Hello,
I configure my own nfs server with kerberos5 under linux 3.16.3/Slackware 14. After minutes of attempting to mount, "mount" command failed and stoped. Could sone tell me what is wrong because mounting without gss/krb5 works well.
Command :
mount -t nfs -o vers=4,sec=krb5 server.darkstar.net:/ /mnt/nfs -vvv
mount command shows many times lines bellow then stops:
Code:
mount.nfs: text-based options: 'vers=4,sec=krb5,addr=10.0.0.1'
mount.nfs: text-based options: 'vers=4,sec=krb5,addr=10.0.0.1'
. .
On the server side there are two things I detected abnormal:
1- Tcpdump shows an error coming from the server:
Code:
11:51:58.513697 IP server.darkstar.net.nfs > client.darkstar.net.3131002044: reply ERR 20: Auth Bogus Credentials
2- I tried to debug rpc.mountd by command "rpc.mountd -F -d all" and it shows at start:
Code:
rpc.mountd: Failed to unregister program 100005, version 1
rpc.mountd: Failed to unregister program 100005, version 2
rpc.mountd: Failed to unregister program 100005, version 3
rpc.mountd: Version 1.2.8 starting
After launching the mount command on the client, the debug on the server shows:
Code:
rpc.mountd: auth_unix_ip: inbuf 'nfsd 10.0.0.2'
rpc.mountd: auth_unix_ip: client (nil) 'DEFAULT'
On the client before mounting, I get the ticket nfs/client.darkstar.net as key to access the server.
On the server "pmap_dump" (rpcinfo is no longer provided by slackware) shows
Code:
100000 2 tcp 111 portmapper
100000 2 udp 111 portmapper
100024 1 udp 32765 status
100024 1 tcp 32765 status
100003 4 tcp 2049 nfs
100003 4 udp 2049 nfs
100005 1 udp 32767 mountd
100005 1 tcp 32767 mountd
100005 2 udp 32767 mountd
100005 2 tcp 32767 mountd
100005 3 udp 32767 mountd
100005 3 tcp 32767 mountd
Thank you