Check out my first novel, midnight's simulacra!

NFS

From dankwiki
Revision as of 03:14, 4 June 2023 by Dank (talk | contribs) (→‎See Also)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

I assumed back in 2001 or so that by 2011 we'd have something better than crufty old NFS3, an NFS4 that no man understands in full, five half-implemented network file systems with stupid names, Solaris's WebNFS terroristic threat, and the aesthetic marvel that is CIFS. Alas, I assumed too much.

NFS version 2 was specified in RFC 1094. Version 3 was RFC 1813, and version 4 was RFC 3530.

This page discusses Linux's kernel NFS implementation circa 3.0.4. Relevant man pages include exports(5) and nfs(5)/nfs.conf(5).

NFSv4-only

So long as you're only running NFSv4, you don't need rpc-statd nor rpcbind. Edit /etc/nfs.conf, and add vers3=n under the [nfsd] section. You can now disable the rpc-statd-notify, rpc-statd, rpcbind.socket, and rpcbind services.

Sideband protocols

NLM

The Network Lock Manager (not to be confused with Netware Loadable Modules) provides byte-range advisory (SysV-style) locking. This is built into NFS4 by default. It can be enabled and disabled using the lock and nolock mount options, respectively. Linux uses TCP by default for NLM.

  • The no_auth_nlm exports option inhibits UID/GID credential check enforcement on lock requests, necessary for clients which don't preserve UID/GID across locking calls
    • The default behavior can be specified with auth_nlm or secure_locks
  • Linux's NLM lock recovery only works if uname -n output matches reverse DNS output for your host.
    • Don't ask me, man; I didn't do it.
  • NLM lock recovery also requires the rpc.statd process to be running, despite executing as a kernel service
  • NLM requires clients to have correct reverse DNS entries for server reboot notification to function properly

NFSACL

An extension originating in Solaris for use of POSIX ACL's (NFS4 introduces its own, richer ACLs). It can be enabled and disabled using the acl and noacl mount options, respectively (Linux otherwise negotiates with the server to autodetect support). NFSACL uses the same transport as the main NFS service.

See Also