RE: Openldap server auto disconnection

["Howard Chu" <hyc@highlandsun.com>]

slapd can indeed use hosts.allow/deny, it depends on how you configured it.
Or if you installed it from an RPM, it depends on the builder of the RPM. At
any rate, it looks like you're being disconnected because of hosts.allow.

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support

> -----Original Message-----
> From: owner-openldap-software@OpenLDAP.org
> [mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of David Vu
> Sent: Monday, December 10, 2001 4:52 PM
> To: openldap-software@OpenLDAP.org
> Subject: Openldap server auto disconnection
>
>
> Hi,
>
> I am trying to set up replication between a master and a slave
> openldapv2.0.11 server on RH Linux, but it doesn't seem to work.
> On closer inspection, telnet to the slave server on port 389 and port
> 636 get an immediate disconnection from the ldap daemon.
>
> $ telnet ldaps2 389 (same for port 636)
> Trying ldaps2...
> Connected to ldaps2.
> Escape character is '^]'.
> Connection closed by foreign host.
>
> The ldap debug log on ldaps2 confirms this:
>
> Dec  7 19:47:10 ldaps2 slapd[4759]: daemon: new connection on 8
> Dec  7 19:47:10 ldaps2 slapd[4759]: fd=8 host access from unknown
> (192.94.63.10) denied.
> Dec  7 19:47:10 ldaps2 slapd[4759]: daemon: closing 8
>
> Any know why the slapd daemon decides to close the connection
> immediately?  There's no firewall/ipchains in place, and I am pretty
> sure ldap doesn't use hosts.allow/deny.  I've also checked my
> /etc/openldap/slapd access control filters too and there's nothing in
> there to close the connection.
>
> Any help much appreciated,
>
> David.
>