| 1 |
Hello, |
| 2 |
|
| 3 |
I'm trying to configure the firewall on a client to allow that client |
| 4 |
to mount an nfs directory. The client runs a netfilter firewall, the |
| 5 |
server uses tcpwrapper. |
| 6 |
|
| 7 |
rpcinfo -p on the server shows: |
| 8 |
|
| 9 |
beryl rmason # rpcinfo -p |
| 10 |
program vers proto port |
| 11 |
100000 2 tcp 111 portmapper |
| 12 |
100000 2 udp 111 portmapper |
| 13 |
100024 1 udp 32765 status |
| 14 |
100024 1 tcp 32765 status |
| 15 |
100003 2 udp 2049 nfs |
| 16 |
100003 3 udp 2049 nfs |
| 17 |
100003 2 tcp 2049 nfs |
| 18 |
100003 3 tcp 2049 nfs |
| 19 |
100021 1 udp 4001 nlockmgr |
| 20 |
100021 3 udp 4001 nlockmgr |
| 21 |
100021 4 udp 4001 nlockmgr |
| 22 |
100021 1 tcp 4001 nlockmgr |
| 23 |
100021 3 tcp 4001 nlockmgr |
| 24 |
100021 4 tcp 4001 nlockmgr |
| 25 |
100005 1 udp 32767 mountd |
| 26 |
100005 1 tcp 32767 mountd |
| 27 |
100005 2 udp 32767 mountd |
| 28 |
100005 2 tcp 32767 mountd |
| 29 |
100005 3 udp 32767 mountd |
| 30 |
100005 3 tcp 32767 mountd |
| 31 |
|
| 32 |
When I try to mount the exported directory when the firewall is |
| 33 |
running I get a timeout: |
| 34 |
|
| 35 |
minnie ~ $ mount -v Help/ |
| 36 |
mount: trying 134.153.37.5 prog 100003 vers 3 prot tcp port 2049 |
| 37 |
mount: trying 134.153.37.5 prog 100005 vers 3 prot udp port 32767 |
| 38 |
mount: mount to NFS server 'beryl.esd.mun.ca' failed: timed out |
| 39 |
(retrying). |
| 40 |
|
| 41 |
If I drop the client firewall the mount succeeds. |
| 42 |
|
| 43 |
Can someone help me figure out what must be put in my iptables script |
| 44 |
to get this to work? |
| 45 |
|
| 46 |
Thanks, |
| 47 |
Roger |
| 48 |
-- |
| 49 |
gentoo-user@l.g.o mailing list |
Archives