- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Re: Secured NFS configuation to allow authorised Hosts to mount
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Secured NFS configuation to allow authorised Hosts to mount
We would to configure secured NFS so that only authorised hosts will be able to mount the shares.This will enable us to mitigate the vulnerabilities, as reported in the screenshot.
Kindly let us know how to do this secured NFS config?
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Secured NFS configuation to allow authorised Hosts to mount
What NAS model do you have, and what firmware is it running?
Also, is limiting NFS access to specific IP addresses enough?
I am wondering if you really need NFS. SMB 3.x (perhaps with active directory) might be a better path.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Secured NFS configuation to allow authorised Hosts to mount
Model : RN4312 V2
Firmware: 6.10.8
How to restrict the mounting with authenticated NFS or the impact of Disabling the NFS ?
if we Disable the NFS, what will be the impact on the business? We use the Netgear NAS to store the Backups
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Secured NFS configuation to allow authorised Hosts to mount
@Tasneetpc wrote:
if we Disable the NFS, what will be the impact on the business?
Only you can answer that. What clients on your network access the NAS using NFS? If there aren't any, then you can just turn it off.
As far as backups go, Windows and MacOS PCs would normally store them using SMB or iSCSI. Linux would typically use rsync (though Linux also supports SMB). None of those require NFS.
@Tasneetpc wrote:
How to restrict the mounting with authenticated NFS.
You can set the protocol to NFSv4 from the system->settings->services page of the NAS web ui. You can also restrict access to specific clients using the network access controls in each share settings.
I've never attempted to set up authenticated NFS myself. Server-side (e.g. NAS) authentication would require use of Kerberos - and I don't recall seeing any posts here from other users who have deployed that on their ReadyNAS.