[K12OSN] NFS thru firewall on FC2.

Peter Van den Wildenbergh pvdw at criticalcontrol.com
Tue Sep 21 14:38:32 UTC 2004 

Terrell :
 
Normally I would never do this either, but it is a temporary setup.
The box will be re-imaged after and eth0 will be trusted,
so I don't really care if it gets hacked or not.
 
Pete

	-----Original Message----- 
	From: "Terrell Prudé, Jr." [mailto:microman at cmosnetworks.com] 
	Sent: Mon 9/20/2004 5:27 PM 
	To: Support list for opensource software in schools. 
	Cc: 
	Subject: Re: [K12OSN] NFS thru firewall on FC2.
	
	

	Hello Peter,
	
	Personally, I would never, *ever* run NFS in a situation in which the
	network wasn't trusted.  That's why we don't do it across the Internet
	(same with SMB filesharing, BTW).  The only things that I trust at this
	point for transferring "privileged" data across an untrusted network are
	encrypted transmissions, such as SSH, IPSec, and SSL-encrypted tunnels.
	
	Can you tell us why you need to have eth0 as untrusted?  If we know your
	requirements, we might be able to help you out better.
	
	Thanks,
	
	--TP
	
	Peter Van den Wildenbergh wrote:
	
	>Hi Gang :
	>
	>Does somebody know how to get NFS going thru a firewall?
	>My diskless clients boot unless I impose my firewall rules on eth0 (the card that is connected to the clients)
	>Due to a particular set-up I would like to set eth0 as 'untrusted'
	>
	>I found this how-to but it is out-of-date (RH7/8)
	>http://www.lowth.com/LinWiz/nfs_help.html
	>
	>Can anybody give advice on this?
	>
	>Thanks in advance
	>
	>Peter
	>
	>
	>_______________________________________________
	>K12OSN mailing list
	>K12OSN at redhat.com
	>https://www.redhat.com/mailman/listinfo/k12osn
	>For more info see <http://www.k12os.org>
	>
	> 
	>
	
	
	--
	_____________________
	Do you GNU!? <http://www.gnu.org>
	Mozilla Thunderbird spam filtering is new and improved. Check it out!
	<http://www.mozilla.org/thunderbird>
	
	
	_______________________________________________
	K12OSN mailing list
	K12OSN at redhat.com
	https://www.redhat.com/mailman/listinfo/k12osn
	For more info see <http://www.k12os.org>
	

-------------- next part --------------
A non-text attachment was scrubbed...
Name: winmail.dat
Type: application/ms-tnef
Size: 5810 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/k12osn/attachments/20040921/2599c4a7/attachment.bin>

More information about the K12OSN mailing list