如何在CentOS 6.5中设置NFS服务器
时间:2020-03-21 11:47:07 来源:igfitidea点击:
在本教程中,让我们了解如何安装和配置NFS服务器以及如何在NFS服务器和客户端之间共享文件。
虽然我在Centos 6.5 32位版中测试了这些步骤,但它也将在Rhel/Scientific Linux 6.x上工作。
环境
NFS服务器操作系统:CentOS 6.5 32位(最小服务器安装)
NFS客户端操作系统:CentOS 6.5 32位(最小桌面安装)
NFS服务器IP地址:192.168.1.200/24
NFS客户端IP地址:192.168.1.29/24
1.在服务器中安装NFS
[Hyman@theitroad ~]# yum install nfs* -y
2.启动NFS服务
[Hyman@theitroad ~]# /etc/init.d/nfs start Starting NFS services: [ OK ] Starting NFS mountd: [ OK ] Stopping RPC idmapd: [ OK ] Starting RPC idmapd: [ OK ] Starting NFS daemon: [ OK ] [Hyman@theitroad ~]# chkconfig nfs on
3.在客户端安装NFS
[Hyman@theitroad client]# yum install nfs* -y
4.在客户端启动NFS服务
[Hyman@theitroad client]# /etc/init.d/nfs start Starting NFS services: [ OK ] Starting NFS quotas: [ OK ] Starting NFS mountd: [ OK ] Stopping RPC idmapd: [ OK ] Starting RPC idmapd: [ OK ] Starting NFS daemon: [ OK ] [Hyman@theitroad client]# chkconfig nfs on
5.在服务器中创建共享目录
让我们在服务器中创建一个名为"/home/theitroad"的共享目录,让客户端用户在"Home/theitroad"目录中读取和写入文件。
[Hyman@theitroad ~]# mkdir /home/theitroad [Hyman@theitroad ~]# chmod 755 /home/theitroad/
6.在服务器上导出共享目录
打开/etc/exports文件并添加如下所示的条目
[Hyman@theitroad ~]# vi /etc/exports /home/theitroad 192.168.1.0/24(rw,sync,no_root_squash,no_all_squash)
其中:
/home/onitad - 共享目录
192.168.1.0/24 - 访问共享文件夹的客户端的IP地址范围
RW - 使共享文件夹可写
同步 - 每当创建新文件/文件夹时都会同步共享目录
no_root_squash - 启用root权限(用户可以读取,写和删除共享目录中的文件)
no_all_squash - 启用用户的权限
现在重新启动NFS服务。
[Hyman@theitroad ~]# /etc/init.d/nfs restart Shutting down NFS daemon: [ OK ] Shutting down NFS mountd: [ OK ] Shutting down NFS services: [ OK ] Starting NFS services: [ OK ] Starting NFS mountd: [ OK ] Stopping RPC idmapd: [ OK ] Starting RPC idmapd: [ OK ] Starting NFS daemon: [ OK ]
7.在客户端中安装共享目录
创建安装点以安装服务器的共享目录。
要执行调用'/nfs/shared'的目录(我们可以创建自己的挂载点)
[Hyman@theitroad client]# mkdir -p /nfs/shared
现在从服务器安装共享目录,如下所示
[Hyman@theitroad client]# mount -t nfs 192.168.1.200:/home/theitroad//nfs/shared/
这需要一段时间并显示了对我的连接超时错误。
嗯,不要恐慌,FirWall可能会限制客户端从服务器安装股票。
只需停止IPTABLE来纠正问题,或者我们可以允许NFS服务端口通过IPTABLE。
要执行Open/etc/sysconfig/nfs文件并取消注释以粗体标记的行。
[Hyman@theitroad ~]# vi /etc/sysconfig/nfs ## Define which protocol versions mountd # will advertise. The values are "no" or "yes" # with yes being the default #MOUNTD_NFS_V2="no" #MOUNTD_NFS_V3="no"# Path to remote quota server. See rquotad(8) #RQUOTAD="/usr/sbin/rpc.rquotad" # Port rquotad should listen on. RQUOTAD_PORT=875 # Optinal options passed to rquotad #RPCRQUOTADOPTS=""# Optional arguments passed to in-kernel lockd #LOCKDARG= # TCP port rpc.lockd should listen on. LOCKD_TCPPORT=32803 # UDP port rpc.lockd should listen on. LOCKD_UDPPORT=32769# Optional arguments passed to rpc.nfsd. See rpc.nfsd(8) # Turn off v2 and v3 protocol support #RPCNFSDARGS="-N 2 -N 3" # Turn off v4 protocol support #RPCNFSDARGS="-N 4" # Number of nfs server processes to be started. # The default is 8. #RPCNFSDCOUNT=8 # Stop the nfsd module from being pre-loaded #NFSD_MODULE="noload" # Set V4 grace period in seconds #NFSD_V4_GRACE=90## Optional arguments passed to rpc.mountd. See rpc.mountd(8) #RPCMOUNTDOPTS="" # Port rpc.mountd should listen on. MOUNTD_PORT=892# Optional arguments passed to rpc.statd. See rpc.statd(8) #STATDARG="" # Port rpc.statd should listen on. STATD_PORT=662 # Outgoing port statd should used. The default is port # is random STATD_OUTGOING_PORT=2017 # Specify callout program #STATD_HA_CALLOUT="/usr/local/bin/foo"# Optional arguments passed to rpc.idmapd. See rpc.idmapd(8) #RPCIDMAPDARGS="" ## Set to turn on Secure NFS mounts. #SECURE_NFS="yes" # Optional arguments passed to rpc.gssd. See rpc.gssd(8) #RPCGSSDARGS="" # Optional arguments passed to rpc.svcgssd. See rpc.svcgssd(8) #RPCSVCGSSDARGS="" ## To enable RDMA support on the server by setting this to # the port the server should listen on #RDMA_PORT=20049
现在重新启动NFS服务
[Hyman@theitroad ~]# /etc/init.d/nfs restart Shutting down NFS daemon: [ OK ] Shutting down NFS mountd: [ OK ] Shutting down NFS services: [ OK ] Starting NFS services: [ OK ] Starting NFS mountd: [ OK ] Stopping RPC idmapd: [ OK ] Starting RPC idmapd: [ OK ] Starting NFS daemon: [ OK ]
