I'm trying to NFS-mount a CentOS directory on my Fedora laptop, but I find I can only do this is I turn off the firewall on the CentOS server. If instead I go to system-config-securitylevel-tui on the server, and allow NFS4, this does not do the trick. Nor does allowing port 2049. What do I need to allow? [I should say that the CentOS server is remote, and difficult to access directly; that is why I used system-config-securitylevel-tui, rather than system-config-securitylevel .] -- Timothy Murphy e-mail: gayleard /at/ eircom.net tel: +353-86-2336090, +353-1-2842366 s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland
Timothy Murphy wrote:> I'm trying to NFS-mount a CentOS directory on my Fedora laptop, > but I find I can only do this is I turn off the firewall > on the CentOS server. > > If instead I go to system-config-securitylevel-tui on the server, > and allow NFS4, this does not do the trick. > Nor does allowing port 2049. > > What do I need to allow?Look at the firewall logs, RPC services use somewhat random ports, you can look at what ports are being used with the 'rpcinfo' command, you can also look at hard coding what ports are used to make firewall configuration simpler(don't have docs off hand, search for them, easy to find). nate
On Mon, 2009-12-28 at 23:30 +0100, Timothy Murphy wrote:> I'm trying to NFS-mount a CentOS directory on my Fedora laptop, > but I find I can only do this is I turn off the firewall > on the CentOS server. > > If instead I go to system-config-securitylevel-tui on the server, > and allow NFS4, this does not do the trick. > Nor does allowing port 2049. > > What do I need to allow?Here is my note regarding how to make this work: Create the file "/etc/sysconfig/nfs" and add the following contents: STATD_PORT=4001 LOCKD_TCPPORT=4002 LOCKD_UDPPORT=4002 MOUNTD_PORT=4003 Append the following to the file "/etc/services": rquotad 4004/tcp # rpc.rquotad tcp port rquotad 4004/udp # rpc.rquotad udp port Restart the nfs services>From there, open these ports -> 111:tcp, 111:udp, 2049:tcp, 2049:udp,4001:tcp, 4001:udp, 4002:tcp, 4002:udp, 4003:tcp, 4003:udp, 4004:tcp, 4004:udp -- MELVILLE THEATRE ~ Melville Sask ~ http://www.melvilletheatre.com