HPE Community
Operating System - Tru64 Unix
1753452 Members
5752 Online
108794 Solutions
New Discussion юеВ

Re: rsh, nfs and firewall

 
SOLVED
Go to solution
Admin.SIF
Frequent Advisor

тАО05-20-2005 07:34 AM

тАО05-20-2005 07:34 AM

rsh, nfs and firewall

Hello,
Which ports should I open to allow rsh through a firewall?
What about NFS ? I read something about dynamic ports for mountd so I don't know if we can make nfs secure through a firewall by managing ports by the firewall.
Thank you
Sysd. Amin. Inforef
0 Kudos
3 REPLIES 3
Mark Poeschl_2
Honored Contributor

тАО05-20-2005 09:42 AM

тАО05-20-2005 09:42 AM

Re: rsh, nfs and firewall

rsh is port 514. NFS can indeed be problematic since it inherently uses RPC calls which dynamically allocate port numbers. If your firewall package has specific capability around filtering on RPC programs you might be able to make it work.
Admin.SIF
Frequent Advisor

тАО05-24-2005 07:11 AM

тАО05-24-2005 07:11 AM

Re: rsh, nfs and firewall

Thank you.
For NFS, it was working for more than 2 years. Recently we replaced the protocol udp by tcp and did a shutdown/reboot of the NFS server and since that reboot, it doesn't work any more.
For rsh, we have opened the port 514 but the command rsh from the other host come with port 1022 or 1023 and is refused. I think that they use ssh instead of rsh.
Any idee please?
Sysd. Amin. Inforef
0 Kudos
Mark Poeschl_2
Honored Contributor

тАО05-25-2005 02:22 AM

тАО05-25-2005 02:22 AM

Solution

Re: rsh, nfs and firewall

I think you're getting confused between client and server port numbers. For rsh, the client will issue a connect request from any randomly available port number to server port 514. To get rsh to work what you need to open on your firewall is traffic from to <514> and vice versa.

As I said NFS will be problematic because it uses RPC.
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.