Binding ports for NFS
Res
res at ausics.net
Fri Dec 16 09:45:30 UTC 2005
On Fri, 16 Dec 2005, redhatdude at bellsouth.net wrote:
> Thanks a lot Res,
> Now I can't mount the share from MacOS X 10.4
>
> What is the problem?
> I can mount the same folder in my home folder in Fedora but not from the Mac.
> This is the error on the mac
> mount_nfs: bad MNT RPC: RPC: Timed out
have a look in messages file on server , and run iptraf and watch and see
if it hits ok or gets rejcted, temp flush firewall and try connect with
mac to eliminate it
Ive never used a mac but a timeout is a timeout, firewlal for sure
>
> On Dec 16, 2005, at 2:28 AM, Res wrote:
>
>> Hi,
>>
>> On Thu, 15 Dec 2005, redhatdude at bellsouth.net wrote:
>>
>>> Let's see if I have more luck with this question and somebody answers it.
>>> I'm trying to share a folder using NFS. The problem I'm having is with the
>>> ports some of the daemons use and the firewall. The ports for portmapper
>>> and nfsd remain the same all the time and I can open them in the firewall.
>>> However, daemons such as lockd and mountd change every time I load the nfs
>>> service. What I'd like to do is bind these daemos to a specific port that
>>> would remain open in the firewall. How can I accomplish that?
>>
>> You should know the IP of the server in question, allow that server
>> unrestricted access in your firewall, if its on your LAN, have the router
>> filter 2049 and 111 completely from the internet (tcp and udp)
>>
>> Also if your LAN is 192.168.0.0/24 in your /etc/hosts.allow:
>>
>> portmap: 192.168.0.1/255.255.255.0
>> lockd: 192.168.0.1/255.255.255.0
>> statd: 192.168.0.1/255.255.255.0
>> mountd: 192.168.0.1/255.255.255.0
>> rquotad: 192.168.0.1/255.255.255.0
>>
>> If you only want to put in single IP's put them in in this format:
>> SERVICETYPE: 192.168.0.1 , 192.168.0.254
>> note, yes thats - I.P space comma space I.P
>>
>> and in /etc/hosts.deny:
>>
>> portmap: ALL
>> lockd: ALL
>> statd: ALL
>> mountd: ALL
>> rquotad: ALL
>>
>>
>>
>> --
>> Cheers
>> Res
>>
>> --
>> fedora-list mailing list
>> fedora-list at redhat.com
>> To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
>
>
--
Cheers
Res
More information about the fedora-list
mailing list