1 |
Hello, |
2 |
|
3 |
I'm trying to configure the firewall on a client to allow that client |
4 |
to mount an nfs directory. The client runs a netfilter firewall, the |
5 |
server uses tcpwrapper. |
6 |
|
7 |
rpcinfo -p on the server shows: |
8 |
|
9 |
beryl rmason # rpcinfo -p |
10 |
program vers proto port |
11 |
100000 2 tcp 111 portmapper |
12 |
100000 2 udp 111 portmapper |
13 |
100024 1 udp 32765 status |
14 |
100024 1 tcp 32765 status |
15 |
100003 2 udp 2049 nfs |
16 |
100003 3 udp 2049 nfs |
17 |
100003 2 tcp 2049 nfs |
18 |
100003 3 tcp 2049 nfs |
19 |
100021 1 udp 4001 nlockmgr |
20 |
100021 3 udp 4001 nlockmgr |
21 |
100021 4 udp 4001 nlockmgr |
22 |
100021 1 tcp 4001 nlockmgr |
23 |
100021 3 tcp 4001 nlockmgr |
24 |
100021 4 tcp 4001 nlockmgr |
25 |
100005 1 udp 32767 mountd |
26 |
100005 1 tcp 32767 mountd |
27 |
100005 2 udp 32767 mountd |
28 |
100005 2 tcp 32767 mountd |
29 |
100005 3 udp 32767 mountd |
30 |
100005 3 tcp 32767 mountd |
31 |
|
32 |
When I try to mount the exported directory when the firewall is |
33 |
running I get a timeout: |
34 |
|
35 |
minnie ~ $ mount -v Help/ |
36 |
mount: trying 134.153.37.5 prog 100003 vers 3 prot tcp port 2049 |
37 |
mount: trying 134.153.37.5 prog 100005 vers 3 prot udp port 32767 |
38 |
mount: mount to NFS server 'beryl.esd.mun.ca' failed: timed out |
39 |
(retrying). |
40 |
|
41 |
If I drop the client firewall the mount succeeds. |
42 |
|
43 |
Can someone help me figure out what must be put in my iptables script |
44 |
to get this to work? |
45 |
|
46 |
Thanks, |
47 |
Roger |
48 |
-- |
49 |
gentoo-user@l.g.o mailing list |