From c7de4483a9b68c8adcbd3c1ff796f12e7a3e69c4 Mon Sep 17 00:00:00 2001
From: SHASHIKANTH MADDINENI <mskanth@amazon.com>
Date: Wed, 27 Sep 2023 11:47:15 -0400
Subject: [PATCH] Updating README for 'noresvport' mount option

---
 docs/README.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/docs/README.md b/docs/README.md
index 71499991d..df3fbd488 100644
--- a/docs/README.md
+++ b/docs/README.md
@@ -52,6 +52,9 @@ If you want to pass any other mountOptions to Amazon EFS CSI driver while mounti
 * **lookupcache**: Specifies how the kernel manages its cache of directory entries for a given mount point. Mode can be one of all, none, pos, or positive. Each mode has different functions and for more information you can refer to this [link](https://linux.die.net/man/5/nfs).
 * **iam**: Use the CSI Node Pod's IAM identity to authenticate with Amazon EFS.
 
+### Default Mount Options
+When using the EFS CSI driver, be aware that the `noresvport` mount option is enabled by default. This means the client can use any available source port for communication, not just the reserved ports.
+
 ### Encryption In Transit
 One of the advantages of using Amazon EFS is that it provides [encryption in transit](https://aws.amazon.com/blogs/aws/new-encryption-of-data-in-transit-for-amazon-efs/) support using TLS. Using encryption in transit, data will be encrypted during its transition over the network to the Amazon EFS service. This provides an extra layer of defence-in-depth for applications that requires strict security compliance.