From owner-freebsd-questions@FreeBSD.ORG Tue Aug 21 20:02:29 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2440416A420 for ; Tue, 21 Aug 2007 20:02:29 +0000 (UTC) (envelope-from freebsd@dfwlp.com) Received: from pollux.dfwlp.com (rrcs-64-183-212-244.sw.biz.rr.com [64.183.212.244]) by mx1.freebsd.org (Postfix) with ESMTP id CB0CD13C457 for ; Tue, 21 Aug 2007 20:02:28 +0000 (UTC) (envelope-from freebsd@dfwlp.com) Received: from [192.168.125.134] ([192.168.125.134]) (authenticated bits=0) by pollux.dfwlp.com (8.13.8/8.13.8) with ESMTP id l7LK2Qg6043986 for ; Tue, 21 Aug 2007 15:02:26 -0500 (CDT) (envelope-from freebsd@dfwlp.com) From: Jonathan Horne To: freebsd-questions@freebsd.org Date: Tue, 21 Aug 2007 15:02:25 -0500 User-Agent: KMail/1.9.7 References: <41081.135.245.152.33.1187720214.squirrel@www.wingfoot.org> <200708211425.02054.freebsd@dfwlp.com> <23979.135.245.152.33.1187725469.squirrel@www.wingfoot.org> In-Reply-To: <23979.135.245.152.33.1187725469.squirrel@www.wingfoot.org> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200708211502.26108.freebsd@dfwlp.com> X-Spam-Status: No, score=-4.4 required=3.6 tests=ALL_TRUSTED,BAYES_00 autolearn=ham version=3.2.1 X-Spam-Checker-Version: SpamAssassin 3.2.1 (2007-05-02) on pollux.dfwlp.com Subject: Re: NFS /etc/exports question.. X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 21 Aug 2007 20:02:29 -0000 On Tuesday 21 August 2007 14:44:29 Glenn Sieb wrote: > Hi Jonathan! > > Jonathan Horne wrote: > > On Tuesday 21 August 2007 13:16:54 Glenn Sieb wrote: > >> /u2 -alldirs... > > > > first up, that line negates the need for: > > > > /u2/opt/portage -alldirs.... > > > > alldirs, is all dirs! anything underneath is then redundant. > > Understood. Fixed that. > > >> /u2 -alldirs -maproot=root important1.domain.com important2.domain.com > > > > probably requires correctly configured DNS or proper entries in the hosts > > files. while you are working this problem out, i would eliminate that > > > > line, as it might be conflicting with: > >>/u2 -alldirs -network 127.0.0.0 -mask 255.255.255.0 > >>/u2 -alldirs -network 10.0.5.0 -mask 255.255.255.0 > > Yes, because this was the question I had originally.. :) How can I make > sure that I get -maproot=root on those two named boxes, which live inside > the 127.0.0.0/255 network, while still allowing the rest of the boxes > present in both other subnets to access the shared *without* > -maproot=root? The errors I posted were specifically complaining about the > 127.0.0.0 and 10.0.5.0 network lines (note, for security I am not posting > the real network ranges). > > The two boxes in question, do have working DNS, and are boxes we use as > our NIS masters, so I need to be able to create home directories on the > fileserver, where the home directories live, hence needing maproot. > > The other boxes in the 127.0.0.0/255 range are other servers in my > cluster, which need to mount directories from the fileserver--and in my > case, a lot of users have sudo capability for testing/development > purposes, so I don't want them having -maproot=root capability on those > other servers. > > 10.0.5.0 is a range of IPs where my users mount their home directories and > shared tools directories on their desktop boxes. > > Does this clear up my question? > > Thanks in advance! > Best, > --Glenn then, probably eliminate just: >/u2/opt/portage -maproot=root -alldirs -network 127.0.0.0 -mask 255.255.255.0 >/u2/opt/portage -maproot=root -alldirs -network 10.0.5.0 -mask 255.255.255.0 and see what happens. -- Jonathan Horne http://dfwlpiki.dfwlp.org freebsd@dfwlp.com