GSSAPI and racoon
Victor Sudakov
vas at mpeks.tomsk.su
Sat Mar 4 13:04:31 UTC 2017
Victor Sudakov wrote:
>
> Is anyone running GSSAPI+IKE (racoon)?
>
> I have a Heimdal realm with a dozen FreeBSD hosts in it. I use GSSAPI
> for ssh access, also for CVS and SVN authentication. So I thought it
> would be a good idea to use Kerberos for IPSec as well, but the
> documentation is scarce, in fact only the very spartan
> /usr/local/share/doc/ipsec-tools/README.gssapi and
> /usr/local/share/examples/ipsec-tools/racoon.conf.sample-gssapi
It's notable that I cannot even compile racoon with GSSAPI enabled:
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=217531
I guess nobody cares.
--
Victor Sudakov, VAS4-RIPE, VAS47-RIPN
AS43859
More information about the freebsd-net
mailing list