Date: Sat, 4 Mar 2017 20:04:26 +0700 From: Victor Sudakov <vas@mpeks.tomsk.su> To: freebsd-net@freebsd.org Cc: vanhu@FreeBSD.org Subject: Re: GSSAPI and racoon Message-ID: <20170304130426.GA90832@admin.sibptus.transneft.ru> In-Reply-To: <20170303154509.GA81714@admin.sibptus.transneft.ru> References: <20170303154509.GA81714@admin.sibptus.transneft.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
Victor Sudakov wrote: > > Is anyone running GSSAPI+IKE (racoon)? > > I have a Heimdal realm with a dozen FreeBSD hosts in it. I use GSSAPI > for ssh access, also for CVS and SVN authentication. So I thought it > would be a good idea to use Kerberos for IPSec as well, but the > documentation is scarce, in fact only the very spartan > /usr/local/share/doc/ipsec-tools/README.gssapi and > /usr/local/share/examples/ipsec-tools/racoon.conf.sample-gssapi It's notable that I cannot even compile racoon with GSSAPI enabled: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=217531 I guess nobody cares. -- Victor Sudakov, VAS4-RIPE, VAS47-RIPN AS43859
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20170304130426.GA90832>