Christian Rueger wrote: > Am Mittwoch, den 21.06.2006, 14:03 -0700 schrieb Clint Pachl: >> Because portmap(8) dynamically assigns the mountd(8) port, how would >> one write a pass rule in pf for mountd(8) traffic? My problem is that >> every time mountd(8) is re/started, it operates on a different port and >> my fixed pf rules block the mount protocol and, consequently, my >> clients cannot mount an NFS share. > > google :) http://www.google.de/search?q=mountd+pf > > first link > http://www.darkshed.net/files/openbsd/mountd-rules.html
Yes, I did just that, but thought there may be a simpler, more standardized way. It just seemed like I was missing something.
I also thought about creating an RPC port table. This table would be updated via a script parsing rpcinfo or the like. I can't think of dis/advantages of the anchor method vs the table method?
-pachl
