NFSv4 without Kerberos
Slawa Olhovchenkov
slw at zxy.spb.ru
Fri Aug 16 10:42:25 UTC 2019
On Fri, Aug 16, 2019 at 01:05:27PM +0300, Alexander Lunev via freebsd-net wrote:
> Hello everyone!
>
> I'm trying to build diskless system with some mounts done by NFSv4, and
> i can't figure out how to mount share without kerberos, with -sec=sys
> flavour. Doing all by handbook, on server i have:
>
>
> server's /etc/rc.conf (part of it):
> ifconfig_em1="inet 10.101.0.1/24"
> nfs_server_enable="YES"
> nfsuserd_enable="YES"
> nfsv4_server_enable="YES"
>
> server's /etc/exports
>
> /mnt/diskless10 -network 10.101.0 -mask 255.255.255.0
> V4: /mnt/v4share -sec=sys -network 10.101.0 -mask 255.255.255.0
>
>
> client's /etc/rc.conf:
>
> hostname="netboot_v4.local"
> nfsuserd_enable="YES"
> nfs_client_enable="YES"
> hostid_enable="NO"
>
>
> Client is diskless, it mounts /mnt/diskless10 as read-only NFS root (rw
> mount don't change anything), system is booted just fine. When on client
> i'm trying to mount NFSv4 share from server:
>
> root at netboot_v4: ~# mount_nfs -o nfsvers=4 10.101.0.1:/mnt/v4share /var/mnt
> [tcp] 10.101.0.1:/mnt/v4share: Permission denied
try `mount_nfs -o nfsvers=4 10.101.0.1:/ /var/mnt`
> In server's /var/log/messages:
>
> Aug 14 21:06:58 virt mountd[7392]: mount request denied from 10.101.0.20
> for /mnt/v4share
>
> There is no other messages. Tried to search web - there's stories about
> successful mount in kerberized environment (and me myself got this done
> at another place, mounted share from FreeBSD on Ubuntu by NFSv4 just
> fine), but i don't want kerberos complexity in this system.
>
> How can I debug mount process on client and on server?
>
> --
> Best regards,
> Alexander Lunev
> _______________________________________________
> freebsd-net at freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "freebsd-net-unsubscribe at freebsd.org"
More information about the freebsd-net
mailing list