Thanks, Bob for your response. I have checked our /etc/sysconfig/SuSEfirewall2 and it has all the services you got, plus ypbind as well as we are using NIS. Peter -----Original Message----- From: Robert Paulsen [mailto:robert@paulsen.homeip.net] Sent: 22 September 2005 16:12 To: SLE Subject: Re: [SLE] Suse 9.3: NFS blocked by firewall On Thursday 22 September 2005 09:29, Chiu, PCM (Peter) wrote:

It appears that NFS server on a Suse 9.3 box is blockec from serving clients by its firewall.

The NFSServer service is set up under yast2 with Open port in firewall option selected.

Within the firewall setup, all interfaces are in External zone, and the Allowed services include NFS client and NFS server.

No joy.

Dmesg reveals that the packets are dropped. From there, work out the destination port, and include it in the firewall advanced option on tcp port. Now NFS is serving ok.

But this is unsatisfactory, as the NFS request port can vary...

I needed to support NFS mounts and also had trouble getting it to work through the firewall. I did get it working after some changes to the firewall configuration. Here is a line from my /etc/sysconfig/SuSEfirewall2: FW_SERVICES_EXT_RPC="mountd nfs nfs_acl nlockmgr portmap status" I am no longer running an NFS server so I can't be 100% sure that the above is enough. It may also include things that are not required. Anyway, maybe comparing to what you have will help. Bob -- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com