1 Reply

Synology – Backup to RaspberryPi

Using „HyperBackup“ to create Backups is the best and easiest way to save all your data and settings on your Synology. Finding a target to backup is not that easy. You can buy an other Synology Produkt or set up an Linux Server. My Solution is a Raspberry Pi with Raspbian / Raspberry Pi OS and an external USB Drive attached. Installing and mounting the USB drive has to be done before you can use this help to install the RSYNC-Server.

Mount your external device and make sure that it will be always mounted automatically after restarts.
In our example we use the path /mnt/USBDevice

First you have to install the rsync service, use following command:

sudo apt-get install rsync

After the successful installation you can change following config file.
/etc/default/rsync
you can do this by typing

sudo nano /etc/default/rsync

and change following lines

*
RSYNC_ENABLE=false
*
RSYNC_CONFIG_FILE=

to

*
RSYNC_ENABLE=true
*
RSYNC_CONFIG_FILE=/etc/rsyncd.conf

now exit the nano editor with „Control +x“ and accept the changes with „Y“ (if you are using a mac)

Now you can create the rsyncd.conf file by following command:

sudo nano /etc/rsyncd.conf

copy this content into the file and change the parameters to your settings

max connections = 2
log file = /var/log/rsync.log
timeout = 300
 [SYN-HyperBackup]
comment = This folder will be shared for rsync backups
path = /mnt/USBDevice
read only = no
list = yes
uid = root
gid = root
auth users = syno
secrets file = /etc/rsyncd.secrets.syno

now we have to set the password for the user syno by typing

sudo nano /etc/rsyncd.secrets.syno

and add following: (please do not forget to change the password)

syno:password

exit the nano editor and change the user rights for the password file with following command:

sudo chmod 600 /etc/rsyncd.secrets.syno

and add the user to the system

sudo adduser syno --system --group --no-create-home --shell /bin/false

Restart the rsync service to load the new config

sudo systemctl restart rsync.service 

Now you can login to your Synology and Download the HyperBackup in the Package Center and add a new Data Backup task

Data Backup Task

Choose „rsync“ as option an clock on Next

Now you can choose „rsync-compatible server“ add the IP address, user and password. When you click on the Backup Module you should get the same name you have set in the /etc/rsyncd.conf file. Follow the the next steps like you want to have it.


Typical Error Messages:

  1. „Authentication failed. Please check your authentication credentials“

    Make sure that you have the right password and that you have created the same local user.
Authentication failed. Please check you authentication credentials
  1. Failed to establish the SSH connection. Please make sure that your credentials are correct, the SSH service of the destination server is normal, and the 2-step verfication is not enabled before trying again.

    May you have the wrong Port. Make sure that you use 873.
Failed to establish the SSH connection. Please make sure that your credentials are correct, the SSH service of the destination server is normal, and the 2-step verfication is not enabled before trying again.

Restoring files you can use follwing information
Restore Data from Synology Hyper Backup local




Thanks to following homepages helping me to create this manual:
Framp’s Linux Tips and Tricks
Synology-Forum.de


Leave a reply

Zyxel Firewall Config Autobackup

If you have an Zyxel Firewall (USG, VPN, ATP, FLEX) and an Synology in your Network you create Autobackups using the Zyxel FTP and the Task Scheduler. This will make it easy for you to have automated Backups of your config files every day.

  1. You have to create an Sharepoint on your Synology where want to save your backups.
  2. Make sure that you have enabled the FTP service on your Firewall
Zyxel USG 20 FTP Service
  1. On your Synology go to Control panel / Task Scheduler / and create a User-defined script
Synolgy User defined scirpts
  1. Give the Task a name, a schedule and jump to „Task Settings“ there you can copy this text and change following things:
    – <username>
    – <password>
    – <IP-Address>
    – /volume1/ORDNER
wget -m ftp://<username>:<password>@<IP-Address>/conf -P /volume1/ORDNER

tar -zcvf /volume1/ORDNER/$(date +%Y%m%d).tar.gz /volume1/<IP-Address>/
  1. Apply it with the „OK“ Button, make a right click on your newly created task and click on „RUN“ -> The first Backup should been created



Thanks to following homepages helping me to create this manual:
Tchgdns.de


Leave a reply

Synology LDAP import CSV

You can use an CSV File to import Users, passwords and description into your running LDAP. You have to take care about following things:

Parameters:

  • Username
  • Passwort
  • Description
  • Email
  • Employee number
  • Department
  • Employee type
  • Titel
  • Work phone
  • Home phone
  • Mobile phone
  • Adress
  • Status

To import the users list:

  1. Choose Create > Import Users.
  2. Tick Overwrite duplicate accounts if you wish to replace the duplicate accounts with the one exists in the users list.
  3. Click Browse and select the file of the users list. After the file is selected, the preview region will show the list of imported users. Users with abnormal status will not be imported.
  4. Click Upload to create the user account

More information in the Synology Help Document
Error message:
Invalid syntax in file. Double quotation marks placed incorrectly. Please check the below field:


Leave a reply

Zyxel WAX650S 802.3BT PoE

The new WAX 650S from Zyxel is the first access point with a power draw of 31W / 802.3BT POE default. This means that you will not be able to operate with the normal Zyxel Switch line.
Only the XS1930-12HP is able to give enough POE Power to let it work in normal mode.

