>Our firewall administrator asked me to give him any port numbers that AFS
>uses to talk to other cells, so the requests can penetrate the firewall.
>I see the following lines in /etc/services:
>[...]
> auth 113/tcp authentication
> ta-rauth 601/tcp rauth
>
>Are these ports relevant, and are there others I should know about?
Unless you plan on using the token-passing rsh, you don't need these
ports.
The ones you do want are the following:
# AFS services
afsfs 7000/udp # AFS fileserver
afscb 7001/udp # AFS callbacks
afsprot 7002/udp # AFS protection server
afsvldb 7003/udp # AFS volume location database
afskauth 7004/udp # AFS Kerberos Authentication
afsvol 7005/udp # AFS volume server
afserror 7006/udp # AFS error service
afsnanny 7007/udp # AFS bos service
afsupdate 7008/udp # AFS update service
afsrmtsys 7009/udp # AFS RMTSYS service
Unless you want people to be able to run "bos" remotely, you don't need
afsnanny. You also probably don't need afsrmtsys and afsupdate.
BTW, while we're on the subject ... anyone know what afserror (7006) does?
It's mentioned in the source code, but I can't seem to find anything
that uses it.
--Ken
