[Gllug] NFS across firewall
Alistair Mann
alistair at lgeezer.net
Sun Jun 8 18:21:14 UTC 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Thus spaketh Richard Turner on Sunday 08 June 2003 6:37 pm:
> Hi,
>
> I have two boxen plugged-into a combo ADSL/switch. Since they're
> essentially both plugged-into the Net (albeit with NAT done by the router)
> they both run firewalls, but I'd like to be able to use NFS to access one's
> files from the other (only one of them has a monitor).
>
> Can anyone tell me which ports I need to open? Simply opening 111 and 2049
> for TCP and UDP doesn't seem to do the trick (I get 'mount: RPC: Timed
> out'), but I know that the rest of my set-up is OK because if I bring down
> the firewalls entirely then I can mount the exports.
My understanding is that NFS has a certain element that includes dynamically
assigned ports at both ends, making it very difficult to map connections
across NAT. My understanding also is that NFS v4 was designed to accomdate
firewalls im the way earlier versiosn didn't.
If you absolutely have to, you could open the machine to the entire
address/32.
- --
Alistair
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE+436aEz+/jt85AfsRAqmQAJwPf8ihfW4/NCBDR4iH1JNa8TYDOgCcDIAO
O/oz5qnYAQU8WPXydy/Y6Ck=
=sJ71
-----END PGP SIGNATURE-----
--
Gllug mailing list - Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug
More information about the GLLUG
mailing list