Greetings community,
What seems trivial has turned into a real headache and frustration - I cannot get the NFS shares to enforce their configured authorized networks. I'm looking to only allow specific hosts to mount each of the NFS shares.
TrueNAS Server
Version: TrueNAS-12.0-U8.1 (edit: added this)
*NOTE: vault is my pool
zfs list | grep vault
/etc/exports:
NFS Client
showmount -e <truenas_ip>
However, I'm able to mount any of the datasets from a supposed unauthorized client, say IP 10.0.0.10.
What gives? What am I missing to enforce network / host authorization correctly?
What seems trivial has turned into a real headache and frustration - I cannot get the NFS shares to enforce their configured authorized networks. I'm looking to only allow specific hosts to mount each of the NFS shares.
TrueNAS Server
Version: TrueNAS-12.0-U8.1 (edit: added this)
*NOTE: vault is my pool
zfs list | grep vault
Code:
vault 940G 9.49T 140K /mnt/vault vault/dataset1 140K 9.49T 140K /mnt/vault/dataset1 vault/dataset2 151K 9.49T 151K /mnt/vault/dataset2 vault/dataset3 4.30M 9.49T 4.30M /mnt/vault/dataset3
/etc/exports:
Code:
V4: / -sec=sys /mnt/vault/dataset1 -maproot="root":"wheel" -sec=sys 10.0.0.2 /mnt/vault/dataset2 -maproot="root":"wheel" -sec=sys 10.0.0.120 /mnt/vault/dataset3 -maproot="root":"wheel" -sec=sys 10.0.1.16
NFS Client
showmount -e <truenas_ip>
Code:
Export list for <truenas_ip>: /mnt/vault/dataset1 10.0.0.2 /mnt/vault/dataset2 10.0.0.120 /mnt/vault/dataset3 10.0.1.16
However, I'm able to mount any of the datasets from a supposed unauthorized client, say IP 10.0.0.10.
What gives? What am I missing to enforce network / host authorization correctly?