Hi,
We've implemented Kerberos V with great success on almost all our hosts.
However on two machines we cannot have the usual entry in /etc/hosts
IP# FQ-hostname hostname
because licensed applications require the hostname
to be associated with different IP #:
192.168.1.1 myhost.foo.com myhost-hme0 # Internal interface
139.223.1.1 myhost myhost-hme1 # External interface
where 'myhost' is hostname
Is there a way around this so Kerberos will work?
What if we created an 'A' RR myhost-hme0.foo.com 192.168.1.1
along with a PTR reverse record?
then changed /etc/hosts thus:
192.168.1.1 myhost-hme0.foo.com myhost-hme0 # Internal interface
139.223.1.1 myhost myhost-hme1 # External interface
and created a Kerberos principle
[EMAIL PROTECTED]
TIA
--
Shaun
