Hi Folks, I'm using VMWare on a Linux Host (CentOS) with a Linux-Guest Sidux). And I'd like to use NFS. Furthermore I'd like to use the Firewall in CentOS with this little GUI. If I activate this firewall then my Guest says "no route to host" on mounting nfs. Firewall disabled -> no problem occurs. Is there a solution to use firewall _and_ nfs ? Please, no iptables scripts. I'd like to use this small GUI for the firewall. Thx Timothy
Timothy Kesten wrote:> Hi Folks, > > I'm using VMWare on a Linux Host (CentOS) with a Linux-Guest Sidux). > And I'd like to use NFS. > Furthermore I'd like to use the Firewall in CentOS with this little GUI. > If I activate this firewall then my Guest says "no route to host" on mounting > nfs. > Firewall disabled -> no problem occurs. > Is there a solution to use firewall _and_ nfs ? > Please, no iptables scripts. > I'd like to use this small GUI for the firewall. >'this little GUI' ? which little GUI is that? All those firewall GUI's do is tweak preconfigured iptable scripts which implement the actual firewalling in the kernel. The problem is, most of the GUI's are quite limited as to what they can and can't do, whereas iptables is incredibly flexible. vmware has two basic network modes, 'bridged' and 'NAT'. With NAT, the vm's are running on their own 'private' network, while with bridged, the VM's addresses are seen as outside systems. You would need to configure the host's firewalls to allow NFS (and probably RPC and a bunch more) from either the private network or the specific IP(s) being used by the bridged adapters.
On 10/10/07, Timothy Kesten <centos-lst at gmx.de> wrote:> Hi Folks, > > I'm using VMWare on a Linux Host (CentOS) with a Linux-Guest Sidux). > And I'd like to use NFS. > Furthermore I'd like to use the Firewall in CentOS with this little GUI. > If I activate this firewall then my Guest says "no route to host" on mounting > nfs. > Firewall disabled -> no problem occurs. > Is there a solution to use firewall _and_ nfs ? > Please, no iptables scripts. > I'd like to use this small GUI for the firewall.Create the file "/etc/sysconfig/nfs" and add the following contents: STATD_PORT=4001 LOCKD_TCPPORT=4002 LOCKD_UDPPORT=4002 MOUNTD_PORT=4003 Append the following to the file "/etc/services": rquotad 4004/tcp # rpc.rquotad tcp port rquotad 4004/udp # rpc.rquotad udp port Restart the nfs services>From there, open these ports -> 111:tcp, 111:udp, 2049:tcp, 2049:udp,4001:tcp, 4001:udp, 4002:tcp, 4002:udp, 4003:tcp, 4003:udp, 4004:tcp, 4004:udp -- During times of universal deceit, telling the truth becomes a revolutionary act. George Orwell