nss_ldap periodic errors

["Kamil Kisiel" <kamil@kamilkisiel.net>]

I'm using nss_ldap on a whole bunch of machines on the network, and
while it works great most of the time, I continuously get errors in my
syslog. A sampling from today (these are actually from different
machines, but I have anonymized the hostnames to be the same.):

Feb 25 09:30:25 server.example.com sshd[17495]: nss_ldap: could not
search LDAP server - Server is unavailable
Feb 25 11:11:08 server.example.com -bash: nss_ldap: could not search
LDAP server - Server is unavailable
Feb 25 21:50:01 server.example.com automount[5030]: nss_ldap: could
not search LDAP server - Server is unavailable
Feb 25 21:55:16 server.example.com nscd: nss_ldap: could not search
LDAP server - Server is unavailable

I get a few of these errors in our syslogs every hour, and
occasionally it seems I can't log in via SSH. However typically when I
log in to the machine and do a "getent passwd" everything is fine. The
LDAP server is from Open Directory in OS X Server 10.5.2. The version
of nss_ldap is the one from Gentoo Linux, version nss_ldap-258.

My /etc/ldap.conf looks like this:

uri ldap://ldap1.example:389
base dc=example,dc=com
timelimit 30
bind_timelimit 30
bind_policy soft
nss_reconnect_maxconntries 5
idle_timelimit 3600
pam_password_prohibit_message Please use System Preferences on your
Mac to change your directory password.
nss_base_group cn=Groups,dc=zymeworks,dc=com
nss_base_passwd cn=Users,dc=zymeworks,dc=com

Does anyone have any suggestions as to what I can try to do to debug
and fix this ? It's really becoming irritating.


-- 
Kamil