This post is more than 5 years old
1 Message
0
4979
NFS export options
I need to open up an NFS export to allow client access using ports above 1024, normally this is achieved using the 'insecure' export option however I can't see any way to specify the option (or any options) in OneFS (6.5.5.23).
Does anyone know how to add export options? more specifically the insecure option?
Peter_Sero
1.2K Posts
0
August 22nd, 2013 23:00
Not sure wether the /etc/defaults/rc.conf is relevant,
as other settings are obviously ignored, like:
nfs_server_enable="NO" # This host is an NFS server (or NO).
mountd_enable="NO" # Run mountd (or NO).
(FreeBSD stuff, not used by OneFS)
The /etc/mcp/sys/services/nfs stuff is the key,
doublecheck sysctl vfs.nfsrv.nfs_privport
afterwards (should be 1).
I don't think you need to reboot the cluster, just
isi_for_array killall -v mountd
should do.
-- Peter
mattashton1
93 Posts
0
August 22nd, 2013 19:00
Here is what you would need to change in order to allow NFS connections over unprivileged ports. Please note that this is not a supported configuration change and that I can only provide you with the information on how to do this.
From any node copy the rc.conf file to /ifs:
# cp /etc/defaults/rc.conf /etc/defaults/rc.conf.bak
# cp /etc/defaults/rc.conf /ifs
Then edit the file to change the following line:
weak_mountd_authentication="NO" # Allow non-root mount requests to be served.
to:
weak_mountd_authentication="YES" # Allow non-root mount requests to be served.
Copy the /etc/mcp/sys/services/nfs to /ifs
# cp /etc/mcp/sys/services/nfs /etc/mcp/sys/services/nfs.bak
# cp /etc/mcp/sys/services/nfs /ifs
Edit the nfs file and find the line:
/usr/sbin/mountd -r
Change this to include the -n option as below:
/usr/sbin/mountd -r -n
Once the changes have been made to the files on /ifs, push them out to all nodes of the cluster:
# isi_for_array "cp /ifs/nfs /etc/mcp/sys/services/nfs"
# isi_for_array "cp /ifs/rc.conf /etc/defaults/rc.conf"
Once all of this is done, reboot the cluster.
Cheers,
Matt
markfoster1
22 Posts
2
December 15th, 2013 15:00
There is already a KB article for this issue
https://support.emc.com/kb/16591
Please use that approach and if any problems leave feedback for the KB team.
Thanks.
JennyA
1 Message
0
August 12th, 2015 17:00
What do I need to change inorder to change it to non-priv-port?
AdamFox
254 Posts
0
August 17th, 2015 14:00
The article listed above should cover what you need.
sommers1
1 Message
0
March 30th, 2016 08:00
Do you have another link to that article? That one no longer works