I've got 16 servers worldwide running SKIP on
Solaris 2.5.1 Last week one of the system "caretakers" overseas
changed the IP address for two of the servers. Now the other 14 can't
connect unless I delete the each machine's entry in the acl.hme0 file using
skiptool. The two servers whose IPs changed can still talk encrypted to
each other both over the front side network (WAN) and the 5 foot patch cable
that makes the backside network for NFS. I've snooped the front side
network to determine if any of the routers were blocking port 57, and they
aren't. There is no connectivity problems between these machines and the
comm path is allowing all necessary packets to pass through. The question
is: Does changing the IP address of the local host affect the machines
ability to encrypt between hosts? I don't think that's the problem since
the two machines are encrypting between themselves, but I have no other idea
what it could be.
- Re: Does changing the localhost IP break SKIP? Ron Beck
- Re: Does changing the localhost IP break SKIP? Alexei V. Vopilov
