[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[FW1] NFS mounts through the firewall
First let me preface my question with the statement
that I KNOW NFS is inherently insecure and potentially
dangerous when done through the firewall! It's not my
call. With that aside...
Does anyone have any experience with an NT server in
a DMZ running the Interdrive 5.0 NFS client for NT
mounting files from an IBM MVS mainframe on an
internal
network through a firewall?
The NT NFS client first tries to use UDP based NFS v3
and gets an RPC program number mismatch. It then
falls
back to UDP based NFS v2 and gets a stale NFS file
handle. It finally falls back again and uses TCP
based
NFS v3. The users swear it's the firewall and I am
told the vendor only knows about using their product
directly with UNIX NFS servers.
We are running FW1 v4.0 sp3 and have the
#define RPC_OVER_TCP modification in fwui_head.def.
However, support for TCP based NFS rules is not
available yet in the policy editor. The only way to
to
get NFS mounts to work is to use the service ALL!
Anyone have any ideas on how to either get Interdrive
to use UDP like everyone else, or how to write a rule
that will allow a TCP based NFS mount through the
firewall without having to use service ALL.
Thanks in advance.
b
__________________________________________________
Do You Yahoo!?
Thousands of Stores. Millions of Products. All in one place.
Yahoo! Shopping: http://shopping.yahoo.com
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================