[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: About starting of slapd

To: Hiroaki Minamida <minko@fjh.fujitsu.com>
Subject: Re: About starting of slapd
From: Wai Un <un@trustcenter.de>
Date: Tue, 30 Jul 2002 15:52:16 +0200
Cc: openldap-software@OpenLDAP.org
References: <20020730214315.9AFC.MINKO@fjh.fujitsu.com>

The -h flag of slapd will take a list of ldap_urls, this feature is VERY HANDY when user wants to open 2 (even more) listening ports for ONE SINGLE slapd instance.
Assuming you have a transactional ldbm backend und want to let the slapd instance binding 2 ports ( one standard ldap port 389 and another ssl-encrypted port 636 ), so you can specify, for instance, that write permission should be granted to the loopback interface of localhost on port 389; on the other hand, the machine's ethernet network interface, say your LAN interface to outside should only listen for ldap connections on port 636 for ssl encrypted traffic.
> -h "ldap://localhost:389/ ldaps://121.234.23.28:636/"
Actually -h also takes ipc socketurls like this : > -h "ldapi://host:port/ ... <list of ldap urls>", very flexible.
Hope that answers your question, please consult the OpenLDAP Admin guide and man pages for details.

Hiroaki Minamida wrote:

Hello All,
I have a question about starting of slapd.
It seems that establishment of two or more ports is possible to LDAP when
starting slapd using the -h option. For what case is this used concretely ?
Moreover, what merit is there by using this ?
Example) slapd -h "ldap://host1:389 ldap://host2:999"
If someone are known, please let me know.
Thanks.
Hiroaki MINAMIDA

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

References:
- About starting of slapd
  - From: Hiroaki Minamida <minko@fjh.fujitsu.com>

Prev by Date: Re: Openldap 2.1.3 - Berkeley BDB 4.0 database backup inconsistencies
Next by Date: Re: About starting of slapd
Index(es):
- Chronological
- Thread