On 2019-12-08 07:17, Bob Goodwin wrote: > > On 2019-12-07 17:19, Patrick O'Callaghan wrote: >> Note that the GUI is not 100% reliable, i.e. it can misrepresent what >> is actually configured. >> >> Seehttps://bugzilla.redhat.com/show_bug.cgi?id=1773273 >> >> Also, try "firewall-cmd --get-active-zones" and "... --get-default- >> zone" to make sure you're looking at the right thing. >> >> poc > > . > > Did this: > > [root@NFS-Server bobg]# firewall-cmd --get-active-zones > public > interfaces: enp1s0 > > Dunno what to do with "... --get-default-zone" > > However enp1s0 connects to my LAN so I assume that is what is needed? > >
I know I am late to the party. I have a new VM install of F31. So, with that in mind "f31K" is the server and "meimei" is the client. *BEFORE* [root@f31k etc]# firewall-cmd --get-active-zones public interfaces: enp1s0 [root@f31k etc]# firewall-cmd --info-zone=public public (active) target: default icmp-block-inversion: no interfaces: enp1s0 sources: services: dhcpv6-client mdns ssh ports: protocols: masquerade: no forward-ports: source-ports: icmp-blocks: rich rules: I have no services enabled or running other than the default. (I will not use nfs3) So...... [root@f31k etc]# firewall-cmd --zone=public --add-service=nfs success [root@f31k etc]# firewall-cmd --zone=public --add-service=mountd success [root@f31k etc]# firewall-cmd --zone=public --add-service=rpc-bind success [root@f31k etc]# firewall-cmd --runtime-to-permanent success [root@f31k etc]# firewall-cmd --reload success *NOW AFTER* [root@f31k ~]# firewall-cmd --info-zone=public public (active) target: default icmp-block-inversion: no interfaces: enp1s0 sources: services: dhcpv6-client mdns mountd nfs rpc-bind ssh ports: protocols: masquerade: no forward-ports: source-ports: icmp-blocks: rich rules: I entered what I need in "exports". So, here we go.... [root@f31k ~]# cat /etc/exports /home/egreshko 192.168.0.0/16(rw,sync,insecure,no_root_squash,no_subtree_check) /home/egreshko 2001:B030:112F:0000::/56(rw,sync,insecure,no_root_squash,no_subtree_check) [root@f31k ~]# exportfs -a [root@f31k ~]# Enable and start the nfs-server in one go. This will enable any other services needed by nfs-server [root@f31k ~]# systemctl --now enable nfs-server Created symlink /etc/systemd/system/multi-user.target.wants/nfs-server.service → /usr/lib/systemd/system/nfs-server.service. Then on the client..... [root@meimei ~]# showmount -e f31k Export list for f31k: /home/egreshko 2001:B030:112F:0000::/56,192.168.0.0/16 [root@meimei ~]# mount f31k:/home/egreshko /mnt Created symlink /run/systemd/system/remote-fs.target.wants/rpc-statd.service → /usr/lib/systemd/system/rpc-statd.service. [root@meimei ~]# And..... [root@meimei ~]# mount f31k:/home/egreshko /mnt [root@meimei ~]# ls /mnt Desktop Documents Downloads flash Music Pictures Public Templates Videos Done.... -- The key to getting good answers is to ask good questions. _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org
