Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 15 Jun 2007 16:25:16 +0800
From:      Eugene Grosbein <eugen@grosbein.pp.ru>
To:        Jeremie Le Hen <jeremie@le-hen.org>
Cc:        freebsd-net@freebsd.org
Subject:   Re: Firewalling NFS
Message-ID:  <20070615082516.GA96373@svzserv.kemerovo.su>
In-Reply-To: <20070615072734.GC8093@obiwan.tataz.chchile.org>
References:  <20070615072734.GC8093@obiwan.tataz.chchile.org>

next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Jun 15, 2007 at 09:27:35AM +0200, Jeremie Le Hen wrote:
> Hi,
> 
> It appears nearly impossible to firewall a NFS server on FreeBSD.
> The reason is that NFS related daemons use RPC, which means they
> don't bind to a deterministic port.  Only mountd(8) can be requested to
> bind to a specific port or fail with the -p command-line switch.
> Is there any reason other than "no one has needed this yet" why this
> option is not available for nfsd(8), rpc.lockd(8) and rpc.statd(8)?

Why do you need such option for nfsd(8) in first place?

Eugene Grosbein



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070615082516.GA96373>