Operating System - OpenVMS
1748060 Members
5553 Online
108758 Solutions
New Discussion юеВ

Re: NFS VMS to Linux Permission denied

 
Jan Andersson_3
Occasional Advisor

NFS VMS to Linux Permission denied

Hi folks

We have VMS-directories exported via NFS from all our VMS-systems to a Linux-server.

OpenVMS 8.3, Tcp/IP 5.6 ECO3, RedHat 5.5.

As this server is very critical, we have cloned it, to have a spare hot standby system.
This is in VMware, so it really is a cloned system.
Problem is that I can't mount the exported dirs in the clone. I get permission denied.
The /var/log/messages has this:
server HUVTS1.HUV.DAGAB.SE requires stronger authentication.

To avoid any potential conflicts I set up an export from my Alphastation.
That one works on both Linux systems.
None of the other exports work on the clone.
Therefore I made a new export on one of our VMS-systems.
This one has the same problem as the others.
It only works on the original Linux server.

The involved systems is added to the local host databases in both VMS and Linux.
Hosts.allow and deny is empty.
Telnet in both directions works fine.
I've been banging my head to the wall for some time now and really don't know how to troubleshoot this further.
8 REPLIES 8
Jan Andersson_3
Occasional Advisor

Re: NFS VMS to Linux Permission denied

Here is a session sample.

Mount from the original Linux server:

HUVTS1> tcpip sho proxy

VMS User_name Type User_ID Group_ID Host_name

SONIC OND 508 508 IMSPIDERTST01.AXFOOD.SE,
IMSPIDERTST02.AXFOOD.SE
SYSTEM OND 0 0 IMSPIDERTST02.AXFOOD.SE,
IMSPIDERTST01.AXFOOD.SE

HUVTS1> tcpip sho map

Dynamic Filesystem Map
Pathname Logical File System

/huvts1 $1$DGA1:

HUVTS1> tcpip sho export

File System Host name

/huvts1/nfstest IMSPIDERTST02.AXFOOD.SE,
IMSPIDERTST01.AXFOOD.SE
Options: Name_cvt

[sys_jan@imspidertst01 ~]$ showmount -e huvts1.huv.dagab.se Export list for huvts1.huv.dagab.se:
/huvts1/nfstest IMSPIDERTST02.AXFOOD.SE,IMSPIDERTST01.AXFOOD.SE

[root@imspidertst01 ~]# mount -t nfs -o hard,intr HUVTS1.HUV.DAGAB.SE:/huvts1/nfstest /mnt/janne

HUVTS1>
%%%%%%%%%%% OPCOM 17-NOV-2010 10:52:55.01 %%%%%%%%%%% Message from user NFS Server on HUVTS1 Accepted connection from host 194.14.159.242 port 46425

HUVTS1>
%%%%%%%%%%% OPCOM 17-NOV-2010 10:52:55.02 %%%%%%%%%%% Message from user TCPIP$NFS on HUVTS1 %TCPIP-S-NFS_MNTSUC, mounted file system /huvts1/nfstest -TCPIP-S-NFS_CLIENT, uid=0 gid=0 host_name = IMSPIDERTST01.AXFOOD.SE


HUVTS1>
%%%%%%%%%%% OPCOM 17-NOV-2010 10:53:04.43 %%%%%%%%%%% Message from user NFS Server on HUVTS1 Closed connection from host 194.14.159.242 port 46425

HUVTS1> type/tail sys$sysdevice:[TCPIP$NFS]TCPIP$MOUNTD_RUN.LOG

%TCPIP-S-NFS_MNTSUC, mounted file system /huvts1/nfstest

-TCPIP-S-NFS_CLIENT, uid=0 gid=0 host_name = IMSPIDERTST01.AXFOOD.SE

[root@imspidertst01 ~]# tail /var/log/messages has no entry

[root@imspidertst01 ~]# ls /mnt/janne
autogen.txt rdmmonlog.txt searchfile.txt soniclog.txt

-----------------------------------------------------------------
Mount from the cloned Linux server:

[root@imspidertst02 ~]# mount -t nfs -o hard,intr HUVTS1.HUV.DAGAB.SE:/huvts1/nfstest /mnt/janne
mount.nfs: Permission denied

HUVTS1>
%%%%%%%%%%% OPCOM 17-NOV-2010 11:00:00.28 %%%%%%%%%%% Message from user NFS Server on HUVTS1 Accepted connection from host 194.132.89.68 port 46019

HUVTS1>
%%%%%%%%%%% OPCOM 17-NOV-2010 11:00:00.29 %%%%%%%%%%% Message from user TCPIP$NFS on HUVTS1 %TCPIP-S-NFS_MNTSUC, mounted file system /huvts1/nfstest -TCPIP-S-NFS_CLIENT, uid=0 gid=0 host_name = IMSPIDERTST02.AXFOOD.SE


HUVTS1>
%%%%%%%%%%% OPCOM 17-NOV-2010 11:00:00.29 %%%%%%%%%%% Message from user NFS Server on HUVTS1 Accepted connection from host 194.132.89.68 port 823

HUVTS1>
%%%%%%%%%%% OPCOM 17-NOV-2010 11:00:04.81 %%%%%%%%%%% Message from user NFS Server on HUVTS1 Closed connection from host 194.132.89.68 port 823

HUVTS1>
%%%%%%%%%%% OPCOM 17-NOV-2010 11:00:04.81 %%%%%%%%%%% Message from user NFS Server on HUVTS1 Closed connection from host 194.132.89.68 port 46019

%TCPIP-S-NFS_MNTSUC, mounted file system /huvts1/nfstest

-TCPIP-S-NFS_CLIENT, uid=0 gid=0 host_name = IMSPIDERTST02.AXFOOD.SE

[root@imspidertst02 ~]# tail /var/log/messages

2010-11-16T10:50:02.595083+01:00 IMSPIDERTST02 kernel: call_verify: server HUVTS 1.HUV.DAGAB.SE requires stronger authentication.
Joseph Huber_1
Honored Contributor

Re: NFS VMS to Linux Permission denied

One thing seems obvious:

the cloned VMS sees node 194.132.89.68 instead of the DNS name.

Are there TCPIP (OND) proxies for this node ?


http://www.mpp.mpg.de/~huber
Jan Andersson_3
Occasional Advisor

Re: NFS VMS to Linux Permission denied

The proxies are shown at the beginning of the session sample.
Accept and close connection shows ip-address i both cases.
The real difference is that the cloned system makes two connections.
tsgdavid
Frequent Advisor

Re: NFS VMS to Linux Permission denied

Are all of your hosts able to translate the host names to IP address (server and client) via DNS? Can they also do a reverse lookup (IP address to host name)?

Dave
Jan Andersson_3
Occasional Advisor

Re: NFS VMS to Linux Permission denied

Yes to both questions.
I also tried to nfsmount to the IP-address with the same result.
As I mentioned before, I tried Telnet and ssh in both directions using both names and adresses without problem.
mjkushner
New Member

Re: NFS VMS to Linux Permission denied

Were you ever able to solve this problem?  I have the same problem (See post made by mjkushner this morning December 1, 2011).

 

Thanks,

Mark Kushner

mjkush@umich.edu

sejalshah
New Member

Re: NFS VMS to Linux Permission denied

Hi,

 

Could you please share the steps if your issue is resolved?

I am facing the same issue with same configuration.

 

 

Thanks,

Sejal

Marco Gariboldi
Frequent Advisor

Re: NFS VMS to Linux Permission denied

Actually, I was wondering about the same thing.  I've been running into the same problems with NFS server under OpenVMS, whilst trying to mount a share under a UNIX operating system.