Tim Spriggs wrote:
Jason C. Wells wrote:It would sure be nice if OpenAFS worked with IPv6. It's really easy to deploy IPv6 to a NAT'd network and Kerberos works over IPv6 without a problem. Maybe you could use IPv6 to fix the Kerberos name/ip issues and then use the rest of OpenAFS behind a NAT. It's ugly but... it would would be kinda cool.Derrick Brashear wrote:> get addressless tickets.Even if you get addressless tickets you may still have a problem with hostname canonicalization that is performed by kerberos if you don't have proper reverse DNS mapping. I ran into this once upon a time.
I have filed for a grant to fund the RX/TCP and IPv6 work. I will findout in April if I have been approved for the architecture phase. Assuming I am the earliest you will see IPv6 support is 2009, perhaps 2010.
In the meantime, why don't you just disable the Kerberos reverse dns lookups in your krb5.conf file?
[libdefaults] "rdns = false" Jeffrey Altman
smime.p7s
Description: S/MIME Cryptographic Signature
