| 1 |
On Thu, Apr 26, 2018 at 4:12 AM, Peter Humphrey <peter@××××××××××××.uk> wrote: |
| 2 |
> |
| 3 |
> So, again, I went off half-cocked (sorry about the noise). The problem is that |
| 4 |
> the NFS mount in the chroot picks different ports each time, so the client's |
| 5 |
> firewall drops all NFS packets. |
| 6 |
> |
| 7 |
> Now I just have to find out why that happens. |
| 8 |
|
| 9 |
Set up static ports for mountd and statd in "/etc/conf.d/nfs". |
| 10 |
|
| 11 |
Set up static ports for lockd in "/etc/modprobe.d/" or |
| 12 |
"/etc/sysctl.d/" (depending on how you compiled your kernel). |
| 13 |
|
| 14 |
Non-official but more or less conventional ports (IIRC, first used in |
| 15 |
an old Slackware howto): |
| 16 |
|
| 17 |
mountd: "--port 32767" |
| 18 |
|
| 19 |
statd: "--port 32765 --outgoing-port 32766" |
| 20 |
|
| 21 |
lockd-sysctl.d: |
| 22 |
fs.nfs.nlm_udpport=32768 |
| 23 |
fs.nfs.nlm_tcpport=32768 |
| 24 |
|
| 25 |
lockd--modprobe.d: |
| 26 |
options lockd nlm_udpport=32768 nlm_tcpport=32768 |
| 27 |
|
| 28 |
[ If you want to be "modern," the nfs-utils tarball (v2.1.1 and above) |
| 29 |
includes "nfs.conf" that you can copy into "/etc/" and edit ] |
Archives