[tlug] nfs through a firewall

["Hector Akamine" <akamine@example.com>]

Hi,

I want to set up a NFS server in a PC that has a firewall (iptables)
enabled. But I'm stuck with the following:
1) I read somewhere that rpcinfo -p shows the list of ports that nfs
is using. The thing
is that rpcinfo shows a lot of ports:

[root@example.com ~]# rpcinfo -p
  program vers proto   port
   100000    2   tcp    111  portmapper
   100000    2   udp    111  portmapper
   100024    1   udp  32768  status
   100024    1   tcp  32977  status
   100011    1   udp    980  rquotad
   100011    2   udp    980  rquotad
   100011    1   tcp    983  rquotad
   100011    2   tcp    983  rquotad
   100003    2   udp   2049  nfs
   100003    3   udp   2049  nfs
   100003    4   udp   2049  nfs
   100003    2   tcp   2049  nfs
   100003    3   tcp   2049  nfs
   100003    4   tcp   2049  nfs
   100021    1   udp  32803  nlockmgr
   100021    3   udp  32803  nlockmgr
   100021    4   udp  32803  nlockmgr
   100021    1   tcp  55803  nlockmgr
   100021    3   tcp  55803  nlockmgr
   100021    4   tcp  55803  nlockmgr
   100005    1   udp    995  mountd
   100005    1   tcp    998  mountd
   100005    2   udp    995  mountd
   100005    2   tcp    998  mountd
   100005    3   udp    995  mountd
   100005    3   tcp    998  mountd

Which ones should I open in the firewall in order for other hosts to
reach the nfs server?

2) It seems that the ports used by nfs are dynamic (change every time
nfs is restarted). Is there any way to make it use the same ports
every time?

I've been trying to RTFM but couldn't find how to solve this. Any help
(or pointers to tutorials) is appreciated

Thanks,
Hector