You are not logged in.

#1 2006-01-12 00:22:32

perbh
Member
From: Republic of Texas
Registered: 2005-03-04
Posts: 765

nfs

I am exporting a file-system (actually a usb-partition) but I am unable to nfs-mount it from another machine. The only error-message (apart from an rpc-error on the remote computer) that I can find is an error from getport(nfs) 'from an unauthorized host' ...
So - how do I define a host as being authorized?? (I've got it in /etc/hosts/equiv).

The following daemons are running:
portmap, nfslock and nfsd - in that order!

Plueeeze help - this is driving me batty!!

-pbh-

Offline

#2 2006-01-12 06:42:37

Neuro
Member
From: Poland
Registered: 2005-10-12
Posts: 352

Re: nfs

Few things to check:

1. Check wether the client machine's IP is provided in server's /etc/exports. For example (192.168.0.10 is the client's ip):

/var/www 192.168.0.10(rw,async)

2. Check if you're not blocking traffic on these ports on the server machine. For example add to /etc/hosts.allow (192.168.0.10 is the client's ip):

lockd: 192.168.0.10
rquotad: 192.168.0.10
mountd: 192.168.0.10
statd: 192.168.0.10

3. Check your firewall configuration. NFS is a bit of a mess and I've had some issues when my rules were a bit too restrictive on the internal interface (the one on which NFS was supposed to work).
4. Read the manuals to make sure you hadn't missed anything. From my experience, NFS is a tricky thing and it's easy to forget about something. Take a look at the NFS-HOWTO, this, plus the man pages, helped me a lot.

Offline

#3 2006-01-12 16:53:52

perbh
Member
From: Republic of Texas
Registered: 2005-03-04
Posts: 765

Re: nfs

I explicitly export it, portmap is started in rc.conf, while my /etc/rc.local contains:

/etc/rc.d/nfslock
/etc/rc.d/nfsd
sleep 5

# check if usb is present, and if so - mount it
dmesg | grep -q '^ sda: sda1' && {
  echo "- mounting usb-drive ..."
  mount -t reiserfs /dev/sda1 /mnt/usb && {
    mount --bind /mnt/usb/public /pub
    exportfs -iv -o rw,insecure,no_root_squash 192.168.1.0/24:/pub
  }
}

The only thing I have in hosts.allow is:
portmap: ALL

I will try your suggestions with the other daemons/programs ...

Oh - being well protected I do not use a firewall within my private little lan.

Thank you for your suggestions

Offline

Board footer

Powered by FluxBB