Site Navigation

Date:      Fri, 16 Aug 2019 13:42:22 +0300
From:      Slawa Olhovchenkov <slw@zxy.spb.ru>
To:        Alexander Lunev <lan@zato.ru>
Cc:        freebsd-net@freebsd.org
Subject:   Re: NFSv4 without Kerberos
Message-ID:  <20190816104222.GN47119@zxy.spb.ru>
In-Reply-To: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru>
References:  <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

On Fri, Aug 16, 2019 at 01:05:27PM +0300, Alexander Lunev via freebsd-net wrote:

> Hello everyone!
> 
> I'm trying to build diskless system with some mounts done by NFSv4, and 
> i can't figure out how to mount share without kerberos, with -sec=sys 
> flavour. Doing all by handbook, on server i have:
> 
> 
> server's /etc/rc.conf (part of it):
> ifconfig_em1="inet 10.101.0.1/24"
> nfs_server_enable="YES"
> nfsuserd_enable="YES"
> nfsv4_server_enable="YES"
> 
> server's /etc/exports
> 
> /mnt/diskless10 -network 10.101.0 -mask 255.255.255.0
> V4: /mnt/v4share -sec=sys -network 10.101.0 -mask 255.255.255.0
> 
> 
> client's /etc/rc.conf:
> 
> hostname="netboot_v4.local"
> nfsuserd_enable="YES"
> nfs_client_enable="YES"
> hostid_enable="NO"
> 
> 
> Client is diskless, it mounts /mnt/diskless10 as read-only NFS root (rw 
> mount don't change anything), system is booted just fine. When on client 
> i'm trying to mount NFSv4 share from server:
> 
> root@netboot_v4: ~# mount_nfs -o nfsvers=4 10.101.0.1:/mnt/v4share /var/mnt
> [tcp] 10.101.0.1:/mnt/v4share: Permission denied

try `mount_nfs -o nfsvers=4 10.101.0.1:/ /var/mnt`

> In server's /var/log/messages:
> 
> Aug 14 21:06:58 virt mountd[7392]: mount request denied from 10.101.0.20 
> for /mnt/v4share
> 
> There is no other messages. Tried  to search web - there's stories about 
> successful mount in kerberized environment (and me myself got this done 
> at another place, mounted share from FreeBSD on Ubuntu by NFSv4 just 
> fine), but i don't want kerberos complexity in this system.
> 
> How can I debug mount process on client and on server?
> 
> -- 
> Best regards,
> Alexander Lunev
> _______________________________________________
> freebsd-net@freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20190816104222.GN47119>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact