March 29, 20242 yr I am running into a permissions error with docker containers on Unraid accessing a shared NFS folder on a Synology NAS. The architecture I have currently is Synology -> user 'docker' UID 1038 GID 100 Synology -> shared folder 'media' -> allow user 'docker' read/write permissions Synology -> shared folder 'media' -> NFS permissions -> Allow IP address of Unraid, squash: no mapping, enable asynchronous Unraid -> NFS shares -> share mounted and accessible via CLI in /mnt/remotes/share Unraid -> docker container I've tried UID 99 GID 100 I've tried UID 1038 GID 100 Arr apps are still getting permissions issues Does the UID of unraid need to match the UID of synology while using NFS?
June 17, 20242 yr NFS is all ACL and permission who touched what where... I have not had to have a uid/guid match when sharing with nfs... Unraid: NFS does not have concept of passwords for security. it relies on network ACLs and filesystem ACLs Security = Secure make eveything readonly Security = Private requires a rule to allow a machine to read and write (cf the linked post). A rule can also be set block access what's your rule? example rules: https://unraid.net/es/blog/deploying-an-unraid-nfs-server Also Just to confirm, is unraid nfs sharing to the Synology? You may need to set docker safe perms to the folder share chmod -R 777 * chown -R nobody:users * In unraid Enable NFS (Settings > NFS) Add a share (Shares > Add share) [lets call the share "unraidshare1"] Share settings, NFS Security Settings ---Export: Yes ---Security: Private [You can choose Public, in that case it is not nescessery to enter Rule] ---Rule: 192.168.1.33(sec=sys,rw) [the ip number is the ip of your ubuntu desktop, here just an example] or is synology sharing the files to unraid via nfs? Then review synology KB: https://kb.synology.com/en-au/DSM/help/DSM/AdminCenter/file_share_privilege_nfs?version=7
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.