RE: iptables/bridge/nfs

To:	"Gary W. Smith" <gary@primeexalia.com>, <netfilter@lists.netfilter.org>
Subject:	RE: iptables/bridge/nfs
From:	"Gary W. Smith" <gary@primeexalia.com>
Date:	Tue, 21 Nov 2006 10:53:59 -0800
Cc:
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	netfilter-list1@securepoint.com
In-reply-to:	<57F9959B46E0FA4D8BA88AEDFBE5829024ED21@pxtbenexd01.pxt.primeexalia.com>
List-archive:	</pipermail/netfilter>
List-help:	<mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id:	General discussion and user questions <netfilter.lists.netfilter.org>
List-post:	<mailto:netfilter@lists.netfilter.org>
List-subscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
Sender:	netfilter-bounces@lists.netfilter.org
Thread-index:	AccM8MssX2ujVCuQTReLTxnxMhgpOAArXfiQ
Thread-topic:	iptables/bridge/nfs

To:

"Gary W. Smith" <gary@primeexalia.com>, <netfilter@lists.netfilter.org>

Subject:

RE: iptables/bridge/nfs

From:

"Gary W. Smith" <gary@primeexalia.com>

Date:

Tue, 21 Nov 2006 10:53:59 -0800

Cc:

Delivered-to:

sp-com-lists@consult.net

Delivered-to:

netfilter-list1@securepoint.com

In-reply-to:

<57F9959B46E0FA4D8BA88AEDFBE5829024ED21@pxtbenexd01.pxt.primeexalia.com>

List-archive:

</pipermail/netfilter>

List-help:

<mailto:netfilter-request@lists.netfilter.org?subject=help>

List-id:

General discussion and user questions <netfilter.lists.netfilter.org>

List-post:

<mailto:netfilter@lists.netfilter.org>

List-subscribe:

<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>

List-unsubscribe:

<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>

Sender:

netfilter-bounces@lists.netfilter.org

Thread-index:

AccM8MssX2ujVCuQTReLTxnxMhgpOAArXfiQ

Thread-topic:

iptables/bridge/nfs

This had nothing to do with Netfilter.  It appears that the NFS server
failed to accept connections from anyone (even though there were already
established connections).  Restarting NFS solved my problem.

> -----Original Message-----
> From: netfilter-bounces@lists.netfilter.org [mailto:netfilter-
> bounces@lists.netfilter.org] On Behalf Of Gary W. Smith
> Sent: Monday, November 20, 2006 2:18 PM
> To: netfilter@lists.netfilter.org
> Subject: iptables/bridge/nfs
> 
> I'm trying to get NFS (udp) to work through an iptables firewall that
> also has a bridge.
> 
> The bridge is eth0 and eth2.  The NFS server resides on eth3, the
client
> exist on eth2 the internet is on eth0.  My iptables contains this as
the
> FORWARD rule:
> 
> -A FORWARD -m physdev  --physdev-in eth2 -j ACCEPT
> 
> -A FORWARD -i eth3 -j ACCEPT
> 
> We did have it locked down pretty much but we want to try to find out
> why this doesn't work.  Some posts say that if the MTU is different
then
> it might fragment but in this case they are both 1500.
> 
> Does anyone have any basic ideas why this might not be working?
> 
> Gary Wayne Smith
>

<Prev in Thread]	Current Thread	[Next in Thread>
iptables/bridge/nfs, Gary W. Smith RE: iptables/bridge/nfs, Gary W. Smith <=

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Re: Someone is using too much bandwidth???, tom
Next by Date:	Re: Someone is using too much bandwidth???, Danny
Previous by Thread:	iptables/bridge/nfs, Gary W. Smith
Next by Thread:	How to measure CPU usage of netfilter, Mohammad Farooq
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: Someone is using too much bandwidth???, tom

Next by Date:

Re: Someone is using too much bandwidth???, Danny

Previous by Thread:

iptables/bridge/nfs, Gary W. Smith

Next by Thread:

How to measure CPU usage of netfilter, Mohammad Farooq

Indexes:

[Date] [Thread] [Top] [All Lists]