NFSv4 through portforward

port-forwarding proxy nfs haproxy nfs4

My colleague spotted the solution in the tcpdump, that the only other difference between the good and bad connection attempts is the source port.

Then Google told me that I need the insecure option to the export, because after the forward the source port is above 1024 and in the normal case it is below 1024 and insecure tells to the server that it can accept clients with source port above 1024.

Related

How to troubleshoot slow performance on AWS EC2/RDS?
How to protect server against brute-forcing of http authentication?
"kernel: Cannot read proc file system: 1 - Operation not permitted" -- millions of such messages each minute in kern.log on OpenVZ VPS? [closed]
Is there a legitimate reason to use an encoded word in any header other than the subject?
Issues With Printer GPO
DNS on Windows Server 2012 R2
checking for missing values in WQL or (WQL/WMI filter to return `true` for desktops/servers, but `false` on laptops)
Openssl hangs after client hello
How to write rules for persistent net names?
Limit on X509v3 Subject Alternative Name DNSname length
Why does dig +trace sometimes fail against Windows Server DNS?
How to keep script from swallowing all of stdin?