NFS + NetBoot + Firewall booting problem

[flohei]

Hi everybody,

I’m trying to get my NetBoot environment working but I’m running into a problem with the firewall on my 10.6.2 server.

NetBoot is configured to serve the clients using NFS. When I turn the firewall off everything works fine. When I turn it on with opened ports 67, 68, 69, 111 and 2049 (do I really need 68?) I get an error saying “nfs_boot_getfh(v3,TCP) failed with 60, trying UDP…, RPC timeout for server x.x.x.x”. Without verbose booting mode I see the grey screen, the Apple logo with the spinning globe and the Apple logo with the progress indicator and that’s it.

I read that NFS needs more ports than the ones specified above but these are random so that I can’t open them up in my firewall. And that’s what I can confirm (used “rpcinfo -r” to check that).

So how do you enable NFS on your servers firewall? Can’t believe that it’s that tricky.

–f

[morgant]

We’re running into this issue as well on Mac OS X 10.5.5 Server (soon to be 10.5.8 Server). There seems to be a good description of locking down the ports [URL=http://www.macosxhints.com/article.php?story=20100219094419683]over at Mac OS X Hints[/URL]. It certainly works over HTTP, but what are the pros & cons of HTTP? It seems most are still using NFS.

[Author]

Posts