From: John P. Looney (john at domain antefacto.com)
Date: Wed 06 Jun 2001 - 13:49:34 IST
On Wed, Jun 06, 2001 at 01:34:30PM +0100, Ruairi Newman mentioned:
> I have a requirement for NFS here for a little while and in the interests of
> security would like to tunnel my NFS shares over ssh between machines. I
> don't seem to be able to find a clear explanation of what's involved in this
> anywhere though so if anybody can point me in the general direction, I'd be
> thankful.
Tricky. Usually, NFS runs over UDP, which I don't believe SSH can tunnel.
NFSv3 can run over tcp/ip - you would have to force it. You will also
have to get it tunnelling mountd too. I don't think you can specifiy an
alternate port for lockd though.
So, setup the ssh tunnel on the local machine (running on port 2818,
going to the NFS server, and the mountd tunnel on 3045). have an fstab
entry like;
localhost:/export/home /home nfs tcp,port=2818,mountport=3045,nolock
And it may work. But, if you want security, you don't use NFS.
Kate
--
When I say 'free', I mean 'free': free from bond, of chain or command:
to go where you will, even to Mordor, Saruman, if you desire. "
-- Gandalf, paraphrasing the choice between Free and Non-free software
This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:10:35 GMT