Firewalling NFS
Eugene Grosbein
eugen at grosbein.pp.ru
Fri Jun 15 08:40:15 UTC 2007
On Fri, Jun 15, 2007 at 09:27:35AM +0200, Jeremie Le Hen wrote:
> Hi,
>
> It appears nearly impossible to firewall a NFS server on FreeBSD.
> The reason is that NFS related daemons use RPC, which means they
> don't bind to a deterministic port. Only mountd(8) can be requested to
> bind to a specific port or fail with the -p command-line switch.
> Is there any reason other than "no one has needed this yet" why this
> option is not available for nfsd(8), rpc.lockd(8) and rpc.statd(8)?
Why do you need such option for nfsd(8) in first place?
Eugene Grosbein
More information about the freebsd-net
mailing list