If you connect the AP to a “normal” POE Switch (with PoE 802.at) you will get following error:

Limited Power Mode

Zyxel NXC 2500

Alternativ you can use the power supply (12V DC). It is not included in the package content. Or you use at PoE Injector with the 802.3BT default.

You can buy them here:
Tools at Work


XS1930-12HP
XS1930-12HP
WAX650S
WAX650S

 Collapse All

ModelsWAX650S
Product name
Description802.11ax (WiFi 6) Dual-Radio Unified Pro Access Point
Wireless
StandardIEEE802.11 ax/ac/n/g/b/a
MIMOMU-MIMO
Wireless speed2.4GHz: 1150Mbps
5GHz: 2400Mbps
Frequency band2.4 GHz (IEEE 802.11 b/g/n)USA (FCC): 2.412 to 2.462 GHzEurope (ETSI): 2.412 to 2.472 GHz5 GHz (IEEE 802.11 a/n/ac)USA (FCC): 5.15 to 5.35 GHz; 5.725 to 5.850 GHzEuropean (ETSI): 5.15 to 5.35 GHz; 5.470 to 5.725 GHz
Bandwidth20-, 40- ,80- and 160-MHz
Conducted typical transmit output powerUS (2.4GHz/5GHz): 28/28dBm
EU (2.4GHz/5GHz): 19/26dBm
RF Design
Antenna type4×4 Smart Antenna
Antenna gain2.4GHz: Peak Gain 3dBi
5GHz: Peak Gain 5.8dBi
Minimum Receive sensitivity-105 dBm
WLAN feature
Band SteeringYes
WDSFuture suppoet
Mesh AP (By License)Future Support
Mesh AP for multiple SSID with VLANFuture Support
Smart meshFuture Support
Fast roamingPre-authentication, PMK caching and 802.11k/v/r
DCS (Auto Channel)Yes
Load balancingYes
Security
Wireless SecurityWPAWPA-PSKWPA-Enterprise (WPA/WPA2/WPA3)
Access managementL2-isolationMAC filteringRogue AP detectionEAPIEEE 802.1XRADIUS authentication
Networking
IPv6Yes
VLANsYes
WMMYes
U-APSDYes
DiffServ markingYes
Management
Operating modeNebula Cloud managedController-managedStandalone
ZON UtilityDiscovery of Zyxel switches, APs and gatewaysCentralized and batch configurations IP configuration IP renew Device factory resetDevice reboot Device locating Web GUI accessFirmware upgrade Password configuration One-click quick association with Zyxel AP Configurator (ZAC)
Zyxel AP ConfiguratorBatch AP configuration Batch AP firmware upgrade Batch AP profile backup
Zyxel Wireless OptimizerWiFi AP planningWiFi coverage detectionWireless health management
Web UI/ CLIYes
SNMPYes
Physical Specifications and others
ItemDimensions (WxDxH)(mm/in.)
230 x 235 x 53.5/9.06 x 9.25 x 2.11
Weight (g/lb.)
1160/2.56
PackingDimensions (WxDxH)(mm/in.)
282 x 266 x 79/11.1 x 10.47 x 3.11
Weight (g/lb.)
1490/3.38
Included accessoriesMount plateMounting screws
MTBF (hr)180,653
Physical Interfaces
Ethernet port1 x 1/2.5/5Gbps Ethernet (PoE port)1 x 1Gbps Ethernet
Power802.3BT POE (Maximum power draw: 31W)12V DC input
Environmental Specifications
OperatingTemperature
0°C to 50°C/32°F to 122°F
Humidity
10% to 95% (non-condensing)
StorageTemperature
-30°C to 70°C/-22°F to 158°F
Humidity
10% to 90% (non-condensing)
Certifications
RadioFCC Part 15CFCC Part 15EETSI EN 300 328EN 301 893LP0002
EMCFCC Part 15BEN 301 489-1EN 301 489-17EN55022EN55024EN61000-3-2/-3EN60601-1-2BSMI CNS13438
SafetySafety EN 60950-1IEC 60950-1BSMI CNS14336-1

