWA-AC2600 wireless+QXP PCIE
[Backup] QNAP TS-653A (Truenas Core) w. 4x 2TB Samsung F3 (HD203WI) RaidZ1 ZFS + 8gb ddr3 Crucial
[^] QNAP TL-D400S 2x 4TB WD Red Nas (WD40EFRX) 2x 4TB Seagate Ironwolf, Raid5
[^] QNAP TS-509 Pro w. 4x 1TB WD RE3 (WD1002FBYS) EXT4 Raid5
[^] QNAP TS-253D (Truenas Scale)
[Mobile NAS] TBS-453DX w. 2x Crucial MX500 500gb EXT4 raid1

Network
Qotom Pfsense|100mbps FTTH | Win11, Ryzen 5600X Desktop (1x2tb Crucial P50 Plus M.2 SSD, 1x 8tb seagate Ironwolf,1x 4tb HGST Ultrastar 7K4000)


Resources
[Review] Moogle's QNAP experience
[Review] Moogle's TS-877 review
https://www.patreon.com/mooglestiltzkin
ColHut
Know my way around
Posts: 248
Joined: Sat Oct 14, 2017 12:13 am

Re: HBS via VPN?

Post by ColHut »

Pike_Eight wrote: Sun Apr 25, 2021 1:54 pm I did. VPN works fine. Just wondering why I sometimes receive an error message „server was terminated by a request. Jobs work perfectly fine so no clue why there‘s this error message.
That is great to hear. Did you get any of these issues?

viewtopic.php?f=15&t=158069

Regards
Pike_Eight
New here
Posts: 5
Joined: Fri Mar 05, 2021 9:02 pm

Re: HBS via VPN?

Post by Pike_Eight »

Sorry, fortunately for me but unfortunately for you I didn't came across these issues.
ColHut
Know my way around
Posts: 248
Joined: Sat Oct 14, 2017 12:13 am

Re: HBS via VPN?

Post by ColHut »

Thanks for that Pike. So you successfully got the VPN client to back up data onto the VPN server’s volume? This you had previously set up using Rsync and allowing the port-forwarding on the NAS , as NAS to NAS?

Regards
ColHut
Know my way around
Posts: 248
Joined: Sat Oct 14, 2017 12:13 am

Re: HBS via VPN?

Post by ColHut »

Okay, I have been working with QNAP support to help resolve the issues.

Support advised that I need to enable “use vpn as nas default gateway ” on NAS B which is set up as an Open VPN client in QVPN. The place I want to back up files to is NAS A which is running QVPN Open VPN server.

This worked, and when I select an rsync/rtrr remote server it shows NAS with its local 192.168.0.200 ip. No passwords or anything is then required. Tests were successful. I think this also means that when I installed a new app, it collects it via the vpn through NAS A and then access to big wide world.

Remaining issues, cannot get the reverse to work, so cannot see NAS B as local to NAS A. more work for support.

Regards
User avatar
Moogle Stiltzkin
Guru
Posts: 11448
Joined: Thu Dec 04, 2008 12:21 am
Location: Around the world....
Contact:

Re: HBS via VPN?

Post by Moogle Stiltzkin »

my misunderstanding. i updated post accordingly
probly should enable SSL in hbs server ya? since doing remote
P3R wrote: Thu Apr 29, 2021 6:49 am
ColHut wrote: Wed Apr 28, 2021 7:19 pm Thanks Moogle, This I have now done just in case.
The reason for a installing a VPN is usually to have an encrypted link. Adding another layer of encryption within the encrypted VPN tunnel is a waste of CPU-resources and it add network overhead.
Last edited by Moogle Stiltzkin on Thu Apr 29, 2021 7:23 am, edited 2 times in total.
NAS
[Main Server] QNAP TS-877 (QTS) w. 4tb [ 3x HGST Deskstar NAS & 1x WD RED NAS ] EXT4 Raid5 & 2 x m.2 SATA Samsung 850 Evo raid1 +16gb ddr4 Crucial+ QWA-AC2600 wireless+QXP PCIE
[Backup] QNAP TS-653A (Truenas Core) w. 4x 2TB Samsung F3 (HD203WI) RaidZ1 ZFS + 8gb ddr3 Crucial
[^] QNAP TL-D400S 2x 4TB WD Red Nas (WD40EFRX) 2x 4TB Seagate Ironwolf, Raid5
[^] QNAP TS-509 Pro w. 4x 1TB WD RE3 (WD1002FBYS) EXT4 Raid5
[^] QNAP TS-253D (Truenas Scale)
[Mobile NAS] TBS-453DX w. 2x Crucial MX500 500gb EXT4 raid1

Network
Qotom Pfsense|100mbps FTTH | Win11, Ryzen 5600X Desktop (1x2tb Crucial P50 Plus M.2 SSD, 1x 8tb seagate Ironwolf,1x 4tb HGST Ultrastar 7K4000)


Resources
[Review] Moogle's QNAP experience
[Review] Moogle's TS-877 review
https://www.patreon.com/mooglestiltzkin
Post Reply

Return to “Remote Replication/ Disaster Recovery”