Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
NFS woes
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
krisse
Guru
Guru


Joined: 15 Mar 2005
Posts: 318
Location: Sweden

PostPosted: Fri Oct 05, 2012 9:48 pm    Post subject: NFS woes Reply with quote

NFS server and client, both gentoo machines. Used to work, stopped after some upgrade or another --- unfortunately unsure. There's been updates to both kernel and userspace programs.

Server to server, I can mount NFS.

I can SSH from client to server --- but server isn't pingable from client. Any idea what could be causing that?

Code:
 ~ $ sudo rpcinfo -p SERVER
   program vers proto   port  service
    100000    4   tcp    111  portmapper
    100000    3   tcp    111  portmapper
    100000    2   tcp    111  portmapper
    100000    4   udp    111  portmapper
    100000    3   udp    111  portmapper
    100000    2   udp    111  portmapper
    100024    1   udp  48604  status
    100024    1   tcp  33360  status
    100005    1   udp   4067  mountd
    100005    1   tcp   4067  mountd
    100005    2   udp   4067  mountd
    100005    2   tcp   4067  mountd
    100005    3   udp   4067  mountd
    100005    3   tcp   4067  mountd
    100003    2   tcp   2049  nfs
    100003    3   tcp   2049  nfs
    100003    4   tcp   2049  nfs
    100003    2   udp   2049  nfs
    100003    3   udp   2049  nfs
    100003    4   udp   2049  nfs
    100021    1   udp   4061  nlockmgr
    100021    3   udp   4061  nlockmgr
    100021    4   udp   4061  nlockmgr
    100021    1   tcp   4061  nlockmgr
    100021    3   tcp   4061  nlockmgr
    100021    4   tcp   4061  nlockmgr

Code:
~ $ ping -c3 SERVER
PING SERVER (xxx.xxx.xxx.xxx) 56(84) bytes of data.

--- SERVER ping statistics ---
3 packets transmitted, 0 received, 100% packet loss, time 2008ms


Trying to mount an NFS export, it fails with delay error. Surely, it's a connectivity problem (since not pingable)? I don't get why I can ssh to server to client (and vice versa) though. :S Tested with firewall off on both machines.
Back to top
View user's profile Send private message
krisse
Guru
Guru


Joined: 15 Mar 2005
Posts: 318
Location: Sweden

PostPosted: Sat Oct 06, 2012 7:57 am    Post subject: Reply with quote

So ping from client to server fails.

But a whole bunch of ports are open at the server from the clients point of view.

Previously, I used ports in the range of 32*** for NFS (/etc/conf.d/nfs), but changed them to 40** in case that mattered.

nmap finds, among others, open ports 111, 2049, and the aforementioned 40** as setup in /etc/conf.d/nfs.

Additionally, if I change the port for mountd in /etc/conf.d/nfs, the client does try to connect to the proper port.

In other words, almost everything seems to be working properly, but in practice fails.
Back to top
View user's profile Send private message
krinn
Advocate
Advocate


Joined: 02 May 2003
Posts: 4150

PostPosted: Sat Oct 06, 2012 10:31 am    Post subject: Reply with quote

Many routers are setup to drop external icmp request to hide themself. If set, ping will never get answer, but other request and service will work as expected, a dedicated tiny-firewall option if you prefer (with 0 relation to the router or host firewall setup).

As you hide your IP i suppose your server and client are on two networks, facing router setup so.
If they are on the same network, this shouldn't apply, so yes you have a connection problem.

Your nfs trouble could just be another trouble, with no relation to your ping problem.
Back to top
View user's profile Send private message
krisse
Guru
Guru


Joined: 15 Mar 2005
Posts: 318
Location: Sweden

PostPosted: Sat Oct 06, 2012 6:41 pm    Post subject: Reply with quote

Thanks for chiming in, krinn!

You're right. There's two separate networks (in two separate countries for that matter), and two separate routers.

Managed to get ping working after a thorough look in the router's firewall-settings, serverside.

Still not getting any luck with nfs though.

Ports are being forwarded (serverside, router). Firewall is letting said ports through.

These ports are: (nfs config)
Code:
OPTS_RPC_MOUNTD="-p 4063"
OPTS_RPC_STATD="-p 4064 -o 4065
and (grub kernel opt)
Code:
lockd.nlm=udpport=4061 lockd.nlm_tcpport=4061
, as well as 2049 (nfs) and 111 (portmap).

Netstat is also showing, viewed from server as well as client, that the ports above are open on server.

Am I missing anything, "portwise"?
Back to top
View user's profile Send private message
krinn
Advocate
Advocate


Joined: 02 May 2003
Posts: 4150

PostPosted: Sat Oct 06, 2012 7:02 pm    Post subject: Reply with quote

you can pass -vvv to get a verbose output with the client request.

newer nfsutils doesn't allow anymore the lazzy mount of nfsv3 for nfsv4 server.
previously an nfsv4 server offering nfsv3 & 4 service could be mount with a buggy client requesting an nfsv3 mount

damnit i'm not sure how to explain that :)
- if your client try to mount an nfsv4 mount, the mount must comply with strict nfsv4 (this mean having a nfsroot present, and subdirectories bind to it)
- if your client try to mount an nfsv3 mount from an nfsv4 server, the client must specifically query that, passing nfsvers=3,ver=3

anyway, assuming your ports are forward and open as they should, trying to mount with -vvv will gave a better clue of your problem.
Back to top
View user's profile Send private message
krisse
Guru
Guru


Joined: 15 Mar 2005
Posts: 318
Location: Sweden

PostPosted: Sat Oct 06, 2012 7:24 pm    Post subject: Reply with quote

Thanks for the input!

I tried with explicit NFS3, but didn't work, and -vvv unfortunately didn't give me anything new --- just a bunch of tries at correct port and address (and nfs version), ending up with timing out. :-/
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum