Bug 90844 - NFS and firewalls do not go nicely together.
Summary: NFS and firewalls do not go nicely together.
Alias: None
Product: Red Hat Linux
Classification: Retired
Component: nfs-utils (Show other bugs)
(Show other bugs)
Version: 9
Hardware: All Linux
Target Milestone: ---
Assignee: Steve Dickson
QA Contact: Ben Levenson
Depends On:
TreeView+ depends on / blocked
Reported: 2003-05-14 16:38 UTC by Michal Jaegermann
Modified: 2007-04-18 16:53 UTC (History)
0 users

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2004-03-19 13:08:30 UTC
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Patch to the nfslock /etc/init.d start up script to improve firewall interation. (1.01 KB, patch)
2004-02-15 05:55 UTC, Oliver Jones
no flags Details | Diff

Description Michal Jaegermann 2003-05-14 16:38:30 UTC
Description of problem:

Due to random ports assignments one has to practically open all ports
in a firewall between machines talking NFS.  Some of components involved
can be asked to use fixed ports in /etc/sysconfig/ files but not all of
them.  Instead of a long description of troubles and remedies here I'd
rather refer to http://www.lowth.com/LinWiz/nfs_help.html which does that
better than I would. :-)  Some words on the subject in release notes
and/or docs also would be nice.

Yes, I know unofficial readings of "NFS" acronym.  Still...

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
Actual results:

Expected results:

Additional info:

Comment 2 Oliver Jones 2004-02-15 05:55:22 UTC
Created attachment 97680 [details]
Patch to the nfslock /etc/init.d start up script to improve firewall interation.

This patch adds to /etc/rc.d/init.d/nfslock the ability for statd to pick up a
port number from /etc/sysconfig/nfs in the same way that mountd can.  This is
helpful for use with firewalls.

Note You need to log in before you can comment on or make changes to this bug.