|
|
|
|
|
|
|
|
|
|
|
|
| home | help | back | first | fref | pref | prev | next | nref | lref | last | post |
From: Russ Allbery <rra@stanford.edu> Date: 12 Jul 2001 03:26:52 -0700 Message-ID: <ylvgkyfno3.fsf@windlord.stanford.edu> To: kerberos@MIT.EDU Jeffrey Altman <jaltman@watsun.cc.columbia.edu> writes: > If you can describe a good way to write the rule that says, replace > address FOO with address NAT we can certainly make the change in the > code. The problem in most cases is that there is no good way to know > what the NAT address is in the first place. I think there used to be patches for this around somewhere for something of the 1.0.x vintage, because I forward-ported them to 1.2 until I started just using addressless tickets. That patch took the approach of requiring one to configure the NAT IP address in krb5.conf, which would work in some situations. -- Russ Allbery (rra@stanford.edu) <http://www.eyrie.org/~eagle/>
|
|
|
|
|
|
|
|
|
|
|
|
| home | help | back | first | fref | pref | prev | next | nref | lref | last | post |