SSH-AFS multihomed server problem
Atro Tossavainen
Atro.Tossavainen@helsinki.fi
Mon, 26 Mar 2001 13:13:00 +0300 (EET DST)
Dear all,
I added a second network interface (a SunATM) to one of our AFS servers.
The interface and all other traffic through it work fine, but if the
interface is up, SSH logins to any workstations whose primary interface
is ATM failed. We're running AFS 3.6 build 2.0 and SSH 1.2.27 with Dug
Song's AFS patches.
Snooping on the Ethernet and ATM interfaces simultaneously shows what
is happening as soon as the password is entered:
workstation-atm -> server-ethernet UDP D=750 S=1983 LEN=76
server-atm -> workstation-atm UDP D=1983 S=750 LEN=169
workstation-atm -> server-atm ICMP Destination unreachable (Bad port)
I.e. kaserver (I believe?) is replying on the wrong interface, and the
workstation is not expecting this.
How do I get around this permanently? I figured out already that if I
change the /etc/krb.conf to point to the ATM interface of the server,
or another server which only has one interface, the problem goes away,
but I think I'd rather that the kaserver replied on the interface that
it gets the queries on so I could keep one krb.conf for all hosts?
Regards,
--
Atro Tossavainen (Mr.) / The Institute of Biotechnology at
Systems Analyst, Techno-Amish & / the University of Helsinki, Finland,
+358-9-19158939 UNIX Dinosaur / employs me, but my opinions are my own.
< URL : http : / / www . iki . fi / atro . tossavainen / >