Am Dienstag, 12. Juni 2018, 19:20:00 CEST schrieb Per Jessen:
Hi simon,
thanks for the detailed explanation. it makes it more clear for me. so i decided today to asked a question about how to configure firewalld to work korrect with nfs. unfortunately i have not receifed any anwer up to now,
firewalld is brand new to openSUSE, not many people will have any experiences to share. In addition, running nfs over a firewall is a bit unusual, I would say.
I've been using firewalld for several years on openSUSE now, so not that new (to me). Also, there is nothing wrong with wanting to have a firewall on the internal interface, 99% of all attacks hit from internal... Anyway, nfs and firewall is perfectly simple as soon as you configure nfs to run ONLY on 2049/TCP instead of the old portmapper mess, and then you just do "firewall-cmd --add-service=nfs --zone=(whatever your interface is in) -- permanent" and you're set. Cheers MH -- gpg key fingerprint: 8029 2240 F4DD 7776 E7D2 C042 6B8E 029E 13F2 C102 -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org