ESET Endpoint Antivirus for Linux – Table of Contents

NFS mount fails

Copy current article URL Share via email

This article (PDF) Whole documentation (PDF)

Issue

The technology behind Web access protection breaks the connection to NFS mounts. The NFS server's default configuration expects the client to connect from a port under 1025 (accessible to the root). The connection intercepted by Web access tries to connect from a random port above 1024, resulting in the server's denial.

Workaround

You can avoid denial by changing the NFS mount server configuration to insecure. This allows the client to connect from a random port to the server.

1.On the NFS server machine, open the /etc/exports file in your text editor as privileged user. In this example we use nano:

nano /etc/exports

2.Set your shared directory to insecure and save the changes. An example of the NFS shared directory:

/srv/nfs-share 10.10.10.10/24(rw,sync,no_subtree_check,no_root_squash,insecure)

3.Restart the NFS server. Run the following command as a privileged user:

systemctl restart nfs-kernel-server

˄˅