Date: Thu 26 Sep 2002 - 17:38:22 BST
well, for what it's worth, I managed to get portmap, rpc.mountd and rpc.statd
run (properly) under chbind --ip <someIP>, but I had to do DNAT in the
PREROUTING chain to get NFS working. To be able to mount NFS on the server
itself, I had to do DNAT in the OUTPUT chain. (It's more than this actually,
as because of my firewall address spoofing rules, I had to add a couple more
rules to allow specific loopback addresses to be ACCEPTed)
On Wed, Sep 25, 2002 at 07:42:51PM +0000, gt_at_hzhome.mine.nu wrote:
> Letting the real machine run chbind' is not always that easy.
> e.g. portmap has to be listen to 0.0.0.0 (right ?) and KDE's Cop-Server
> seems to have difficulties if it cannot connect to 127.0.0.1.
> Gerrit Hoetzel