From owner-freebsd-fs@FreeBSD.ORG Fri Jul 6 11:27:37 2012 Return-Path: Delivered-To: freebsd-fs@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CBDF11065676 for ; Fri, 6 Jul 2012 11:27:37 +0000 (UTC) (envelope-from rmacklem@uoguelph.ca) Received: from esa-scalar.mail.uoguelph.ca (esa-scalar.mail.uoguelph.ca [66.199.40.18]) by mx1.freebsd.org (Postfix) with ESMTP id 6A1768FC15 for ; Fri, 6 Jul 2012 11:27:37 +0000 (UTC) Received: from zcs3.mail.uoguelph.ca (new.mail.uoguelph.ca [131.104.93.37]) by esa-scalar.mail.uoguelph.ca (8.14.1/8.14.1) with ESMTP id q66A4MBR025780; Fri, 6 Jul 2012 06:04:22 -0400 Received: from zcs3.mail.uoguelph.ca (localhost.localdomain [127.0.0.1]) by zcs3.mail.uoguelph.ca (Postfix) with ESMTP id 241C1B3FE3; Fri, 6 Jul 2012 06:04:22 -0400 (EDT) Date: Fri, 6 Jul 2012 06:04:22 -0400 (EDT) From: Rick Macklem To: Tim Gustafson Message-ID: <1060732353.47610.1341569062083.JavaMail.root@erie.cs.uoguelph.ca> In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-Originating-IP: [172.17.91.201] X-Mailer: Zimbra 6.0.10_GA_2692 (ZimbraWebClient - FF3.0 (Win)/6.0.10_GA_2692) Cc: freebsd-fs@freebsd.org Subject: Re: FreeBSD 9.0 + ZFS + NFSv4 + Kerberos X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Jul 2012 11:27:37 -0000 Tim Gustafson wrote: > Hi, > > I'd like to set up a FreeBSD 9.0 box as a ZFS+NFSv4+Kerberos server. > So far, I can mount a file system from a client machine, but whenever > I try to do anything on that file system, I get errors that look like > this: > > tjg@junta: cd /mnt > nfsv4 err=10016 > nfsv4 err=10016 > /mnt: Input/output error. > Read this: http://code.google.com/p/macnfsv4/wiki/FreeBSD8KerberizedNFSSetup (Still basically applies to FreeBSD9.) > I can kinit on both boxes, and have done so on my client box; klist > shows a valid ticket on the client box. I can "mount /mnt" on the > client without any problems. > The client must have the appropriate TGT at time of mount. Unless you apply the patch mentioned in the above wiki and have the correct /etc/keytab entry in the client,the mount can only be done by a non-root user after they have done a kinit. (vfs.usermount=1) > Here are the relevant configuration files: > > server:/etc/rc.conf: > > nfs_server_enable="yes" > nfsv4_server_enable="yes" > mountd_enable="yes" > mountd_flags="-r" > rpcbind_enable="yes" > rpc_lockd_enable="yes" > rpc_statd_enable="yes" > gssd_enable="yes" > > server:/etc/exports: > > V4: /tank/export -sec=krb5p > > client:/etc/rc.conf: > > nfs_client_enable="yes" > rpc_lockd_enable="yes" > rpc_statd_enable="yes" > rpcbind_enable="yes" > devfs_enable="yes" > gssd_enable="yes" > > client:/etc/fstab: > > server:/ /mnt nfs rw,noauto,nfsv4,sec=krb5p 0 0 > Won't work unless the client has the above mentioned patch and the correct /etc/keytab entry. Good luck with it, rick > -- > > Tim Gustafson > tjg@soe.ucsc.edu > 831-459-5354 > Baskin Engineering, Room 313A > _______________________________________________ > freebsd-fs@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-fs > To unsubscribe, send any mail to "freebsd-fs-unsubscribe@freebsd.org"