From owner-freebsd-net@FreeBSD.ORG Fri Mar 19 09:29:03 2010 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 811B0106566B for ; Fri, 19 Mar 2010 09:29:03 +0000 (UTC) (envelope-from mailinglists@martinlaabs.de) Received: from relay01.alfahosting-server.de (relay01.alfahosting-server.de [80.86.191.73]) by mx1.freebsd.org (Postfix) with ESMTP id 3CF198FC20 for ; Fri, 19 Mar 2010 09:29:03 +0000 (UTC) Received: by relay01.alfahosting-server.de (Postfix, from userid 1001) id D16D52006DC70; Fri, 19 Mar 2010 10:07:05 +0100 (CET) X-Spam-DCC: : X-Spam-Level: X-Spam-Status: No, score=0.1 required=7.0 tests=FORGED_RCVD_HELO autolearn=disabled version=3.1.7-deb3 Received: from alfa3018.alfahosting-server.de (alfa3018.alfahosting-server.de [82.197.146.36]) by relay01.alfahosting-server.de (Postfix) with ESMTP id 20F602006DBE5 for ; Fri, 19 Mar 2010 10:07:03 +0100 (CET) Received: from pc.martinlaabs.de (p5B0ED638.dip.t-dialin.net [91.14.214.56]) by alfa3018.alfahosting-server.de (Postfix) with ESMTP id F03D4515C79A for ; Fri, 19 Mar 2010 10:07:02 +0100 (CET) Message-ID: <4BA33EB6.80105@martinlaabs.de> Date: Fri, 19 Mar 2010 10:07:02 +0100 From: Martin Laabs User-Agent: Thunderbird 2.0.0.23 (X11/20091224) MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Status: No X-Virus-Checker-Version: clamassassin 1.2.4 with ClamAV 0.94.2/10596/Fri Mar 19 03:16:00 2010 Subject: nfsv4 client/server protocol prob err=10020 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Mar 2010 09:29:03 -0000 Hello, I currently try to set up a nfsv4 network at home. I have a server which acts as KDC and kerberos server (I know the security advices to not do that) and also as NFSv4 server. On the server I have the following lines in my rc.conf #NFS stuff rpcbind_enable="YES" nfsv4_server_enable="YES" nfsuserd_enable="YES" mountd_enable="YES" mountd_flags="-r" gssd_enable="YES" #kerberos kerberos5_server_enable="YES" kadmind5_server_enable="YES" on the client: nfsuserd_enable="YES" nfscbd_enable="YES" I also set vfs.usermount=1 to mount the nfs as regular user that has a kerberos principal. Beside the user principal I also created a nfs/pc.martinlaabs.de principal for the client and exported it to the client krb5.keytab. The exports at the server side contains: V4: /usr/home -sec=krb5p pc.martinlaabs.de As user on my client I run mount_nfs -o tcp,nfsv4,sec=krb5p server:/ mnt which returns only a warning that mount can not update mounttab which is OK. However - if I access the mnt directory I get the following error: bash:~$ ls mnt ls: mnt: Input/output error In the system message buffer I find the following message: nfsv4 client/server protocol prob err=10020 As far as I know error 10020 means NFS4ERR_NOFILEHANDLE. I sometimes also get the following message: nfscl: consider increasing kern.ipc.maxsockbuf But increasing does not affect the 10020 error. On the server I can not find any log entries. Can anyone interpret the error message and/or tell me what to do to get the nfs service working? Thank you, Martin Laabs PS: I use ipv6 for the nfs/kerberos stuff only.