> -----Original Message----- > From: Seth Vidal [mailto:skvidal@xxxxxxxxxxxx] > Sent: Friday, June 15, 2001 2:36 PM > To: kickstart-list@xxxxxxxxxx > Subject: Re: Firewall problems, kickstart - RH 7.1 > > > > > > firewall --medium --ssh --port > 2049:tcp,2049:udp,1110:tcp,1110:udp,1598:tcp,1598:udp, > > 2323:tcp,2323:udp,2363:tcp,2363:udp,111:tcp,111:udp,369:tcp,369:udp, > > 530:tcp,530:udp,1024:tcp,1024:udp,6000:tcp,6000:udp,752:tcp,752:udp, > > 22:tcp,22:udp > > > BUT STILL... the clients are UNABLE to mount using NFS and are > > also unable to ypbind to the NIS server.. > > the ports for nis and some of the ports for nfs move around. > > they are not pinned to a single port number > so only allowing certain ports won't work. > > > -sv >From the 7.1 Gotchas page (http://www.redhat.com/support/docs/gotchas/7.1/gotchas-71.html): Please note that both "medium" and "high" firewall settings will cause RPC-based services (such as NIS or NFS) to be blocked, and thus fail. Maybe you could use names instead of port numbers. E.g. nfs:tcp,nfs:udp,sunrpc:tcp,sunrpc:udp,nis:tcp,etc. I don't know if it will recognize these names, but it may be worth a try. Otherwise, just don't use medium/high ;o) Forrest
