<p dir="ltr">You can VPN or use an ssh tunnel. But this is a job for NFS v4. Yes, it's a pita to set up right but once done, you'll be very happy with it. <br>
If the data to be shared is sensitive, the only choice is a VPN to link them.<br>
</p>
<div class="gmail_quote">On Sep 16, 2013 2:44 PM, "Alex Carver" <<a href="mailto:agcarver%2Bale@acarver.net">agcarver+ale@acarver.net</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
I'm working on setting up a pair of systems that will need to have the storage volumes on one (file server) mounted by the other (application server). The first problem is they're both going to be on different subnets (no choice).<br>
<br>
I'd like to have a secure link between the two. I could set up NFS though that exposes the NFS server's ports to all machines (although I suppose I could also run iptables and allow only the app server through). I was thinking it might be possible to tunnel NFS (or something similar and suitable) via SSH. Then I only need the SSH port open on the server.<br>
<br>
The problem is that any document I find for tunneling NFS seems to be several years old.<br>
<br>
Thoughts?<br>
______________________________<u></u>_________________<br>
Ale mailing list<br>
<a href="mailto:Ale@ale.org" target="_blank">Ale@ale.org</a><br>
<a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/<u></u>listinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a href="http://mail.ale.org/mailman/listinfo" target="_blank">http://mail.ale.org/mailman/<u></u>listinfo</a><br>
</blockquote></div>