On Thu, Apr 26, 2018 at 4:12 AM, Peter Humphrey <pe...@prh.myzen.co.uk> wrote: > > So, again, I went off half-cocked (sorry about the noise). The problem is that > the NFS mount in the chroot picks different ports each time, so the client's > firewall drops all NFS packets. > > Now I just have to find out why that happens.
Set up static ports for mountd and statd in "/etc/conf.d/nfs". Set up static ports for lockd in "/etc/modprobe.d/" or "/etc/sysctl.d/" (depending on how you compiled your kernel). Non-official but more or less conventional ports (IIRC, first used in an old Slackware howto): mountd: "--port 32767" statd: "--port 32765 --outgoing-port 32766" lockd-sysctl.d: fs.nfs.nlm_udpport=32768 fs.nfs.nlm_tcpport=32768 lockd--modprobe.d: options lockd nlm_udpport=32768 nlm_tcpport=32768 [ If you want to be "modern," the nfs-utils tarball (v2.1.1 and above) includes "nfs.conf" that you can copy into "/etc/" and edit ]
