<div dir="ltr"><div><div><div><div>Hi Niels,<br><br></div>Now I am able to run 'setfacl' command on Gluster volume using Kenrel NFS.<br><br></div>The problem was, I was exporting Gluster volume mount point which I get after mounting the gluster volume in /etc/exports file:<br><br></div><div>like <br></div>mount -t glusterfs -o acl <ip>:/<volume name> <mount point><br><br><br></div><div>But instead of using this point I need to export the volume brick path i.e. '/tmp/brick/gv0'<br><br>gluster volume info<br> <br>Volume Name: gv0<br>Type: Distribute<br>Volume ID: c3d636aa-f718-47b2-90eb-2b5846ad52a2<br>Status: Started<br>Number of Bricks: 1<br>Transport-type: tcp<br>Bricks:<br>Brick1: 128.224.95.140:/tmp/brick/gv0<br>Options Reconfigured:<br>nfs.disable: on<br>performance.readdir-ahead: on<br><br></div><div>and mount on remote as below:<br><br></div><div>mount -t nfs -o acl,vers=3 128.224.95.140:/tmp/brick/gv0 <mount point><br><br></div><div>then run <br><br></div><div>setfacl -m u:nobody:rw <mount point>/<file name><br><br></div><div>Now I have one question here, please answer it:<br><br></div><div>Please let me confirm, is there any side effect to export brick path?<br> <br></div><div><br></div><div>Regards,<br></div><div>Abhishek<br></div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Thu, Apr 28, 2016 at 5:35 PM, ABHISHEK PALIWAL <span dir="ltr"><<a href="mailto:abhishpaliwal@gmail.com" target="_blank">abhishpaliwal@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote"><span class="">On Thu, Apr 28, 2016 at 4:13 PM, Niels de Vos <span dir="ltr"><<a href="mailto:ndevos@redhat.com" target="_blank">ndevos@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span>On Thu, Apr 28, 2016 at 12:05:37PM +0530, ABHISHEK PALIWAL wrote:<br>
> Hi,<br>
><br>
> I have one more query:<br>
><br>
> I am using machine with ip 10.32.0.48 where gluster is running and mounted<br>
> my gluster volume as follows<br>
><br>
> mount -t glusterfs -o acl 10.32.0.48:/c_glusterfs /mnt/c<br>
><br>
> and after that I mounted /mnt/c volume to /tmp/l on same machin 10.32.0.48<br>
><br>
> mount -t nfs -o acl,vers=3 10.32.0.48:/mnt/c /tmp/l<br>
><br>
> When I run setfacl command on /tmp/l (mounted as nfs) volume its not<br>
> working<br>
> # setfacl -m u:application:r /tmp/l/usr<br>
> setfacl: /tmp/l/usr: Operation not supported<br>
><br>
> but when I run setfacl command on /mnt/c(mounted as glusterfs) it is<br>
> working<br>
> # setfacl -m u:application:r /mnt/c<br>
><br>
> Could you please tell me the reason for this.<br>
<br>
</span>Note that NFSv3 ACLs are not part of the NFS protocol itself. It is<br>
handled by a side-band protocol. If all ACL operations on any NFS server<br>
fail, make sure to check that the ports for NFSv3 ACLs are open. You can<br>
chech that with 'rpcinfo -p $NFS_SERVER'.<br></blockquote><div><br></div></span><div>ACL operation working fine with other NFS servers and ports are also open <br></div><span class=""><div><br> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br>
Gluster/NFS should have ACLs enabled by default. It is possible to<br>
disable support for ACLs in Gluster/NFS with the 'nfs.acl' volume<br>
option, just make sure that the option is not set, or is set to 'true'.<br></blockquote><div><br></div></span><div>I have tried with Gluster/NFS option where<br><br></div><div>nfs.disable off <br></div><div>nfs.acl on <br></div><div>but still getting setfacl command failure. <br></div><span class=""><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br>
HTH,<br>
Niels<br>
<div><div><br>
<br>
><br>
> Regards,<br>
> Abhishek<br>
><br>
> On Wed, Apr 27, 2016 at 4:56 PM, Niels de Vos <<a href="mailto:ndevos@redhat.com" target="_blank">ndevos@redhat.com</a>> wrote:<br>
><br>
> > Thank you for your email.<br>
> ><br>
> > I am out of the office on 27-April-2016 and will return on 28-April-2016.<br>
> > While I am out I will have limited access to email. When I have returned, I<br>
> > will respond to your message as soon as possible.<br>
> ><br>
> > Many thanks,<br>
> > Niels de Vos<br>
> ><br>
><br>
><br>
><br>
> --<br>
><br>
><br>
><br>
><br>
> Regards<br>
> Abhishek Paliwal<br>
</div></div></blockquote></span></div><span class="HOEnZb"><font color="#888888"><br><br clear="all"><br>-- <br><div><div dir="ltr"><br><br><br><br>Regards<br>
Abhishek Paliwal<br>
</div></div>
</font></span></div></div>
</blockquote></div><br><br clear="all"><br>-- <br><div class="gmail_signature"><div dir="ltr"><br><br><br><br>Regards<br>
Abhishek Paliwal<br>
</div></div>
</div>