NFS Client & Iptables Issue
 

Hi,

Client is running Oracle VM Server 2.2.1 (kernel 2.6.18-128.2.1.4.37.el5xen). Storage is a NetApp 3210 (NFS configured to use TCP).

Iptables on client has udp and tcp ports 111, 2049 and the NFS server ports opened. Info retrieved using:

rpcinfo -p NetApp

When trying a manual mount ...

#mount -v NetApp:/share /mnt
mount: no type was given - I'll assume nfs because of the colon
mount: trying NetApp prog 100003 vers 3 prot tcp port 2049
mount: mount to NFS server 'NetApp' failed: timed out (retrying).

... but when using the proto=tcp option, it works ...

#mount -v -o proto=tcp NetApp:/share /mnt

... stopping iptables also works (I can manually mount the share without using proto=tcp).

Is the mounting process somehow trying to negotiate first using udp which the Netapp doesn't respond and hence it fails by timing out?

Can I configure iptables such that I don't have to use the proto=tcp option? Or is there another configuration file I can tweak so that I don't have to use the proto=tcp option?

Thanks.

that's not a newbie question! would be better in network or server forum.
Anyway, you may want to take some network traces and analyze them (tcpdump and/or wireshark).
From that you should know if the server is answering, and maybe even decode the answer and get a clue on what is happening.

If you suspect firewall blocks too much, then maybe run without a firewall while experimenting, and compare the network traces with and without firewall. You know if your network is a dangerous place or not for experimenting without a firewall.

OK, will try in the network section. I've less than 6 months experience in linux so thought I'll try the newbie section. Thanks.