Subject: Kerberos and NAT
To: None <>
From: Jukka Salmi <>
List: netbsd-users
Date: 11/30/2004 20:42:23

is anybody successfully using kpasswd on a client behind a NAT device
(kdc "in front of" the NAT device)? The kdc runs on NetBSD 2.0, the
client is -current. The following is logged:

	kpasswdd[2596]: Bad version (65408)
	kpasswdd[2509]: krb5_rd_priv: Incorrect net address

The former message is probably a result of the relatively recent change
to passwd[1] (switch to krb5_set_password), and it doesn't hurt. But the
latter makes passwd fail. I added the external IP address of the NAT device
to libdefaults -> extra_addresses in krb5.conf, but this doesn't help.

Any hints?

TIA, Jukka


bashian roulette:
$ ((RANDOM%6)) || rm -rf ~