[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Heimdal and NAT

To: heimdal-discuss@sics.se
Subject: Heimdal and NAT
From: Erland Lewin <erl@voxi.com>
Date: Fri, 29 Jun 2001 20:20:47 +0200 (CEST)
Sender: owner-heimdal-discuss@sics.se
User-Agent: IMP/PHP IMAP webmail program 2.2.3

I am trying to use heimdal to authenticate me through masquerading (NAT) and a
VPN tunnel and other crap which mangles my IP-address.
  I read somewhere that this might be solved by requesting tickets with no
address (seems reasonable to me). However, connecting to heimdals telnetd fails
regardless of whether my ticket has an address or not with the following
messages:

> /usr/heimdal/bin/telnet -F <host>
Trying <ipaddr>...
Connected to <ipaddr>.
Escape character is '^]'.
[ Trying mutual KERBEROS5 ... ]
Kerberos V5: mk_req failed (Server not found in Kerberos database)
[ Trying KERBEROS5 ... ]
Kerberos V5: mk_req failed (Server not found in Kerberos database)

I have also tried this with forwardable tickets, but with no effect.
  My most important goal is to authenticate to a cvs server compiled with
gssapi.
  Has anything happened in recent heimdal versions which might affect this? I'm
not sure exactly what versions are running on the various machines involved, but
I can check that out if it matters.
  What should I do?

Thanks for your good work,

  Erland

Follow-Ups:
- Re: Heimdal and NAT
  - From: joda@pdc.kth.se (Johan Danielsson)

Prev by Date: Re: Problems building heimdal-0.3f --enable-kaserver
Next by Date: Re: Heimdal and NAT
Prev by thread: Re: Problems building heimdal-0.3f --enable-kaserver
Next by thread: Re: Heimdal and NAT
Index(es):
- Date
- Thread