Red Hat Summit Red Hat SummitSupportConsoleDéveloppeursCommencer un essaiContact

Ce contenu n'est pas disponible dans la langue sélectionnée.

16.4. Configuration Examples

16.4.1. Enabling SELinux Labeled NFS Support
Copier lien

The following example demonstrates how to enable SELinux labeled NFS support. This example assumes that the nfs-utils package is installed, that the SELinux targeted policy is used, and that SELinux is running in enforcing mode.

Note

Steps 1-3 are supposed to be performed on the NFS server, nfs-srv.
  1. If the NFS server is running, stop it: 
    [nfs-srv]# systemctl stop nfs
    Copy to Clipboard Toggle word wrap
    Confirm that the server is stopped: 
    [nfs-srv]# systemctl status nfs
nfs-server.service - NFS Server
   Loaded: loaded (/usr/lib/systemd/system/nfs-server.service; disabled)
   Active: inactive (dead)
    Copy to Clipboard Toggle word wrap
  2. Edit the /etc/sysconfig/nfs file to set the RPCNFSDARGS flag to "-V 4.2": 
    # Optional arguments passed to rpc.nfsd. See rpc.nfsd(8)
RPCNFSDARGS="-V 4.2"
    Copy to Clipboard Toggle word wrap
  3. Start the server again and confirm that it is running. The output will contain information below, only the time stamp will differ: 
    [nfs-srv]# systemctl start nfs
    Copy to Clipboard Toggle word wrap 
    [nfs-srv]# systemctl status nfs
nfs-server.service - NFS Server
   Loaded: loaded (/usr/lib/systemd/system/nfs-server.service; disabled)
   Active: active (exited) since Wed 2013-08-28 14:07:11 CEST; 4s ago
    Copy to Clipboard Toggle word wrap
  4. On the client side, mount the NFS server: 
    [nfs-client]# mount -o v4.2 server:mntpoint localmountpoint
    Copy to Clipboard Toggle word wrap
  5. All SELinux labels are now successfully passed from the server to the client: 
    [nfs-srv]$ ls -Z file
-rw-rw-r--. user user unconfined_u:object_r:svirt_image_t:s0 file
[nfs-client]$ ls -Z file
-rw-rw-r--. user user unconfined_u:object_r:svirt_image_t:s0 file
    Copy to Clipboard Toggle word wrap

Note

If you enable labeled NFS support for home directories or other content, the content will be labeled the same as it was on an EXT file system. Also note that mounting systems with different versions of NFS or an attempt to mount a server that does not support labeled NFS could cause errors to be returned.
Retour au début
Red Hat logoGithubredditYoutubeTwitter

Apprendre

Essayez, achetez et vendez

Communautés

À propos de la documentation Red Hat

Nous aidons les utilisateurs de Red Hat à innover et à atteindre leurs objectifs grâce à nos produits et services avec un contenu auquel ils peuvent faire confiance. Découvrez nos récentes mises à jour.

Rendre l’open source plus inclusif

Red Hat s'engage à remplacer le langage problématique dans notre code, notre documentation et nos propriétés Web. Pour plus de détails, consultez le Blog Red Hat.

À propos de Red Hat

Nous proposons des solutions renforcées qui facilitent le travail des entreprises sur plusieurs plates-formes et environnements, du centre de données central à la périphérie du réseau.

Theme

© 2025 Red Hat