I am running CentOS 6.3 and configuring a NFS server.The NFS service cannot be started due to Firewall rules not being correctly set.
Starting NFS quotas: Cannot register service: RPC: Authentication error; why = Client credential too weakrpc.rquotad: unable to register (RQUOTAPROG, RQUOTAVERS, udp). [FAILED]
Rules applied:
-A INPUT -p udp -m multiport --dports 111,662,875,892,2049,32769 -j ACCEPT
-A INPUT -p tcp -m multiport --dports 111,662,875,892,2049,32803 -j ACCEPT
However, after I tried to change the word from "INPUT" to "RH-Firewall-1-INPUT", it works like a charm:
-A RH-Firewall-1-INPUT -p udp -m multiport --dports 111,662,875,892,2049,32769 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m multiport --dports 111,662,875,892,2049,32803 -j ACCEPT
I googled it and it turns out that starting from RH6, the RH firewall chain is removed, so the two notations are of the same meaning (if i understand it correctly)
So that comes to the question, if they are the same, why INPUT doesn't work while RH-Firewall-1-INPUT make it work?Is there any hidden meaning of it?
Thanks
http://www.centos.org/modules/newbb/viewtopic.php?topic_id=40446&forum=58
No comments:
Post a Comment