FWSM Rule Allowing NFS

Unanswered Question
Oct 26th, 2007
User Badges:

Is there a way to creat a rule to allow NFS through the FWSM? From what I understand about NFS there is a complication with the port mapper and the dynamic UDP ports.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Anonymous (not verified) Thu, 11/01/2007 - 11:45
User Badges:

NFS over UDP will creat alot of fragments. The FWSM has a limit of 15000 fragments per second

dtabera Wed, 11/07/2007 - 03:51
User Badges:

You have to open the RCP port (tcp/111 and udp/111, I guess. However, in the ACLs you can use 'sunrpc') and activate the inspection, if it is not active by default:

policy-map CSM_POLICY_MAP_global_3


inspect sunrpc


This Discussion