[K12OSN] NFS thru firewall on FC2.
Peter Van den Wildenbergh
pvdw at criticalcontrol.com
Tue Sep 21 14:38:32 UTC 2004
Terrell :
Normally I would never do this either, but it is a temporary setup.
The box will be re-imaged after and eth0 will be trusted,
so I don't really care if it gets hacked or not.
Pete
-----Original Message-----
From: "Terrell Prudé, Jr." [mailto:microman at cmosnetworks.com]
Sent: Mon 9/20/2004 5:27 PM
To: Support list for opensource software in schools.
Cc:
Subject: Re: [K12OSN] NFS thru firewall on FC2.
Hello Peter,
Personally, I would never, *ever* run NFS in a situation in which the
network wasn't trusted. That's why we don't do it across the Internet
(same with SMB filesharing, BTW). The only things that I trust at this
point for transferring "privileged" data across an untrusted network are
encrypted transmissions, such as SSH, IPSec, and SSL-encrypted tunnels.
Can you tell us why you need to have eth0 as untrusted? If we know your
requirements, we might be able to help you out better.
Thanks,
--TP
Peter Van den Wildenbergh wrote:
>Hi Gang :
>
>Does somebody know how to get NFS going thru a firewall?
>My diskless clients boot unless I impose my firewall rules on eth0 (the card that is connected to the clients)
>Due to a particular set-up I would like to set eth0 as 'untrusted'
>
>I found this how-to but it is out-of-date (RH7/8)
>http://www.lowth.com/LinWiz/nfs_help.html
>
>Can anybody give advice on this?
>
>Thanks in advance
>
>Peter
>
>
>_______________________________________________
>K12OSN mailing list
>K12OSN at redhat.com
>https://www.redhat.com/mailman/listinfo/k12osn
>For more info see <http://www.k12os.org>
>
>
>
--
_____________________
Do you GNU!? <http://www.gnu.org>
Mozilla Thunderbird spam filtering is new and improved. Check it out!
<http://www.mozilla.org/thunderbird>
_______________________________________________
K12OSN mailing list
K12OSN at redhat.com
https://www.redhat.com/mailman/listinfo/k12osn
For more info see <http://www.k12os.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: winmail.dat
Type: application/ms-tnef
Size: 5810 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/k12osn/attachments/20040921/2599c4a7/attachment.bin>
More information about the K12OSN
mailing list