【RHCE-第五天作业】

架设一台NFS服务器，并按照以下要求配置

准备工作

[root@server ~]# yum install nfs-utils -y
[root@server ~]# yum install rpcbind -y
[root@server ~]# systemctl stop firewalld
[root@server ~]# setenforce 0

1、开放/nfs/shared目录，供所有用户查询资料；

进入exports文件中配置文件传输的权限

[root@server ~]# cat /etc/exports
/nfs/shared	*(ro)

2、开放/nfs/upload目录，该目录为192.168.229.0/24网段的主机的数据上传目录，并将所有该网段主机上传文件的所属者和所属组映射为nfs-upload,其UID和GID为2001；

进入exports配置目录文件传输信息

[root@server ~]# cat /etc/exports
/nfs/shared	*(ro)
/nfs/upload	192.168.229.0/24(rw,all_squash,anonuid=2001,anongid=2001)

创建用户和设置UID和GID

[root@server ~]# useradd -u 2001 nfs-upload
[root@server ~]# id nfs-upload 
uid=2001(nfs-upload) gid=2001(nfs-upload) groups=2001(nfs-upload)

3、将/home/tom（该目录为uid=1111，gid=1111的tom用户的家目录）目录仅共享给192.168.229.137这台主机上的jerry用户，jerry对该目录具有访问、新建和删除文件的权限。

进入exports配置目录文件传输信息

[root@server ~]# cat /etc/exports
/nfs/shared	*(ro)
/nfs/upload	192.168.229.0/24(rw,all_squash,anonuid=2001,anongid=2001)
/home/tom	192.168.229.137(rw)

添加tom用户查看用户信息

[root@server ~]# useradd -u 1111 tom
[root@server ~]# id tom
uid=1111(tom) gid=1111(tom) groups=1111(tom)

重启服务

[root@server ~]# systemctl restart rpcbind
[root@server ~]# systemctl restart nfs-server.service

在客户端主机上按要求创建jerry用户，挂载到本地

[root@localhost ~]# mkdir -p /sever/{shared,upload,tom}
[root@localhost ~]# useradd -u 1111 jerry
[root@localhost ~]# id jerry 
uid=1111(jerry) gid=1111(jerry) groups=1111(jerry)
[root@localhost ~]# mount 192.168.229.136:/nfs/shared /sever/shared
[root@localhost ~]# mount 192.168.229.136:/nfs/upload /sever/upload
[root@localhost ~]# mount 192.168.229.136:/home/tom /sever/tom

测试

[root@localhost ~]# ll /sever/tom
ls: cannot open directory '/sever/tom': Permission denied #主机无权限

[root@localhost ~]# su - jerry
[jerry@localhost ~]$ ll /sever/tom
total 0
[jerry@localhost ~]$ ll /sever/shared
total 0
[jerry@localhost ~]$ touch /sever/upload/clint
[jerry@localhost ~]$ ll /sever/upload/
total 0
-rw-rw-r--. 1 2001 2001 0 Sep  3 09:34 clint
[jerry@localhost ~]$ rm /sever/upload/clint
[jerry@localhost ~]$ ll /sever/upload/
total 0