Re: NFS and iptables during bootup

2014-08-10 Thread Pascal Hambourg
Tom H a écrit : > > Please bottom-post. Please don't. It's annoying to have to scroll down all the (needlessly) quoted text to read your reply. Top-posting is bad, but bottom-posting without trimming a long quoted text is worse. Consider interleaved/inline posting with proper trimming instead. <

Re: NFS and iptables during bootup

2014-08-10 Thread Tom H
On Sat, Aug 9, 2014 at 3:40 PM, Martin T wrote: > On Sat, Aug 9, 2014 at 6:33 AM, Tom H wrote: >> On Fri, Aug 8, 2014 at 11:47 AM, Martin T wrote: >>> >>> I moved the script from /etc/init.d to /etc/network directory and >>> changed the shebang line from /bin/bash to /bin/sh. /bin/sh on my >>> s

Re: NFS and iptables during bootup

2014-08-09 Thread Martin T
Yes, I erroneously used "lo0" instead of "lo" in iptables rules. I use FreeBSD on daily basis :) However, once I allowed traffic to loopback interface and started NFS("/etc/init.d/nfs-common start"), I saw some traffic on loopback interface: 48 560 ACCEPT all -- lo * 0.0.

Re: NFS and iptables during bootup

2014-08-08 Thread Tom H
On Fri, Aug 8, 2014 at 11:47 AM, Martin T wrote: > > I moved the script from /etc/init.d to /etc/network directory and > changed the shebang line from /bin/bash to /bin/sh. /bin/sh on my > system points to /bin/dash. Thanks for those tips! > > Content of firewall rule-files can be seen here: > > #

Re: NFS and iptables during bootup

2014-08-08 Thread Rob Owens
- Original Message - > From: "Martin T" > > Hi, > > I made a very simple bash script which loads the iptables > configuration from /etc/firewall.conf and /etc/firewall6.conf files: > > # cat /etc/init.d/firewall > #!/bin/bash > > iptables-restore < /etc/firewall.conf > ip6tables-restor

Re: NFS and iptables during bootup

2014-08-08 Thread Martin T
Reco, I moved the script from /etc/init.d to /etc/network directory and changed the shebang line from /bin/bash to /bin/sh. /bin/sh on my system points to /bin/dash. Thanks for those tips! Content of firewall rule-files can be seen here: # cat /etc/firewall.conf /etc/firewall6.conf # Generated b

Re: NFS and iptables during bootup

2014-08-04 Thread Tom H
On Mon, Aug 4, 2014 at 10:52 AM, Martin T wrote: > > I made a very simple bash script which loads the iptables > configuration from /etc/firewall.conf and /etc/firewall6.conf files: > > # cat /etc/init.d/firewall > #!/bin/bash > > iptables-restore < /etc/firewall.conf > ip6tables-restore < /etc/fi

Re: NFS and iptables during bootup

2014-08-04 Thread Reco
Hi. On Mon, Aug 04, 2014 at 05:52:43PM +0300, Martin T wrote: > Hi, > > I made a very simple bash script which loads the iptables > configuration from /etc/firewall.conf and /etc/firewall6.conf files: > > # cat /etc/init.d/firewall > #!/bin/bash > > iptables-restore < /etc/firewall.conf > ip6t

NFS and iptables during bootup

2014-08-04 Thread Martin T
Hi, I made a very simple bash script which loads the iptables configuration from /etc/firewall.conf and /etc/firewall6.conf files: # cat /etc/init.d/firewall #!/bin/bash iptables-restore < /etc/firewall.conf ip6tables-restore < /etc/firewall6.conf # Script is stored in /etc/init.d/ directory, b

Re: nfs and iptables

2008-05-19 Thread Alex Samad
On Mon, May 19, 2008 at 10:17:43PM +1000, Daniel Dalton wrote: > On Mon, 19 May 2008, Alex Samad wrote: > >> >> I mentioned this in my previous email http://wiki.debian.org/SecuringNFS >> have you read it. It goes through all the steps and it works > > You did, sorry missed that one. > Yes I read i

Re: nfs and iptables

2008-05-19 Thread Daniel Dalton
On Mon, 19 May 2008, Alex Samad wrote: I mentioned this in my previous email http://wiki.debian.org/SecuringNFS have you read it. It goes through all the steps and it works You did, sorry missed that one. Yes I read it and it does indeed work. Thanks! Is now sorted. Just a quick iptables qu

Re: nfs and iptables

2008-05-19 Thread Alex Samad
On Mon, May 19, 2008 at 08:35:28PM +1000, Daniel Dalton wrote: > On Sun, 18 May 2008, Owen Townend wrote: > [snip] > # a fixed port here using the --port option. For more information, # see > rpc.mountd(8) or http://wiki.debian.org/?SecuringNFS I mentioned this in my previous email http://wiki.d

Re: nfs and iptables

2008-05-19 Thread Daniel Dalton
On Sun, 18 May 2008, Owen Townend wrote: On 18/05/2008, Daniel Dalton <[EMAIL PROTECTED]> wrote: Hi, How can I allow nfs through my iptables firewall? What ports does it use? Are they static ports? And if not how can I make them static? Thanks for any help. Cheers, -- Daniel Dalton

Re: nfs and iptables

2008-05-18 Thread Alex Samad
On Sun, May 18, 2008 at 05:26:05PM +1000, Owen Townend wrote: > On 18/05/2008, Daniel Dalton <[EMAIL PROTECTED]> wrote: > > Hi, > > > > How can I allow nfs through my iptables firewall? > > What ports does it use? > > Are they static ports? And if not how can I make them static? > > > > Thanks

Re: nfs and iptables

2008-05-18 Thread Owen Townend
On 18/05/2008, Daniel Dalton <[EMAIL PROTECTED]> wrote: > Hi, > > How can I allow nfs through my iptables firewall? > What ports does it use? > Are they static ports? And if not how can I make them static? > > Thanks for any help. > > Cheers, > > -- > Daniel Dalton Hey, `rpcinfo -p` will

nfs and iptables

2008-05-17 Thread Daniel Dalton
Hi, How can I allow nfs through my iptables firewall? What ports does it use? Are they static ports? And if not how can I make them static? Thanks for any help. Cheers, -- Daniel Dalton http://members.iinet.net.au/~ddalton/ <[EMAIL PROTECTED]> -- To UNSUBSCRIBE, email to [EMAIL PROTECTED]