Solved

Redhat 6 can not get correct firewall for nfs

Posted on 2014-09-17
8
130 Views
Last Modified: 2014-09-26
I am in a lab environment and am trying to get my nfs to work.

without the firewall showmount -e works just find.

I have permitted nfs, and rpc through however nfs still does not want to work with the firewall up.

the /etc/sysconfig/nfs file use to have a may ports configured in the same range of 400x however if I look at that file on this redhat 6 system the ports are different in the file.

There seems like there should be some sort of easy way to securely let nfs in
0
Comment
Question by:TIMFOX123
8 Comments
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 40328736
what firewall are you using?
0
 

Author Comment

by:TIMFOX123
ID: 40328894
netfilter - iptables , the one that is stock on centos

this is the local firewall that just protects that one system.
0
 
LVL 62

Accepted Solution

by:
gheist earned 500 total points
ID: 40329204
nfs server needs multiple ports open - nfsd, mountd and rpc portmapper (last is 111 tcp/udp, former are dynamic, but more or less visible in rpcinfo -p)
0
Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

 
LVL 21

Expert Comment

by:Mazdajai
ID: 40329303
Try using the firewall terminal user- interface aka
system-config-firewall-tui

Open in new window

and select all NFS to begin with, then lock down to fits your needs:

NFSv2 and NFSv3
TCP
111, 662, 892, 2049, 32803

UDP
111, 662, 892, 2049, 32769

NFSv4
TCP
2049
0
 
LVL 62

Expert Comment

by:gheist
ID: 40329356
662 - macosx sharing
892 - unassigned

my RHEL6 has 111 and 2049 + 2 high ports open
you can fix them in /etc/sysconfig/nfs
0
 

Author Comment

by:TIMFOX123
ID: 40332037
gheist:

does showmount -e from a remote system work for you ?
0
 
LVL 62

Expert Comment

by:gheist
ID: 40332149
It should not.
0
 

Author Closing Comment

by:TIMFOX123
ID: 40346083
great job and sorry for not getting back
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
AWS RDS 3 83
Need BIOS update Linux for MSI X99A motherboard. 4 41
Rate limit for DNS queries 7 72
awk sed 8 39
I. Introduction There's an interesting discussion going on now in an Experts Exchange Group — Attachments with no extension (http://www.experts-exchange.com/discussions/210281/Attachments-with-no-extension.html). This reminded me of questions tha…
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now