exports(4) NFS 5.4R3.00 exports(4)
NAME
exports, xtab - directories to export to NFS clients
SYNOPSIS
/etc/exports
/etc/xtab
DESCRIPTION
The /etc/exports file contains entries for directories that can be
exported to NFS clients. This file is read automatically by the
exportfs(1M) command. If you change this file, you must run
exportfs(1M) for the changes to affect the mountd server's operation.
Only when this file is present at boot time does the rc.nfslockd
script execute exportfs(1M). The rc.nfsserv script starts the NFS
file-system server (daemon), nfsd(1M).
The /etc/xtab file contains entries for directories that are
currently exported. This file should only be accessed by programs
using getexportent (see exportent(3C)). (Use the -u option of
exportfs to remove entries from this file).
An entry for a directory consists of a line of the following form:
directory -option[,option ]...
directory is the pathname of a directory (or file).
option is one of
ro Export the directory read-only. If not
specified, the directory is exported read-
write.
rw=hostnames[:hostname]...
Export the directory read-mostly. Read-
mostly means read-only to most machines,
but read-write to those specified. If not
specified, the directory is exported read-
write to all.
anon=uid
If a request comes from an unknown user,
use uid as the effective user ID. Note:
root users (uid 0) are always considered
"unknown" by the NFS server, unless they
are included in the "root" option below.
The default value for this option is -2.
Setting "anon" to -1 disables anonymous
access. Note: by default secure NFS will
accept insecure requests as anonymous, and
those wishing for extra security can
disable this feature by setting "anon" to
Licensed material--property of copyright holder(s) 1
exports(4) NFS 5.4R3.00 exports(4)
-1.
root=hostnames[:hostname]...
Give root access only to the root users
from a specified hostname. The default is
for no hosts to be granted root access.
access=client[:client]...
Give mount access to each client listed.
A client can be either a hostname, or a
netgroup (see netgroup(5)). Each client
in the list is first checked for in the
netgroup database, and then the hosts
database. The default value allows any
machine to mount the given directory.
secure Require clients to use a more secure
protocol when accessing the directory.
A `#' (pound-sign) anywhere in the file indicates a comment that
extends to the end of the line.
EXAMPLE
/usr -access=clients # export to my clients
/usr/local # export to the world
/usr2 -access=hermes:zip:tutorial # export to only these machines
/usr/dgux -root=hermes:zip # give root access only to these
/usr/new -anon=0 # give all machines root access
/usr/bin -ro # export read-only to everyone
/usr/stuff -access=zip,anon=-3,ro # several options on one line
FILES
/etc/exports
/etc/xtab
/etc/hosts
/etc/netgroup
SEE ALSO
exportfs(1M), nfsd(1M), exportent(3C), hosts(5), netgroup(5).
WARNINGS
You cannot export either a parent directory or a subdirectory of an
exported directory that is within the same filesystem. It would be
illegal, for instance, to export both /usr and /usr/local if both
directories resided on the same virtual disk.
Licensed material--property of copyright holder(s) 2