本文解释了为什么NFS客户端会绑定到小于1024的TCP端口,这是出于安全考虑,因为这些被认为是特权端口,需要root权限才能绑定。文章指出,NFS通常会忽略sysctl net.ipv4.ip_local_port_range指定的TCP端口范围。
原文链接:https://access.redhat.com/solutions/517363
Why does my NFS client connect on TCP ports less than 1024?
SOLUTION 已验证 - 已更新 2013年十一月19日04:05 -
环境
- Red Hat Enterprise Linux
- NFS
问题
- Why do NFS clients connect on TCP ports less than 1024?
决议
- An NFS client will bind to a TCP port below 1024 for security reasons. These are privileged ports that require root access to bind to.
- It is expected behavior for NFS to ignore the TCP port range specified by the sysctl
net.ipv4.ip_local_port_range.
根源
- TCP ports less than 1024 are considered "privileged ports." Any process can open ports greater than 1024, ports greater than 1024 are therefore considered insecure. Only root is able to open ports less than 1024.
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