Leave a reply

Speed Test Zyxel USG 110

All speedtest are made with the default configuration file and iperf3

Speedtest ONE:
LAN 1 to LAN 2: ~ 40 MBytes

Speedtest TWO:
LAN 1 to LAN 1: ~ 105 MBytes

Speedtest THREE:
LAN 1 to WAN: ~ 57 MBytes

Speedtest FOUR:
WAN to LAN 1: ~58 MBytes
(NAT)

-----------------------------------------------------------
LAN 1 to WAN
Server listening on 5201
-----------------------------------------------------------
Accepted connection from 10.20.20.11, port 44420
[  5] local 10.20.20.10 port 5201 connected to 10.20.20.11 port 44422
[ ID] Interval           Transfer     Bandwidth
[  5]   0.00-1.00   sec  57.5 MBytes   482 Mbits/sec
[  5]   1.00-2.00   sec  60.6 MBytes   509 Mbits/sec
[  5]   2.00-3.00   sec  60.7 MBytes   509 Mbits/sec
[  5]   3.00-4.00   sec  60.7 MBytes   509 Mbits/sec
[  5]   4.00-5.00   sec  60.6 MBytes   509 Mbits/sec
[  5]   5.00-6.00   sec  60.6 MBytes   508 Mbits/sec
[  5]   6.00-7.00   sec  60.6 MBytes   508 Mbits/sec
[  5]   7.00-8.00   sec  60.6 MBytes   508 Mbits/sec
[  5]   8.00-9.00   sec  60.6 MBytes   508 Mbits/sec
[  5]   9.00-10.00  sec  60.5 MBytes   508 Mbits/sec
[  5]  10.00-10.04  sec  2.73 MBytes   509 Mbits/sec
- - - - - - - - - - - - - - - - - - - - - - - - -
[ ID] Interval           Transfer     Bandwidth
[  5]   0.00-10.04  sec  0.00 Bytes  0.00 bits/sec                  sender
[  5]   0.00-10.04  sec   606 MBytes   506 Mbits/sec                  receiver

-----------------------------------------------------------
WAN to LAN 1
Server listening on 5201
-----------------------------------------------------------
[  4] local 10.20.20.10 port 56506 connected to 10.20.20.11 port 5000
[ ID] Interval           Transfer     Bandwidth
[  4]   0.00-1.00   sec  58.1 MBytes   487 Mbits/sec
[  4]   1.00-2.00   sec  59.7 MBytes   501 Mbits/sec
[  4]   2.00-3.00   sec  59.4 MBytes   498 Mbits/sec
[  4]   3.00-4.00   sec  59.4 MBytes   499 Mbits/sec
[  4]   4.00-5.00   sec  57.6 MBytes   483 Mbits/sec
[  4]   5.00-6.00   sec  59.5 MBytes   499 Mbits/sec
[  4]   6.00-7.00   sec  58.3 MBytes   489 Mbits/sec
[  4]   7.00-8.00   sec  58.9 MBytes   494 Mbits/sec
[  4]   8.00-9.00   sec  59.3 MBytes   497 Mbits/sec
[  4]   9.00-10.00  sec  59.0 MBytes   495 Mbits/sec
- - - - - - - - - - - - - - - - - - - - - - - - -
[ ID] Interval           Transfer     Bandwidth
[  4]   0.00-10.00  sec   589 MBytes   494 Mbits/sec                  sender
[  4]   0.00-10.00  sec   587 MBytes   493 Mbits/sec                  receiver


-----------------------------------------------------------
LAN 1 to LAN 1
Server listening on 5201
-----------------------------------------------------------
Accepted connection from 192.168.1.33, port 42552
[  5] local 192.168.1.34 port 5201 connected to 192.168.1.33 port 42554
[ ID] Interval           Transfer     Bandwidth
[  5]   0.00-1.00   sec   104 MBytes   871 Mbits/sec
[  5]   1.00-2.00   sec   110 MBytes   924 Mbits/sec
[  5]   2.00-3.00   sec   110 MBytes   919 Mbits/sec
[  5]   3.00-4.00   sec   110 MBytes   923 Mbits/sec
[  5]   4.00-5.00   sec  96.7 MBytes   812 Mbits/sec
[  5]   5.00-6.00   sec   110 MBytes   923 Mbits/sec
[  5]   6.00-7.00   sec   110 MBytes   922 Mbits/sec
[  5]   7.00-8.00   sec   110 MBytes   923 Mbits/sec
[  5]   8.00-9.00   sec   110 MBytes   923 Mbits/sec
[  5]   9.00-10.00  sec   110 MBytes   921 Mbits/sec
[  5]  10.00-10.04  sec  4.32 MBytes   922 Mbits/sec
- - - - - - - - - - - - - - - - - - - - - - - - -
[ ID] Interval           Transfer     Bandwidth
[  5]   0.00-10.04  sec  0.00 Bytes  0.00 bits/sec                  sender
[  5]   0.00-10.04  sec  1.06 GBytes   906 Mbits/sec                  receiver

