duplicacy-scripts

Duplicacy quick-start (CLI)

These scripts are called usually with cron with something like the following

0 0 * * * /opt/duplicacy-scripts/duplicacy.sh

Duplicacy init setup

cd /
duplicacy init <hostname> sftp://root@gauntnas.home.johnhgaunt.com:50022//mnt/duplicacy/
duplicacy set -key ssh_password -value <ssh password>

Testing Filters

Filters can be easily tested using the backup command: duplicacy -d -log backup -enum-only. This is further explained in Backup command details.

Duplicacy copy setup

Only the bitwarden data is backed up as that is the most important data. No encryption is needed as all the data is already encrypted.

duplicacy add -copy default <BACKUP_HOST> <BACKUP_ID> sftp://duplicacy@<BACKUP_HOST>.home.johnhgaunt.com//backups/duplicacy
duplicacy set -storage <BACKUP_HOST> -key ssh_password -value <ssh password>
duplicacy copy -to <BACKUP_HOST> -id <BACKUP_ID>

then to actually copy the files off

the script takes -c|--copyOffsite agrument and then will copy the files to the offsite backup

Filter file contents

GauntBitwarden

i:etc/.*
i:opt/$
i:opt/bitwarden/.*
i:var/$
i:var/spool/$
i:var/spool/cron/.*
e:.*

GauntNAS

i:etc/version
i:data/.*
e:root/\.cache
i:root/.*
e:.*

GauntPlex

i:etc/.*
e:root/\.cache
i:root/.*
i:opt/.*
i:var/$
i:var/lib/$
i:var/lib/plexmediaserver/.*
i:var/spool/$
i:var/spool/cron/.*
e:.*

GauntRouter

i:conf/.*
i:usr/$
i:usr/local/$
i:usr/local/opnsense/$
i:usr/local/opnsense/service/$
i:usr/local/opnsense/service/conf/$
i:usr/local/opnsense/service/conf/actions.d/.*
e:.*

GauntKeyAccess03

i:etc/.*
e:root/\.cache
i:root/.*
i:opt/.*
i:var/$
i:var/db/$
i:var/db/tang/.*
i:var/spool/$
i:var/spool/cron/.*
e:.*

GauntMailRelay

i:etc/.*
e:root/\.cache
i:root/.*
i:opt/.*
i:var/$
i:var/log/.*
i:var/spool/$
i:var/spool/cron/.*
e:.*

GauntUNVR

i:volume1/$
i:volume1/\.srv/$
i:volume1/\.srv/unifi-protect/$
i:volume1/\.srv/unifi-protect/backups/.*
i:volume1/\.srv/unifi-protect/data/.*
i:volume1/\.srv/unifi-protect/logs/.*