nfsd/portmapper and iptables on Linux 4
James Cooley
jcooley at fit.edu
Fri Mar 11 03:02:40 UTC 2005
ypserv is another RPC based service, so it usually binds to a random
port. However, it can take the -p option at startup to specify the
port, so you can probably edit /etc/init.d/ypserv find the start)
section and specify the -p option followed by the port you want to use.
Give that a try and see if it works for you.
Thanks,
James Cooley
On Mar 10, 2005, at 6:28 PM, Ben Ransom wrote:
> Cool, thanks a lot.
> Similar question now tho ...I see that ypbind on clients also cannot
> find ypserv on the Redhat 4 machine (again, it is the firewall
> blocking ports). Is there a similar solution for this? (or
> dissimilar, i don't much care :) )
> -Ben
>
> At 03:21 PM 3/10/2005 -0500, you wrote:
>> Yes. I know this problem well :) There are a couple of RPC services
>> in addition to portmapper and nfs (rquotad and mountd) used by NFS
>> that bind to a random port at startup.
>>
>> The solution is to add the ports to your /etc/services file such as
>> the following:
>> rquotad 950/tcp
>> rquotad 950/udp
>> mount 951/tcp
>> mount 951/udp
>>
>> Restart nfs, and those two services will bind to the ports specified.
>> Just add those ports to your firewall rules and you should be in
>> business.
>>
>>
>> I hope that helps.
>>
>>
>> Thanks,
>>
>>
>> --
>> --
>> James Cooley
>> Sr. Systems Analyst
>> Information Technology
>> Florida Tech
>> 321-674-7999
>> jcooley at it.fit.edu
>>
>>
>>
>>
>>
>>
>>
>> Ben Ransom wrote:
>>
>>> I've just put up a Redhat 4 system (call it nfsServer) and am unable
>>> to nfs mount file systems from it on other machines ...unless I turn
>>> off iptables on nfsServer.
>>>
>>> I think the problem is the client is unable to see portmapper on
>>> nfsServer. In the past I've opened udp ports 111 and 2049 in
>>> iptables but this doesn't do the trick with the Redhat4 box. Note, I
>>> had SELinux turned on but have disabled it for now.
>>>
>>> Any suggestions?
>>> Thanks,
>>> -Ben
>>
>> --
>> redhat-list mailing list
>> unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
>> https://www.redhat.com/mailman/listinfo/redhat-list
>
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
More information about the redhat-list
mailing list