1MFSEXPORTS.CFG(5)                                            MFSEXPORTS.CFG(5)
2
3
4

NAME

6       mfsexports.cfg - LizardFS access control for mfsmounts
7

DESCRIPTION

9       The file mfsexports.cfg contains LizardFS access list for mfsmount
10       clients.
11

SYNTAX

13       Syntax is:
14
15       ADDRESS DIRECTORY [OPTIONS]
16
17       Lines starting with # character are ignored.
18
19       ADDRESS can be specified in several forms:
20
21* all addresses
22
23n.n.n.n single IP address
24
25n.n.n.n/b IP class specified by network address and bits number
26
27n.n.n.n/m.m.m.m IP class specified by network address and mask
28
29f.f.f.f-t.t.t.t IP range specified by from-to addresses (inclusive)
30
31       DIRECTORY could be / or path relative to LizardFS root; special value .
32       means MFSMETA companion filesystem.
33

OPTIONS

35       ro, readonly
36           export tree in read-only mode (default)
37
38       rw, readwrite
39           export tree in read-write mode
40
41       ignoregid
42           disable testing of group access at mfsmaster level (it’s still done
43           at mfsmount level) - in this case "group" and "other" permissions
44           are logically added; needed for supplementary groups to work
45           (mfsmaster receives only user primary group information)
46
47       dynamicip
48           allows reconnecting of already authenticated client from any IP
49           address (the default is to check IP address on reconnect)
50
51       maproot=USER[:GROUP]
52           maps root (uid=0) accesses to given user and group (similarly to
53           maproot option in NFS mounts); USER and GROUP can be given either
54           as name or number; if no group is specified, USER's primary group
55           is used. Names are resolved on mfsmaster side (see note below).
56
57       mapall=USER[:GROUP]
58           like above but maps all non privileged users (uid!=0) accesses to
59           given user and group (see notes below).
60
61       minversion=VER
62           rejects access from clients older than specified
63
64       mingoal=N, maxgoal=N
65           specify range in which goal can be set by users
66
67       mintrashtime=TDUR, maxtrashtime=TDUR
68           specify range in which trashtime can be set by users
69
70       password=PASS, md5pass=MD5
71           requires password authentication in order to access specified
72           resource
73
74       alldirs
75           allows to mount any subdirectory of specified directory (similarly
76           to NFS)
77
78       nonrootmeta
79           allows non-root users to use filesystem mounted in the meta mode
80           (option available only in this mode)
81
82       Default options are: ro,maproot=999:999.
83

NOTES

85       USER and GROUP names (if not specified by explicit uid/gid number) are
86       resolved on mfsmaster host.
87
88       TDUR can be specified as number without time unit (number of seconds)
89       or combination of numbers with time units. Time units are: W,D,H,M,S.
90       Order is important - less significant time units can’t be defined
91       before more significant time units.
92
93       Option mapall works in LizardFS in different way than in NFS, because
94       of using FUSE’s "default_permissions" option. When mapall option is
95       used, users see all objects with uid equal to mapped uid as their own
96       and all other as root’s objects. Similarly objects with gid equal to
97       mapped gid are seen as objects with current user’s primary group and
98       all other objects as objects with group 0 (usually wheel). With mapall
99       option set attribute cache in kernel is always turned off.
100

EXAMPLES

102* / ro
103
104192.168.1.0/24 / rw
105
106192.168.1.0/24 / rw,alldirs,maproot=0,password=passcode
107
10810.0.0.0-10.0.0.5 /test rw,maproot=nobody,password=test
109
11010.1.0.0/255.255.0.0 /public rw,mapall=1000:1000
111
11210.2.0.0/16 /
113           rw,alldirs,maproot=0,mintrashtime=2h30m,maxtrashtime=2w
114
116       Copyright 2008-2009 Gemius SA, 2013-2015 Skytechnology sp. z o.o.
117
118       LizardFS is free software: you can redistribute it and/or modify it
119       under the terms of the GNU General Public License as published by the
120       Free Software Foundation, version 3.
121
122       LizardFS is distributed in the hope that it will be useful, but WITHOUT
123       ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
124       FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
125       for more details.
126
127       You should have received a copy of the GNU General Public License along
128       with LizardFS. If not, see http://www.gnu.org/licenses/.
129

SEE ALSO

131       mfsmaster(8), mfsmaster.cfg(5)
132
133
134
135                                  01/20/2022                 MFSEXPORTS.CFG(5)
Impressum