Puppet Class: nfs::server::firewall::nfsv4

Defined in:
manifests/server/firewall/nfsv4.pp

Summary

NFS server firewall configuration for NFSv4 only

Overview

Author:



6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
 
# File 'manifests/server/firewall/nfsv4.pp', line 6

class nfs::server::firewall::nfsv4
{
  assert_private()

  $_ports = [
    111, # rpcbind port; rpcbind required for rpc.rquotad
    $nfs::server::nfsd_port,
    $nfs::server::rquotad_port
  ]

  iptables::listen::tcp_stateful { 'nfs_client_tcp_ports':
    trusted_nets => $nfs::server::trusted_nets,
    dports       => $_ports
  }

  iptables::listen::udp { 'nfs_client_udp_ports':
    trusted_nets => $nfs::server::trusted_nets,
    dports       => $_ports
  }

}