On Sun, 2019-11-17 at 09:55 +0100, Tom H wrote:
On Sat, Nov 16, 2019 at 7:50 PM Patrick O'Callaghan
<pocallaghan(a)gmail.com> wrote:
> This is quite embarrassing, but I'm banging my head against a wall
> and hoping other eyes will spot some obvious mistake.
>
> I have an F31 guest (fedora30) running in QEMU/KVM on an F31 host
> (Bree). I want to mount a host directory via NFS in the guest. I
> set this up a long time ago and it has worked through several
> Fedora releases without issue, but in a fit of spring cleaning I
> did a fresh install of F31 rather than my usual update, so of
> course now it doesn't work. Clearly I did something right back in
> the day and have now forgotten what it was.
>
> The guest can ping the host and ping the wider Internet, so basic
> connectivity works (this is via a NAT-style connection). The host
> can ssh into the guest.
>
> Firewall setup on the host:
> [poc@Bree ~]$ firewall-cmd --list-all
> home (active)
> target: default
> icmp-block-inversion: no
> interfaces: enp3s0
> sources:
> services: dhcp dhcpv6-client dns libvirt mdns mountd nfs nfs3 plex rpc-bind
rsyncd samba samba-client ssh
> ports:
> protocols:
> masquerade: no
> forward-ports:
> source-ports:
> icmp-blocks:
> rich rules:
>
> And on the guest:
> [poc@fedora30 ~]$ sudo firewall-cmd --list-all
> home (active)
> target: default
> icmp-block-inversion: no
> interfaces: enp1s0
> sources:
> services: dhcpv6-client mdns samba-client ssh
> ports:
> protocols:
> masquerade: no
> forward-ports:
> source-ports:
> icmp-blocks:
> rich rules:
>
> Guest ip:
> [poc@fedora30 ~]$ ip addr
> 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group
default qlen 1000
> link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
> inet 127.0.0.1/8 scope host lo
> valid_lft forever preferred_lft forever
> inet6 ::1/128 scope host
> valid_lft forever preferred_lft forever
> 2: enp1s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state
UP group default qlen 1000
> link/ether 52:54:00:ca:07:30 brd ff:ff:ff:ff:ff:ff
> inet 192.168.122.156/24 brd 192.168.122.255 scope global dynamic
noprefixroute enp1s0
> valid_lft 2893sec preferred_lft 2893sec
> inet6 fe80::2e77:5bc1:d19a:6045/64 scope link noprefixroute
> valid_lft forever preferred_lft forever
>
> and routing:
> [poc@fedora30 ~]$ ip route
> default via 192.168.122.1 dev enp1s0 proto dhcp metric 100
> 192.168.122.0/24 dev enp1s0 proto kernel scope link src 192.168.122.156 metric
100
>
> [poc@Bree ~]$ ping fedora30
> PING fedora30 (192.168.122.156) 56(84) bytes of data.
> 64 bytes from fedora30 (192.168.122.156): icmp_seq=1 ttl=64 time=20.1 ms
> ...
>
> Exports on the host:
> [poc@Bree ~]$ sudo exportfs
> /home/Media 192.168.0.0/16
> /home/poc/Shared
> vm-*
> /home/poc/Shared
> fedora*
>
> But from the guest:
> [poc@fedora30 ~]$ showmount -e bree
> clnt_create: RPC: Unable to receive
>
> What am I missing?
Does "showmount ..." list anything on "bree" itself?
What's the output of "cat /proc/fs/nfsd/versions" and "ss -ntul |
grep
-E "111|2049|20048" | column -t" (on "bree")?
"showmount ..." won't work if the first doesn't have "+3" or
if the
second doesn't have rpcbind, nfsd, and mountd lines.
FTR. for firewalld:
"mountd" opens 20048, tcp & udp
"nfs" opens 2049, tcp
"nfs3" opens 2049, tcp & udp
"rpc-bind" opens 111, tcp & udp
Thanks. I solved it by adding the services to the libvirt zone as Ed
recommended.
poc