The NFS daemon usually runs on port 2048, I dont know if it opens another port per mount request. The NFS client will use the first available port just like any other client. If the client ports are higher than 1024 then you will have to use the "(insecure)" option on the exported directory. I am not sure if you can NFS mount through a MASQ either. Not much help, sorry. Phil Mendelsohn wrote: >On Mon, 2 Jul 2001, Gabe Turner wrote: > >>So RedHat 7.1 comes with ipchains installed and active by default. How >>does one go about mounting NFS filesystems through a firewall? If I run >>netstat -c and repeatedly try to mount a filesystem, the mount request >>seems to be going out on a relatively random port somewhere between about >>600 and 900. If I don't what port it's going to use, how do I know what to >>let through? Is it even possible to get NFS going through a firewall? >> > >Isn't that fairly nasty security wise? I thought you'd want to do VPN for >that sort of thing. > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20010703/4bcd6ac5/attachment.htm