Skip Menu |

Subject: Sygate Personal Firewalls prevent use of KfW
The Sygate Personal Firewall products do not add firewall rules to allow
inbound UDP packets when permission is given for applications to send
outbound UDP packets. This permits Leash32.exe to send requests to the
KDC but it cannot receive the response.

I do not see Kerberos 5 attempting to establish a TCP connection when
the UDP connection fails. Is there a configuration requirement to
enable to use to TCP that must be specified in the krb5.conf file?
More recent Kerberos implementations can be configured to force the use
of tcp/ip connections.