From owner-FreeBSD-users-jp@jp.FreeBSD.org Fri Jul  9 18:38:21 2004
Received: (from daemon@localhost)
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) id i699cLH46976;
	Fri, 9 Jul 2004 18:38:21 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from relay.bekkoame.ne.jp (relay.bekkoame.ne.jp [202.231.195.4])
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) with ESMTP/inet id i699cLI46949
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Fri, 9 Jul 2004 18:38:21 +0900 (JST)
	(envelope-from gc4706@i.bekkoame.ne.jp)
Received: from localhost (p3182-ipad06yamaguchi.yamaguchi.ocn.ne.jp [221.185.26.182])
	by relay.bekkoame.ne.jp (Postfix) with ESMTP
	id 255D2120402; Fri,  9 Jul 2004 18:38:24 +0900 (JST)
Message-Id: <20040709.183739.74740382.gc4706@i.bekkoame.ne.jp>
To: FreeBSD-users-jp@jp.FreeBSD.org, mistral@imasy.or.jp
From: Teruo IWAMURA <gc4706@i.bekkoame.ne.jp>
In-Reply-To: <040709170101.M0118330@shimako.imasy.or.jp>
References: <20040709.150413.68380088.gc4706@i.bekkoame.ne.jp>
	<040709170101.M0118330@shimako.imasy.or.jp>
X-Mailer: Mew version 3.2 on Emacs 21.2 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Reply-To: FreeBSD-users-jp@jp.FreeBSD.org
Precedence: list
Date: Fri, 09 Jul 2004 18:37:39 +0900
X-Sequence: FreeBSD-users-jp 80107
Subject: [FreeBSD-users-jp 80107] Re: RPCPROG_NFS: RPC: Program not
 registered =?ISO-2022-JP?B?GyRCJEskRCQkJEYbKEI=?= 
Sender: owner-FreeBSD-users-jp@jp.FreeBSD.org
X-Originator: gc4706@i.bekkoame.ne.jp
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+040628

$B4dB<$G$9!#(B
$BO"Mm$$$?$@$-M-Fq$&8f:B$$$^$9!#$^$H$a$FO"Mm$5$;$F$$$?$@$-$^$9!#(B
$B7k2L$r@h$K=q$-$^$9$H!"(B4.5$B!"(B5.2$B$N$$$:$l$bF1$87k2L$G@\B3$G$-$^$;$s$G$7$?!#(B

ws020130# mount 192.162.20.133:/da1 /z
192.162.20.133:/da1: RPCPROG_MNT: RPC: Timed out
$B0J2<F1$8%(%i!<$N7+$jJV$7I=<($5$l$^$9!#(B


#[FreeBSD-users-jp 80099]
> $BM=A[DL$j(B mountd $B$,F0$$$F$J$$$N$G(B, $B5/F0$7$F$"$2$F$/$@$5$$(B.
*-*
$B5/F0$7$^$7$?!#(B

ws020131# ps -ax | grep mountd
  423  ??  Is     0:00.00 /usr/sbin/mountd -r
  739  p2  R+     0:00.00 grep mountd

#[FreeBSD-users-jp 80100]
>  NFS $B$r7R$00Y$K%5!<%P!<$X(B rpc $B$GLd$$9g$o$;$K9T$C$?$1$I%5!<%P!<B&$N(B
> rpc $B$K(B NFS $B$NEPO?$,$J$+$C$?$+$i!"%/%i%$%"%s%H$O@\B3J}K!$,$o$+$s$J$$(B
> $B$C$F$$$&$3$H$_$?$$$G$9$M!#(B
*-*
$B:F5/F0$7$^$7$?!#(B

ws020131# ps -ax | grep rpc
  338  ??  Is     0:00.01 /usr/sbin/rpcbind
  433  ??  Ss     0:00.00 /usr/sbin/rpc.statd
  435  ??  Ss     0:00.00 /usr/sbin/rpc.lockd
  443  ??  I      0:00.00 /usr/sbin/rpc.lockd

ws020131# showmount -e
Exports list on localhost:
/da2                               Everyone
/da1                               Everyone

#[FreeBSD-users-jp 80103]
> nfsd $B$,(B rpcbind $B$KBP$7$F(B pmap_set $B$G$-$F$$$J$$$h$&$G$9$M!#(B
> nfsd $B$O5/F0$7$F$$$k$G$7$g$&$+!#(B
> $B5/F0$7$F$$$k$N$G$"$l$P!"$?$V$s(B /etc/hosts.allow $B$G(B reject $B$5$l(B
> $B$F$$$k$s$8$c$J$$$+$H;W$&$s$G$9$,!"(B/etc/hosts.allow $B$O(B All : All
> : allow $B$+$iJQ99$5$l$F$^$9$+!)!!JQ99$7$F$$$?$i!"(B(localhost $B$@$1$G(B
> $B$O$J$/(B) 127.0.0.1 $B$KBP$7$F$b(B allow $B$9$k$h$&$K$7$F$_$F$/$@$5$$!#(B
*-*
$BJQ99$O$"$j$^$;$s!#(B

ws020131# less hosts.allow | more
*-*($BH4?h(B)
# Start by allowing everything (this prevents the rest of the file
# from working, so remove it when you need protection).
# The rules here work on a "First match wins" basis.
ALL : ALL : allow

# Wrapping sshd(8) is not normally a good idea, but if you
# need to do it, here's how
#sshd : .evil.cracker.example.com : deny 

# Protect against simple DNS spoofing attacks by checking that the
# forward and reverse records for the remote host match. If a mismatch
# occurs, access is denied, and any positive ident response within
# 20 seconds is logged. No protection is afforded against DNS poisoning,
# IP spoofing or more complicated attacks. Hosts with no reverse DNS
# pass this rule.
ALL : PARANOID : RFC931 20 : deny

# Allow anything from localhost.  Note that an IP address (not a host
# name) *MUST* be specified for rpcbind(8).
ALL : localhost 127.0.0.1 : allow
ALL : my.machine.example.com 192.0.2.35 : allow

#$B$3$3$^$G3NG'$7$F<B9T$7$^$7$?$,$d$C$Q$j@\B3$G$-$:!"%/%i%$%"%s%H$O(B4.5$B!"(B5.2$B$N(B
$B$$$:$l$bF1$87k2L$G$9!#(B

ws020130# mount 192.162.20.133:/da1 /z
192.162.20.133:/da1: RPCPROG_MNT: RPC: Timed out
192.162.20.133:/da1: RPCPROG_MNT: RPC: Timed out
192.162.20.133:/da1: RPCPROG_MNT: RPC: Timed out
192.162.20.133:/da1: RPCPROG_MNT: RPC: Timed out
192.162.20.133:/da1: RPCPROG_MNT: RPC: Timed out
192.162.20.133:/da1: RPCPROG_MNT: RPC: Timed out

#$B;29M%G!<%?!<(B
[FreeBSD-users-jp 80100]$B$G$*;XE&$N$"$j$^$7$?7o!"(B
NFS$B%5!<%P!<!"%/%i%$%"%s%H$OF10l;EMM$N$b$N$r:n$j!"K\HVMQ!"BT5!MQ$H$7$F$$$^$9!#(B

$B:#0lEY$*$D$-9g$$2<$5$$!#59$7$/$*4j$$$7$^$9!#(B

$B4dB<(B
