# NFS

<mark style="color:red;">**NFS (Network File System)**</mark> is a file-sharing protocol developed by **Sun Microsystems** to allow Linux/Unix systems to access remote files **as if they were local**.

<mark style="color:red;">**Key Differences from SMB:**</mark>

* **NFS is for Linux/Unix**, while **SMB is mainly for Windows**.
* **Older NFS versions authenticate devices**, while **SMB always requires user authentication**.
* **NFSv4+ includes security features like Kerberos & ACLs**.

<mark style="color:red;">**NFS Versions:**</mark>

* **NFSv2** (UDP-based, outdated but still supported).
* **NFSv3** (Supports larger files, better error handling).
* **NFSv4** (Stateful, supports Kerberos & ACLs).
* **NFSv4.1** (Adds **pNFS** for parallel access & multipathing).

**FS uses ONC-RPC (SUN-RPC) over TCP/UDP (port 111) and relies on XDR for cross-system data exchange.**

<mark style="color:red;">**Does NFS have built-in authentication or authorization?**</mark>

* **❌ No built-in authentication in NFS itself**; it relies on **RPC authentication.**
* **✅ Authorization depends on UNIX file system permissions (UID/GID).**

<mark style="color:red;">**To use NFS (Network File System), you need to open these ports:**</mark>

* **TCP/UDP port 2049**: The main port NFS uses to transfer files (TCP for reliability, UDP for speed).
* **TCP/UDP port 111**: Used by RPC to connect clients to the server.

***

#### **Foot printing**

```bash
nmap -sV -A -p 111,2049 10.129.14.128 
```

**NFS scripts** → This lets us check whether the target share is connected to the network on all required ports.

```bash
nmap --script nfs* 10.129.14.128 -sV -p 111,2049
```

<figure><img src="https://3641998078-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2Fv4bbPCMP2UOAXGuYloqD%2Fuploads%2FdlXThqYjEPnYCB6wdYR0%2FScreenshot%202025-03-16%20095336.png?alt=media&#x26;token=c294039c-7979-4133-9c17-8b304daa8346" alt=""><figcaption></figcaption></figure>

Once an **NFS** service is found, we can mount it on our local machine to access shared files.

**Steps to mount an NFS share:**

1️⃣ **Check available shares:**

```bash
showmount -e 10.129.14.128
```

<figure><img src="https://3641998078-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2Fv4bbPCMP2UOAXGuYloqD%2Fuploads%2FRDw42ArahP6G3ykVW0Fo%2FScreenshot%202025-03-16%20095804.png?alt=media&#x26;token=4c7c6e1c-d795-4d0a-9e2b-2d158f4e5645" alt=""><figcaption></figcaption></figure>

2️⃣ **Create a local mount point:**

```bash
mkdir target-NFS
sudo mount -t nfs 10.129.14.128:/mnt/nfs ./target-NFS/ -o nolock
cd target-NFS
tree .
```

<figure><img src="https://3641998078-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2Fv4bbPCMP2UOAXGuYloqD%2Fuploads%2F0lfnygNb89QoNDpC5orI%2FScreenshot%202025-03-16%20095930.png?alt=media&#x26;token=d4be03f0-02dd-4a8d-8c8c-4cd57601e0be" alt=""><figcaption></figcaption></figure>

<figure><img src="https://3641998078-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2Fv4bbPCMP2UOAXGuYloqD%2Fuploads%2F23lFGDBN6oedD9v5WrAh%2FNFS.png?alt=media&#x26;token=010b42f6-886c-4fdc-9b49-6265d0e66901" alt=""><figcaption></figcaption></figure>

Link : <https://xmind.ai/share/0eMXX17N?xid=wUvu00kk>