header image

Recently I was greatly frustated by the fact I couldn't remotely power up or shut down my RaidSonic Icy Box storage box. These consumer-level boxes are basically local control only, no WOL or any remote functionality.

I decided to change the situation. As a half-day project, I made a simple Raspberry Pi + relay control to add remote network-accessible control for my Icy Box IB-3640SU3. There are also security and privacy aspects involved that might interest you.

Table of Contents

Modifications

Disassembling the Icy Box is a requirement since you need access the the front control panel circuit board.

Thankfully, disassembling the box is a pretty simple process since there are just handful of very visible screws to be removed. After disassembling the box, the front panel blue circuit board is partially accessible, and that's enough for this project.

post image
Power control wiring. The picture shows front panel flipped horizontally, and the actual chipset behind it. Chipset shown here is as it's seen from behind. The chipset is accessible only after disassembling the box. Finding out the correct wiring combination for proper power control is essential for this project. See also other images to get a proper understanding of wiring locations on the chipset.

Next step is to figure out which front panel power button pin combination actually controls power operations of the box. I found the correct combination pretty quickly. The correct combination is highlighted with red circles in the simplified chipset schema picture above.

post image
Icy Box IB-3640SU3 disassembled. This is the view after disassembling the box. I have also removed the front door due to poor cooling the box has when the door is closed.
post image
Soldered power wires. After identifying correct wiring for power control, I soldered two wires as seen in the picture. You must be careful these two don't electrically contact each other, and you don't have the box power adapter connected when performing this operation.
post image
Insulate the wires. As an extra protection measure, heat shrink tubing can be beneficial for both wires. Not shown on this picture, but I also added tape as strain relief for the both wires, as well as cut out both black pin connectors.
post image
First test run. I re-assembled the Icy Box, added relay card with Raspberry Pi, set up a basic network connection and connected the Icy Box to the Raspberry Pi via USB. When relay is programmatically activated, it connects the power wires for a short time, simulating power button pushing functionality. Longer time the electric circuit remains and electricity flows through both wires, longer the button is considered pushed down. In the case of Icy Box, this means we can also shut it down whenever needed.

Relay control code

For relay control code, see reference on my other post Emergency control for servers - The code.

Why local-only accessible product might actually be a good thing

Icy Box IB-3640SU3 being a local only device might be a good thing in the end. In a usual case, network accessible market products tend to have multiple server daemons, features and connectivity dependencies involved. Although these products may actually have useful features, they tend to attempt to solve all possible problems to serve a vivid range of global customers. I prefer clear and simple device roles as much as possible.

Consumer level solutions are usually locked-in by their manufacturers, meaning that you can't actually change what's already bundled in the product software setup or you have very limited control for it. In a security perspective, this is a red flag. Due to multiple server daemons and features, there is a large potential attack vector. These server daemons might be vulnerable, they can't be opted out or actually purged from the device setup. Neither you can't install server daemons you actually need.

Things become even worse when cloud-dependant mobile application services such as remote access control are involved. They are handy features, I can't deny it. However, there is a high price: the mobile application itself or anything between the storage device and your mobile phone can likely be a vulnerable attack target. Not to mention if the mobile cloud service will be shut down in the long term, leaving you just a half dead product. Depending on your needs, cloud data back up solutions might work or not for you but they also have privacy and security issues.

Even if a consumer-ready product could have a special enterprise feature you're looking for, product price range may be way higher just because of that. Actual reality is that you may achieve the same result without sacrificing your security, privacy - and money.

Conclusions

With many consumer-ready network storage products, you're not in the position to decide whether you want pre-bundled features in the first place or not. You just get what the manufacturer thinks is best for majority of its customers, leaving you or your specific needs out from the equation. A networkless storage product with proper modifications may give you more control than a network-ready one. Since a networkless product has very limited scale of features, you likely have less bloat pre-installed on the box, and more control for the product role in your environment. This is because, with proper modifications, you may turn your local-only storage device into a networked one - on your terms and for your specific needs.