NFS problem
in [Mandrake]
|
From: David on 13 Oct 2005 21:36 I'm using Mandrake 10.2. My exports file: /home/david/test *(ro,sync) If I use the command "mount localhost:/home/david/test /mnt/nfs", it works just fine. If instead I use "mount dbernat32.gotdns.com:/home/david/test /mnt/nfs" I get the error message: "mount: dbernat32.gotdns.com:/home/david/test failed, reason given by server: Permission denied" dbernat32.gotdns.com is a dyndns that points to my ip address. If I use a foreign computer I get the same error message. My hosts.deny file is empty and my hosts.allow has: ALL: ALL I am stumped as to why I cannot access NFS from a foreign computer or from my external address. I can only access from the loopback adapter. Any help would be appreciated. --dbernat32
From: Bit Twister on 13 Oct 2005 22:00 On 13 Oct 2005 18:36:05 -0700, David wrote: > I'm using Mandrake 10.2. > > My exports file: > > /home/david/test *(ro,sync) > > > If I use the command "mount localhost:/home/david/test /mnt/nfs", it > works just fine. If instead I use "mount > dbernat32.gotdns.com:/home/david/test /mnt/nfs" I get the error > message: "mount: dbernat32.gotdns.com:/home/david/test failed, reason > given by server: Permission denied" > dbernat32.gotdns.com is a dyndns that points to my ip address. > > If I use a foreign computer I get the same error message. > My hosts.deny file is empty and my hosts.allow has: > > ALL: ALL Guessing you plan to go back and tighten down allow/deny. :) Just a fyi, My hosts.allow (home.invalid is my LAN domain) has ALL: LOCAL,.home.invalid For debugging I put the following in hosts.deny ALL: ALL:\ spawn ( \ /bin/echo -e "\n\ TCP Wrappers\: Connection Refused\n\ By\: $(uname -n)\n\ Process\: %d (pid %p)\n\ \n\ User\: %u\n\ Host\: %c\n\ Date\: $(date)\n\ " | /bin/mail -s \"$(uname -n)\" root ) & : DENY That tells me when when I need to add something to hosts.allow No, idea if you need to run service xinetd reload after changing allow/deny files. > I am stumped as to why I cannot access NFS from a foreign computer or > from my external address. I can only access from the loopback adapter. > > Any help would be appreciated. Assuming portmap, nfslock and nfs are running on _both_ boxes, I would assume firewall needs a whole punched through it.
From: matt_left_coast on 14 Oct 2005 00:40 David wrote: > I'm using Mandrake 10.2. > > My exports file: > > /home/david/test *(ro,sync) > > > If I use the command "mount localhost:/home/david/test /mnt/nfs", it > works just fine. If instead I use "mount > dbernat32.gotdns.com:/home/david/test /mnt/nfs" I get the error > message: "mount: dbernat32.gotdns.com:/home/david/test failed, reason > given by server: Permission denied" > dbernat32.gotdns.com is a dyndns that points to my ip address. Are you planning on mounting NFS over the INTERNET??? If so, STOP. NFS is not secure enough to have open on your Internet port. If you need to mount NFS from the Internet, connect to your network using VPN first. > > If I use a foreign computer I get the same error message. Is the "foreign" computer on a local network or on the Internet? > My hosts.deny file is empty and my hosts.allow has: > > ALL: ALL That should allow just about anything. You have a firewall setup, right? > > > I am stumped as to why I cannot access NFS from a foreign computer or > from my external address. I can only access from the loopback adapter. > > Any help would be appreciated. > > --dbernat32 Ok, You DO know that dbernat32.gotdns.com is going to come in on your port that has a firewall, right? I don't know how you have your firewall setup But it could be blocking your packets from your local network. Have you looked at the stats shown with nfsstat? Have you looked into nfsdebug and nfsddebug?
From: David on 14 Oct 2005 16:14 I have no firewall, software or hardware. Yes, I disabled the one built into Mandrake. I set the security level to "poor". I don't need comments on bad administration; I only want to be able to access my NFS partitions from remote computers. I promise to lock-down some things once I get NFS to work properly. Nothing works. I have since tested the system with a Cable/DSL router. I can connect locally (127.0.0.1) or from the LAN (192.168.0.x). I can still NOT access from a remote (i.e. Internet) address. This is with my computer on the router's DMZ or when directly connected to my cable modem. I scanned my ports at grc.com's Shield's Up. 2049 reports as "open"! The NFS client computers are able to see and connect to my server computer. (They can ping, connect to http, ftp, ssh, etc., and successfully probe port 2049.) I believe the NFS server in my computer is ACTIVELY refusing all non-local requests. Is there anyway to fix this problem? --dbernat32
From: Dan Espen on 14 Oct 2005 17:44 "David" <dbernat32(a)gmail.com> writes: > I have no firewall, software or hardware. Yes, I disabled the one > built into Mandrake. I set the security level to "poor". > > I don't need comments on bad administration; I only want to be able to > access my NFS partitions from remote computers. I promise to lock-down > some things once I get NFS to work properly. > > Nothing works. I have since tested the system with a Cable/DSL router. > I can connect locally (127.0.0.1) or from the LAN (192.168.0.x). I > can still NOT access from a remote (i.e. Internet) address. This is > with my computer on the router's DMZ or when directly connected to my > cable modem. > > I scanned my ports at grc.com's Shield's Up. 2049 reports as "open"! > The NFS client computers are able to see and connect to my server > computer. (They can ping, connect to http, ftp, ssh, etc., and > successfully probe port 2049.) I believe the NFS server in my computer > is ACTIVELY refusing all non-local requests. > > Is there anyway to fix this problem? Please don't multipost. Post to all the groups you want to ask the question of at once.
|
Next
|
Last
Pages: 1 2 3 4 Prev: GNOME - APPLET Crash Next: Mandriva 2005, Samsung 913T, Color balance |