Share and Project Protocols
Property CLI Value(s) Property Type Description
only applies to the NFSv2 and NFSv3 protocols,
not to NFSv4.
Anonymous user mapping
anon
Inherited Unless the "root" option is in effect for a
particular client, the root user on that client is
treated as an unknown user, and all attempts
by that user to access the shares's files will
be treated as attempts by a user with this uid.
This file's access bits and ACLs will then be
evaluated normally.
Character set See Character Set
Encodings for
possible values.
Inherited Sets the character set default for all clients.
Security mode
sec=
See Security Modes
for list of possible
values.
Inherited Sets the security mode for all clients.
Enforce reserved ports for
system authentication
resvport
Inherited When set on a share or project in conjunction
with the system authentication security mode,
requires NFS clients to use low-numbered
("reserved") TCP ports. Some NFS clients,
such as Solaris and Linux, use low-numbered
TCP ports by default. Other clients, such as
Windows, may require configuration.
NFS Share Mode Exceptions
Exceptions to the global sharing mode may be defined for clients or collections of clients by
setting client-specific share modes or exceptions. To restrict access to certain clients, set the
global sharing mode to none and increasingly grant access to smaller and smaller groups. For
example, you could create a share with the global sharing mode set to none, which denies
access to all clients, and then grant read-only access to a subset of the clients. Further, you
could grant read/write access to an even smaller subset of the clients and, finally, only trusted
hosts might have read/write and root-enabled access.
Client-specific share modes take precedence over the global share mode. A client is granted
access according to the client-specific share mode that is specified in an exception. In the
absence of exceptions, the client is granted access according to the global share mode.
TABLE 108
Client Types
Type CLI Prefix Description Example
Host(FQDN) or Netgroup
none
A single client whose IP address resolves
to the specified fully qualified name, or a
caji.sf.
example.
com
404 Oracle ZFS Storage Appliance Administration Guide, Release OS8.6.x • September 2016
To Next Page
Loading...
Need help?
General
