I have been researching this over the past few days but unfortunately I have not been able to find an answer - or perhaps I just don’t understand enough to recognize the answer. As such, I’m hoping someone can provide a more layman answer for me
For context, I have created 2 seperate zpools through Proxmox - one HDD Raid for Media and an SSD Raid for VM and container data. The SSD pool will also contain some sensitive data that I’d like to encrypt.
Currently, I have three Open Media Vault VMs that I’m sharing these zpools with. The VMs are on separate vlans. In one of the OMV instances I used the LUKS plug-in to encrypt the virtual drive and then added an EXT4 file system to house the sensitive data.
My question is what ZFS benefits am I giving up (if any) by structuring things this way?
I’ve read a lot and believe that I may lose compression, which I could live with. However, I’ve also read that this structure could cause problems with ZFS “integrity check benefits”, and that is something that does concern me. Would I lose bit rot protection or snapshot functionality going this route?
I’m just trying to understand what I’d be giving up by using this approach. I do understand ZFS has native encryption but I am not as familiar with it as I am LUKS. Given that I’m relatively new to Proxmox and ZFS I was simply trying to keep something familiar in play. Thanks in advance for any feedback/suggestions.
For context, I have created 2 seperate zpools through Proxmox - one HDD Raid for Media and an SSD Raid for VM and container data. The SSD pool will also contain some sensitive data that I’d like to encrypt.
Currently, I have three Open Media Vault VMs that I’m sharing these zpools with. The VMs are on separate vlans. In one of the OMV instances I used the LUKS plug-in to encrypt the virtual drive and then added an EXT4 file system to house the sensitive data.
My question is what ZFS benefits am I giving up (if any) by structuring things this way?
I’ve read a lot and believe that I may lose compression, which I could live with. However, I’ve also read that this structure could cause problems with ZFS “integrity check benefits”, and that is something that does concern me. Would I lose bit rot protection or snapshot functionality going this route?
I’m just trying to understand what I’d be giving up by using this approach. I do understand ZFS has native encryption but I am not as familiar with it as I am LUKS. Given that I’m relatively new to Proxmox and ZFS I was simply trying to keep something familiar in play. Thanks in advance for any feedback/suggestions.