NFSv4 without Kerberos
Alexander Lunev
lan at zato.ru
Fri Aug 16 10:05:44 UTC 2019
Hello everyone!
I'm trying to build diskless system with some mounts done by NFSv4, and
i can't figure out how to mount share without kerberos, with -sec=sys
flavour. Doing all by handbook, on server i have:
server's /etc/rc.conf (part of it):
ifconfig_em1="inet 10.101.0.1/24"
nfs_server_enable="YES"
nfsuserd_enable="YES"
nfsv4_server_enable="YES"
server's /etc/exports
/mnt/diskless10 -network 10.101.0 -mask 255.255.255.0
V4: /mnt/v4share -sec=sys -network 10.101.0 -mask 255.255.255.0
client's /etc/rc.conf:
hostname="netboot_v4.local"
nfsuserd_enable="YES"
nfs_client_enable="YES"
hostid_enable="NO"
Client is diskless, it mounts /mnt/diskless10 as read-only NFS root (rw
mount don't change anything), system is booted just fine. When on client
i'm trying to mount NFSv4 share from server:
root at netboot_v4: ~# mount_nfs -o nfsvers=4 10.101.0.1:/mnt/v4share /var/mnt
[tcp] 10.101.0.1:/mnt/v4share: Permission denied
In server's /var/log/messages:
Aug 14 21:06:58 virt mountd[7392]: mount request denied from 10.101.0.20
for /mnt/v4share
There is no other messages. Tried to search web - there's stories about
successful mount in kerberized environment (and me myself got this done
at another place, mounted share from FreeBSD on Ubuntu by NFSv4 just
fine), but i don't want kerberos complexity in this system.
How can I debug mount process on client and on server?
--
Best regards,
Alexander Lunev
More information about the freebsd-net
mailing list