cancel
Showing results for 
Search instead for 
Did you mean: 

NFS mounitng across firewall

SCA_1
Occasional Advisor

NFS mounitng across firewall

Gurus ,

We have hpux 11.11 server in defferent network zones and behind firewall.I am havinf difficulty in mounting nfs between these servers.Showmount command and

rpcinfo owrks fine.But while mounting nfs we get the error ;

nfs mount: get_fh: server:: RPC: Timed out

server:\>#rpcinfo -p client
program vers proto port service
100000 4 tcp 111 rpcbind
100000 3 tcp 111 rpcbind
100000 2 tcp 111 rpcbind
100000 4 udp 111 rpcbind
100000 3 udp 111 rpcbind
100000 2 udp 111 rpcbind
100024 1 udp 65534 status
100024 1 tcp 65534 status
100020 1 udp 4045 llockmgr
100020 1 tcp 4045 llockmgr
100021 1 udp 4045 nlockmgr
100021 3 udp 4045 nlockmgr
100021 4 udp 4045 nlockmgr
100021 1 tcp 4045 nlockmgr
100021 3 tcp 4045 nlockmgr
100021 4 tcp 4045 nlockmgr
100021 2 tcp 4045 nlockmgr
390113 1 tcp 7937
100005 1 udp 65535 mountd
100005 3 udp 65535 mountd
100005 1 tcp 65535 mountd
100005 3 tcp 65535 mountd
100003 2 tcp 2049 nfs
100003 3 tcp 2049 nfs
100003 2 udp 2049 nfs
100003 3 udp 2049 nfs

client:\>#rpcinfo -p server
program vers proto port service
100000 4 tcp 111 rpcbind
100000 3 tcp 111 rpcbind
100000 2 tcp 111 rpcbind
100000 4 udp 111 rpcbind
100000 3 udp 111 rpcbind
100000 2 udp 111 rpcbind
100024 1 udp 65534 status
100024 1 tcp 65534 status
100020 1 udp 4045 llockmgr
100020 1 tcp 4045 llockmgr
100021 1 udp 4045 nlockmgr
100021 3 udp 4045 nlockmgr
100021 4 udp 4045 nlockmgr
100021 1 tcp 4045 nlockmgr
100021 3 tcp 4045 nlockmgr
100021 4 tcp 4045 nlockmgr
100021 2 tcp 4045 nlockmgr
100005 1 udp 65535 mountd
100005 3 udp 65535 mountd
100005 1 tcp 65535 mountd
100005 3 tcp 65535 mountd
100003 2 udp 2049 nfs
100003 3 udp 2049 nfs
100003 2 tcp 2049 nfs
100003 3 tcp 2049 nfs

Thanks in advance
6 REPLIES
Manix
Honored Contributor

Re: NFS mounitng across firewall

check if /etc/hosts file of my server machine.
has entry for the client & try stopping /starting the NFS deamons

/etc/init.d/nfs.core stop /start
/etc/init.d/nfs.server stop /start
/etc/init.d/nfs.client stop /start

Should work if its not a fire wall issue.

post output for showmount -ae
HP-UX been always lovable - Mani Kalra
SCA_1
Occasional Advisor

Re: NFS mounitng across firewall

Thanks for reply ;

There is no host resolution issue ;

see the o/p

server:\>#>showmount -ae client
export list for client:
/var/opt/ignite/clients (everyone)
/var/opt/ignite/recovery/archives (everyone)
(anon):/tmp/patch
client123:/var/opt/ignite/recovery/archives/usedua2x

client:\> #>showmount -ae server
export list for server:
/var/opt/ignite/recovery/archives (everyone)
/var/opt/ignite/clients (everyone)

Manix
Honored Contributor

Re: NFS mounitng across firewall

If you checked the hosts file & it looks
good & stopping /starting doesn`t help
then following thread may help

http://h30499.www3.hp.com/t5/Networking/nfs-mount-RPC-time-out/m-p/3990504#M40389


The rpc.lockd, rpc.statd, and rpc.mountd daemons use random ports for transport connections. This makes it difficult to
configure firewalls which require specific port numbers to be used.

Resolution:
An interface is provided for assigning port numbers for therpc.lockd, rpc.statd, and rpc.mountd daemons. To assign port
numbers, add the following variables to the end of the
/etc/rc.config.d/nfsconf file like this, for example:

LOCKD_PORT=4045
STATD_PORT=4047
MOUNTD_PORT=4049

HP-UX been always lovable - Mani Kalra
SCA_1
Occasional Advisor

Re: NFS mounitng across firewall

Hi ,

I ahve already used the fixed ports in nfsconf;
STATD_PORT=65534
MOUNTD_PORT=65535
LOCKD_PORT=4045

from rpcinfo also u can see this;
SCA_1
Occasional Advisor

Re: NFS mounitng across firewall

Can anybody help
Dennis Handly
Acclaimed Contributor