I have a small LAN (let's say 192.168.48.0/24) with RedHat 7.3 boxes. I would like to get mount and autofs mounts working through the firewall. autofs is configured through /etc/auto.master, which specifies a file /etc/auto.my_domain that has the list of disks exported from other machines to be mounted on this one.
What port(s) do I need to open through the firewall? portmapper (111)? nfs (2049)? Others? (such as statd, mountd, lockd, rquotad?) The HOWTO describes starting the statd, mountd, lockd, and rquotad services on specified ports, instead of letting the portmapper give them the next available port. Do I *have* to start those services on specified ports on every mounting/exporting machine, or is there a slick (but secure) way to tell the firewall how to deal with the varying-ports issue? Thanks. In case it helps, here is the (slightly sanitized) ipchains list I'm running: Chain input (policy ACCEPT): target prot opt source destination ports ACCEPT udp ------ my.domain anywhere domain -> 1025:65535 ACCEPT tcp -y---- anywhere anywhere any -> http ACCEPT tcp -y---- anywhere anywhere any -> ftp ACCEPT tcp -y---- anywhere anywhere any -> telnet ACCEPT udp ------ anywhere anywhere bootps:bootpc ->bootps:bootpc ACCEPT udp ------ anywhere anywhere bootps:bootpc ->bootps:bootpc ACCEPT all ------ anywhere anywhere n/a REJECT tcp -y---- anywhere anywhere any -> 0:1023 REJECT tcp -y---- anywhere anywhere any -> nfs REJECT udp ------ anywhere anywhere any -> 0:1023 REJECT udp ------ anywhere anywhere any -> nfs REJECT tcp -y---- anywhere anywhere any -> x11:6009 REJECT tcp -y---- anywhere anywhere any -> xfs -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
