[7118] in Kerberos
Multihoming and Kerberos.
daemon@ATHENA.MIT.EDU (Darren Reed)
Thu Apr 18 03:13:16 1996
Date: Thu, 18 Apr 1996 16:51:27 +1000
From: darrenr@nabaus.com.au (Darren Reed)
To: kerberos@MIT.EDU
What sort of solutions are people employing in cases where a host, running
Kerberos, is multi-homed and has the same realm on both sides ?
One problem appears to be that Kerberos applications don't bind to a single
IP address (that for the host's name), so there is a potential conflict there,
between the name in principals and the name to which the interface resolves
to.
Also, it would appear that Kerberos isn't exactly aware of multiple A records,
even if the PTR record matches, nor does it deal with the same situation
when /etc/hosts is the source.
(This is using beta5).
I constructed a setup something like:
KDC---A-+-B
|
+-C
The only problems are when A tries to talk to B & C.
darren
