Return-Path: X-Original-To: apmail-incubator-cloudstack-users-archive@minotaur.apache.org Delivered-To: apmail-incubator-cloudstack-users-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 46853D7DE for ; Thu, 30 Aug 2012 08:41:30 +0000 (UTC) Received: (qmail 71979 invoked by uid 500); 30 Aug 2012 08:41:30 -0000 Delivered-To: apmail-incubator-cloudstack-users-archive@incubator.apache.org Received: (qmail 71630 invoked by uid 500); 30 Aug 2012 08:41:29 -0000 Mailing-List: contact cloudstack-users-help@incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: cloudstack-users@incubator.apache.org Delivered-To: mailing list cloudstack-users@incubator.apache.org Received: (qmail 71603 invoked by uid 99); 30 Aug 2012 08:41:28 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 30 Aug 2012 08:41:28 +0000 X-ASF-Spam-Status: No, hits=1.6 required=5.0 tests=RCVD_IN_BRBL_LASTEXT,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: local policy) Received: from [206.125.172.14] (HELO sympanel.syminet.com) (206.125.172.14) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 30 Aug 2012 08:41:21 +0000 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=shankerbalan.net; s=x; h=In-Reply-To:Content-Type:MIME-Version:References:Message-ID:Subject:To:From:Date; bh=gKgkwca9fmXiVhtPX60jYFXRd2qVbM+OKhSCP9WAxq4=; b=Scj8e8kfjNfsWkajRALBqatPhGR/MBluG902aZVpMJs0HHcLImAoa1TSbfVSq0pJM6nq9hD8ZY+OlIkyF7Oicxp0z/eVbcm5JbJP1n+z3H0E32JJIEs8aA13ifv/1Is+; Received: from shanu by sympanel.syminet.com with local (Exim 4.71) (envelope-from ) id 1T70J9-0000gV-S1 for cloudstack-users@incubator.apache.org; Thu, 30 Aug 2012 01:40:59 -0700 Date: Thu, 30 Aug 2012 01:40:59 -0700 From: Shanker Balan To: cloudstack-users@incubator.apache.org Subject: Re: Ports needed between servers Message-ID: <20120830084059.GA2620@shankerbalan.net> References: <7324D76E-EE0E-4D6D-BB43-F9043ABD3836@me.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <7324D76E-EE0E-4D6D-BB43-F9043ABD3836@me.com> User-Agent: Mutt/1.5.20 (2009-06-14) X-Antiabuse: This header was added to track abuse, please include it with any abuse report X-Antiabuse: Primary Hostname - sympanel.syminet.com X-Antiabuse: Original Domain - incubator.apache.org X-Antiabuse: Originator/Caller UID/GID - [1001 1001] / [105 113] X-Antiabuse: Sender Address Domain - shankerbalan.net On Thu, Aug 30, 2012 at 12:34:35AM -0600, Caleb Call wrote: > Let's bring this back up. According to the document from Citrix, the > ports that are needed are all TCP. Is this correct? Or do we need > UDP for some of these as well (nfs, rpc, etc)? I've got the required > ports opened up (according to the document) and I'm unable to mount my > secondary storage. I'm guessing it's due to needing UDP as well but > would like to confirm that before asking for more ports to be opened > from our neteng team. > > TCP works on port 2049: > > [root@offshore-hv01 ~]# telnet 10.4.43.44 2049 > Trying 10.4.43.44... > Connected to 10.4.43.44. > Escape character is '^]'. > ^] > telnet> quit > Connection closed. > [root@offshore-hv01 ~]# > > However, when I try to mount the nfs share, it just hangs and times-out: > > [root@offshore-hv01 ~]# mount 10.4.43.44:/vol/offshore_vm_images /mnt/nfs > mount: mount to NFS server '10.4.43.44' failed: timed out (retrying). > mount: mount to NFS server '10.4.43.44' failed: timed out (retrying). > mount: mount to NFS server '10.4.43.44' failed: timed out (retrying). > ^C > [root@offshore-hv01 ~]# nfs(5) has a section on "Mounting through a firewall". Perhaps that can be of help to debug the problem. You could try forcing the proto=tcp mount option and also check if the portmapper ports are open. tcpdump(1) helps to track it down further. Hth. @shankerbalan -- http://shankerbalan.net/