topic NFS Export Policy Issue in Network and Storage Protocols https://community.netapp.com/t5/Network-and-Storage-Protocols/NFS-Export-Policy-Issue/m-p/101575#M7617 <P>I've unfortunately discovered the following related to export polices. &nbsp;If your export policy contains rules specific to a hostname that no longer resolves in your DNS...the next time a change is applied to that export-policy OR in my case, you perform a takeover in the midst of an NDU to a newer version of CDOT...the export policy fails to function.</P><P>&nbsp;</P><P>So basically, all VALID hostnames in the export policy lose access to the mount. &nbsp;Then as soon as you remove the offending rules from the export policy, access to the mount resumes on the valid hosts defined.</P><P>&nbsp;</P><P>The symptom from the NFS client is all access being halted w/ a busy NFS mount status. &nbsp;For example, simply running an 'ls' command on the mount halts your console activity indefinitely and it will free back up as soon as you delete the offending rules.</P><P>&nbsp;</P><P>This is repeatable for me and I'm currently running version CDOT 8.2.3 on our FAS cluster.</P><P>&nbsp;</P><P>Anyone else had this occur? &nbsp;What are thoughts on this behavior? &nbsp;I personally feel this is a BAD thing even though it does protect the security of the export. &nbsp;It would have been a horrible story to tell if this had happened to a volume we use for our VMware NFS datastores.</P> Thu, 05 Jun 2025 04:54:56 GMT bsnyder27 2025-06-05T04:54:56Z NFS Export Policy Issue https://community.netapp.com/t5/Network-and-Storage-Protocols/NFS-Export-Policy-Issue/m-p/101575#M7617 <P>I've unfortunately discovered the following related to export polices. &nbsp;If your export policy contains rules specific to a hostname that no longer resolves in your DNS...the next time a change is applied to that export-policy OR in my case, you perform a takeover in the midst of an NDU to a newer version of CDOT...the export policy fails to function.</P><P>&nbsp;</P><P>So basically, all VALID hostnames in the export policy lose access to the mount. &nbsp;Then as soon as you remove the offending rules from the export policy, access to the mount resumes on the valid hosts defined.</P><P>&nbsp;</P><P>The symptom from the NFS client is all access being halted w/ a busy NFS mount status. &nbsp;For example, simply running an 'ls' command on the mount halts your console activity indefinitely and it will free back up as soon as you delete the offending rules.</P><P>&nbsp;</P><P>This is repeatable for me and I'm currently running version CDOT 8.2.3 on our FAS cluster.</P><P>&nbsp;</P><P>Anyone else had this occur? &nbsp;What are thoughts on this behavior? &nbsp;I personally feel this is a BAD thing even though it does protect the security of the export. &nbsp;It would have been a horrible story to tell if this had happened to a volume we use for our VMware NFS datastores.</P> Thu, 05 Jun 2025 04:54:56 GMT https://community.netapp.com/t5/Network-and-Storage-Protocols/NFS-Export-Policy-Issue/m-p/101575#M7617 bsnyder27 2025-06-05T04:54:56Z