[OpenAFS] NetRestrict
Steve Devine
sdevine@msu.edu
Wed, 14 Mar 2007 09:57:32 -0400
Derrick J Brashear wrote:
> On Wed, 14 Mar 2007, Steve Devine wrote:
>
>> Environment:
>> Volserver is OpenAFS 1.4.2 built 2007-02-19
>> OS is Suse 10.2
>> Server has an Iscsi enclosure on a private ip address (192.168.0.9)
>> I put NetRestrict file in place in /usr/afs/local/
>> inside file I put one line "192.168.0.255" Hoping to cover entire
>> subnet.
>
> It doesn't work that way.
> I must have read this wrong then:
The *NetRestrict* file is in ASCII format. One IP address appears on
each line, in dotted decimal format. The order of the addresses is not
significant. The value *255* is a wildcard that represents all possible
addresses in that field. For example, the value *192.12.105.255*
indicates that the Cache Manager does not register any of the addresses
in the *192.12.105* subnet.
>> restart bosserver move a volume over and when I run
>> vos listaddr it lists
>> 192.168.0.9
>>
>> If I repeat the same expireiment moving the volume off the server
>> and deleting the address from the VLDB then only explicitly declaring
>> 192.168.0.9, moving volume back on server, restarting bosserver it
>> fails as well.
>> So does the NetInfo file have to exist as well to fix this.
>
> Possibly, but I thought masking the address was sufficient.
> Some relevant fixes are in 1.4.3
> _______________________________________________
> OpenAFS-info mailing list
> OpenAFS-info@openafs.org
> https://lists.openafs.org/mailman/listinfo/openafs-info
--
Steve Devine
Storage Systems
Academic Computing & Network Services
Michigan State University
506 Computer Center
East Lansing, MI 48824-1042
1-517-432-7327
Baseball is ninety percent mental; the other half is physical.
- Yogi Berra