From owner-freebsd-questions Tue Jan 4 21:50:31 2000 Delivered-To: freebsd-questions@freebsd.org Received: from tetron02.tetronsoftware.com (ftp.tetronsoftware.com [208.236.46.106]) by hub.freebsd.org (Postfix) with ESMTP id BBE101526C for ; Tue, 4 Jan 2000 21:50:28 -0800 (PST) (envelope-from zeus@tetronsoftware.com) Received: from tetron02.tetronsoftware.com (IDENT:5001@tetron02.tetronsoftware.com [208.236.46.106]) by tetron02.tetronsoftware.com (8.9.3/8.9.3) with ESMTP id XAA01067; Tue, 4 Jan 2000 23:53:22 -0600 (CST) (envelope-from zeus@tetronsoftware.com) Date: Tue, 4 Jan 2000 23:53:22 -0600 (CST) From: Gene Harris To: Allan Strand Cc: freebsd-questions@FreeBSD.ORG Subject: Re: [Allan Strand ] natd coexisting with rpc.statd+nfs In-Reply-To: <864sctqei7.fsf@linum.cofc.edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On 5 Jan 2000, Allan Strand wrote: > > >I'm exploring different LAN configurations and one possibility > >requires a firewall (running natd/ipfw to connect the LAN to a > >semi-protected network) to also act as an NFS server to a couple of > >machines on the LAN. > > >I can see that this might present security problems, yet I am curious > >as to its general feasibility. > > >I've tried to set it up, but have run into a situation where rpc.statd > >hangs on the boot. Haven't even made it to the NFS server portion. > Hmmm... In rc.network, the execution order is mountd, nfsd, then rpc.statd. Are you starting rpc.statd from another source? I use the configuration you describe on a server and have no problems. In addition to ipfw, you might want to install tcp_wrappers to assist with security/connection logging. Gene Harris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message