挂载时NFS客户端访问被拒绝、因为RO访问规则设置为Never
适用场景
- ONTAP 9
- Cloud Volumes ONTAP
- NFS
问题描述
- NFS客户端将
access denied挂载卷或qtree:
mount.nfs: access denied by server while mounting vserver1:/volume1/qtree1mount.nfs: access denied by server while mounting vserver1:/volume1- qtree导出策略规则拒绝客户端读取访问:
::*> export-policy check-access -vserver svm1 -volume vol1 -client-ip 192.168.11.11 -authentication-method sys -qtree qt1 -protocol nfs3 -access-type read-write
Policy Policy Rule
Path Policy Owner Owner Type Index Access
----------------------------- ---------- --------- ---------- ------ ----------
/ default svm1_root volume 1 read
/vol4ntfs p_svm1 vol1 volume 1 read
/vol4ntfs/qt01vol4 p_qt qt1 qtree 1 denied
3 entries were displayed.
- RO访问规则设置为
never:
::> export-policy rule show -vserver svm1 -policyname p_qt -clientmatch 192.168.11.222 -instance Vserver: svm1 Policy Name: p_qt Rule Index: 102 Access Protocol: nfs3 List of Client Match Hostnames, IP Addresses, Netgroups, or Domains: 192.168.11.11 RO Access Rule: never RW Access Rule: none User ID To Which Anonymous Users Are Mapped: 65534 Superuser Security Types: none Honor SetUID Bits in SETATTR: true Allow Creation of Devices: true NTFS Unix Security Options: fail Vserver NTFS Unix Security Options: use_export_policy Change Ownership Mode: restricted Vserver Change Ownership Mode: use_export_policy Policy ID: 17179869187