From owner-freebsd-questions@FreeBSD.ORG Sat Apr 7 03:57:05 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 7BCF516A401 for ; Sat, 7 Apr 2007 03:57:05 +0000 (UTC) (envelope-from benfell@earth.parts-unknown.org) Received: from earth.parts-unknown.org (earth.parts-unknown.org [66.93.170.243]) by mx1.freebsd.org (Postfix) with SMTP id 5602E13C4AE for ; Sat, 7 Apr 2007 03:57:05 +0000 (UTC) (envelope-from benfell@earth.parts-unknown.org) Received: (qmail 48434 invoked by uid 501); 7 Apr 2007 03:57:04 -0000 DomainKey-Status: no signature Date: Fri, 6 Apr 2007 20:57:04 -0700 From: David Benfell To: Giorgos Keramidas Message-ID: <20070407035704.GB9295@parts-unknown.org> Mail-Followup-To: Giorgos Keramidas , freebsd-questions@freebsd.org References: <20070406183630.GA56672@parts-unknown.org> <20070406190849.GA1465@kobe.laptop> <20070406222614.GA63630@parts-unknown.org> <20070406225640.GA1562@kobe.laptop> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="z6Eq5LdranGa6ru8" Content-Disposition: inline In-Reply-To: <20070406225640.GA1562@kobe.laptop> X-gnupg-public-key: http://www.parts-unknown.org/gnupg/export-0DD1D1E3 X-stardate: [-29]7400.80 X-moon: The Moon is Waning Gibbous (84% of Full) User-Agent: Mutt/1.5.14 (2007-02-12) Cc: freebsd-questions@freebsd.org Subject: Re: What am I not understanding about /etc/exports? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 07 Apr 2007 03:57:05 -0000 --z6Eq5LdranGa6ru8 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, 07 Apr 2007 01:56:41 +0300, Giorgos Keramidas wrote: > On 2007-04-06 15:26, David Benfell wrote: > >On Fri, 06 Apr 2007 22:08:50 +0300, Giorgos Keramidas wrote: > >>On 2007-04-06 11:36, David Benfell wrote: > >>> Hello all, > >>> My /etc/exports contains: > >>> > >>> / -alldirs -maproot=3Droot 127.0.0.1 > >>> #/usr/src -alldirs -maproot=3Droot 127.0.0.1 192.168.19.1 > >>> /usr -alldirs -maproot=3Droot 127.0.0.1 192.168.19.1 > >>> /public -alldirs -maproot=3Droot 127.0.0.1 192.168.18.45 192.168.18.4= 6 192.168.19.1 > >>> /home -alldirs -maproot=3Droot 127.0.0.1 192.168.18.45 192.168.18.46 = 192.168.19.1 > >>> /cdrom -alldirs,quiet,ro 127.0.0.1 -network 192.168 -mask 255.255.0.0 > >>> > >>> Yet: > >>> mountd[735]: mount request denied from 192.168.19.1 for /usr/ports/di= stfiles > >> > >> Do you have /etc/hosts.allow and /etc/hosts.deny files? > > > > I don't actually implement these, so they should essentially be from > > the default install. I do not have /etc/hosts.deny on either the > > server or the client. The first attachment is /etc/hosts.allow from > > the server. >=20 > The server's `hosts.allow' file needs a bit of configuration: >=20 > > # hosts.allow access control file for "tcp wrapped" applications. > > # $FreeBSD: src/etc/hosts.allow,v 1.19.8.1 2006/02/19 14:57:01 ume Exp $ > [...] > > # Allow anything from localhost. Note that an IP address (not a host > > # name) *MUST* be specified for rpcbind(8). > > ALL : localhost 127.0.0.1 : allow >=20 > The 127.0.0.1 address above allows rpcbind (and other RPC-based > services) to work for localhost -> localhost connections. >=20 > > # Rpcbind is used for all RPC services; protect your NFS! > > # (IP addresses rather than hostnames *MUST* be used here) > > rpcbind : 192.0.2.32/255.255.255.224 : allow > > rpcbind : 192.0.2.96/255.255.255.224 : allow > > rpcbind : ALL : deny >=20 > These rules allow rpcbind to work for hosts in the IP ranges matching > the first two lines. >=20 > To allow NFS mounts to work correctly from hosts in the IP ranges > 192.168.18.XXX, 192.168.19.XXX listed in your /etc/exports file, you > will have to extend the list of addressed permitted for 'rpcbind'. >=20 I'd definitely missed that. Unfortunately, correcting it (both on client and server) seems to have made no difference. I still have the same symptoms, as if I need to send a HUP signal someplace (but if this is true, then where?). Thanks! --=20 David Benfell, LCP benfell@parts-unknown.org --- Resume available at http://www.parts-unknown.org/ NOTE: I sign all messages with GnuPG (0DD1D1E3). --z6Eq5LdranGa6ru8 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) iD8DBQFGFxaQUd+dMw3R0eMRAq5yAKCANQGBaTYXAMb3wOgCQaNOrL1W9QCglJjC xOh2qI89vSznWE2H1lXBofI= =BGhx -----END PGP SIGNATURE----- --z6Eq5LdranGa6ru8--