Description:
Iptables running and blocked the nfs port
when running
# mount -t nfs ovm1:/u01 /mnt
The following error messages display:
mount: mount to NFS server 'ovm1' failed: System Error: No route to host.
Root Cause:
Firewall block the NFS requied port.
Fixed steps:
1. stop the iptables firewall. (sounds stupid)
2.
2.1 Modify /etc/sysconfig/nfs
add the following information into the nfs file
LOCKD_TCPPORT=32803
LOCKD_UDPPORT=32769
MOUNTD_PORT=892
STATD_PORT=662
STATD_OUTGOING_PORT=2020
2.2 restart the nfs services and verify the port real used
# service portmap restart
# service nfs restart
# rcpinfo -p localhost
2.3 Add rules into iptables
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 111 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p udp --dport 111 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 2409 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p udp --dport 2409 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 875 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p udp --dport 875 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 892 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p udp --dport 892 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 32803 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 32769 -j ACCEPT