[OpenAFS] AFS and firewalls, in general terms

Derrick J Brashear shadow@dementia.org
Tue, 26 Mar 2002 12:01:34 -0500 (EST)

On Tue, 26 Mar 2002 jsherwin@subtle.org wrote:

> I have found, in my few internal tests, that the list from the previously
> mentioned email
> (http://grand.central.org/twiki/bin/view/AFSLore/AdminFAQ#3_17_Which_TCP_IP_ports_and_prot)
> is incomplete. I opened up all of those ports (actually up to 7009) and a
> few others(tcp:2040, udp:88,750 as well as udp:1024-2048), and only found
> limited functionality. For instance I could not klog in (the command would
> simply time out), and I am using the AFS implementation, not MIT's.

klog should require only 7004 (kaserver) and 7002 (ptserver, to get your
AFS ID). is there something else going on, or is this a pure firewall?