Bug 129138 – /etc/init.d/nfs does not respect LOCKD_TCPPORT & LOCKD_UDPPORT

Bug 129138 - /etc/init.d/nfs does not respect LOCKD_TCPPORT & LOCKD_UDPPORT

Summary:	/etc/init.d/nfs does not respect LOCKD_TCPPORT & LOCKD_UDPPORT

Status:	CLOSED WONTFIX

Aliases:	None

Product:	Red Hat Enterprise Linux 3
Classification:	Red Hat
Component:	nfs-utils (Show other bugs)
Sub Component:
Version:	3.0
Hardware:	All Linux

Priority	medium Severity medium
Target Milestone:	---
Target Release:	---
Assigned To:	Steve Dickson
QA Contact:
Docs Contact:

URL:
Whiteboard:
Keywords:	Security

Depends On:
Blocks:
	Show dependency tree / graph

Reported:	2004-08-04 09:07 EDT by Simon Oliver
Modified:	2012-06-20 09:26 EDT (History)
CC List:	4 users (show)

See Also:
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Story Points:	---
Clone Of:
Environment:
Last Closed:	2012-06-20 09:26:34 EDT
Type:	---
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Groups: None (edit)

Description Simon Oliver 2004-08-04 09:07:00 EDT

From Bugzilla Helper:
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4)
Gecko/20030624 Netscape/7.1 (ax)

Description of problem:
Same problem as identified for Fedora Core in bug 112598

The problem is fixed by applying the suggested patch in bug report
112598: start and stop the kernel nfsd once before setting the TCP and
UDP ports in /etc/init.d/nfs 

Version-Release number of selected component (if applicable):
nfs-utils 1.0.6 21EL

How reproducible:
Always

Steps to Reproduce:
1. set LOCKD_TCPPORT in /etc/sysconfig/nfs to a value, say 4001
2. reboot machine
3. check port associated with lockd:
  rpcinfo -p | grep nlockmgr
    

Actual Results:  100021    1   udp  32770  nlockmgr

Expected Results:  100021    1   udp   4001  nlockmgr

Additional info:

This bug prevents using the NFS server with a firewall!

Comment 1 Steve Dickson 2004-08-11 14:51:41 EDT

This should be fixed in a later nfs-utils

Comment 2 Simon Oliver 2004-08-12 03:56:31 EDT

As well as RHEL systems I manage a reasonable number of SuSE Pro based
systems.  I notice that in 9.1 they don't bother with assigning static
ports to rpc services, instead they simply scan the ports (rpcinfo -p)
to build a service-to-port mapping and then add firewall rules for the
ports associated with selected services (FW_SERVICES_EXT_RPC in
/etc/sysconfig/SuSEfirewall2).  This is not only a more elegant
solution but also solves the problem where an rpc service has no
mechanism for binding to a specific port, such as sgi_fam.

Comment 3 Steve Bonneville 2004-08-16 11:01:58 EDT

I believe that you can force lockd to use particular ports by adding a
line like the following to /etc/modules.conf:

options lockd nlm_udpport=4001 nlm_tcpport=4001

Comment 4 Simon Oliver 2004-08-17 04:45:02 EDT

My point is that, out of the box, RHEL3 has a problem.  There are a 
number of ways of fixing this bug - RedHat should test and implement 
one of them ASAP.

Comment 5 John Morris 2005-01-20 22:18:08 EST

The modules.conf fix is confirmed to work as of 2.4.21-27.0.2 while
the /etc/sysconfig/nfs solution would work as of 2.4.21-15.EL so
something changed between those kernel versions.

Comment 6 Jiri Pallich 2012-06-20 09:26:34 EDT

Thank you for submitting this issue for consideration in Red Hat Enterprise Linux. The release for which you requested us to review is now End of Life. 
Please See https://access.redhat.com/support/policy/updates/errata/

If you would like Red Hat to re-consider your feature request for an active release, please re-open the request via appropriate support channels and provide additional supporting details about the importance of this issue.

Note You need to log in before you can comment on or make changes to this bug.