On 5/1/23 08:37, Per Jessen wrote:
Using NFS across a firewall is not typically done. Clients and servers are all expected to be on a trusted network. It is possible NFSv4 has made changes in this respect, I haven't looked.
We use NFS with the host-based firewalls running, both SuSEfirewall2 and firewalld.
I run both nfs server and clients in all my computers in my LAN, and I do want to keep all my machines with an active firewall. This is pretty normal. I disagree. If the network is trusted, what is the point of a firewall?
It's good security practice, we've been doing it for decades. Indeed, that we could do that was once justification to not use Windows! It protects well-behaved Linux boxes from those rude and insecure Windows cesspools on the same subnet. Regards, Lew