[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#3690) Multihomed ldap server responds to udp requests on wrong interface



Full_Name: Aaron Bandt
Version: 2.2.23
OS: Solaris 8
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (207.217.91.106)


I have udp clients that are configured to contact my ldap server via an ip alias
on the server. When the ldap server receives the request on its alias, it
responds back with the source address as the server's primary interface and the
client disregards the response. It is my understanding that slapd should be
sending these responses back to the client with the IP alias address as the
source IP, rather than the slapd server's primary interface. So for example, if
I have a client and server set up with the following IP's:

Client
IP: 10.0.0.1 

Server
IP: 10.0.0.2
Alias: 10.0.0.3

10.0.0.1 sends an ldap request to 10.0.0.3, slapd recieves the request,
processes it, and sends it back to 10.0.0.1 but with a source address of
10.0.0.2. 10.0.0.1 drops the response because it is expecting it to come from
10.0.0.3, not 10.0.0.2.

This same issue was reported as a bug with ntp, and was fixed. This is only an
issue with clients who are talking udp, and only when slapd is bound to *. If
slapd is bound to a specific IP, then udp requests work as expected.