在'/etc/sysconfig/iptables'文件中添加粗体显示的行。
[Hyman@theitroad ~]# vi /etc/sysconfig/iptables # Firewall configuration written by system-config-firewall # Manual customization of this file is not recommended. *filter -A INPUT -m state --state NEW -m udp -p udp --dport 2049 -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp --dport 2049 -j ACCEPT -A INPUT -m state --state NEW -m udp -p udp --dport 111 -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp --dport 111 -j ACCEPT -A INPUT -m state --state NEW -m udp -p udp --dport 32769 -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp --dport 32803 -j ACCEPT -A INPUT -m state --state NEW -m udp -p udp --dport 892 -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp --dport 892 -j ACCEPT -A INPUT -m state --state NEW -m udp -p udp --dport 875 -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp --dport 875 -j ACCEPT -A INPUT -m state --state NEW -m udp -p udp --dport 662 -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp --dport 662 -j ACCEPT :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT -A INPUT -p icmp -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT -A INPUT -j REJECT --reject-with icmp-host-prohibited -A FORWARD -j REJECT --reject-with icmp-host-prohibited COMMIT
现在重新启动iptables服务
[Hyman@theitroad ~]# service iptables restart iptables: Flushing firewall rules: [ OK ] iptables: Setting chains to policy ACCEPT: filter [ OK ] iptables: Unloading modules: [ OK ] iptables: Applying firewall rules: [ OK ]
再次从客户端安装份额
[Hyman@theitroad client]# mount -t nfs 192.168.1.200:/home/theitroad//nfs/shared/
最后安装了NFS共享,没有任何连接超时错误。
要验证是否已挂载共享目录,请在客户端系统中输入挂载命令。
[Hyman@theitroad client]# mount /dev/mapper/vg_vpn-lv_root on/type ext4 (rw) proc on /proc type proc (rw) sysfs on /sys type sysfs (rw) devpts on /dev/pts type devpts (rw,gid=5,mode=620) tmpfs on /dev/shm type tmpfs (rw,rootcontext="system_u:object_r:tmpfs_t:s0") /dev/sda1 on /boot type ext4 (rw) none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw) sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw) nfsd on /proc/fs/nfsd type nfsd (rw) 192.168.1.200:/home/theitroad/on /nfs/shared type nfs (rw,vers=4,addr=192.168.1.200,clientaddr=192.168.1.29)
8.测试NFS
现在在我们在上一步中安装的"/NFS/Shared"目录中创建某些文件或者文件夹。
[Hyman@theitroad shared]# mkdir test [Hyman@theitroad shared]# touch file1 file2 file3
现在转到服务器并更改为"/home/onitad"目录。
[Hyman@theitroad ~]# cd /home/theitroad/ [Hyman@theitroad theitroad]# ls file1 file2 file3 test [Hyman@theitroad theitroad]#
现在列出了文件和目录,这些文件是从客户端创建的。
此外,我们可以将文件从服务器分享给客户端,反之亦然。
9.自动挂载共享目录
如果要自动安装股份,而是在每次重新启动时手动安装它们,请在客户端系统的"/etc/fstab"文件中添加以下行。
[Hyman@theitroad client]# vi /etc/fstab ## /etc/fstab # Created by anaconda on Wed Nov 27 15:35:14 2013 ## Accessible filesystems, by reference, are maintained under '/dev/disk' # See man pages fstab(5), findfs(8), mount(8) and/or blkid(8) for more info #/dev/mapper/vg_vpn-lv_root/ ext4 defaults 1 1 UUID=59411b1a-d116-4e52-9382-51ff6e252cfb /boot ext4 defaults 1 2 /dev/mapper/vg_vpn-lv_swap swap swap defaults 0 0 tmpfs /dev/shm tmpfs defaults 0 0 devpts /dev/pts devpts gid=5,mode=620 0 0 sysfs /sys sysfs defaults 0 0 proc /proc proc defaults 0 0 192.168.1.200:/home/theitroad/nfs/sharednfsrw,sync,hard,intr0 0
10.检查确认共享
重新启动客户端系统并验证共享是否自动安装。
[Hyman@theitroad client]# mount /dev/mapper/vg_vpn-lv_root on/type ext4 (rw) proc on /proc type proc (rw) sysfs on /sys type sysfs (rw) devpts on /dev/pts type devpts (rw,gid=5,mode=620) tmpfs on /dev/shm type tmpfs (rw,rootcontext="system_u:object_r:tmpfs_t:s0") /dev/sda1 on /boot type ext4 (rw) none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw) sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw) 192.168.1.200:/home/theitroad on /nfs/shared type nfs (rw,sync,hard,intr,vers=4,addr=192.168.1.200,clientaddr=192.168.1.29) nfsd on /proc/fs/nfsd type nfsd (rw)
