Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
12-05-2010, 03:07 AM
|
#1
|
|
Member
Registered: Dec 2005
Distribution: Linux Mint 13 MATE
Posts: 120
Rep: 
|
nfs4 - mount.nfs4: access denied by server while mounting
Hi all,
i posted this on Ubuntu's forums, but didn't get any response, so thought i'd cross-post it here.
i'm trying to setup a nfs4 server and client.
i followed the instructions in
https://help.ubuntu.com/community/SettingUpNFSHowTo (nfsv4 quick start section) and
https://help.ubuntu.com/community/NFSv4Howto
The SERVER is on 192.168.89.1 running Xubuntu 10.04,
and the CLIENT is on 192.168.89.128 running Ubuntu 10.10.
Firewall is disabled on both the server and the client for testing purposes.
/etc/default/nfs-kernel-server on the SERVER:
Code:
# Number of servers to start up
RPCNFSDCOUNT=8
# Runtime priority of server (see nice(1))
RPCNFSDPRIORITY=0
# Options for rpc.mountd.
# If you have a port-based firewall, you might want to set up
# a fixed port here using the --port option. For more information,
# see rpc.mountd(8) or http://wiki.debian.org/?SecuringNFS
RPCMOUNTDOPTS=--manage-gids
# Do you want to start the svcgssd daemon? It is only required for Kerberos
# exports. Valid alternatives are "yes" and "no"; the default is "no".
NEED_SVCGSSD=no
# Options for rpc.svcgssd.
RPCSVCGSSDOPTS=
/etc/default/nfs-common on the SERVER:
Code:
# If you do not set values for the NEED_ options, they will be attempted
# autodetected; this should be sufficient for most people. Valid alternatives
# for the NEED_ options are "yes" and "no".
# Do you want to start the statd daemon? It is not needed for NFSv4.
NEED_STATD=
# Options for rpc.statd.
# Should rpc.statd listen on a specific port? This is especially useful
# when you have a port-based firewall. To use a fixed port, set this
# this variable to a statd argument like: "--port 4000 --outgoing-port 4001".
# For more information, see rpc.statd(8) or http://wiki.debian.org/?SecuringNFS
STATDOPTS=
# Do you want to start the idmapd daemon? It is only needed for NFSv4.
NEED_IDMAPD=yes
# Do you want to start the gssd daemon? It is required for Kerberos mounts.
NEED_GSSD=no
/etc/exports on the SERVER:
Code:
/home/myself/shared_folders 192.168.89.0/24(rw,fsid=0,insecure,no_subtree_check,async)
/home/myself/shared_folders/common_shared 192.168.89.0/24(rw,nohide,insecure,no_subtree_check,async)
/home/myself/shared_folders/linux 192.168.89.0/24(rw,nohide,insecure,no_subtree_check,async)
/home/myself/shared_folders/linux/common_linux 192.168.89.0/24(rw,nohide,insecure,no_subtree_check,async)
/etc/default/nfs-common on the CLIENT:
Code:
# If you do not set values for the NEED_ options, they will be attempted
# autodetected; this should be sufficient for most people. Valid alternatives
# for the NEED_ options are "yes" and "no".
# Do you want to start the statd daemon? It is not needed for NFSv4.
NEED_STATD=
# Options for rpc.statd.
# Should rpc.statd listen on a specific port? This is especially useful
# when you have a port-based firewall. To use a fixed port, set this
# this variable to a statd argument like: "--port 4000 --outgoing-port 4001".
# For more information, see rpc.statd(8) or http://wiki.debian.org/?SecuringNFS
STATDOPTS=
# Do you want to start the idmapd daemon? It is only needed for NFSv4.
NEED_IDMAPD=yes
# Do you want to start the gssd daemon? It is required for Kerberos mounts.
NEED_GSSD=no
i then did
Code:
/etc/init.d/nfs-kernel-server restart
on the SERVER to ensure that the nfs server is started, and got the output on /var/log/syslog:
Code:
Dec 3 03:42:25 mydesktop kernel: [ 137.690268] nfsd: last server has exited, flushing export cache
Dec 3 03:42:26 mydesktop kernel: [ 138.756274] svc: failed to register lockdv1 RPC service (errno 97).
Dec 3 03:42:26 mydesktop kernel: [ 138.757320] NFSD: Using /var/lib/nfs/v4recovery as the NFSv4 state recovery directory
Dec 3 03:42:26 mydesktop kernel: [ 138.757337] NFSD: starting 90-second grace period
Then i did on the CLIENT:
Code:
sudo mount -t nfs4 -o proto=tcp,port=2049 192.168.89.1:/common_shared common_shared
and got the output:
Code:
mount.nfs4: access denied by server while mounting 192.168.89.1:/common_shared
There's no message on both the server and the client's /var/log/syslog.
Some additional information:
My SERVER is actually a VMWare HOST, and my CLIENT is a VMWare GUEST on the server, but i doubt it should matter.
What have i done incorrectly?
On the https://help.ubuntu.com/community/SettingUpNFSHowTo, i see some steps related to portmap on the "NFS Server" and "NFS Client" sections. Would i need those steps as well?
There's also a list of steps on http://www.citi.umich.edu/projects/n...ing-nfsv4.html (linked from https://help.ubuntu.com/community/NFSv4Howto). Are those necessary?
UPDATE 1:
Running showmount on the client seemed to show that NOTHING is shared on the server:
Code:
$ showmount -a 192.168.89.1
All mount points on 192.168.89.1:
UPDATE 2:
Confirm that the CLIENT does try to reach the SERVER. i tested again, forgetting to turn off firewall on the SERVER, and can see a rejected connection from the CLIENT to port 2049.
UPDATE 3:
i found that the problem is due to
1. The folder that i was trying to access on the SERVER has got permission 700.
2. It doesn't match the uid on the SERVER with the uid on the CLIENT.
The folders i was trying to access on the SERVER are all owned by uid 1000, with permission 700.
But, after setting the permission to 777, and doing a successful mount, the mounted folder is owned by nobody:nogroup.
Is it because of these 2 lines in /etc/default/nfs-common:
Code:
NEED_IDMAPD=yes
NEED_GSSD=no
?
The HowTo says:
Quote:
|
because we want UID/GUID to be mapped from names. This way, server and client do not need the users to share same UID/GUID.
|
In that case,
1. Should i set those 2 fields to "no" and "yes" respectively instead?
2. Or else, how do i make sure that the uid on the server is mapped to something useful on the client instead of nobody and nogroup?
Any advice, please?
Thanks,
Edwin
|
|
|
|
|
12-07-2010, 10:06 AM
|
#2
|
|
Member
Registered: Dec 2005
Distribution: Linux Mint 13 MATE
Posts: 120
Original Poster
Rep:
|
UPDATE 4:
The problem is that rpc.idmapd wasn't started.
By doing
on both the SERVER and the CLIENT, i can mount NFS share with correct gid/uid.
But, how can i get rpc.idmapd to be started on boot up, before processing of fstab? i would like to put the mounting of the NFS volumes in fstab.
Thanks,
Edwin
|
|
|
|
All times are GMT -5. The time now is 03:33 PM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
