Bug 250916 - lokkit opens only 2049/tcp on NFS4, 2049/udp is missing
Summary: lokkit opens only 2049/tcp on NFS4, 2049/udp is missing
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Fedora
Classification: Fedora
Component: system-config-securitylevel
Version: 7
Hardware: All
OS: Linux
low
medium
Target Milestone: ---
Assignee: Thomas Woerner
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2007-08-05 07:54 UTC by Peter Bieringer
Modified: 2007-11-30 22:12 UTC (History)
0 users

Fixed In Version: 1.7.0-6.fc7
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2007-11-15 03:41:25 UTC
Type: ---
Embargoed:


Attachments (Terms of Use)

Description Peter Bieringer 2007-08-05 07:54:28 UTC
Description of problem:
While digging through a autofs NFS mount delay problem I found that lokkit only
opens 2049/tcp, if NFS4 is selected, 2049/udp is missing.

Version-Release number of selected component (if applicable):
system-config-securitylevel-1.7.0-5.fc7
Also: system-config-securitylevel of RHEL5, where this problem was originially
found.

How reproducible:
Always

Steps to Reproduce:
1. enable NFS4 with system-config-security-level on an NFS server (pin also the
RPC services to fixed ports and add these ports, too)
2. (auto)mount an exported directory from remote
  
Actual results:
You will get a mount delay and on sniffing, you will found some 2049/udp packets
before NFS switches to TCP.

Expected results:
2049/udp rule will also be added

Comment 1 Fedora Update System 2007-11-09 23:58:49 UTC
system-config-securitylevel-1.7.0-6.fc7 has been pushed to the Fedora 7 testing repository.  If problems still persist, please make note of it in this bug report.
 If you want to test the update, you can install it with 
 su -c 'yum --enablerepo=updates-testing update system-config-securitylevel'

Comment 2 Fedora Update System 2007-11-15 03:41:21 UTC
system-config-securitylevel-1.7.0-6.fc7 has been pushed to the Fedora 7 stable repository.  If problems still persist, please make note of it in this bug report.


Note You need to log in before you can comment on or make changes to this bug.