From owner-freebsd-questions Mon Feb 25 17: 2:49 2002 Delivered-To: freebsd-questions@freebsd.org Received: from salmon.maths.tcd.ie (salmon.maths.tcd.ie [134.226.81.11]) by hub.freebsd.org (Postfix) with SMTP id 9F0C137B404 for ; Mon, 25 Feb 2002 17:02:44 -0800 (PST) Received: from walton.maths.tcd.ie by salmon.maths.tcd.ie with SMTP id ; 26 Feb 2002 01:02:43 +0000 (GMT) To: Shawn O'Connor Cc: freebsd-questions@freebsd.org Subject: Re: NFS replies with different IP address In-Reply-To: Your message of "Mon, 25 Feb 2002 14:36:34 PST." <20020225142444.P53355-100000@mail.e-perception.com> Date: Tue, 26 Feb 2002 01:02:43 +0000 From: Ian Dowse Message-ID: <200202260102.aa41839@salmon.maths.tcd.ie> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG In message <20020225142444.P53355-100000@mail.e-perception.com>, Shawn O'Connor writes: >On the FreeBSD box I then try to mount a NFS partition from the server address >10.1.1.9. This mount fails because the solaris box responds with the 10.1.1.1 >0 >ip address. >How do I get around this? Why not just use the IP address that does work! Accepting replies from any source address whatsoever (only the XID is checked) is not a very secure behaviour; I don't think this has been ever allowed in FreeBSD. As the RFC you quoted suggests, this is more a problem with Solaris than FreeBSD. If you use FreeBSD as a multi-homed NFS server there is a "-h" option to nfsd that allows you to bind to each IP address to ensure that replies come from the right one. Ian To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message