setting up nfs
John Abreau
jabr at blu.org
Sun Jul 29 12:48:19 EDT 2001
Derek Atkins <warlord at MIT.EDU> writes:
> Yea, except neither NFS nor CIFS provides any level of
> network security. Be sure your NetApp is behind a VERY
> good firewall!
>
> -derek
I haven't actually tried this, but it occurs to me that if you can remove
the
nfs server's default route, or point its default route at a box that won't
forward packets (perhaps point it at itself), then it would be unable to
respond to outside attacks.
Of course, the server would then need a DNS server on a different machine
on
its local subnet; you couldn't be running DNS and NFS services from the
same
machine if you did this, since a DNS server *must* be able to talk to the
root nameservers. And this doesn't allow for multiple subnets, either.
I wonder what else might break? Has anyone here tried this before?
--
John Abreau / Executive Director, Boston Linux & Unix
ICQ 28611923 / AIM abreauj / JABBER jabr at jabber.org / YAHOO abreauj
Email jabr at blu.org / WWW http://www.blu.org
-
Subcription/unsubscription/info requests: send e-mail with
"subscribe", "unsubscribe", or "info" on the first line of the
message body to discuss-request at blu.org (Subject line is ignored).
More information about the Discuss
mailing list