Network and Storage Protocols

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Network and Storage Protocols

Ask a Question

export-policy rule for root volume

StefanN
‎2016-04-12 11:29 PM
3,365 Views

Which recommended export-policy rules shall I provide for a root volume on a CDOT-Vserver, to give on one hand other volumes arbitrary export-policys and on the other hand prevent unwanted access via the /-path?

0 Kudos
View By:
1 ACCEPTED SOLUTION

marcusgross
‎2016-04-13 06:55 AM
3,345 Views

Hi,

 

we use this to prevent writing to the root volume but allow reading and traversing it to the junction:

 

Policy Name: default
Rule Index: 1
Access Protocol: nfs3
Client Match Hostname, IP Address, Netgroup, or Domain: <your whole network>
RO Access Rule: none
RW Access Rule: never
Superuser Security Types: none
Honor SetUID Bits in SETATTR: true
Allow Creation of Devices: true

 

Marcus

View solution in original post

1 REPLY 1

marcusgross
‎2016-04-13 06:55 AM
3,346 Views

Hi,

 

we use this to prevent writing to the root volume but allow reading and traversing it to the junction:

 

Policy Name: default
Rule Index: 1
Access Protocol: nfs3
Client Match Hostname, IP Address, Netgroup, or Domain: <your whole network>
RO Access Rule: none
RW Access Rule: never
Superuser Security Types: none
Honor SetUID Bits in SETATTR: true
Allow Creation of Devices: true

 

Marcus

Announcements
All Community Forums
Public