Introduction

The requirements outlined here are for,

• Off-site (from where the servers are located) backup for small businesses. 
• Double as a centralized storage area for a small or home office
• Provide media functionality for a small home (which also doubles as an additional backup site)

Solution

Synology which has an easily hackable system and one of the best software platforms we have seen.

Hardware

• DS212j using the Marvel Kirkwood mv6281 ARM chipset with 16-bit@DDR2, 256MB of RAM
• Two 3 Terabyte Drives

Synology DS212j Setup

Perform the following Update

• update firmware
• sync the time server
• disabling cache management (when UPS N/A)

Setup the Volumes

• S.M.A.R.T. test
• enable the home directory for SSH

Install ipkg

Introduction

ipkg is the packaging system for the lightweight debian based linux system provided by Synology.

...

• Download and run a script which the community calls a bootstrap file specific to the NAS processor hardware
• Modify .profile to include ipkg in the path

Steps

The following procedure was successful with DSM 4.0-2233.

Determine the processor of your NAS. The DS212j uses the Marvel Kirkwood mv6281 ARM chipset with 16-bit@DDR2, 256MB of RAM.

Look at the Synology wiki to determine what bootstrap that matches the NAS processor hardware.

The special boostrap instructions on the wiki as of May 5, 2012 for DSM 4.0 do not seem complete nor correct. Using DSM 4.0-2233 did not result in errors so ignore these the special boostrap instructions,

Instead following the normal bootstrap installation instructions, log in through ssh as root and download the boostrap,

...

Edit the root account's .profile file and ensure the /opt/bin is located at the beginning of the path.,

PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/syno/sbin:/usr/syno/bin:/usr/local/sbin:/usr/local/bin

vi ~/.profile 

...

The ipkg update dialog will show the repository being used. In the above example, load a browser and go to http://ipkg.nslu2-linux.org/feeds/optware/cs08q1armel/cross/unstable/ to see the list of software available for installation on their site.

Install Packages

Installing packages with ipkg is similar to using apt-get with Debian or Ubuntu. Synology keeps a manual online for reference. You should though be able to get by with the following common commands,

...

ipkg install rsync # installs rsync for making backups
ipkg install htop # nice monitoring of system
ipkg install mlocate # easily find files

Common Errors Installing Packages

 ipkg_conf_init: Failed to create temporary directory `(null)': Permission denied

The reason for this error is that you are not logged in as root.

Setup Remote Backup User

Rather than using root to pull down data from other system we will use remotebackup.

Create the backup group in the command line and give it the GID of 34 to follow the ubuntu standard,

addgroup -g 34 backup

...

 # This will not work.

Instead, add the remotebackup user manually by editing the /etc/group file

...

Add the private keys to remotebackup required to log into other systems to transfer backups.

Creating the Backup Destination

The backup destination will only have r/w access by remotebackup

...

Scripting

Note that the ash is the default shell. Synergy selected ash because it is a lightweight version of bash and generally compatible.

...

#!/bin/bash
su - remotebackup && rsync -av --delete -e ssh remotebackup@ip:/source/ /destination/
#you must be remotebackup user to run this command in the script

To test run scripts the command is 

sh script.sh

Adding the Cronjob

To add the script to cron edit the crontab located in /etc/crontab make sure you are root.

...

vi /etc/crontab
0 5 * * * remotebackup 0TAB5TAB*TAB*TAB*TABrootTAB/path/to/script.sh #The scriptcronjob must be run by the remotebackuproot user because of permissionsor the cronjob will not work and you must use TABS instead of spaces.

When adding or removing commands to the crontab make sure to restart the crond service so the commands take effect.

...

To view the logs to see if your cronjob was run is located in /var/log/messages

Connecting with Clients

Mac OS X Auto Mount

To show up on the Mac find SHARED did a variation of this, http://www.iceycake.com/2009/03/tutorial-how-to-auto-mount-afp-share-in-mac-os-x-leopard/ and selected just one folder then all the others show up.Open Finder and click DiskStation on the left tab.

Look to top right and click button "Connect As..."

Mac OS X Hidden Mount with GUI

To mount a hidden share as a specific user perform the following steps. It is assumed that in DiskStation Mac file service has been enabled.

Connect to Server

Use the key combination command-k or choose Go > Connect to Server from the menu bar.

...

Enter the user credentials with authentication to access the shared folder. And then click Connect to connect to the shared folder. Image Removed

Now this network share will not show up in the SHARED listing in the file manager. Instead look for the share in the /Volumes folder. In this example, /Volumes/myshare.private/.

Mac OS X Mount Hidden Share with CLI

The advantage of the CLI (Command Line Interface) is that is it not obvious to another casual user that you had mounted the hidden share . and (I got to research this) you can delete the history entries quickly and remove all traces of the private share.

mkdir /Volumes/myshare.hidden/ # This can actually be any folder, but kept here by convention and generally matches the share folder.
mount_ -t smbfs //secretuser@192.168.0.190/myshare.hidden/ /Volumes/myshare.hidden/

The command command mount_smbfs is  is a wrapper for "mount -t smbfs" so the following command sequence will also work, though according to the man page for mount_smbfs we should use mount -t,

mkdir /Volumes/myshare.hidden/ # This can actually be any folder, but kept here by convention and generally matches the share folder.
mount -t _smbfs //secretuser@192.168.0.190/myshare.hidden/ /Volumes/myshare.hidden/

...

...

Mac OS X Unmount Hidden Share with GUI

Do not know how to do this yet. Please share if you do.

Mac OS X Unmount Hidden Share with CLI

To be extra secure, unmount your hidden share when you have finished using it. Go to the command line and use the umount command. In this example it would be,

umount /Volumes/myshare.private # This command can be executed from any path.
# Look for command to remove unmount and mount entries from history.

How to clear history of last command - http://thoughtsbyclayg.blogspot.ca/2008/02/how-to-delete-last-command-from-bash.html

Linux Mount with CLI

Specifically tried with Lubuntu,

sudo apt-get install nfs-common
showmount -e 192.168.0.190 # List available shares
sudo mkdir /mnt/myshare.hidden
sudo mount 192.168.0.190:/volum1/myshare.hidden /mnt/myshare.hidden/
# Success as the actual user, not sure what happens if I don't create the actual user or how to use a different name yet.

Improving the Automatic Backup

• Progress log
• Start and stop process times
• Time span
• File integrity - CRC checks
• Emergency Alerts
• Security restricting terminal access and permissions to remotebackup 
• Scalability - backup files that get too large

It turns out we can not create our own users with specific UIDs under 1024... so that makes backing up and restoring with proper UIDs a bit more challenging. Maybe storing and then restoring UIDs during and after backup.

CrashPlan GUI with Ubuntu Desktop

If you want to use the GUI with Ubuntu Desktop,

/usr/local/crashplan/bin/desktop.sh

Transfer speed fix test

http://forum.synology.com/enu/viewtopic.php?f=14&t=44749&start=30

References

VNC Autostart - http://blog.johngoulah.com/2013/01/ditching-vino-for-x11vnc/

Auto Mounting - https://help.ubuntu.com/community/Autofs

File Transfer Speed Test - http://askubuntu.com/questions/17275/progress-and-speed-with-cp