03-17-2009
It is possible. The key is to lock down the port numbers for mountd, lockd and statd.
Lots of information available on the Internet. Do a web search for "NFS iptables"
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
Does anyone know how to assign rpc ports to NFS or NIS processes on Solaris please ?
Thanks,
Michael Chnader (0 Replies)
Discussion started by: mchnaider
0 Replies
2. Shell Programming and Scripting
Hello All,
Can somebody help me with this script. I have an output file with a list of servers ips and ports. I need to be able to run this script to list all the server ips in the outfile and find out if the port is open or not.
#!/bin/sh
IFS=#;for i in $(cat portTest);
do
# check... (2 Replies)
Discussion started by: liketheshell
2 Replies
3. Web Development
I'm exploring the possibility of load balancing 2 web servers and have both access an NFS share on an NFS server. I'm wondering which types of data would need to reside on the webservers and the NFS server. Would the entire web directory (HTML, CSS, images, documents) all reside in the NFS server... (1 Reply)
Discussion started by: gaspol
1 Replies
4. AIX
I ‘m beginner on unix
I want to move an unix aix post 5.2 on distant site for use catia V4 with a foundation of data accommodated by a serveur windows 2003 and an environment accommodated on the serveur aix.
The computer was linked up by IP (122.0.0.8) with waiter 2003 (via NFS) and the waiter... (8 Replies)
Discussion started by: astiaous
8 Replies
5. Ubuntu
Hi
I am new to expect. Please if any one can help on my issue its really appreciable. here is my issue:
I want expect script for random passwords and random commands generation.
please can anyone help me?
Many Thanks in advance (0 Replies)
Discussion started by: vanid
0 Replies
6. Shell Programming and Scripting
Hi
I'd like to check that a bunch of firewall rules have been applied and, therefore, want to write a script that basically does the following:
telnet serverA port1
telnet serverA port2
telnet serverB port1
telnet serverB port2
I would just compile the list in excel and run it as a... (2 Replies)
Discussion started by: jibberish
2 Replies
7. Shell Programming and Scripting
Need to use dd to generate a large file from a sample file of random data. This is because I don't have /dev/urandom.
I create a named pipe then:
dd if=mynamed.fifo do=myfile.fifo bs=1024 count=1024
but when I cat a file to the fifo that's 1024 random bytes:
cat randomfile.txt >... (7 Replies)
Discussion started by: Devyn
7 Replies
8. Red Hat
All,
I re-wrote our scripts to speed-up the compiling time, original time is about 1hrs. now dispatch the sub task to different servers through SSH. Now my question is that:
If dispatch these tasks into the current server, there is no errors during compiling process.
If dispatch these tasks... (0 Replies)
Discussion started by: fduan001
0 Replies
9. Solaris
Hello friends,
please advice me how to change
nfs lockd_tcpport,lockd_udpport,mountd_port,rquotad_port.statd_port,statd_outgoing_port default ports
in to different ports.
is it in /etc/default/nfs ?
thanks!:b: (1 Reply)
Discussion started by: darakas
1 Replies
10. Red Hat
RHEL 7.1 client using autofs to mount a NIS map of home directories being exported by a Solaris 10x86 nfs server.
The owner and group are correct on the NFS server, but on the RHEL client, the owner and group end up being nobody nobody. The USERS and GROUPS are NIS maps as well. They are... (2 Replies)
Discussion started by: mrmurdock
2 Replies
LEARN ABOUT SUSE
nfs_selinux
nfs_selinux(8) NFS SELinux Policy documentation nfs_selinux(8)
NAME
nfs_selinux - Security Enhanced Linux Policy for NFS
DESCRIPTION
Security Enhanced Linux secures the NFS server via flexible mandatory access control.
BOOLEANS
SELinux policy is customizable based on the least level of access required. SELinux can be configured to not allow NFS to share files. If
you want to share NFS partitions, and only allow read-only access to those NFS partitions, turn the nfs_export_all_ro boolean on:
setsebool -P nfs_export_all_ro 1
If you want to share files read/write you must set the nfs_export_all_rw boolean.
setsebool -P nfs_export_all_rw 1
These booleans are not required when files to be shared are labeled with the public_content_t or public_content_rw_t types. NFS can share
files labeled with the public_content_t or public_content_rw_t types even if the nfs_export_all_ro and nfs_export_all_rw booleans are off.
If you want to use a remote NFS server for the home directories on this machine, you must set the use_nfs_home_dirs boolean:
setsebool -P use_nfs_home_dirs 1
system-config-selinux is a GUI tool available to customize SELinux policy settings.
AUTHOR
This manual page was written by Dan Walsh <dwalsh@redhat.com>.
SEE ALSO
selinux(8), chcon(1), setsebool(8)
dwalsh@redhat.com 9 Feb 2009 nfs_selinux(8)