-----------------------------------------------------------
LAN 1 to LAN 2
Server listening on 5201
-----------------------------------------------------------
Accepted connection from 192.168.1.33, port 36228
[  5] local 192.168.2.33 port 5201 connected to 192.168.1.33 port 36230
[ ID] Interval           Transfer     Bandwidth
[  5]   0.00-1.00   sec  39.9 MBytes   335 Mbits/sec
[  5]   1.00-2.00   sec  41.6 MBytes   349 Mbits/sec
[  5]   2.00-3.00   sec  41.9 MBytes   351 Mbits/sec
[  5]   3.00-4.00   sec  40.9 MBytes   343 Mbits/sec
[  5]   4.00-5.00   sec  41.5 MBytes   348 Mbits/sec
[  5]   5.00-6.00   sec  41.7 MBytes   350 Mbits/sec
[  5]   6.00-7.00   sec  41.7 MBytes   350 Mbits/sec
[  5]   7.00-8.00   sec  41.5 MBytes   348 Mbits/sec
[  5]   8.00-9.00   sec  41.7 MBytes   350 Mbits/sec
[  5]   9.00-10.00  sec  41.7 MBytes   350 Mbits/sec
[  5]  10.00-10.04  sec  1.65 MBytes   351 Mbits/sec
- - - - - - - - - - - - - - - - - - - - - - - - -
[ ID] Interval           Transfer     Bandwidth
[  5]   0.00-10.04  sec  0.00 Bytes  0.00 bits/sec                  sender
[  5]   0.00-10.04  sec   416 MBytes   347 Mbits/sec                  receiver
ModelspastedGraphic.png USG110
Hardware Specifications
Interfaces4 x LAN/DMZ, 2 x WAN, 1 x OPT
USB ports2
Console portYes (DB9)
Rack-mountableYes
System Capacity & Performance*1
SPI firewall throughput(Mbps)*21,600
VPN throughput (Mbps)*3400
IDP throughput (Mbps)*4590
AV throughput (Mbps)*4450
UTM throughput (AV and IDP, Mbps)*4450
Max. TCP concurrent sessions*5150,000
Max. concurrent IPSec VPN tunnels*6100
Concurrent SSL VPN users (default/max.)*750 / 150
VLAN interface16
Concurrent devices logins (default/max.)*7*8200 / 300
WLAN Management
Managed AP number (default/max.)*72/34
Recommend max. AP in 1 AP Group20
Security Service
Anti-virus (AV)*7Yes
Intrusion detection and prevention (IDP) & Application Patrol*7Yes
Anti-spam*7Yes
Content filtering (CF 2.0)*7*9Yes
SecuReporter Premium*7Yes
Key Features
VPNIKEv2, IPSec, SSL, L2TP/IPSec
SSL (HTTPS) inspectionYes
2-Factor AuthenticationYes
EZ ModeYes
Hotspot Management*7Yes
Ticket printer support*10 / Support Q’ty (max.)Yes (SP350E) / 10
Microsoft AzureYes
Amazon VPCYes
Device HA ProYes
Link Aggregation (LAG)
Power Requirements
Power input12V DC, 3.33 A max.
Max. power consumption (watt)37.0
Heat dissipation (BTU/hr)126.25
Physical Specifications
ItemDimensions (WxDxH)(mm/in.) 300 x 188 x 44/11.81 x 7.4 x 1.73 Weight (kg/lb.) 2/4.4
PackingDimensions (WxDxH)(mm/in.) 351 x 149 x 243/13.82 x 5.98 x 9.65 Weight (kg/lb.) 3.264/7.20
Included accessoriesPower adapter Power cord Rack mounting kit
Environmental Specifications
OperatingTemperature 0°C to 40°C (32°F to 104°F) Humidity 10% to 90%(non-condensing)
StorageTemperature -30°C to 70°C (-22°F to 158°F) Humidity 10% to 90%(non-condensing)
MTBF (hr)787,109.3
Certifications
EMCFCC Part 15 (Class A) CE EMC (Class A) C-Tick (Class A) BSMI
SafetyLVD (EN60950-1), BSMI

V4.38(AAPH.0)


Durch die weitere Nutzung der Seite stimmst du der Verwendung von Cookies zu. Weitere Informationen

Die Cookie-Einstellungen auf dieser Website sind auf "Cookies zulassen" eingestellt, um das beste Surferlebnis zu ermöglichen. Wenn du diese Website ohne Änderung der Cookie-Einstellungen verwendest oder auf "Akzeptieren" klickst, erklärst du sich damit einverstanden.

Schließen