Check out my first novel, midnight's simulacra!
NFS: Difference between revisions
Line 23: | Line 23: | ||
* The [http://nfs.sourceforge.net/ Linux NFS FAQ] and [http://nfs.sourceforge.net/nfs-howto/ NFS-HowTo] | * The [http://nfs.sourceforge.net/ Linux NFS FAQ] and [http://nfs.sourceforge.net/nfs-howto/ NFS-HowTo] | ||
* [http://nfswatch.sourceforge.net/ NFSwatch] for monitoring and summarizing NFS traffic | * [http://nfswatch.sourceforge.net/ NFSwatch] for monitoring and summarizing NFS traffic | ||
* [https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/managing_file_systems/configuring-an-nfsv4-only-server_managing-file-systems Configuring an NFSv4-Only Server] on Fedora | |||
[[CATEGORY: Networking]] | [[CATEGORY: Networking]] |
Revision as of 10:17, 10 March 2023
I assumed back in 2001 or so that by 2011 we'd have something better than crufty old NFS3, an NFS4 that no man understands in full, five half-implemented network file systems with stupid names, Solaris's WebNFS terroristic threat, and the aesthetic marvel that is CIFS. Alas, I assumed too much.
NFS version 2 was specified in RFC 1094. Version 3 was RFC 1813, and version 4 was RFC 3530.
This page discusses Linux's kernel NFS implementation circa 3.0.4. Relevant man pages include exports(5) and nfs(5)/nfs.conf(5).
NFSv4-only
So long as you're only running NFSv4, you don't need rpc-statd. Edit /etc/nfs.conf, and add vers3=n under the [nfsd] section. You can now disable the rpc-statd-notify and rpc-statd services.
Sideband protocols
NLM
The Network Lock Manager (not to be confused with Netware Loadable Modules) provides byte-range advisory (SysV-style) locking. This is built into NFS4 by default. It can be enabled and disabled using the lock and nolock mount options, respectively. Linux uses TCP by default for NLM.
- The no_auth_nlm exports option inhibits UID/GID credential check enforcement on lock requests, necessary for clients which don't preserve UID/GID across locking calls
- The default behavior can be specified with auth_nlm or secure_locks
- Linux's NLM lock recovery only works if uname -n output matches reverse DNS output for your host.
- Don't ask me, man; I didn't do it.
- NLM lock recovery also requires the rpc.statd process to be running, despite executing as a kernel service
- NLM requires clients to have correct reverse DNS entries for server reboot notification to function properly
NFSACL
An extension originating in Solaris for use of POSIX ACL's (NFS4 introduces its own, richer ACLs). It can be enabled and disabled using the acl and noacl mount options, respectively (Linux otherwise negotiates with the server to autodetect support). NFSACL uses the same transport as the main NFS service.
See Also
- The Linux NFS FAQ and NFS-HowTo
- NFSwatch for monitoring and summarizing NFS traffic
- Configuring an NFSv4-Only Server on Fedora